$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: /6sZbeOVx/pIR9agGUBF8/TlZPjh4yvQlHKjKVwAvvY= Subject key identifier: 64:FE:47:78:72:7B:17:09:17:6D:D9:2E:B0:E2:C3:0A:87:14:71:B8 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 6FED3D30CDE63226001B4F613AB45401043C69B8 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa Signing time: Sun 28 Apr 2024 01:00:00 +0000 ROA not before: Sun 28 Apr 2024 00:55:00 +0000 ROA not after: Sun 27 Apr 2025 01:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ed:3d:30:cd:e6:32:26:00:1b:4f:61:3a:b4:54:01:04:3c:69:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Apr 28 00:55:00 2024 GMT Not After : Apr 27 01:00:00 2025 GMT Subject: CN=64FE4778727B1709176DD92EB0E2C30A871471B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c2:28:5f:49:45:5a:cb:3d:0b:67:cb:6a:56: fa:d2:1b:06:1b:79:c2:3a:19:87:8a:45:96:44:d0: 59:de:3e:62:a6:1f:cf:f0:f3:f9:a1:de:8f:ed:57: c7:40:2e:b9:11:1b:c0:ef:49:27:d1:f8:09:b5:f3: ad:60:fe:7a:66:11:1d:fe:33:f5:01:c4:c5:6f:80: 0f:98:03:9a:d7:29:9b:5a:73:75:22:6d:5f:22:44: 4a:6f:67:16:d0:cf:a8:a3:57:d0:a3:51:34:9c:99: 0a:41:38:b9:2f:29:7f:be:7f:e4:2a:97:3a:46:e2: 86:57:c2:94:ab:13:91:69:53:c0:f3:bb:93:5c:69: 39:2e:ee:c9:72:ca:bf:d4:86:a3:8c:68:f0:ad:09: 68:c9:db:08:02:49:fc:e8:8c:e1:86:20:8a:f6:d1: 29:45:0b:cb:9d:ac:40:34:89:c0:f3:5d:f7:6c:95: 3e:72:60:ba:aa:bb:60:0c:39:2f:e9:60:0b:f3:56: 26:d1:d4:a7:6e:fd:17:d3:95:96:2c:b7:8c:4c:82: a8:42:dc:0c:b3:cf:df:01:8f:ad:66:2e:05:a3:79: 99:4b:c8:f7:58:29:ff:cd:4c:52:e2:6a:89:5e:60: cb:82:e7:e3:30:92:16:8f:85:f9:3e:1f:4a:37:c5: 01:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FE:47:78:72:7B:17:09:17:6D:D9:2E:B0:E2:C3:0A:87:14:71:B8 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 25:3e:33:96:88:1b:18:9d:d1:65:92:d6:c8:00:c7:e7:98:4e: 71:e9:59:24:12:da:ba:59:6a:e8:07:dc:3b:14:fb:bf:aa:30: b4:80:83:13:c7:5f:81:a7:e3:53:6c:d3:1c:f1:ab:5c:d6:dc: 06:f1:73:0c:eb:ea:67:c4:6f:02:71:2d:07:ff:68:24:be:81: 9a:30:27:eb:4b:e6:6d:ed:6c:3e:1e:a0:93:fd:52:22:c8:38: 5f:06:65:ba:01:1b:3c:c6:1a:17:30:59:25:0d:4d:19:96:4f: 93:ca:2f:71:6d:8c:90:95:09:95:ec:27:7b:fe:38:07:61:54: 6d:05:07:cd:53:99:5a:7b:8b:e6:dd:5c:8d:cb:2c:aa:2e:aa: 1c:69:94:26:05:75:73:ed:cf:36:28:ef:8c:e9:a2:be:af:59: d5:9b:b6:0c:88:10:f2:dd:a1:66:b9:e3:65:ee:10:a4:2c:7b: dc:2b:68:61:a8:52:18:7c:ae:74:99:8c:ab:54:db:35:a9:9c: c0:8c:5e:0d:4c:f6:24:3d:50:ab:fe:7a:81:93:bb:86:78:e2: cf:07:e5:61:85:df:e2:a7:a4:f0:52:5e:87:52:e4:e4:56:c2: a1:f5:50:39:91:fa:e9:f2:7d:9e:4d:a9:e0:7d:61:fd:12:ee: 56:7c:b1:eb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUb+09MM3mMiYAG09hOrRUAQQ8abgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDA0MjgwMDU1MDBaFw0yNTA0MjcwMTAwMDBaMDMxMTAvBgNV BAMTKDY0RkU0Nzc4NzI3QjE3MDkxNzZERDkyRUIwRTJDMzBBODcxNDcxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjwihfSUVayz0LZ8tqVvrSGwYb ecI6GYeKRZZE0FnePmKmH8/w8/mh3o/tV8dALrkRG8DvSSfR+Am1861g/npmER3+ M/UBxMVvgA+YA5rXKZtac3UibV8iREpvZxbQz6ijV9CjUTScmQpBOLkvKX++f+Qq lzpG4oZXwpSrE5FpU8Dzu5NcaTku7slyyr/UhqOMaPCtCWjJ2wgCSfzojOGGIIr2 0SlFC8udrEA0icDzXfdslT5yYLqqu2AMOS/pYAvzVibR1Kdu/RfTlZYst4xMgqhC 3Ayzz98Bj61mLgWjeZlLyPdYKf/NTFLiaoleYMuC5+MwkhaPhfk+H0o3xQHrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZP5HeHJ7FwkXbdkusOLDCocUcbgwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAEw DQYJKoZIhvcNAQELBQADggEBACU+M5aIGxid0WWS1sgAx+eYTnHpWSQS2rpZaugH 3DsU+7+qMLSAgxPHX4Gn41Ns0xzxq1zW3Abxcwzr6mfEbwJxLQf/aCS+gZowJ+tL 5m3tbD4eoJP9UiLIOF8GZboBGzzGGhcwWSUNTRmWT5PKL3FtjJCVCZXsJ3v+OAdh VG0FB81TmVp7i+bdXI3LLKouqhxplCYFdXPtzzYo74zpor6vWdWbtgyIEPLdoWa5 42XuEKQse9wraGGoUhh8rnSZjKtU2zWpnMCMXg1M9iQ9UKv+eoGTu4Z44s8H5WGF 3+KnpPBSXodS5ORWwqH1UDmR+unyfZ5NqeB9Yf0S7lZ8ses= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org