$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: HsMo3Fxk5F8yDEpO8mvjVwYtEfstOJXy+ScS8/+6hFE= Subject key identifier: 5D:47:CA:92:3B:89:96:8F:92:E8:F1:D7:41:B5:1B:86:E9:27:0A:95 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 23E2FA1DC76F83D7B0262782483981142C5180C6 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa Signing time: Tue 30 Apr 2024 02:00:00 +0000 ROA not before: Tue 30 Apr 2024 01:55:00 +0000 ROA not after: Tue 29 Apr 2025 02:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e2:fa:1d:c7:6f:83:d7:b0:26:27:82:48:39:81:14:2c:51:80:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Apr 30 01:55:00 2024 GMT Not After : Apr 29 02:00:00 2025 GMT Subject: CN=5D47CA923B89968F92E8F1D741B51B86E9270A95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:11:1e:69:12:99:85:eb:57:d9:16:78:82:06: aa:32:7c:6c:37:85:8b:58:69:a8:a8:8e:b4:13:d5: d8:8e:f1:23:a2:29:4a:bc:43:cb:f4:22:5d:74:ec: 88:bd:d4:a8:6a:27:1c:89:0e:b1:25:7a:22:4d:58: 48:b5:95:ec:13:3b:15:f3:3d:8f:c0:01:e9:15:f1: f5:4c:a9:f7:a5:99:83:99:5e:fc:aa:86:62:b0:a6: cf:eb:cc:23:8e:58:cb:02:f4:0f:13:cd:18:75:aa: bd:af:b5:8a:03:f5:d3:c2:78:cf:88:ca:7b:63:1a: 32:b9:a5:2e:c7:1a:b9:de:ef:f1:67:f0:56:a2:63: 90:32:fb:84:d8:6c:33:9f:fe:4f:47:6d:f4:a7:3d: 92:be:4e:ae:4d:d0:c2:de:98:a3:24:95:71:80:35: 32:ea:9d:b1:a3:02:f2:f8:1b:15:42:f7:e6:7b:c5: 5f:4e:c8:9d:a5:65:f6:d4:5e:34:d9:3a:16:26:17: 85:77:58:2e:68:56:24:1e:6b:01:23:0d:69:7d:d6: f0:01:29:04:20:84:76:f8:5c:8d:f1:74:d9:74:84: 44:84:89:bd:39:a0:59:1b:27:8b:f2:d9:47:6e:ed: 63:cc:6a:7e:84:7a:d2:6a:e1:df:bc:f9:87:71:fc: f7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:47:CA:92:3B:89:96:8F:92:E8:F1:D7:41:B5:1B:86:E9:27:0A:95 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 53:f1:73:39:7e:e0:3b:b3:b5:4f:a2:4d:8a:59:3b:99:33:7b: 14:a7:db:8f:04:7c:51:aa:b0:7f:9e:ac:ee:95:18:ca:9d:bd: 19:63:35:3f:00:73:60:ef:25:dc:db:38:f7:e3:51:62:b3:22: ce:59:ff:76:ab:e3:72:33:67:39:94:20:83:1a:fb:c6:a0:63: 17:92:69:97:45:2c:59:a4:7e:6b:11:d5:3a:03:b0:68:e3:9f: 3f:d3:7b:09:91:1f:ec:22:15:49:75:6b:ef:44:7a:41:d2:53: 46:a2:22:69:77:a4:14:1a:00:e0:74:ba:10:ec:12:2e:a5:c4: 75:c2:80:aa:2f:e9:1d:c6:6c:66:4e:34:75:b1:b4:2c:18:e6: 2e:93:ae:f0:29:5c:08:12:f3:90:4b:98:b8:ab:87:28:76:99: a6:73:a0:df:ea:61:1c:6e:e2:f0:5a:0f:96:80:d7:df:2e:52: 6e:46:bc:c1:fe:94:02:ae:4c:a6:96:fa:5f:bb:10:29:df:27: 98:1d:1f:79:74:0c:c7:58:0b:cc:a1:c1:ae:a7:d7:71:f4:c2: 01:21:f4:a5:cf:dd:74:a1:4e:18:25:95:4d:35:33:01:dc:86: 26:d5:ee:db:34:97:0c:c6:da:33:70:23:b9:70:64:85:28:71: 09:1e:01:b7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUI+L6Hcdvg9ewJieCSDmBFCxRgMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDA0MzAwMTU1MDBaFw0yNTA0MjkwMjAwMDBaMDMxMTAvBgNV BAMTKDVENDdDQTkyM0I4OTk2OEY5MkU4RjFENzQxQjUxQjg2RTkyNzBBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBER5pEpmF61fZFniCBqoyfGw3 hYtYaaiojrQT1diO8SOiKUq8Q8v0Il107Ii91KhqJxyJDrEleiJNWEi1lewTOxXz PY/AAekV8fVMqfelmYOZXvyqhmKwps/rzCOOWMsC9A8TzRh1qr2vtYoD9dPCeM+I yntjGjK5pS7HGrne7/Fn8FaiY5Ay+4TYbDOf/k9HbfSnPZK+Tq5N0MLemKMklXGA NTLqnbGjAvL4GxVC9+Z7xV9OyJ2lZfbUXjTZOhYmF4V3WC5oViQeawEjDWl91vAB KQQghHb4XI3xdNl0hESEib05oFkbJ4vy2Udu7WPMan6EetJq4d+8+Ydx/PexAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXUfKkjuJlo+S6PHXQbUbhuknCpUwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAIw DQYJKoZIhvcNAQELBQADggEBAFPxczl+4DuztU+iTYpZO5kzexSn248EfFGqsH+e rO6VGMqdvRljNT8Ac2DvJdzbOPfjUWKzIs5Z/3ar43IzZzmUIIMa+8agYxeSaZdF LFmkfmsR1ToDsGjjnz/TewmRH+wiFUl1a+9EekHSU0aiIml3pBQaAOB0uhDsEi6l xHXCgKov6R3GbGZONHWxtCwY5i6TrvApXAgS85BLmLirhyh2maZzoN/qYRxu4vBa D5aA198uUm5GvMH+lAKuTKaW+l+7ECnfJ5gdH3l0DMdYC8yhwa6n13H0wgEh9KXP 3XShThgllU01MwHchibV7ts0lwzG2jNwI7lwZIUocQkeAbc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org