$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa File: 323430333a653063303a3a2f33322d3332203d3e20313338303839.roa (raw, json) Hash identifier: n0m6aJwhpZilRfjYTr+NRhS1afS/t8GPaSVPZGuVgCo= Subject key identifier: 5C:0E:B9:F6:17:DC:94:5C:F7:39:86:85:4D:6A:E7:1C:D7:64:A4:6B Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 50E3D30EF7334B5E1A0D30A2205F588E02524BA8 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa Signing time: Thu 04 Apr 2024 04:02:29 +0000 ROA not before: Thu 04 Apr 2024 03:57:29 +0000 ROA not after: Thu 03 Apr 2025 04:02:29 +0000 asID: 138089 IP address blocks: 2403:e0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e3:d3:0e:f7:33:4b:5e:1a:0d:30:a2:20:5f:58:8e:02:52:4b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Apr 4 03:57:29 2024 GMT Not After : Apr 3 04:02:29 2025 GMT Subject: CN=5C0EB9F617DC945CF73986854D6AE71CD764A46B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:25:95:05:ee:30:fb:91:73:80:d9:db:17:65: 93:48:41:80:97:ff:b8:07:a6:a2:9e:49:79:c8:93: 38:c2:8d:6e:61:6f:cc:af:8d:49:ed:2a:f4:30:d4: 4e:1f:c5:8b:44:3e:d8:79:38:90:b0:10:bd:48:58: ad:8e:34:40:e4:db:20:b6:c9:8f:30:e3:6f:60:e7: e6:8c:12:47:f8:ea:46:74:b0:1b:e4:28:88:65:8d: 9d:98:7f:f5:cb:19:6c:68:52:85:a9:ff:d6:8e:16: a5:4e:6a:e9:fb:d0:5d:dd:b0:84:a8:54:b9:b8:5c: 3e:85:7c:96:2e:88:c2:ba:cf:56:9b:06:96:6f:0c: 51:76:39:01:c1:dc:3b:b5:6b:99:11:fa:e5:52:cc: 8c:77:a6:9a:dc:ea:71:e0:5f:9b:88:e1:36:c6:3d: 63:d7:e9:7e:30:8d:b4:a6:60:52:0c:e9:59:9a:e3: f3:8f:76:4c:70:ef:18:87:9d:86:09:90:6e:1e:9c: b6:08:d5:d4:6d:ca:5b:13:d7:8e:ad:6f:cc:42:4b: dd:cb:88:67:91:ee:29:b0:e4:80:db:e6:b3:fd:b1: 99:ad:8a:01:c0:b4:07:cc:5f:6b:e6:e4:f3:a1:b8: 31:f9:1b:e7:2e:c6:d6:41:69:c7:2f:4e:ed:a7:31: a8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0E:B9:F6:17:DC:94:5C:F7:39:86:85:4D:6A:E7:1C:D7:64:A4:6B X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3332203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/32 Signature Algorithm: sha256WithRSAEncryption cf:ce:b5:fa:d7:54:23:d5:2a:e3:fa:61:4a:92:1f:68:25:97: cc:42:7c:91:5e:f1:9b:d0:39:40:84:c0:59:c8:b4:9b:2f:12: d5:50:ec:74:fb:68:6b:e1:7a:f9:51:87:39:03:1a:79:37:10: 40:7d:3b:f0:7b:0e:b8:0b:16:22:7d:a0:cb:32:17:81:c6:1c: 5f:32:1f:c0:22:0d:4e:5e:e8:33:37:78:06:77:ce:53:86:17: 34:a8:35:69:43:4a:ef:b7:75:31:30:3a:69:14:a5:fc:c1:83: aa:b0:d9:02:de:ac:1f:ad:31:96:2b:69:34:79:5c:71:21:cd: 35:e4:72:b5:14:62:49:2c:ea:a7:1c:e7:9d:82:6c:9f:82:2e: 96:cd:ff:b2:65:3d:3b:32:80:bd:df:30:6d:b7:88:fc:48:6a: eb:dd:f7:d0:b3:88:61:b8:c5:01:bf:b7:96:dc:03:05:6d:c9: 06:11:0d:3b:a2:3c:dd:65:4a:6c:f3:ac:21:3e:18:b4:d5:62: 9e:76:2d:89:23:6b:79:34:97:a9:a1:7c:c2:ed:5a:c8:1d:b9: 2f:92:ef:3e:ab:5b:a8:b7:b8:2c:b9:1d:3f:0b:98:9c:c4:ac: 3c:9b:2e:6d:06:9d:ac:ea:4a:5f:b0:44:49:88:70:43:1f:bf: 7d:f4:ca:79 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUUOPTDvczS14aDTCiIF9YjgJSS6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDA0MDQwMzU3MjlaFw0yNTA0MDMwNDAyMjlaMDMxMTAvBgNV BAMTKDVDMEVCOUY2MTdEQzk0NUNGNzM5ODY4NTRENkFFNzFDRDc2NEE0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJZUF7jD7kXOA2dsXZZNIQYCX /7gHpqKeSXnIkzjCjW5hb8yvjUntKvQw1E4fxYtEPth5OJCwEL1IWK2ONEDk2yC2 yY8w429g5+aMEkf46kZ0sBvkKIhljZ2Yf/XLGWxoUoWp/9aOFqVOaun70F3dsISo VLm4XD6FfJYuiMK6z1abBpZvDFF2OQHB3Du1a5kR+uVSzIx3pprc6nHgX5uI4TbG PWPX6X4wjbSmYFIM6Vma4/OPdkxw7xiHnYYJkG4enLYI1dRtylsT146tb8xCS93L iGeR7imw5IDb5rP9sZmtigHAtAfMX2vm5POhuDH5G+cuxtZBaccvTu2nMagZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUXA659hfclFz3OYaFTWrnHNdkpGswHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD4MAwDQYJKoZI hvcNAQELBQADggEBAM/OtfrXVCPVKuP6YUqSH2gll8xCfJFe8ZvQOUCEwFnItJsv EtVQ7HT7aGvhevlRhzkDGnk3EEB9O/B7DrgLFiJ9oMsyF4HGHF8yH8AiDU5e6DM3 eAZ3zlOGFzSoNWlDSu+3dTEwOmkUpfzBg6qw2QLerB+tMZYraTR5XHEhzTXkcrUU Ykks6qcc552CbJ+CLpbN/7JlPTsygL3fMG23iPxIauvd99CziGG4xQG/t5bcAwVt yQYRDTuiPN1lSmzzrCE+GLTVYp52LYkja3k0l6mhfMLtWsgduS+S7z6rW6i3uCy5 HT8LmJzErDybLm0GnazqSl+wREmIcEMfv330ynk= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org