$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: QlkHB1Jq6OrecBFUY1B7JhWI4H6A8g4E+BWeduGpGog= Subject key identifier: F1:E6:15:72:65:C1:3D:B4:8B:56:6E:87:08:F0:6B:F7:E4:91:5D:57 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 27C93D0816003F0D1EDB4A63B845DDF831F03C60 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa Signing time: Sat 06 Apr 2024 09:00:00 +0000 ROA not before: Sat 06 Apr 2024 08:55:00 +0000 ROA not after: Sat 05 Apr 2025 09:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c9:3d:08:16:00:3f:0d:1e:db:4a:63:b8:45:dd:f8:31:f0:3c:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Apr 6 08:55:00 2024 GMT Not After : Apr 5 09:00:00 2025 GMT Subject: CN=F1E6157265C13DB48B566E8708F06BF7E4915D57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ca:66:9d:30:33:9d:af:b3:47:64:0f:fb:f0: 52:4e:87:50:0a:ba:bc:30:9f:a6:5f:34:ca:34:dc: ba:6c:50:af:3d:f7:bb:aa:fa:61:d3:9a:10:54:24: 13:7d:da:e2:b6:48:5e:2d:88:07:99:1d:b1:36:a5: 8b:06:e7:88:26:38:dc:3f:51:d2:75:4d:5f:67:1f: 84:20:98:ac:d0:6b:1a:c8:94:62:46:8f:78:52:8f: f7:3d:e9:c1:3a:b1:f3:ac:b8:e2:a9:71:9c:83:52: 85:ce:e0:58:b1:8e:24:81:61:64:26:10:1b:04:7a: 5c:01:1c:0f:cd:3b:89:84:b3:6e:b7:0e:d4:be:e2: 13:13:1e:e3:10:07:d6:33:7b:e3:88:2b:9d:83:e6: 60:f0:20:ec:d9:d5:93:14:8b:64:88:6a:85:78:e5: c9:45:18:3a:3b:49:ef:7f:b5:eb:2a:f4:3b:4f:66: 79:d5:ec:80:67:c0:30:af:a1:a6:c4:61:2a:7c:34: 94:47:65:1a:eb:f1:51:b1:d4:a6:4e:f8:07:72:f0: ad:03:67:1d:7a:bf:c7:06:89:f0:e2:9c:62:2b:ab: 7d:ac:68:00:4a:df:9b:fb:a5:d5:b6:a0:33:4d:59: 10:92:de:ce:0c:93:c8:b1:7f:3d:02:44:74:dd:0c: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E6:15:72:65:C1:3D:B4:8B:56:6E:87:08:F0:6B:F7:E4:91:5D:57 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption 3d:96:cc:0e:8e:7e:1a:52:41:b4:e5:c7:8a:fb:13:31:c8:b9: d4:3e:68:01:84:9a:1a:59:f0:1a:df:b4:a8:68:8a:9d:68:70: 36:5b:de:d6:87:09:4f:50:08:18:09:82:0c:6f:83:1c:8b:94: 40:ca:aa:c3:f5:41:51:fe:85:b5:40:d4:77:04:8f:70:20:a3: f4:1f:66:b4:7a:89:0e:3a:f3:d7:bd:d3:c2:ab:e4:e1:e4:82: 5f:49:42:36:c3:5f:12:62:86:ff:7f:ec:32:f5:ab:c2:37:d5: e9:97:ba:57:ab:66:1b:7a:cd:5a:1b:43:8e:99:ba:0a:f1:23: eb:0b:eb:c4:67:2f:ea:11:a8:95:c0:cd:d0:eb:b5:e5:22:d5: 13:41:04:6d:de:4a:47:dc:2e:6a:a9:44:c1:eb:fa:16:ec:ec: 9f:c2:69:11:af:13:12:24:44:b7:63:eb:e6:cb:10:8f:de:c2: 7a:34:48:67:b4:43:50:10:53:59:67:42:83:c6:98:92:c2:b3: f9:83:97:7e:6b:49:59:f0:b3:e5:07:a4:82:74:8b:75:6c:88: fe:8e:fa:fa:2a:1b:38:14:f5:92:9b:07:c4:1d:68:4c:47:ff: 33:a7:d0:b5:31:4c:32:9c:31:ad:f4:4e:b3:88:be:f2:aa:15: 77:99:ac:51 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUJ8k9CBYAPw0e20pjuEXd+DHwPGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDA0MDYwODU1MDBaFw0yNTA0MDUwOTAwMDBaMDMxMTAvBgNV BAMTKEYxRTYxNTcyNjVDMTNEQjQ4QjU2NkU4NzA4RjA2QkY3RTQ5MTVENTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsymadMDOdr7NHZA/78FJOh1AK urwwn6ZfNMo03LpsUK8997uq+mHTmhBUJBN92uK2SF4tiAeZHbE2pYsG54gmONw/ UdJ1TV9nH4QgmKzQaxrIlGJGj3hSj/c96cE6sfOsuOKpcZyDUoXO4FixjiSBYWQm EBsEelwBHA/NO4mEs263DtS+4hMTHuMQB9Yze+OIK52D5mDwIOzZ1ZMUi2SIaoV4 5clFGDo7Se9/tesq9DtPZnnV7IBnwDCvoabEYSp8NJRHZRrr8VGx1KZO+Ady8K0D Zx16v8cGifDinGIrq32saABK35v7pdW2oDNNWRCS3s4Mk8ixfz0CRHTdDKxzAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU8eYVcmXBPbSLVm6HCPBr9+SRXVcwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD4MAAADANBgkq hkiG9w0BAQsFAAOCAQEAPZbMDo5+GlJBtOXHivsTMci51D5oAYSaGlnwGt+0qGiK nWhwNlve1ocJT1AIGAmCDG+DHIuUQMqqw/VBUf6FtUDUdwSPcCCj9B9mtHqJDjrz 173Twqvk4eSCX0lCNsNfEmKG/3/sMvWrwjfV6Ze6V6tmG3rNWhtDjpm6CvEj6wvr xGcv6hGolcDN0Ou15SLVE0EEbd5KR9wuaqlEwev6Fuzsn8JpEa8TEiREt2Pr5ssQ j97CejRIZ7RDUBBTWWdCg8aYksKz+YOXfmtJWfCz5QekgnSLdWyI/o76+iobOBT1 kpsHxB1oTEf/M6fQtTFMMpwxrfROs4i+8qoVd5msUQ== -----END CERTIFICATE-----Generated at Sat May 4 11:04:28 2024 by rpki-client on console-ams.rpki-client.org