$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa File: 323430323a3738303a3a2f33322d3438203d3e203435373235.roa (raw, json) Hash identifier: aThAL08axs1vtHLWAMoEYSzkgXVND53w51qBh4TfdOw= Subject key identifier: 67:56:0F:A4:A6:F1:36:04:27:6D:4E:9A:90:73:A8:7D:11:78:B6:0C Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 2F245433186EA503B9265BFE9891805A787AA02F Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa Signing time: Fri 12 Apr 2024 09:58:37 +0000 ROA not before: Fri 12 Apr 2024 09:53:37 +0000 ROA not after: Fri 11 Apr 2025 09:58:37 +0000 asID: 45725 IP address blocks: 2402:780::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:24:54:33:18:6e:a5:03:b9:26:5b:fe:98:91:80:5a:78:7a:a0:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 12 09:53:37 2024 GMT Not After : Apr 11 09:58:37 2025 GMT Subject: CN=67560FA4A6F13604276D4E9A9073A87D1178B60C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:2d:60:95:f8:ae:8a:13:4c:06:33:84:e9: e2:61:f8:aa:62:95:e5:ae:a1:42:9e:78:eb:e9:e1: 4d:80:38:83:2a:33:d6:67:9c:8a:53:28:a6:b4:4a: 04:70:af:ec:76:b2:73:47:43:f4:71:1d:e3:2d:c3: 8c:08:a9:87:12:57:46:02:27:e0:bd:76:05:76:c8: d4:b2:fb:af:6a:a6:68:7a:90:76:6f:95:a4:82:80: c2:03:90:5d:a9:b4:df:e8:65:bf:54:0e:07:73:43: 24:50:b3:77:f0:47:55:83:d2:2a:13:09:24:97:e0: 22:25:f9:fd:0b:f5:53:1e:f8:22:3f:60:c2:74:8f: b8:01:20:4b:b7:8d:6a:57:71:db:ad:fe:a4:d0:33: f9:a2:15:c5:80:96:52:d1:3b:93:d2:c4:81:de:fd: bc:29:52:df:30:fb:7c:04:c8:33:3f:e0:24:58:a9: 38:81:e0:67:ed:13:35:05:37:f9:0b:91:c4:73:b0: 99:7d:c9:f1:31:ec:33:9d:3d:fd:12:d6:b0:dd:eb: c5:78:1c:f3:2f:40:64:40:a0:2e:a2:0d:47:fe:80: d3:a8:8a:1a:39:42:bc:6e:de:89:5f:e7:d3:cc:c9: c9:4f:c1:29:24:e9:5f:91:0e:d4:8f:94:6e:bb:86: ec:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:56:0F:A4:A6:F1:36:04:27:6D:4E:9A:90:73:A8:7D:11:78:B6:0C X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f33322d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780::/32 Signature Algorithm: sha256WithRSAEncryption 55:64:df:36:9c:52:b3:fa:80:90:ae:25:84:2c:52:bb:0b:e2: 96:6e:b0:6a:95:1f:3a:59:78:9b:d7:c9:93:5b:dc:9b:6f:6a: b4:06:40:e4:27:3b:03:17:e8:02:e5:ec:4c:67:b0:01:0f:40: 89:36:5a:b3:59:85:17:75:50:de:27:68:f2:a9:ec:af:ca:a7: ed:d1:63:db:72:2f:3a:eb:48:c5:a9:37:00:5f:d6:5e:e4:54: 52:33:ca:f0:ef:67:ce:ed:03:7d:17:a0:e5:b8:bc:28:21:6e: 32:3c:7a:b6:90:87:82:b2:59:0c:50:66:69:a7:fa:bb:82:95: f3:4d:cb:70:d6:52:9a:70:e0:18:e7:5c:6a:ec:3b:bf:6e:a9: aa:23:77:50:4b:f1:ee:db:ae:f2:0c:03:64:1d:4e:08:b0:21: 30:7f:52:24:68:ef:5b:11:56:5c:42:b2:40:89:b6:e3:3d:da: 09:70:92:94:f8:8b:68:b2:6c:a9:5b:f4:55:92:4a:1e:1b:63: 55:9e:e3:b2:8d:ce:0e:4c:ef:ce:53:4e:c3:8c:c9:0b:22:0d: 62:30:55:2a:17:87:ce:60:2f:d6:f1:5a:6d:dc:7b:10:f3:84: de:d0:df:1a:6b:18:47:ef:44:40:9c:b2:51:d9:2b:a7:a9:92: f6:59:83:c2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIULyRUMxhupQO5Jlv+mJGAWnh6oC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNDA0MTIwOTUzMzdaFw0yNTA0MTEwOTU4MzdaMDMxMTAvBgNV BAMTKDY3NTYwRkE0QTZGMTM2MDQyNzZENEU5QTkwNzNBODdEMTE3OEI2MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxMy1glfiuihNMBjOE6eJh+Kpi leWuoUKeeOvp4U2AOIMqM9ZnnIpTKKa0SgRwr+x2snNHQ/RxHeMtw4wIqYcSV0YC J+C9dgV2yNSy+69qpmh6kHZvlaSCgMIDkF2ptN/oZb9UDgdzQyRQs3fwR1WD0ioT CSSX4CIl+f0L9VMe+CI/YMJ0j7gBIEu3jWpXcdut/qTQM/miFcWAllLRO5PSxIHe /bwpUt8w+3wEyDM/4CRYqTiB4GftEzUFN/kLkcRzsJl9yfEx7DOdPf0S1rDd68V4 HPMvQGRAoC6iDUf+gNOoiho5Qrxu3olf59PMyclPwSkk6V+RDtSPlG67huwdAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUZ1YPpKbxNgQnbU6akHOofRF4tgwwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjQ0MjE2ZDgtNzBjZS00OTA4LWE3 MmItZWMyNzNmNDNiYmMyLzAvMzIzNDMwMzIzYTM3MzgzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzUzNzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgeAMA0GCSqGSIb3DQEB CwUAA4IBAQBVZN82nFKz+oCQriWELFK7C+KWbrBqlR86WXib18mTW9ybb2q0BkDk JzsDF+gC5exMZ7ABD0CJNlqzWYUXdVDeJ2jyqeyvyqft0WPbci8660jFqTcAX9Ze 5FRSM8rw72fO7QN9F6DluLwoIW4yPHq2kIeCslkMUGZpp/q7gpXzTctw1lKacOAY 51xq7Du/bqmqI3dQS/Hu267yDANkHU4IsCEwf1IkaO9bEVZcQrJAibbjPdoJcJKU +ItosmypW/RVkkoeG2NVnuOyjc4OTO/OU07DjMkLIg1iMFUqF4fOYC/W8Vpt3HsQ 84Te0N8aaxhH70RAnLJR2SunqZL2WYPC -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org