$ rpki-client -vvf repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa File: 323430333a373230303a3a2f33322d3438203d3e2039373835.roa (raw, json) Hash identifier: WEOUyrjdm5MHLBlul4TfoQsPYZiEC6VkTMRCL8M+beg= Subject key identifier: E4:7C:2E:DF:54:18:96:13:1D:49:FF:22:03:37:23:FD:CB:AC:F1:16 Certificate issuer: /CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Certificate serial: 4136DD5020F0A1367D22B2A02FE0A5334A3D6686 Authority key identifier: BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa Signing time: Mon 01 Jul 2024 01:05:53 +0000 ROA not before: Mon 01 Jul 2024 01:00:53 +0000 ROA not after: Mon 30 Jun 2025 01:05:53 +0000 asID: 9785 IP address blocks: 2403:7200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:36:dd:50:20:f0:a1:36:7d:22:b2:a0:2f:e0:a5:33:4a:3d:66:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF3B675AEBEE64D00B323056545D1F630F1C489E Validity Not Before: Jul 1 01:00:53 2024 GMT Not After : Jun 30 01:05:53 2025 GMT Subject: CN=E47C2EDF541896131D49FF22033723FDCBACF116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9a:12:6b:a9:47:11:43:7f:7a:3b:be:2f:10: 08:cd:c4:69:06:1b:df:b3:1c:d9:a4:8a:cf:fa:08: aa:d4:c5:a8:8d:78:0f:82:b6:8d:a8:6e:dd:cf:75: 0a:bd:ae:48:fd:fe:5e:28:37:dd:b8:8b:00:92:c6: 88:01:82:f4:d1:4c:40:e7:01:4d:45:f7:9d:7a:34: 95:46:3a:31:6a:be:2c:79:cd:0f:e3:1a:b5:66:b9: 95:22:7d:78:34:07:41:65:66:47:41:c4:5b:e8:df: b7:c3:98:4d:b5:93:fd:5d:ce:07:58:9d:13:48:63: f1:07:02:c3:3e:8b:d9:6a:8f:07:e8:42:39:ea:88: 47:6f:32:08:2d:0f:4f:78:56:8b:55:ba:4f:a9:9a: 65:67:80:91:e2:c4:4e:bf:8e:33:16:da:1c:ea:30: fd:03:2b:22:3c:2d:eb:c0:26:36:fb:75:57:10:e6: c6:41:ca:47:fc:21:6d:35:1f:d9:a8:80:79:f9:ca: 97:33:ee:e5:94:80:4d:aa:73:55:c6:ef:61:72:07: 43:fc:c1:7a:db:6d:2f:dd:3a:bb:f1:09:90:0a:cf: 83:0e:27:46:db:18:6e:a7:6f:2a:ba:74:53:b2:fb: 20:98:2f:91:7c:8b:96:38:3b:d6:5e:83:d7:26:17: 41:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7C:2E:DF:54:18:96:13:1D:49:FF:22:03:37:23:FD:CB:AC:F1:16 X509v3 Authority Key Identifier: keyid:BF:3B:67:5A:EB:EE:64:D0:0B:32:30:56:54:5D:1F:63:0F:1C:48:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/BF3B675AEBEE64D00B323056545D1F630F1C489E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF3B675AEBEE64D00B323056545D1F630F1C489E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/690c9009-ad53-4fa6-a183-34b3457bea03/0/323430333a373230303a3a2f33322d3438203d3e2039373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:7200::/32 Signature Algorithm: sha256WithRSAEncryption 73:e7:39:57:da:18:ec:23:df:e2:15:89:ba:0f:96:b5:f9:57: 39:f8:6f:d7:b2:66:fc:cb:58:9b:ec:f9:ca:cc:fc:2b:47:ce: 37:aa:2a:42:1e:70:9d:63:c2:5c:23:42:3f:1d:c4:51:b1:50: 67:96:fa:45:dd:e5:07:dc:99:33:b5:55:80:6f:1b:59:9d:be: 3e:32:cc:70:f0:fa:1a:7d:1f:a5:f2:4e:d2:88:0b:d5:df:e1: fa:8c:2f:d2:7c:9d:d6:7d:37:92:68:55:92:2b:5b:25:4d:7f: 9e:1b:97:e3:1a:04:56:f5:38:b6:48:66:b8:f0:53:d1:94:7a: 84:4e:6b:61:0e:c7:77:bc:05:8f:74:46:ec:0d:84:8c:4b:e9: 80:2d:24:4a:64:db:40:22:50:26:2e:e9:43:1b:f2:97:2b:dd: 55:87:70:9e:e1:21:fd:d8:85:8d:a4:b2:7f:66:77:03:d7:60: 1f:6b:16:78:6c:d4:27:d4:da:0a:a8:c5:36:ca:97:5a:15:14: e4:a0:35:43:15:58:8b:02:38:aa:0f:e6:02:71:1a:4a:4c:8a: 1e:af:c5:3a:6f:37:23:f7:c0:68:26:e3:da:f9:f8:ca:34:0d: 40:e8:5a:ec:16:ae:79:bc:fa:c8:a3:51:43:09:4a:4b:43:9d: 40:f1:7a:d2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQTbdUCDwoTZ9IrKgL+ClM0o9ZoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMw RjFDNDg5RTAeFw0yNDA3MDEwMTAwNTNaFw0yNTA2MzAwMTA1NTNaMDMxMTAvBgNV BAMTKEU0N0MyRURGNTQxODk2MTMxRDQ5RkYyMjAzMzcyM0ZEQ0JBQ0YxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDemhJrqUcRQ396O74vEAjNxGkG G9+zHNmkis/6CKrUxaiNeA+Cto2obt3PdQq9rkj9/l4oN924iwCSxogBgvTRTEDn AU1F9516NJVGOjFqvix5zQ/jGrVmuZUifXg0B0FlZkdBxFvo37fDmE21k/1dzgdY nRNIY/EHAsM+i9lqjwfoQjnqiEdvMggtD094VotVuk+pmmVngJHixE6/jjMW2hzq MP0DKyI8LevAJjb7dVcQ5sZBykf8IW01H9mogHn5ypcz7uWUgE2qc1XG72FyB0P8 wXrbbS/dOrvxCZAKz4MOJ0bbGG6nbyq6dFOy+yCYL5F8i5Y4O9Zeg9cmF0GvAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU5Hwu31QYlhMdSf8iAzcj/cus8RYwHwYDVR0j BBgwFoAUvztnWuvuZNALMjBWVF0fYw8cSJ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTBjOTAwOS1hZDUzLTRmYTYtYTE4My0zNGIzNDU3YmVhMDMvMC9CRjNCNjc1QUVC RUU2NEQwMEIzMjMwNTY1NDVEMUY2MzBGMUM0ODlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYzQjY3NUFFQkVFNjREMDBCMzIzMDU2NTQ1RDFGNjMwRjFD NDg5RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjkwYzkwMDktYWQ1My00ZmE2LWEx ODMtMzRiMzQ1N2JlYTAzLzAvMzIzNDMwMzMzYTM3MzIzMDMwM2EzYTJmMzMzMjJk MzQzODIwM2QzZTIwMzkzNzM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA3IAMA0GCSqGSIb3DQEB CwUAA4IBAQBz5zlX2hjsI9/iFYm6D5a1+Vc5+G/Xsmb8y1ib7PnKzPwrR843qipC HnCdY8JcI0I/HcRRsVBnlvpF3eUH3JkztVWAbxtZnb4+Msxw8PoafR+l8k7SiAvV 3+H6jC/SfJ3WfTeSaFWSK1slTX+eG5fjGgRW9Ti2SGa48FPRlHqETmthDsd3vAWP dEbsDYSMS+mALSRKZNtAIlAmLulDG/KXK91Vh3Ce4SH92IWNpLJ/ZncD12AfaxZ4 bNQn1NoKqMU2ypdaFRTkoDVDFViLAjiqD+YCcRpKTIoer8U6bzcj98BoJuPa+fjK NA1A6FrsFq55vPrIo1FDCUpLQ51A8XrS -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org