$ rpki-client -vvf repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa File: 323430333a653863303a3a2f33322d3332203d3e20313338303930.roa (raw, json) Hash identifier: vmyKIztdnxXkA8bQoPgMfCnrmb98Jp8ZLmRo+Qp2gpg= Subject key identifier: 2D:F0:2E:F7:1F:E1:BD:A8:62:3B:43:82:D6:E9:BA:CC:C2:0D:CA:66 Certificate issuer: /CN=9D25181C9096851A77EB95DA55649E08E3B7941B Certificate serial: 631ED87345D4DD8A7E63AFDAF5F81A27FEA8EAD4 Authority key identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa Signing time: Thu 02 May 2024 01:00:00 +0000 ROA not before: Thu 02 May 2024 00:55:00 +0000 ROA not after: Thu 01 May 2025 01:00:00 +0000 asID: 138090 IP address blocks: 2403:e8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1e:d8:73:45:d4:dd:8a:7e:63:af:da:f5:f8:1a:27:fe:a8:ea:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D25181C9096851A77EB95DA55649E08E3B7941B Validity Not Before: May 2 00:55:00 2024 GMT Not After : May 1 01:00:00 2025 GMT Subject: CN=2DF02EF71FE1BDA8623B4382D6E9BACCC20DCA66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1b:bc:f3:ef:54:00:36:ba:a9:e3:15:2f:97: 34:a3:f2:52:e7:56:36:6b:2a:35:69:d3:2c:3b:e7: 92:9c:68:33:34:1e:4c:2d:3c:68:72:9a:3d:2a:8f: 37:19:4c:90:c7:a8:83:00:ce:b9:ca:d6:23:d3:1d: e3:d2:6c:31:83:1b:6a:b1:d4:d8:65:18:ab:94:61: 5a:62:ec:25:e8:70:9f:c3:37:36:ca:dc:18:b8:ee: 81:ff:cd:01:27:71:cf:99:df:06:5b:5b:c4:64:65: 91:61:8b:ef:4c:3b:5d:8c:2f:a5:d0:1a:f8:ed:9c: 4d:28:f9:09:05:55:c4:96:a6:86:e8:9a:09:43:b0: a2:91:96:83:55:bd:b2:fe:4d:fb:e5:e9:49:30:97: 34:05:40:3a:91:6b:5f:b0:97:45:03:a7:28:cc:b4: 4c:48:89:c0:c4:f4:7d:1e:5b:dc:d2:84:d5:3e:cb: 32:a8:53:eb:1a:26:a0:43:b0:3e:b7:1d:13:5b:f6: 97:3a:27:01:62:d1:d0:a3:8c:da:f1:53:42:6a:c2: 58:06:b8:d3:a4:35:1e:b0:c5:0c:56:1b:d9:27:25: c4:23:4f:78:11:ea:6e:01:1d:43:f8:4d:09:97:6c: a8:89:d7:9a:b6:48:63:d5:d8:98:13:9c:9e:47:a3: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F0:2E:F7:1F:E1:BD:A8:62:3B:43:82:D6:E9:BA:CC:C2:0D:CA:66 X509v3 Authority Key Identifier: keyid:9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 98:6b:2d:77:2d:8b:ed:d3:89:b3:a1:e1:0e:3d:34:5a:b2:95: f9:e7:79:3d:19:00:ff:fd:fd:14:d9:e5:c6:f5:58:3e:08:53: 9c:ad:65:1e:16:00:dd:70:ad:db:ae:af:85:2a:44:b7:40:8e: 56:32:a3:a6:75:35:c5:2e:94:96:dc:91:70:15:87:63:c8:b6: 90:74:d6:cd:73:6e:e4:ec:a0:45:82:99:27:c3:78:c8:b9:1a: 8a:33:5b:61:85:cd:38:ef:4f:42:12:22:7f:09:7e:8f:90:f2: ca:7f:27:ea:43:78:11:64:21:4a:7c:b2:37:a6:af:c3:2f:6b: 20:ee:81:b9:4c:e7:92:f0:bc:4f:17:d5:27:79:f7:aa:5d:18: 05:93:25:15:7a:c7:75:31:4e:64:66:d0:52:21:3d:9b:6c:66: 11:f6:3d:86:67:51:c8:38:82:67:f3:1c:02:a3:32:18:45:fb: 26:61:2b:36:b4:f8:a9:81:b1:bf:14:7d:be:0d:3e:ec:8c:66: f6:f6:03:74:60:15:fc:bb:e5:39:9f:9e:bd:b6:0c:00:cc:10: 2b:4b:53:f2:59:00:6e:13:27:26:93:12:d5:0b:9f:e1:0c:45: 8f:d1:88:ca:1f:49:59:ca:91:f6:af:59:95:68:6c:a8:3f:81: d8:99:fa:e4 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYx7Yc0XU3Yp+Y6/a9fgaJ/6o6tQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhF M0I3OTQxQjAeFw0yNDA1MDIwMDU1MDBaFw0yNTA1MDEwMTAwMDBaMDMxMTAvBgNV BAMTKDJERjAyRUY3MUZFMUJEQTg2MjNCNDM4MkQ2RTlCQUNDQzIwRENBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjG7zz71QANrqp4xUvlzSj8lLn VjZrKjVp0yw755KcaDM0HkwtPGhymj0qjzcZTJDHqIMAzrnK1iPTHePSbDGDG2qx 1NhlGKuUYVpi7CXocJ/DNzbK3Bi47oH/zQEncc+Z3wZbW8RkZZFhi+9MO12ML6XQ GvjtnE0o+QkFVcSWpobomglDsKKRloNVvbL+Tfvl6UkwlzQFQDqRa1+wl0UDpyjM tExIicDE9H0eW9zShNU+yzKoU+saJqBDsD63HRNb9pc6JwFi0dCjjNrxU0JqwlgG uNOkNR6wxQxWG9knJcQjT3gR6m4BHUP4TQmXbKiJ15q2SGPV2JgTnJ5HoxLDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULfAu9x/hvahiO0OC1um6zMINymYwHwYDVR0j BBgwFoAUnSUYHJCWhRp365XaVWSeCOO3lBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTJjOTI4NS1jMDlhLTQ1MDYtYTMyMC1mZGExYTA3ZmQ5ZWMvMC85RDI1MTgxQzkw OTY4NTFBNzdFQjk1REE1NTY0OUUwOEUzQjc5NDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhFM0I3 OTQxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMyMzQzMDMzM2E2NTM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD6MAwDQYJKoZI hvcNAQELBQADggEBAJhrLXcti+3TibOh4Q49NFqylfnneT0ZAP/9/RTZ5cb1WD4I U5ytZR4WAN1wrduur4UqRLdAjlYyo6Z1NcUulJbckXAVh2PItpB01s1zbuTsoEWC mSfDeMi5GoozW2GFzTjvT0ISIn8Jfo+Q8sp/J+pDeBFkIUp8sjemr8MvayDugblM 55LwvE8X1Sd596pdGAWTJRV6x3UxTmRm0FIhPZtsZhH2PYZnUcg4gmfzHAKjMhhF +yZhKza0+KmBsb8Ufb4NPuyMZvb2A3RgFfy75Tmfnr22DADMECtLU/JZAG4TJyaT EtULn+EMRY/RiMofSVnKkfavWZVobKg/gdiZ+uQ= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org