$ rpki-client -vvf repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa File: 323430353a646238303a3a2f33322d3332203d3e20313335343539.roa (raw, json) Hash identifier: hKo6E/o6Gy5GtrWGlJyRHI/i/XIPoeDrySJ7ORVFIBM= Subject key identifier: C8:14:1D:97:1D:10:FC:C6:41:66:F9:CC:55:04:A9:79:74:48:20:F7 Certificate issuer: /CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448 Certificate serial: 2A244C6CFF28B441F0751AD09A8D095595211082 Authority key identifier: 73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa Signing time: Wed 20 Nov 2024 18:00:01 +0000 ROA not before: Wed 20 Nov 2024 17:55:01 +0000 ROA not after: Wed 19 Nov 2025 18:00:01 +0000 asID: 135459 IP address blocks: 2405:db80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:24:4c:6c:ff:28:b4:41:f0:75:1a:d0:9a:8d:09:55:95:21:10:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448 Validity Not Before: Nov 20 17:55:01 2024 GMT Not After : Nov 19 18:00:01 2025 GMT Subject: CN=C8141D971D10FCC64166F9CC5504A979744820F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:48:87:49:bc:22:75:cc:53:51:73:46:3a: 9c:84:7a:76:c5:73:f8:fc:5c:70:b4:f5:81:7e:21: 52:ec:e8:f2:3f:52:84:73:43:44:85:90:eb:c0:3d: ee:84:5e:53:c4:b5:ef:01:51:5a:4e:2c:e9:78:73: 0f:ca:62:4a:9e:2e:6e:d5:3e:38:7b:fe:19:58:85: 44:f4:24:7b:a3:6c:59:5c:c5:23:04:7d:85:d1:c6: 10:2a:30:bf:41:67:3e:88:ef:f5:67:9a:97:7f:37: 6b:52:72:5a:35:2d:66:8b:c6:2e:6e:07:d9:94:51: 75:b7:76:d7:7f:8c:d4:cf:ba:19:08:80:57:6f:59: cf:22:9b:bc:ee:18:5e:b8:c6:cb:4e:6b:a5:79:d7: 37:17:6b:d0:f5:2c:19:4c:2d:9e:e9:67:87:9c:66: 0b:3b:70:bd:25:12:6d:28:e5:f6:dc:ed:22:27:89: 43:81:ad:ba:b1:a1:4a:a5:1c:50:f9:e2:7d:6e:fd: 68:fe:dc:f4:8d:3c:71:10:12:78:ab:f9:03:18:00: 59:63:72:06:1d:4f:29:58:d2:45:64:a2:c0:db:99: be:88:60:f9:9a:64:e6:8f:7e:f4:d2:68:c3:bc:0f: 95:9d:10:d4:40:78:7d:c7:08:ca:cf:b4:88:9b:bc: b3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:14:1D:97:1D:10:FC:C6:41:66:F9:CC:55:04:A9:79:74:48:20:F7 X509v3 Authority Key Identifier: keyid:73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/323430353a646238303a3a2f33322d3332203d3e20313335343539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:db80::/32 Signature Algorithm: sha256WithRSAEncryption 74:24:eb:b7:30:f3:91:ef:54:26:d1:55:a5:53:7c:13:e3:fe: c9:95:7c:06:67:b5:87:45:a1:1d:ce:6a:bd:5f:e0:4d:ce:c6: 7a:48:88:8a:ac:00:09:58:74:6b:56:6a:70:e6:28:80:27:06: 29:b3:f2:14:5d:e1:0b:2e:6f:f2:fa:2d:9b:31:4b:5e:f2:ca: 11:79:93:98:d9:7b:8e:40:42:b1:88:76:0e:79:6c:4b:5a:36: a7:e0:c4:6b:5e:f6:ee:67:af:7c:fc:67:b5:a7:e1:11:5b:27: 0f:1c:a1:87:45:93:d8:be:48:47:97:c3:b0:26:20:c5:d9:74: 58:ef:97:fb:38:1b:67:bc:d7:ce:54:c0:9e:ec:b8:67:69:44: af:f6:3a:d6:8d:4d:86:ee:4e:61:08:f9:52:6e:14:98:2e:72: 4d:a3:79:bb:89:f5:f5:de:b9:0e:46:4f:8d:20:42:8e:04:44: 9e:c2:e1:e4:3a:3a:68:1a:c9:7d:2b:f2:ae:0d:4f:4f:4b:8c: bf:a4:fa:32:ee:11:1c:2b:c6:29:b5:61:05:54:41:83:93:82: db:2d:7f:d1:3c:80:29:7b:ad:92:ea:2d:ac:29:24:62:e7:1f: a3:cf:a3:d5:af:9f:82:68:a5:51:37:f5:0e:d5:d9:85:2a:ed: d5:64:87:10 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKiRMbP8otEHwdRrQmo0JVZUhEIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEw RTMxMDQ0ODAeFw0yNDExMjAxNzU1MDFaFw0yNTExMTkxODAwMDFaMDMxMTAvBgNV BAMTKEM4MTQxRDk3MUQxMEZDQzY0MTY2RjlDQzU1MDRBOTc5NzQ0ODIwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs3UiHSbwidcxTUXNGOpyEenbF c/j8XHC09YF+IVLs6PI/UoRzQ0SFkOvAPe6EXlPEte8BUVpOLOl4cw/KYkqeLm7V Pjh7/hlYhUT0JHujbFlcxSMEfYXRxhAqML9BZz6I7/Vnmpd/N2tSclo1LWaLxi5u B9mUUXW3dtd/jNTPuhkIgFdvWc8im7zuGF64xstOa6V51zcXa9D1LBlMLZ7pZ4ec Zgs7cL0lEm0o5fbc7SIniUOBrbqxoUqlHFD54n1u/Wj+3PSNPHEQEnir+QMYAFlj cgYdTylY0kVkosDbmb6IYPmaZOaPfvTSaMO8D5WdENRAeH3HCMrPtIibvLM5AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUyBQdlx0Q/MZBZvnMVQSpeXRIIPcwHwYDVR0j BBgwFoAUc70mbu8TE27U9OlqtJhLWg4xBEgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTk3ZGJjNi05Mzc0LTQyZTItYTNkMC04NzllZDZhMTkxOTYvMC83M0JEMjY2RUVG MTMxMzZFRDRGNEU5NkFCNDk4NEI1QTBFMzEwNDQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEwRTMx MDQ0OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOTdkYmM2LTkzNzQtNDJlMi1h M2QwLTg3OWVkNmExOTE5Ni8wLzMyMzQzMDM1M2E2NDYyMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNTM0MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQF24AwDQYJKoZI hvcNAQELBQADggEBAHQk67cw85HvVCbRVaVTfBPj/smVfAZntYdFoR3Oar1f4E3O xnpIiIqsAAlYdGtWanDmKIAnBimz8hRd4Qsub/L6LZsxS17yyhF5k5jZe45AQrGI dg55bEtaNqfgxGte9u5nr3z8Z7Wn4RFbJw8coYdFk9i+SEeXw7AmIMXZdFjvl/s4 G2e8185UwJ7suGdpRK/2OtaNTYbuTmEI+VJuFJguck2jebuJ9fXeuQ5GT40gQo4E RJ7C4eQ6OmgayX0r8q4NT09LjL+k+jLuERwrxim1YQVUQYOTgtstf9E8gCl7rZLq LawpJGLnH6PPo9Wvn4JopVE39Q7V2YUq7dVkhxA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org