$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/323430303a346130303a3a2f33322d3332203d3e2039333431.roa File: 323430303a346130303a3a2f33322d3332203d3e2039333431.roa (raw, json) Hash identifier: i3BDu1+YVk6qkFpsJ/+GAaQZ2gnhK+OQxZNgtAUNHGg= Subject key identifier: 1F:61:A7:7F:99:37:AC:13:09:FC:3C:7A:08:40:CE:0A:4A:32:CB:B4 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 1F02549C8AB4ABE7EB79EE5F2D5F91460A51BDE6 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/323430303a346130303a3a2f33322d3332203d3e2039333431.roa Signing time: Fri 12 Jan 2024 06:26:06 +0000 ROA not before: Fri 12 Jan 2024 06:21:06 +0000 ROA not after: Fri 10 Jan 2025 06:26:06 +0000 asID: 9341 IP address blocks: 2400:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:02:54:9c:8a:b4:ab:e7:eb:79:ee:5f:2d:5f:91:46:0a:51:bd:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Jan 12 06:21:06 2024 GMT Not After : Jan 10 06:26:06 2025 GMT Subject: CN=1F61A77F9937AC1309FC3C7A0840CE0A4A32CBB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:e5:e9:08:0d:64:86:76:1f:73:93:5f:49: 82:0f:c9:72:c0:d0:31:55:c5:40:4e:76:9a:86:bc: 4b:60:70:b3:12:02:f1:91:3d:00:e6:3b:3a:d5:a9: fc:7c:6f:4e:b2:be:4f:ad:c9:68:cc:a3:11:e1:b3: 1f:aa:09:92:b8:6c:b9:f9:8b:78:d3:27:6a:a1:85: c0:d7:aa:ba:e3:59:98:7c:47:65:5e:ce:05:55:bc: 34:b7:67:fd:9e:12:ca:ce:bf:63:09:c1:35:4b:04: 40:25:00:ab:5c:12:4d:f6:4f:f5:2c:4a:7d:45:39: 6e:57:20:1e:ff:35:ad:6d:aa:87:56:41:34:18:c0: 25:0d:48:4d:0f:8b:1f:79:8d:66:a3:69:4c:6e:a6: e2:d1:c2:eb:81:6c:4f:7e:f6:2a:87:44:62:1e:de: 9a:92:ff:f3:27:02:bf:15:69:18:bb:3c:8a:97:fe: f6:eb:3f:8c:da:72:48:3b:fc:76:b1:66:29:9c:3a: a0:bd:24:d7:b8:47:b9:0b:e8:86:54:62:57:2e:13: 2e:e3:fd:7d:12:62:22:e0:3d:e0:0f:83:aa:c2:66: 82:55:44:03:48:13:29:7e:a0:8c:92:79:e7:fe:6e: 43:80:b9:3f:7f:10:20:b5:90:15:c2:f2:7f:9f:0b: 8a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:61:A7:7F:99:37:AC:13:09:FC:3C:7A:08:40:CE:0A:4A:32:CB:B4 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/323430303a346130303a3a2f33322d3332203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 88:35:8d:2a:75:53:51:0d:0e:08:77:fe:5c:a8:82:63:59:9a: 6a:97:b3:6b:e8:c2:fa:1f:07:1c:2c:8a:f8:29:40:a1:4e:7b: f4:2d:b3:f7:7e:a0:58:0b:b9:06:99:32:e5:d1:3b:89:62:4b: 3d:19:72:58:87:f5:8a:8b:c1:20:e6:7a:9e:48:67:ca:69:b7: 86:08:fc:8f:1e:64:29:c3:2f:7f:ea:69:e4:4e:c9:83:fb:81: 5b:3d:63:c8:62:f7:cb:64:46:c5:70:74:a5:60:b8:6d:09:01: b9:2f:b4:df:0b:6a:f1:4d:e9:63:1e:75:cf:85:50:ec:fb:de: d3:63:95:ca:79:7c:6d:ea:98:0c:df:e5:ea:1b:f0:b7:20:fb: 2d:69:0f:d3:78:dd:44:ce:04:49:d8:84:7d:31:4f:8b:f6:c9: 9f:65:e3:40:fd:b8:29:f2:11:c1:21:5a:61:00:fa:ad:f1:b2: ba:0c:e3:5b:1a:0a:39:cc:59:82:47:89:c2:3a:d4:d9:24:9b: 33:bc:6c:71:d9:dc:e3:96:0d:5f:0e:e9:09:9b:05:b1:a6:fb: 40:6d:b6:d6:2c:ab:4d:ff:e1:da:9d:28:b9:da:b7:0d:6f:c9: ae:df:99:31:14:9a:65:10:82:ba:17:0b:8a:6d:32:af:31:0b: 32:4e:22:ac -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUHwJUnIq0q+free5fLV+RRgpRveYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDAxMTIwNjIxMDZaFw0yNTAxMTAwNjI2MDZaMDMxMTAvBgNV BAMTKDFGNjFBNzdGOTkzN0FDMTMwOUZDM0M3QTA4NDBDRTBBNEEzMkNCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0DeXpCA1khnYfc5NfSYIPyXLA 0DFVxUBOdpqGvEtgcLMSAvGRPQDmOzrVqfx8b06yvk+tyWjMoxHhsx+qCZK4bLn5 i3jTJ2qhhcDXqrrjWZh8R2VezgVVvDS3Z/2eEsrOv2MJwTVLBEAlAKtcEk32T/Us Sn1FOW5XIB7/Na1tqodWQTQYwCUNSE0Pix95jWajaUxupuLRwuuBbE9+9iqHRGIe 3pqS//MnAr8VaRi7PIqX/vbrP4zackg7/HaxZimcOqC9JNe4R7kL6IZUYlcuEy7j /X0SYiLgPeAPg6rCZoJVRANIEyl+oIySeef+bkOAuT9/ECC1kBXC8n+fC4ojAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUH2Gnf5k3rBMJ/Dx6CEDOCkoyy7QwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzNiZGNiYWUtMmU5ZC00ZjNmLThh YjktMzQyNGU0NDg0ODRlLzAvMzIzNDMwMzAzYTM0NjEzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAEoAMA0GCSqGSIb3DQEB CwUAA4IBAQCINY0qdVNRDQ4Id/5cqIJjWZpql7Nr6ML6HwccLIr4KUChTnv0LbP3 fqBYC7kGmTLl0TuJYks9GXJYh/WKi8Eg5nqeSGfKabeGCPyPHmQpwy9/6mnkTsmD +4FbPWPIYvfLZEbFcHSlYLhtCQG5L7TfC2rxTeljHnXPhVDs+97TY5XKeXxt6pgM 3+XqG/C3IPstaQ/TeN1EzgRJ2IR9MU+L9smfZeNA/bgp8hHBIVphAPqt8bK6DONb Ggo5zFmCR4nCOtTZJJszvGxx2dzjlg1fDukJmwWxpvtAbbbWLKtN/+HanSi52rcN b8mu35kxFJplEIK6FwuKbTKvMQsyTiKs -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:21 2024 by rpki-client on console-fra.rpki-client.org