$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: HOsHPo1xAIzrTXK6CcMOBAMoH+csp0pI+1JLcbIAAiw= Subject key identifier: 45:CD:92:EB:CF:D8:B0:1E:9B:8B:EC:E6:F4:8D:5F:95:A9:7B:DA:D1 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 77864175E04F159F00CB837A43AC56C9204B2AC4 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:19 +0000 ROA not before: Mon 01 Jul 2024 00:59:19 +0000 ROA not after: Mon 30 Jun 2025 01:04:19 +0000 asID: 136088 IP address blocks: 2400:d940:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:86:41:75:e0:4f:15:9f:00:cb:83:7a:43:ac:56:c9:20:4b:2a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:19 2024 GMT Not After : Jun 30 01:04:19 2025 GMT Subject: CN=45CD92EBCFD8B01E9B8BECE6F48D5F95A97BDAD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e5:83:6a:bd:6a:29:38:0a:d2:5e:4e:88:f5: 69:1e:09:c2:7b:14:9f:d6:14:2f:14:a0:18:09:7d: 31:45:a9:99:b7:b1:eb:db:55:86:6d:87:bf:b9:fa: b0:68:83:87:b8:25:63:0a:d3:d8:ed:dd:7d:b9:75: 93:dd:4d:b4:95:eb:df:99:fb:d4:06:64:34:65:6c: 11:50:41:54:c7:f0:e9:25:6b:45:a7:c2:2c:df:e8: 94:8d:61:1f:12:47:1a:00:87:c1:29:71:17:dc:de: 76:73:20:8f:14:76:ea:b4:f4:eb:95:f6:dc:d2:ec: 30:72:cf:ba:c3:c5:d8:2d:62:ff:f6:ba:db:fd:ea: 05:53:08:3d:fe:25:f4:e9:1f:96:1b:20:d6:3b:06: 48:a1:3e:94:dc:99:68:4f:88:d5:b5:f9:03:88:37: 9a:4b:b0:5f:f9:8d:00:72:62:d9:97:03:09:2b:93: 8a:6e:e3:11:4c:23:1a:41:1b:a8:b2:89:43:a3:d8: 72:69:e8:84:c0:00:ca:c2:ac:67:bd:75:1d:b1:9b: 3c:b0:bb:56:62:1e:b0:fa:e0:b1:6c:ef:24:39:77: d6:f2:0e:5f:66:92:f8:78:ac:87:22:f3:7e:76:f4: fb:89:55:d1:f0:f4:23:58:6d:4e:db:43:2b:e7:5e: 1c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CD:92:EB:CF:D8:B0:1E:9B:8B:EC:E6:F4:8D:5F:95:A9:7B:DA:D1 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:100::/48 Signature Algorithm: sha256WithRSAEncryption 4b:fd:ed:d4:29:a3:3b:61:15:47:9a:f3:c4:37:9a:15:4b:55: b4:6c:c3:fd:80:b6:5a:fd:83:32:35:ba:41:71:92:4e:59:7b: 74:dc:26:61:36:83:1b:51:86:17:1e:f5:37:e4:24:2c:68:a7: 05:9f:92:6d:ff:a7:5a:94:b5:31:db:00:f6:42:d2:4f:98:f5: 20:58:cf:80:a3:6c:36:fd:80:af:6f:35:6f:06:03:ee:0c:41: fb:ee:fd:c9:3b:f0:80:14:03:47:ce:de:88:d4:c9:aa:b1:0b: 95:c2:5f:3e:7d:d7:94:09:b1:2a:87:94:09:ba:2a:2f:6f:90: a4:ba:e4:13:c6:94:b0:25:79:a2:a9:d2:ba:e3:8e:7a:1b:2e: f9:2f:fd:89:9c:82:28:de:34:41:5d:9c:37:b8:26:44:a8:a0: f3:3f:41:16:f8:60:c3:51:df:06:64:75:a4:06:96:52:6e:1e: ab:db:f0:87:ab:69:91:86:80:80:19:85:40:86:9a:02:a6:bd: d7:81:4c:92:c8:7d:e3:48:ec:b2:58:e5:e8:c2:2b:99:af:ba: 2f:fa:53:b3:b5:7d:29:9b:c4:90:62:d1:56:78:80:cd:63:c6: 37:5c:ab:6b:1e:ed:bd:f2:38:82:47:37:b5:b8:63:6f:db:57: bb:1e:53:e8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd4ZBdeBPFZ8Ay4N6Q6xWySBLKsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MTlaFw0yNTA2MzAwMTA0MTlaMDMxMTAvBgNV BAMTKDQ1Q0Q5MkVCQ0ZEOEIwMUU5QjhCRUNFNkY0OEQ1Rjk1QTk3QkRBRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK5YNqvWopOArSXk6I9WkeCcJ7 FJ/WFC8UoBgJfTFFqZm3sevbVYZth7+5+rBog4e4JWMK09jt3X25dZPdTbSV69+Z +9QGZDRlbBFQQVTH8Okla0Wnwizf6JSNYR8SRxoAh8EpcRfc3nZzII8Uduq09OuV 9tzS7DByz7rDxdgtYv/2utv96gVTCD3+JfTpH5YbINY7BkihPpTcmWhPiNW1+QOI N5pLsF/5jQByYtmXAwkrk4pu4xFMIxpBG6iyiUOj2HJp6ITAAMrCrGe9dR2xmzyw u1ZiHrD64LFs7yQ5d9byDl9mkvh4rIci83529PuJVdHw9CNYbU7bQyvnXhypAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURc2S68/YsB6bi+zm9I1flal72tEwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAEAMA0GCSqGSIb3DQEBCwUAA4IBAQBL/e3UKaM7YRVHmvPEN5oVS1W0bMP9gLZa /YMyNbpBcZJOWXt03CZhNoMbUYYXHvU35CQsaKcFn5Jt/6dalLUx2wD2QtJPmPUg WM+Ao2w2/YCvbzVvBgPuDEH77v3JO/CAFANHzt6I1MmqsQuVwl8+fdeUCbEqh5QJ uiovb5CkuuQTxpSwJXmiqdK64456Gy75L/2JnIIo3jRBXZw3uCZEqKDzP0EW+GDD Ud8GZHWkBpZSbh6r2/CHq2mRhoCAGYVAhpoCpr3XgUySyH3jSOyyWOXowiuZr7ov +lOztX0pm8SQYtFWeIDNY8Y3XKtrHu298jiCRze1uGNv21e7HlPo -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org