$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: Y1oCqWhI4ks8Qk8E0i8FSAtzpwHyZf/dJP9cfNluxfY= Subject key identifier: DE:D1:20:3C:E1:E0:43:34:02:90:C6:F8:E0:F3:EF:7C:2D:05:28:93 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 08C2E7D5DF66A7525D3E514A2A1E566B876E1F15 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:19 +0000 ROA not before: Mon 01 Jul 2024 00:59:19 +0000 ROA not after: Mon 30 Jun 2025 01:04:19 +0000 asID: 136088 IP address blocks: 2400:d940:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c2:e7:d5:df:66:a7:52:5d:3e:51:4a:2a:1e:56:6b:87:6e:1f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:19 2024 GMT Not After : Jun 30 01:04:19 2025 GMT Subject: CN=DED1203CE1E043340290C6F8E0F3EF7C2D052893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b4:62:67:57:a5:1b:41:4a:7a:08:99:93:5b: d2:c4:e0:c0:14:13:f9:0d:1f:9d:b6:e2:79:cb:4c: b2:7e:53:4c:8b:c0:2d:95:a9:7b:15:33:6c:3b:8c: ba:0b:ab:7c:09:34:70:a6:86:c0:6a:82:3b:48:33: b3:cf:4d:af:91:b6:c2:3d:b3:58:da:94:a2:40:43: 11:0e:49:95:28:41:4e:38:f9:af:98:44:f6:f1:cf: 1a:22:a9:15:f6:a0:65:b0:10:1b:84:06:87:49:92: 07:e0:87:f6:ed:00:5f:6a:01:fd:03:66:1f:cb:52: 7a:7f:aa:6e:3f:4a:16:a3:74:fe:d9:c2:9c:a3:2b: 48:b7:3c:3a:8e:7a:78:e6:08:dd:fd:a5:65:f2:07: c6:b8:44:de:8b:17:7e:56:60:50:fa:50:f6:ae:fd: 4d:ff:77:3d:77:f3:76:9c:17:29:d1:64:9e:aa:7f: ad:1a:04:e4:16:5e:68:d0:55:85:5b:dd:28:8d:10: 89:a1:8e:0c:b5:d3:c9:df:9b:d1:4e:d9:64:f9:7a: f8:3a:eb:43:57:14:63:43:fa:83:54:4d:2f:be:5d: 67:19:d6:b7:34:9b:53:18:4e:bb:8d:19:ee:0c:c5: 6c:cd:e7:cb:c9:51:f0:fe:8a:b7:d0:d1:35:33:9f: bc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D1:20:3C:E1:E0:43:34:02:90:C6:F8:E0:F3:EF:7C:2D:05:28:93 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:20::/48 Signature Algorithm: sha256WithRSAEncryption 37:b6:ac:07:45:04:4e:01:b2:4a:bb:cb:ce:91:6c:fa:c0:15: ce:8e:20:3e:89:0b:dd:85:b1:29:87:b5:15:a1:bc:8d:35:df: fa:ec:ae:9d:75:c5:92:3e:25:a7:bd:0f:b0:f5:25:ef:1f:b1: cf:0b:6f:9d:22:04:01:1b:9f:6d:3a:98:86:95:4d:76:70:cd: d8:66:dc:41:45:83:3b:7a:bb:01:46:8e:b2:c3:b5:e6:a5:1b: 65:f6:3f:7b:c9:7c:bd:fd:9c:49:fa:49:98:35:ac:ca:9d:58: 02:9e:d7:dd:20:ab:61:3e:79:fb:30:53:da:ef:7d:9f:1d:09: 7a:5f:a5:d6:e7:3c:c2:5c:cc:a4:25:aa:3f:37:de:c0:ff:c2: 0f:37:44:4c:d1:e7:bc:55:08:ec:1e:95:7c:63:86:06:b6:c5: f4:82:b6:79:34:9f:8c:05:3d:1f:db:86:1c:5f:ba:03:70:b1: 55:e6:39:a8:59:16:15:f3:8f:fd:24:00:60:b2:6e:9a:31:7c: 57:f0:50:bc:8e:99:59:2e:bc:b9:73:40:5b:24:5b:88:70:5e: a6:35:4d:08:db:f5:85:a5:a3:26:df:31:fe:e5:37:fb:5e:83: c5:15:85:68:4e:43:8f:8e:bd:64:a4:c2:40:3d:5f:33:9e:6d: d9:9c:ac:d1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCMLn1d9mp1JdPlFKKh5Wa4duHxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MTlaFw0yNTA2MzAwMTA0MTlaMDMxMTAvBgNV BAMTKERFRDEyMDNDRTFFMDQzMzQwMjkwQzZGOEUwRjNFRjdDMkQwNTI4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8tGJnV6UbQUp6CJmTW9LE4MAU E/kNH5224nnLTLJ+U0yLwC2VqXsVM2w7jLoLq3wJNHCmhsBqgjtIM7PPTa+RtsI9 s1jalKJAQxEOSZUoQU44+a+YRPbxzxoiqRX2oGWwEBuEBodJkgfgh/btAF9qAf0D Zh/LUnp/qm4/ShajdP7ZwpyjK0i3PDqOenjmCN39pWXyB8a4RN6LF35WYFD6UPau /U3/dz1383acFynRZJ6qf60aBOQWXmjQVYVb3SiNEImhjgy108nfm9FO2WT5evg6 60NXFGND+oNUTS++XWcZ1rc0m1MYTruNGe4MxWzN58vJUfD+irfQ0TUzn7zRAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU3tEgPOHgQzQCkMb44PPvfC0FKJMwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA IDANBgkqhkiG9w0BAQsFAAOCAQEAN7asB0UETgGySrvLzpFs+sAVzo4gPokL3YWx KYe1FaG8jTXf+uyunXXFkj4lp70PsPUl7x+xzwtvnSIEARufbTqYhpVNdnDN2Gbc QUWDO3q7AUaOssO15qUbZfY/e8l8vf2cSfpJmDWsyp1YAp7X3SCrYT55+zBT2u99 nx0Jel+l1uc8wlzMpCWqPzfewP/CDzdETNHnvFUI7B6VfGOGBrbF9IK2eTSfjAU9 H9uGHF+6A3CxVeY5qFkWFfOP/SQAYLJumjF8V/BQvI6ZWS68uXNAWyRbiHBepjVN CNv1haWjJt8x/uU3+16DxRWFaE5Dj469ZKTCQD1fM55t2Zys0Q== -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org