$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: IMkP74GPL2kGheZ8dQ08iPMcyITh63ZFDWK3TOOKRbU= Subject key identifier: 4D:27:73:C5:0D:7F:44:66:68:84:91:C0:3E:54:6C:5E:62:DA:67:36 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 311B9D237902957CB431737CBF1282C238EC2679 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:19 +0000 ROA not before: Mon 01 Jul 2024 00:59:19 +0000 ROA not after: Mon 30 Jun 2025 01:04:19 +0000 asID: 136088 IP address blocks: 2400:d940:300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:1b:9d:23:79:02:95:7c:b4:31:73:7c:bf:12:82:c2:38:ec:26:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:19 2024 GMT Not After : Jun 30 01:04:19 2025 GMT Subject: CN=4D2773C50D7F4466688491C03E546C5E62DA6736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ed:b8:a4:73:5e:e9:35:c5:0b:45:5e:ac:b1: 2b:cc:48:1a:61:b4:31:cb:36:19:a2:5b:e4:20:f7: 4e:fa:88:ad:17:dc:c5:be:68:8c:1c:16:a7:af:8b: 51:e6:ac:e5:29:b8:f0:ae:96:2e:8c:f6:e4:1a:06: d3:96:d3:22:e8:a8:61:7a:b7:73:0b:5e:ba:74:12: f8:e4:d8:88:3b:a2:c4:db:af:ef:5f:0a:a7:00:6e: 49:9d:f4:e1:b0:ee:c3:35:8d:8d:2e:d2:71:4e:4a: 23:b1:73:e5:fa:00:64:d1:b4:4c:15:37:2e:e6:4f: 5e:6c:c6:a4:d4:9b:25:66:95:09:6b:64:40:3a:af: 5c:a6:11:c1:51:0a:5b:10:db:85:10:30:80:fb:8e: 15:f1:36:8d:02:81:a7:70:ac:0c:cd:64:95:3d:c0: c2:4c:46:4e:d7:10:b2:5a:7f:50:3b:14:71:25:d5: 93:c1:de:fd:86:55:93:0a:0b:25:b5:aa:e6:90:ba: a8:72:6e:55:21:35:78:01:ec:6c:55:46:07:19:07: dc:97:7b:45:95:be:ec:59:a8:81:d0:67:f8:6f:20: 1d:9f:db:4d:7d:39:7e:41:c1:0b:99:e5:d8:b2:c7: 52:3e:b2:9e:16:f8:8b:7b:72:4b:ee:0c:cc:aa:c1: 8d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:27:73:C5:0D:7F:44:66:68:84:91:C0:3E:54:6C:5E:62:DA:67:36 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:300::/48 Signature Algorithm: sha256WithRSAEncryption 06:f6:bd:4a:92:55:bd:00:a8:93:b3:bb:96:c1:e6:60:b5:6d: 04:fa:a1:51:98:f7:3c:04:1e:e5:eb:6c:7d:76:76:3a:90:3c: 72:0f:78:81:86:70:0a:63:0a:f3:12:a1:db:12:88:be:fa:5c: 47:7d:e3:3c:6e:43:ab:c5:ce:61:1c:36:ca:76:a5:7b:ac:e8: d4:2d:c3:bd:47:02:5d:bc:a3:1b:21:ea:74:cc:b2:af:50:8c: 0f:49:a8:c9:c1:1a:74:b3:5b:0b:32:77:bd:dc:9e:d5:82:05: 8b:3e:a7:c5:bb:cd:85:0b:43:5e:3f:18:95:3b:b4:70:71:ab: c0:a3:64:4e:40:5d:b5:55:f7:d6:e1:f7:49:0a:37:b4:4d:45: 5d:eb:73:8b:fd:f4:4f:d3:e4:7e:e3:79:34:cd:44:e8:67:5f: 05:52:92:74:b4:c8:d9:6b:f9:6b:9a:4e:cf:98:47:cd:70:4a: 4d:14:c9:7d:25:37:c8:21:5c:dc:52:e2:5c:bd:c7:47:43:ff: 79:32:28:60:29:a6:60:9f:0e:21:45:0e:22:73:c4:e4:5c:14: ae:db:c3:26:f2:05:3b:e0:ce:28:3f:a9:88:8f:8a:dd:21:d2: 2e:eb:db:3c:40:b2:d5:54:ac:42:b1:e8:72:7f:ac:34:86:88: e7:9c:d2:91 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMRudI3kClXy0MXN8vxKCwjjsJnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MTlaFw0yNTA2MzAwMTA0MTlaMDMxMTAvBgNV BAMTKDREMjc3M0M1MEQ3RjQ0NjY2ODg0OTFDMDNFNTQ2QzVFNjJEQTY3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17bikc17pNcULRV6ssSvMSBph tDHLNhmiW+Qg9076iK0X3MW+aIwcFqevi1HmrOUpuPCuli6M9uQaBtOW0yLoqGF6 t3MLXrp0Evjk2Ig7osTbr+9fCqcAbkmd9OGw7sM1jY0u0nFOSiOxc+X6AGTRtEwV Ny7mT15sxqTUmyVmlQlrZEA6r1ymEcFRClsQ24UQMID7jhXxNo0CgadwrAzNZJU9 wMJMRk7XELJaf1A7FHEl1ZPB3v2GVZMKCyW1quaQuqhyblUhNXgB7GxVRgcZB9yX e0WVvuxZqIHQZ/hvIB2f2019OX5BwQuZ5diyx1I+sp4W+It7ckvuDMyqwY1HAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTSdzxQ1/RGZohJHAPlRsXmLaZzYwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAMAMA0GCSqGSIb3DQEBCwUAA4IBAQAG9r1KklW9AKiTs7uWweZgtW0E+qFRmPc8 BB7l62x9dnY6kDxyD3iBhnAKYwrzEqHbEoi++lxHfeM8bkOrxc5hHDbKdqV7rOjU LcO9RwJdvKMbIep0zLKvUIwPSajJwRp0s1sLMne93J7VggWLPqfFu82FC0NePxiV O7RwcavAo2ROQF21VffW4fdJCje0TUVd63OL/fRP0+R+43k0zUToZ18FUpJ0tMjZ a/lrmk7PmEfNcEpNFMl9JTfIIVzcUuJcvcdHQ/95MihgKaZgnw4hRQ4ic8TkXBSu 28Mm8gU74M4oP6mIj4rdIdIu69s8QLLVVKxCsehyf6w0hojnnNKR -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org