$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 2YgnGuBgupXHigAy5cck+4iL3rI5YWUfJ3NIzrnjjHI= Subject key identifier: E9:F4:ED:4E:6D:37:CF:D4:28:FF:EE:10:F9:36:5D:62:A5:6D:D2:0B Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 02FD654AB777CFEC8CE24D7B59EA6BC4642E684F Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:21 +0000 ROA not before: Mon 01 Jul 2024 00:59:21 +0000 ROA not after: Mon 30 Jun 2025 01:04:21 +0000 asID: 136088 IP address blocks: 2400:d940:30::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fd:65:4a:b7:77:cf:ec:8c:e2:4d:7b:59:ea:6b:c4:64:2e:68:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:21 2024 GMT Not After : Jun 30 01:04:21 2025 GMT Subject: CN=E9F4ED4E6D37CFD428FFEE10F9365D62A56DD20B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:48:39:04:33:22:35:eb:98:da:e2:3b:16:ea: 2f:c9:39:00:6e:a1:20:63:3b:d5:1a:64:d7:41:d6: 1f:fb:ea:09:0a:24:e5:c2:58:f1:90:53:c3:af:02: a9:bf:85:21:fc:6a:3b:92:d2:a3:c7:c5:ed:81:95: 0d:b8:f6:d9:a8:ce:26:90:34:d3:b1:be:90:5a:1d: 3e:13:15:14:f7:73:db:a2:e1:e1:20:6c:a0:7d:fa: dc:3f:a7:de:b4:be:72:b5:8d:f2:48:e7:52:81:be: a2:ba:a9:d9:20:42:48:a5:5c:2f:01:bb:d9:80:24: 8c:61:69:c6:b3:38:c2:c6:f9:e9:4f:b1:ff:92:dd: c8:ce:c5:bd:9f:85:15:38:26:34:bc:4c:19:05:dc: c8:a3:70:63:97:ff:93:33:26:9e:9c:73:c8:15:07: 2c:01:9c:df:01:7c:0e:84:5d:b3:0a:50:ab:1a:87: 3d:85:3a:5d:fe:d8:fe:07:8d:39:90:84:82:98:81: 43:21:25:b8:dc:2f:4f:84:a0:62:64:82:1c:0f:59: 5f:20:6b:0e:a1:0b:67:c5:e5:22:b7:3c:8a:44:83: 25:4e:40:b0:ca:7b:9b:c2:8c:17:67:9d:c0:0e:be: c0:2d:2d:49:9f:61:03:10:3b:c0:73:fb:09:f2:6c: 7c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F4:ED:4E:6D:37:CF:D4:28:FF:EE:10:F9:36:5D:62:A5:6D:D2:0B X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:30::/48 Signature Algorithm: sha256WithRSAEncryption a5:76:3e:a0:6b:3c:01:cf:8f:25:e4:66:4f:d0:56:a1:a2:9d: 61:e1:d1:7f:6f:fd:0c:fb:9e:db:a6:92:69:0d:3d:9e:d6:2a: c3:74:d2:7f:4f:5b:5e:f4:ce:ce:f3:95:58:18:4c:a8:fe:43: 04:f5:64:31:a2:d1:f6:d3:af:ab:68:7e:4e:26:ee:ec:c3:a5: e3:7a:f7:67:0c:14:79:e7:bd:3b:5b:ff:3f:94:a4:7b:a4:6f: fb:33:4c:a1:2f:9d:8d:86:3b:57:79:e7:7a:15:45:b3:97:8d: 1e:27:a8:53:40:e7:bf:62:87:30:3e:c5:08:f8:d7:fd:c7:39: cb:26:c1:39:9f:5a:a0:46:f0:30:a6:d7:92:d8:45:c5:a1:2b: 65:21:04:1a:d7:b9:98:21:e2:5f:c1:82:85:26:4a:94:c6:87: 74:f0:14:d9:c1:43:e7:7f:1f:d7:25:25:01:2a:78:e2:98:2f: 48:96:a5:cb:9c:92:8e:05:4f:8f:97:f7:b5:1c:eb:c1:b2:bb: 39:20:92:47:df:f3:86:fd:d8:8e:5c:5b:ad:ff:54:66:41:df: 6e:ea:94:11:5e:ca:06:51:82:f7:47:4c:b6:98:01:b1:98:94: ff:31:a9:75:96:f5:29:2c:3f:eb:e8:11:5d:a2:e2:b5:20:ae: 85:7b:cb:a5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAv1lSrd3z+yM4k17WeprxGQuaE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjFaFw0yNTA2MzAwMTA0MjFaMDMxMTAvBgNV BAMTKEU5RjRFRDRFNkQzN0NGRDQyOEZGRUUxMEY5MzY1RDYyQTU2REQyMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSDkEMyI165ja4jsW6i/JOQBu oSBjO9UaZNdB1h/76gkKJOXCWPGQU8OvAqm/hSH8ajuS0qPHxe2BlQ249tmoziaQ NNOxvpBaHT4TFRT3c9ui4eEgbKB9+tw/p960vnK1jfJI51KBvqK6qdkgQkilXC8B u9mAJIxhacazOMLG+elPsf+S3cjOxb2fhRU4JjS8TBkF3MijcGOX/5MzJp6cc8gV BywBnN8BfA6EXbMKUKsahz2FOl3+2P4HjTmQhIKYgUMhJbjcL0+EoGJkghwPWV8g aw6hC2fF5SK3PIpEgyVOQLDKe5vCjBdnncAOvsAtLUmfYQMQO8Bz+wnybHzRAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU6fTtTm03z9Qo/+4Q+TZdYqVt0gswHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA MDANBgkqhkiG9w0BAQsFAAOCAQEApXY+oGs8Ac+PJeRmT9BWoaKdYeHRf2/9DPue 26aSaQ09ntYqw3TSf09bXvTOzvOVWBhMqP5DBPVkMaLR9tOvq2h+Tibu7MOl43r3 ZwwUeee9O1v/P5Ske6Rv+zNMoS+djYY7V3nnehVFs5eNHieoU0Dnv2KHMD7FCPjX /cc5yybBOZ9aoEbwMKbXkthFxaErZSEEGte5mCHiX8GChSZKlMaHdPAU2cFD538f 1yUlASp44pgvSJaly5ySjgVPj5f3tRzrwbK7OSCSR9/zhv3Yjlxbrf9UZkHfbuqU EV7KBlGC90dMtpgBsZiU/zGpdZb1KSw/6+gRXaLitSCuhXvLpQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org