$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: +b4h9S2+oVnKYs/dOK4BRoiJ0S7abrM3iZLut9+i2OM= Subject key identifier: 33:7E:D6:8A:F7:28:74:52:13:74:55:6B:BB:5C:08:86:CE:FD:C6:75 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 482307ED5D877B58B8AB1CCC84BA37BA489A84E3 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:19 +0000 ROA not before: Mon 01 Jul 2024 00:59:19 +0000 ROA not after: Mon 30 Jun 2025 01:04:19 +0000 asID: 136088 IP address blocks: 2400:d940:50::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:23:07:ed:5d:87:7b:58:b8:ab:1c:cc:84:ba:37:ba:48:9a:84:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:19 2024 GMT Not After : Jun 30 01:04:19 2025 GMT Subject: CN=337ED68AF72874521374556BBB5C0886CEFDC675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:2c:e7:49:07:24:79:49:4d:aa:07:cc:79: 12:63:be:9c:b4:bf:df:75:90:9d:9b:cd:a5:66:00: 11:56:54:0c:51:c1:f2:7c:89:e0:d5:cb:08:67:80: 41:00:53:4b:a7:3c:88:88:b2:5c:7e:fd:eb:1b:a2: dc:70:b8:0a:a9:91:da:a0:f2:2d:44:26:c5:14:bf: 38:06:a5:45:64:47:4c:46:20:a7:2c:c5:5b:93:20: 3f:c1:25:83:8a:03:93:50:cf:af:cf:01:47:70:3e: de:0a:43:60:b6:fb:26:66:1f:fc:87:8b:17:d1:f7: 12:b5:d0:ef:97:51:9c:67:0a:97:48:cb:ca:13:b0: e4:e8:e6:40:91:43:68:e9:a3:19:bb:0c:5a:f3:1b: a3:a0:ef:a2:5c:09:c0:4b:4c:fe:77:0b:b1:6e:95: ea:ff:e3:97:01:10:3f:6f:f1:33:dd:5e:78:92:f7: 72:ff:11:20:d7:a7:c3:5e:06:9f:f5:83:ba:f0:93: 6a:21:da:61:76:10:23:82:7e:e4:b0:db:b6:11:97: 98:47:19:b9:02:95:c0:ed:6b:2f:f4:aa:05:34:f8: c3:bc:da:eb:ed:8a:a0:28:05:fa:e5:78:2b:ce:86: 4d:3c:28:4a:c7:71:d3:5a:64:a9:f7:0d:8d:f0:c9: 9b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:7E:D6:8A:F7:28:74:52:13:74:55:6B:BB:5C:08:86:CE:FD:C6:75 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:50::/48 Signature Algorithm: sha256WithRSAEncryption 2d:52:72:b7:49:b2:3c:a5:18:05:fb:1a:11:4e:a4:eb:16:ba: fa:24:c7:cb:a9:27:e6:f1:99:fd:95:26:45:6f:20:fe:15:ba: f1:6f:09:69:1f:43:b8:d8:4b:ad:b2:76:47:d8:60:8e:44:7e: b4:ea:34:1d:08:99:d2:c6:c0:97:0e:c8:cd:69:de:30:43:73: f6:96:5b:98:13:79:0b:7b:2c:09:2f:7a:89:6c:4b:7f:41:c7: 96:98:d3:de:4d:ad:d2:8f:91:c3:92:3c:ca:ba:ba:bb:60:33: 24:68:61:5c:0f:69:e9:b1:bc:34:43:90:4c:28:9a:1b:dc:9d: 2d:f3:29:62:34:ac:ad:26:da:ac:09:33:1f:b6:24:a2:12:47: e9:b1:c9:0b:41:59:53:d9:f9:46:0e:32:d7:ef:58:64:7f:92: a2:fb:08:b9:d6:a9:75:4e:08:74:e7:b5:e8:7e:85:b8:92:44: 83:7f:66:c5:99:4f:f7:de:5e:89:45:05:07:05:76:ae:f3:5f: c3:a9:1f:9d:f0:12:38:d4:48:f3:89:b4:91:0b:2c:5c:e6:3d: be:7b:43:d2:dd:a0:70:5b:8c:ee:95:3b:20:0a:c4:02:d3:c0: 1b:a1:e9:2d:39:db:55:62:8f:78:7f:04:46:41:f7:88:7c:b7: db:fe:ac:20 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSCMH7V2He1i4qxzMhLo3ukiahOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MTlaFw0yNTA2MzAwMTA0MTlaMDMxMTAvBgNV BAMTKDMzN0VENjhBRjcyODc0NTIxMzc0NTU2QkJCNUMwODg2Q0VGREM2NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZtyznSQckeUlNqgfMeRJjvpy0 v991kJ2bzaVmABFWVAxRwfJ8ieDVywhngEEAU0unPIiIslx+/esbotxwuAqpkdqg 8i1EJsUUvzgGpUVkR0xGIKcsxVuTID/BJYOKA5NQz6/PAUdwPt4KQ2C2+yZmH/yH ixfR9xK10O+XUZxnCpdIy8oTsOTo5kCRQ2jpoxm7DFrzG6Og76JcCcBLTP53C7Fu ler/45cBED9v8TPdXniS93L/ESDXp8NeBp/1g7rwk2oh2mF2ECOCfuSw27YRl5hH GbkClcDtay/0qgU0+MO82uvtiqAoBfrleCvOhk08KErHcdNaZKn3DY3wyZt7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUM37WivcodFITdFVru1wIhs79xnUwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzUzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA UDANBgkqhkiG9w0BAQsFAAOCAQEALVJyt0myPKUYBfsaEU6k6xa6+iTHy6kn5vGZ /ZUmRW8g/hW68W8JaR9DuNhLrbJ2R9hgjkR+tOo0HQiZ0sbAlw7IzWneMENz9pZb mBN5C3ssCS96iWxLf0HHlpjT3k2t0o+Rw5I8yrq6u2AzJGhhXA9p6bG8NEOQTCia G9ydLfMpYjSsrSbarAkzH7YkohJH6bHJC0FZU9n5Rg4y1+9YZH+SovsIudapdU4I dOe16H6FuJJEg39mxZlP995eiUUFBwV2rvNfw6kfnfASONRI84m0kQssXOY9vntD 0t2gcFuM7pU7IArEAtPAG6HpLTnbVWKPeH8ERkH3iHy32/6sIA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org