$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: RNFpYRHF4a3Y05xTroHkAwTvBAOVbEqea+i44/HVpfI= Subject key identifier: 8C:79:A5:D8:C2:39:0F:82:AD:98:9C:D3:8B:26:32:59:3C:32:62:7D Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 1DB5BD18D6025F6BFC22203044EC2743356896D0 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:20 +0000 ROA not before: Mon 01 Jul 2024 00:59:20 +0000 ROA not after: Mon 30 Jun 2025 01:04:20 +0000 asID: 136088 IP address blocks: 2400:d940:700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b5:bd:18:d6:02:5f:6b:fc:22:20:30:44:ec:27:43:35:68:96:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:20 2024 GMT Not After : Jun 30 01:04:20 2025 GMT Subject: CN=8C79A5D8C2390F82AD989CD38B2632593C32627D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:93:f3:da:4f:4a:c1:fb:5e:d0:d0:9e:7c:4b: a5:d2:dd:8c:aa:54:81:c6:6b:2b:20:7a:6f:15:a0: 70:ae:30:01:5c:3f:5f:f4:c1:11:aa:8c:84:ab:f1: 55:0e:40:e7:92:24:df:c9:0f:dd:a3:10:9e:b6:ea: 93:f9:68:97:ed:cb:66:f0:89:78:1b:eb:bb:d5:24: 89:b8:a2:f8:67:07:fc:54:7a:65:d1:70:c8:89:65: 78:3c:0e:22:89:26:e2:20:da:59:e9:8a:77:1f:a0: d4:fd:b2:97:72:55:7f:69:1a:53:df:d6:92:ef:26: 1d:79:bd:9a:fc:f8:91:03:ce:f6:2d:25:8c:8f:5b: 06:f9:85:ab:f5:74:14:e0:d0:4d:3d:bf:3a:7b:34: e5:8c:d9:a4:0f:99:98:b3:1a:07:68:74:35:aa:37: 38:6f:b6:30:5c:00:de:ca:cd:e2:63:83:d0:10:ce: be:7a:0e:89:ff:95:17:8d:31:03:d6:07:2e:e8:27: 69:84:e9:84:10:aa:5b:f6:d2:53:8c:e2:51:51:93: ca:d0:18:9d:cd:42:52:6c:cf:7d:3a:43:fb:40:87: bd:c7:84:ac:09:ba:51:a4:cc:ab:58:06:ca:0f:8f: 0b:02:d2:ab:b1:99:b6:c7:71:f2:70:f4:6a:3a:f2: b1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:79:A5:D8:C2:39:0F:82:AD:98:9C:D3:8B:26:32:59:3C:32:62:7D X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:700::/48 Signature Algorithm: sha256WithRSAEncryption 14:c8:36:74:f7:c2:05:bd:b2:06:61:99:10:c4:bd:9c:52:5f: de:a0:64:fd:0f:44:36:1e:14:a4:ac:1b:f9:22:32:5d:65:57: 90:1e:26:c8:ec:8c:2d:2d:88:c4:17:37:3b:02:d1:25:1d:cc: 7b:1e:71:f9:39:63:40:8e:17:09:30:79:00:a1:69:5e:dd:c6: 9f:1b:4d:f8:cf:de:57:34:7a:35:8b:e5:67:34:d7:95:26:04: af:15:ba:0a:9a:cf:80:da:b0:13:c1:b9:c0:d8:35:7c:19:27: 46:be:4d:8e:7a:4a:31:8f:d4:7c:76:5e:79:3e:36:b9:7b:d3: e4:7e:0e:b7:bb:36:26:ea:6e:f1:83:fc:23:1a:79:49:c1:be: 99:38:4f:c9:96:ed:67:cf:cd:93:ad:ab:3d:98:c6:93:9c:7e: 5b:cd:0d:ff:ef:24:08:b4:69:cb:89:87:e8:59:45:d3:4b:f0: 4f:de:be:36:70:9d:1f:0a:b6:b9:b3:6f:48:84:f9:42:3b:7d: cd:dc:1a:d6:3e:ff:4b:e9:31:5f:a5:09:8f:ee:ce:3c:4c:cb: 13:20:ca:e1:05:54:0a:18:06:7c:d7:c5:67:07:f2:11:96:66: c5:00:7a:bf:32:de:9a:a5:98:7a:9b:7b:9a:d2:77:30:75:c5: 87:56:b0:85 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHbW9GNYCX2v8IiAwROwnQzVoltAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjBaFw0yNTA2MzAwMTA0MjBaMDMxMTAvBgNV BAMTKDhDNzlBNUQ4QzIzOTBGODJBRDk4OUNEMzhCMjYzMjU5M0MzMjYyN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOk/PaT0rB+17Q0J58S6XS3Yyq VIHGaysgem8VoHCuMAFcP1/0wRGqjISr8VUOQOeSJN/JD92jEJ626pP5aJfty2bw iXgb67vVJIm4ovhnB/xUemXRcMiJZXg8DiKJJuIg2lnpincfoNT9spdyVX9pGlPf 1pLvJh15vZr8+JEDzvYtJYyPWwb5hav1dBTg0E09vzp7NOWM2aQPmZizGgdodDWq NzhvtjBcAN7KzeJjg9AQzr56Don/lReNMQPWBy7oJ2mE6YQQqlv20lOM4lFRk8rQ GJ3NQlJsz306Q/tAh73HhKwJulGkzKtYBsoPjwsC0quxmbbHcfJw9Go68rGFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjHml2MI5D4KtmJzTiyYyWTwyYn0wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAcAMA0GCSqGSIb3DQEBCwUAA4IBAQAUyDZ098IFvbIGYZkQxL2cUl/eoGT9D0Q2 HhSkrBv5IjJdZVeQHibI7IwtLYjEFzc7AtElHcx7HnH5OWNAjhcJMHkAoWle3caf G034z95XNHo1i+VnNNeVJgSvFboKms+A2rATwbnA2DV8GSdGvk2Oekoxj9R8dl55 Pja5e9Pkfg63uzYm6m7xg/wjGnlJwb6ZOE/Jlu1nz82Tras9mMaTnH5bzQ3/7yQI tGnLiYfoWUXTS/BP3r42cJ0fCra5s29IhPlCO33N3BrWPv9L6TFfpQmP7s48TMsT IMrhBVQKGAZ818VnB/IRlmbFAHq/Mt6apZh6m3ua0ncwdcWHVrCF -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org