$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: iyW9TPmWhBYjJhG6ktuX+iOmAVfn32yusUoXn1u8AaY= Subject key identifier: DA:30:B2:E0:39:86:B5:07:42:80:EC:7E:FA:D1:F9:CD:B7:39:24:24 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 04155CEAB2DD570A2A8BAE332DF35F2B051C4C78 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:20 +0000 ROA not before: Mon 01 Jul 2024 00:59:20 +0000 ROA not after: Mon 30 Jun 2025 01:04:20 +0000 asID: 136088 IP address blocks: 2400:d940:70::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:15:5c:ea:b2:dd:57:0a:2a:8b:ae:33:2d:f3:5f:2b:05:1c:4c:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:20 2024 GMT Not After : Jun 30 01:04:20 2025 GMT Subject: CN=DA30B2E03986B5074280EC7EFAD1F9CDB7392424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:dc:d2:0a:cb:b2:32:a4:be:48:05:c8:4b: 72:c9:f4:89:fe:36:9b:60:a5:ac:8d:75:76:3c:19: b2:d0:03:77:8f:2d:2c:25:23:a0:f1:f0:57:f9:2b: 38:5e:9c:84:b9:28:a3:87:70:70:09:64:a5:9d:4a: c1:a4:f6:47:c8:1b:7a:23:7a:01:47:35:0d:de:c8: 46:24:ca:25:94:66:f4:c5:02:fc:2b:d3:5c:6b:37: c6:6f:74:a6:2f:79:49:2a:50:ee:ef:ef:6b:f0:c6: 2b:c2:38:f5:ca:74:56:3d:e9:a0:91:2f:29:ff:5d: 4d:c4:38:2e:9b:cf:e3:a6:27:d3:01:7e:bf:74:7d: 23:61:f5:84:bb:df:a4:31:0b:e0:65:f6:fb:f0:78: b2:f2:94:d9:9b:8b:b8:41:fa:6a:e3:4e:e2:e3:d5: 19:e2:f5:c1:56:66:69:98:52:ff:c5:11:78:6c:40: eb:f9:8b:23:3e:7e:f2:88:af:f1:1b:be:38:01:b6: d2:74:7a:ad:0c:e9:47:4d:26:9c:7d:e9:05:18:cd: 01:7c:8d:22:aa:65:34:34:42:54:f8:6f:96:fc:a2: ec:1e:fb:7d:93:c1:25:44:ac:e7:66:b9:1f:bd:be: 5d:02:05:56:6e:d8:af:4e:43:d3:32:d8:dd:9d:03: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:30:B2:E0:39:86:B5:07:42:80:EC:7E:FA:D1:F9:CD:B7:39:24:24 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:70::/48 Signature Algorithm: sha256WithRSAEncryption 9a:e3:46:79:5a:2c:e9:c4:8f:67:b8:e4:b9:3e:4d:d4:e8:8c: a8:20:38:ba:51:35:11:55:d7:f0:3a:b0:bb:78:d2:9b:5c:90: 67:21:bb:a5:04:34:75:c3:22:c0:82:d9:6c:51:5f:06:c2:01: cb:c7:5b:b4:2c:20:8d:68:2f:af:1e:24:89:55:7a:c4:fb:a0: 3c:9d:1c:bd:15:18:21:98:d7:65:8f:19:cb:d0:47:94:22:c6: 6d:48:81:73:42:76:c1:bd:00:52:a5:21:64:bd:ff:20:3f:87: 23:4f:4e:59:71:cb:fc:cc:f3:02:8b:5f:34:26:ef:9c:6d:b5: 3d:03:e6:ce:e0:7a:40:86:f4:f1:fa:a4:20:59:46:91:0d:1e: c6:b2:c2:71:17:c2:cb:95:00:41:67:cf:e4:7e:24:fa:12:68: 78:38:bd:53:64:83:53:b7:8e:fb:05:ca:20:03:0b:34:28:1d: a3:b2:e8:16:54:6b:29:ac:33:cd:c6:98:12:c7:8d:ff:c1:f9: 13:e9:80:ba:58:68:05:c6:c7:ef:33:6e:ba:6e:3a:a9:7e:7c: 24:b3:d2:8e:f2:7a:0c:30:8f:31:f8:ec:2b:9a:66:30:97:ed: ae:71:3a:d5:fb:3b:be:9b:59:82:df:9a:77:61:79:93:de:3d: 12:c9:a5:ac -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBBVc6rLdVwoqi64zLfNfKwUcTHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjBaFw0yNTA2MzAwMTA0MjBaMDMxMTAvBgNV BAMTKERBMzBCMkUwMzk4NkI1MDc0MjgwRUM3RUZBRDFGOUNEQjczOTI0MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4v9zSCsuyMqS+SAXIS3LJ9In+ NptgpayNdXY8GbLQA3ePLSwlI6Dx8Ff5KzhenIS5KKOHcHAJZKWdSsGk9kfIG3oj egFHNQ3eyEYkyiWUZvTFAvwr01xrN8ZvdKYveUkqUO7v72vwxivCOPXKdFY96aCR Lyn/XU3EOC6bz+OmJ9MBfr90fSNh9YS736QxC+Bl9vvweLLylNmbi7hB+mrjTuLj 1Rni9cFWZmmYUv/FEXhsQOv5iyM+fvKIr/EbvjgBttJ0eq0M6UdNJpx96QUYzQF8 jSKqZTQ0QlT4b5b8ouwe+32TwSVErOdmuR+9vl0CBVZu2K9OQ9My2N2dAy61AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2jCy4DmGtQdCgOx++tH5zbc5JCQwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzczMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA cDANBgkqhkiG9w0BAQsFAAOCAQEAmuNGeVos6cSPZ7jkuT5N1OiMqCA4ulE1EVXX 8Dqwu3jSm1yQZyG7pQQ0dcMiwILZbFFfBsIBy8dbtCwgjWgvrx4kiVV6xPugPJ0c vRUYIZjXZY8Zy9BHlCLGbUiBc0J2wb0AUqUhZL3/ID+HI09OWXHL/MzzAotfNCbv nG21PQPmzuB6QIb08fqkIFlGkQ0exrLCcRfCy5UAQWfP5H4k+hJoeDi9U2SDU7eO +wXKIAMLNCgdo7LoFlRrKawzzcaYEseN/8H5E+mAulhoBcbH7zNuum46qX58JLPS jvJ6DDCPMfjsK5pmMJftrnE61fs7vptZgt+ad2F5k949EsmlrA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org