$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3830303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3830303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: iwJPho2s6qq0KyeSOEQhEHDLd1n6Oem8LSKb+Ccq3l8= Subject key identifier: B9:07:00:CB:44:F8:36:53:1A:B3:C0:1A:58:86:1B:A9:75:13:88:23 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7273009F259F16BAE4BDAAEB53529BE389A82A41 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3830303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:20 +0000 ROA not before: Mon 01 Jul 2024 00:59:20 +0000 ROA not after: Mon 30 Jun 2025 01:04:20 +0000 asID: 136088 IP address blocks: 2400:d940:800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:73:00:9f:25:9f:16:ba:e4:bd:aa:eb:53:52:9b:e3:89:a8:2a:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:20 2024 GMT Not After : Jun 30 01:04:20 2025 GMT Subject: CN=B90700CB44F836531AB3C01A58861BA975138823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:99:43:48:09:0b:e6:8f:7b:31:9e:08:0d: 5c:5a:bf:d7:0a:c9:e4:c3:2a:c2:a3:d6:3c:c8:d5: 7b:00:03:eb:15:8a:af:b4:3e:40:f4:10:46:91:55: 6d:22:83:19:ef:a4:28:ea:c0:02:85:0b:20:07:c2: 23:bf:33:1b:b5:c2:cc:f3:4c:55:ab:5f:06:ce:94: b2:01:ca:cb:82:57:8c:c8:5b:c9:fa:f2:2e:ce:3c: 7a:46:c9:8e:99:72:89:1e:38:02:45:df:9e:f6:a6: fc:e1:06:2b:81:97:08:36:b2:20:03:6b:e5:05:16: 71:4c:29:95:d6:7d:56:c5:7c:bf:d6:1a:4d:5e:b3: 33:1e:54:8f:dc:fb:f3:a6:30:0e:25:39:4f:74:bc: 66:44:df:75:86:3d:7a:1b:fb:40:82:83:4d:00:ae: e5:29:f1:09:d2:14:59:af:ff:f2:fc:75:6b:44:b0: 3d:b9:6a:d8:7a:4b:81:e1:f7:1f:74:62:a6:9b:30: 07:29:f0:99:e0:34:56:79:a0:d3:c1:9b:d9:09:ea: 6c:d2:54:10:47:77:3e:3d:4f:a2:80:52:d8:1a:ac: 53:ad:1f:5b:45:8c:5f:09:a0:7e:64:24:5a:49:81: f2:bb:68:f0:6f:a3:5e:76:e0:da:6e:8f:fc:db:77: 42:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:07:00:CB:44:F8:36:53:1A:B3:C0:1A:58:86:1B:A9:75:13:88:23 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3830303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:800::/48 Signature Algorithm: sha256WithRSAEncryption 59:b4:2d:df:4f:af:d5:ca:de:63:bb:48:8e:db:b0:a2:29:0e: 08:f1:e3:d4:81:d3:d3:80:5a:9e:93:fd:ce:fd:60:6b:05:3c: 1b:74:85:55:4a:da:0f:77:ab:5e:03:05:f5:9b:2c:1c:da:5e: 0f:00:17:27:cb:8a:42:f8:cc:47:d3:18:65:36:4c:ed:4f:27: ee:ec:de:6e:f5:05:f8:33:4e:54:27:fe:a1:11:ca:bc:32:39: 20:2a:80:f4:5a:ef:6b:49:d2:43:a0:eb:e8:f5:6d:71:9a:a3: d5:8e:1c:ca:19:97:bd:50:e7:ca:13:93:23:70:07:cf:c9:25: 2b:84:b9:24:8f:14:1f:d0:58:b4:2c:db:a5:43:03:4e:67:10: 02:0e:2c:b7:d4:4b:ed:f2:c5:bb:cf:4e:23:92:f5:cb:28:58: 08:3b:00:2f:44:6d:fd:95:8c:3f:24:ab:39:9a:39:b5:15:7e: f6:da:8c:2f:08:fc:f9:60:d1:6b:b5:a0:19:26:cd:60:29:99: b0:a1:40:92:2e:e8:c5:9d:13:8c:c2:4d:83:63:df:2b:a7:23: 23:cd:61:db:84:97:8d:98:a3:74:de:9b:ac:40:d0:f2:5e:6c: bc:47:81:33:b1:dd:59:09:83:03:d2:b0:7e:f0:7d:70:b8:1a: cd:d5:dd:97 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcnMAnyWfFrrkvarrU1Kb44moKkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjBaFw0yNTA2MzAwMTA0MjBaMDMxMTAvBgNV BAMTKEI5MDcwMENCNDRGODM2NTMxQUIzQzAxQTU4ODYxQkE5NzUxMzg4MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtfplDSAkL5o97MZ4IDVxav9cK yeTDKsKj1jzI1XsAA+sViq+0PkD0EEaRVW0igxnvpCjqwAKFCyAHwiO/Mxu1wszz TFWrXwbOlLIBysuCV4zIW8n68i7OPHpGyY6ZcokeOAJF3572pvzhBiuBlwg2siAD a+UFFnFMKZXWfVbFfL/WGk1eszMeVI/c+/OmMA4lOU90vGZE33WGPXob+0CCg00A ruUp8QnSFFmv//L8dWtEsD25ath6S4Hh9x90YqabMAcp8JngNFZ5oNPBm9kJ6mzS VBBHdz49T6KAUtgarFOtH1tFjF8JoH5kJFpJgfK7aPBvo1524Npuj/zbd0KjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuQcAy0T4NlMas8AaWIYbqXUTiCMwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzgzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAgAMA0GCSqGSIb3DQEBCwUAA4IBAQBZtC3fT6/Vyt5ju0iO27CiKQ4I8ePUgdPT gFqek/3O/WBrBTwbdIVVStoPd6teAwX1mywc2l4PABcny4pC+MxH0xhlNkztTyfu 7N5u9QX4M05UJ/6hEcq8MjkgKoD0Wu9rSdJDoOvo9W1xmqPVjhzKGZe9UOfKE5Mj cAfPySUrhLkkjxQf0Fi0LNulQwNOZxACDiy31Evt8sW7z04jkvXLKFgIOwAvRG39 lYw/JKs5mjm1FX722owvCPz5YNFrtaAZJs1gKZmwoUCSLujFnROMwk2DY98rpyMj zWHbhJeNmKN03pusQNDyXmy8R4Ezsd1ZCYMD0rB+8H1wuBrN1d2X -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org