$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: sjGKVbmqhkwUBYIG9EW3ESTYbDKUVnyKhN/xWfNMfpE= Subject key identifier: 6D:BF:EE:BB:A2:F7:E2:25:40:8B:70:F2:71:7A:B4:8A:F9:A2:65:8D Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 1F0811655E44A822E280067458D333E8788117A1 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:19 +0000 ROA not before: Mon 01 Jul 2024 00:59:19 +0000 ROA not after: Mon 30 Jun 2025 01:04:19 +0000 asID: 136088 IP address blocks: 2400:d940:80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:08:11:65:5e:44:a8:22:e2:80:06:74:58:d3:33:e8:78:81:17:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:19 2024 GMT Not After : Jun 30 01:04:19 2025 GMT Subject: CN=6DBFEEBBA2F7E225408B70F2717AB48AF9A2658D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b7:cd:b6:67:ca:c2:25:1a:89:9c:f3:1d:d5: 07:0a:51:3a:2d:43:53:d6:da:90:67:11:16:34:d1: 1a:8d:78:e0:58:9c:e3:24:1d:5a:bf:b3:99:43:64: 91:66:9b:5f:29:53:a6:26:54:20:8a:a1:ee:7a:58: 2e:61:3a:0c:a4:af:e2:cb:91:de:47:1e:53:79:78: e8:48:76:61:4d:fd:76:45:b9:39:58:ff:bd:eb:0a: 43:8e:ab:02:0d:a4:d6:cf:29:23:e2:d4:74:04:4d: 11:c9:d5:dd:57:5c:25:60:07:a7:c7:6a:d4:9a:68: dc:dd:e7:2b:c9:83:07:7f:7d:fc:37:ba:6a:a3:7f: 85:5a:2c:02:bf:d5:70:3d:68:eb:04:23:1d:68:3d: 33:c3:00:c8:a5:61:70:b7:08:8c:6a:4a:b0:b9:31: 8b:5e:bf:20:69:dc:af:33:2c:27:f1:57:55:95:9d: 2a:93:f8:bb:36:b8:3a:d5:47:82:9b:f2:43:53:2c: 15:fb:ab:79:1e:d4:f3:16:5d:a3:13:d6:38:64:3f: 17:69:d8:cf:65:96:00:44:fb:50:16:b0:b5:78:f2: 2f:81:1e:43:1f:cb:8f:82:b2:be:37:11:59:6a:2a: 43:8a:11:aa:34:67:c2:d8:e8:62:c7:95:aa:5e:7f: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BF:EE:BB:A2:F7:E2:25:40:8B:70:F2:71:7A:B4:8A:F9:A2:65:8D X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:80::/48 Signature Algorithm: sha256WithRSAEncryption 9a:3b:ec:bf:53:af:01:38:68:62:2b:09:50:e5:b4:af:a1:f5: 8e:60:3a:19:85:f7:9d:59:c6:bf:f7:8e:c4:64:f6:61:42:48: 3b:f4:37:2f:8c:50:85:96:57:7d:00:c4:73:53:28:50:ae:a3: a8:32:b5:95:93:f7:de:b3:0a:3f:48:f3:24:5b:16:2c:1c:1d: b9:fb:b0:92:b5:5c:10:05:df:55:e5:f1:1d:f9:31:e1:44:db: 3f:20:2a:54:0e:35:13:32:ba:b6:bf:1b:ec:7e:06:2d:17:6c: 08:de:a9:9a:d7:39:a2:16:83:14:70:a1:28:fc:60:93:bd:e6: ef:05:7f:28:11:be:58:17:b7:83:dc:c4:d0:82:f0:29:58:cb: 43:2e:a5:80:5c:7e:5e:5b:d5:06:cb:f7:22:63:df:b3:3a:80: 8a:bc:c8:e0:ee:c4:24:9d:93:cb:44:d1:e1:23:ed:38:e0:0c: 6e:43:d9:93:ab:f5:c6:bc:19:cb:0d:1c:15:f8:8a:5f:53:e8: 91:25:48:37:8f:09:97:38:e3:59:40:8e:64:2f:53:5e:a0:3f: 5b:70:84:80:91:fc:ff:8b:b4:cd:2a:31:82:05:19:0f:5c:ba: ff:a2:9a:3a:74:8a:b3:5d:f8:62:95:18:e1:3d:86:9f:af:0c: 2b:54:5b:01 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHwgRZV5EqCLigAZ0WNMz6HiBF6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MTlaFw0yNTA2MzAwMTA0MTlaMDMxMTAvBgNV BAMTKDZEQkZFRUJCQTJGN0UyMjU0MDhCNzBGMjcxN0FCNDhBRjlBMjY1OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5t822Z8rCJRqJnPMd1QcKUTot Q1PW2pBnERY00RqNeOBYnOMkHVq/s5lDZJFmm18pU6YmVCCKoe56WC5hOgykr+LL kd5HHlN5eOhIdmFN/XZFuTlY/73rCkOOqwINpNbPKSPi1HQETRHJ1d1XXCVgB6fH atSaaNzd5yvJgwd/ffw3umqjf4VaLAK/1XA9aOsEIx1oPTPDAMilYXC3CIxqSrC5 MYtevyBp3K8zLCfxV1WVnSqT+Ls2uDrVR4Kb8kNTLBX7q3ke1PMWXaMT1jhkPxdp 2M9llgBE+1AWsLV48i+BHkMfy4+Csr43EVlqKkOKEao0Z8LY6GLHlapef/IfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUbb/uu6L34iVAi3DycXq0ivmiZY0wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA gDANBgkqhkiG9w0BAQsFAAOCAQEAmjvsv1OvAThoYisJUOW0r6H1jmA6GYX3nVnG v/eOxGT2YUJIO/Q3L4xQhZZXfQDEc1MoUK6jqDK1lZP33rMKP0jzJFsWLBwdufuw krVcEAXfVeXxHfkx4UTbPyAqVA41EzK6tr8b7H4GLRdsCN6pmtc5ohaDFHChKPxg k73m7wV/KBG+WBe3g9zE0ILwKVjLQy6lgFx+XlvVBsv3ImPfszqAirzI4O7EJJ2T y0TR4SPtOOAMbkPZk6v1xrwZyw0cFfiKX1PokSVIN48JlzjjWUCOZC9TXqA/W3CE gJH8/4u0zSoxggUZD1y6/6KaOnSKs134YpUY4T2Gn68MK1RbAQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org