$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: L7+n4epUrFpGvSvBN74HBi8pkHEmUp3RzIqyrv/xLq0= Subject key identifier: B4:AC:85:E5:42:DE:C2:E7:99:42:78:B9:76:FF:27:77:CD:49:43:43 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 4DA89F982E0CF0743ADE3651E615D7C85480C083 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:21 +0000 ROA not before: Mon 01 Jul 2024 00:59:21 +0000 ROA not after: Mon 30 Jun 2025 01:04:21 +0000 asID: 136088 IP address blocks: 2400:d940:900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a8:9f:98:2e:0c:f0:74:3a:de:36:51:e6:15:d7:c8:54:80:c0:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:21 2024 GMT Not After : Jun 30 01:04:21 2025 GMT Subject: CN=B4AC85E542DEC2E7994278B976FF2777CD494343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:6d:ef:e1:30:56:55:fb:7a:b1:a7:3a:28: 1e:8b:f2:a0:28:04:11:cb:d4:da:35:f1:6e:68:d0: 33:9d:01:6a:e8:59:24:30:90:3f:45:ba:19:d4:5f: 71:4e:83:39:b2:13:f2:58:38:a1:a7:b4:61:54:07: 73:eb:30:11:8e:6d:e2:83:84:f1:27:5c:7d:41:5e: 9a:1b:21:57:87:72:ca:ec:6f:fc:39:31:6b:93:63: fb:6a:ef:81:f2:5d:ab:51:5a:c2:38:2a:72:dc:00: 29:41:18:7c:09:f4:2a:f1:85:de:6e:c0:a5:21:f2: 67:ee:27:b8:61:74:20:06:45:94:cc:88:a2:8b:e1: f4:33:53:38:9c:d7:64:da:bf:eb:3b:d2:7b:1d:0c: a6:67:96:a0:14:58:eb:fd:6a:06:1d:d0:f7:9a:f5: 83:98:b0:de:11:f4:62:7f:e7:5e:c7:91:6c:4f:9f: b7:43:39:06:b4:99:2e:61:8b:53:f2:67:28:70:0f: f2:f5:0c:de:b8:19:2c:04:79:3f:51:5f:8e:65:e1: bf:1f:28:7c:e8:ae:e2:94:09:dc:0c:74:70:c9:0f: f8:4d:57:48:c4:68:31:f1:57:a8:17:f8:41:3b:f7: 7e:7e:af:7f:70:28:d6:b9:ce:ff:42:07:67:e5:85: 7f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AC:85:E5:42:DE:C2:E7:99:42:78:B9:76:FF:27:77:CD:49:43:43 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:900::/48 Signature Algorithm: sha256WithRSAEncryption 02:cd:16:42:2b:1d:62:7e:55:38:cc:60:fa:9f:a4:12:12:5f: c8:e2:01:d3:52:28:24:e4:9c:26:f3:ef:32:fe:ac:05:b7:01: b1:82:63:9e:0e:db:e2:43:00:a4:66:ec:7d:45:1c:0c:5c:e5: 07:25:67:2f:4c:05:eb:06:c4:ce:67:e5:73:8d:23:b1:57:41: 72:fb:2d:93:de:db:7a:ab:be:65:42:55:bb:6c:e6:bd:20:6b: b8:f9:cc:5c:e2:7f:2b:f2:5b:61:c1:87:74:bb:07:d0:f9:84: 2f:51:41:9e:10:d4:89:07:cc:fc:32:a8:77:e1:ea:cf:96:1d: 7a:18:c2:ec:2b:3c:81:ac:8a:74:b3:02:19:71:24:62:13:40: 58:ef:89:2e:25:04:73:dc:f4:c5:ae:c9:d7:13:af:4a:60:8a: d9:3e:9d:b0:03:bc:ac:87:9d:fd:63:82:de:89:e0:c7:10:9c: 39:ec:84:2b:f8:3d:10:94:3a:5d:75:d6:3d:a2:82:a7:a9:33: 33:26:7c:ca:ef:70:50:e3:01:b1:35:cb:25:a8:24:ca:83:8b: a6:b6:ec:2f:64:cd:bb:8d:a2:a7:40:72:4e:51:d1:41:a0:b3: 61:82:1f:dd:d1:d5:44:54:12:23:7c:c8:c7:8d:b8:12:8a:a1: 83:76:72:5d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTaifmC4M8HQ63jZR5hXXyFSAwIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjFaFw0yNTA2MzAwMTA0MjFaMDMxMTAvBgNV BAMTKEI0QUM4NUU1NDJERUMyRTc5OTQyNzhCOTc2RkYyNzc3Q0Q0OTQzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB723v4TBWVft6sac6KB6L8qAo BBHL1No18W5o0DOdAWroWSQwkD9FuhnUX3FOgzmyE/JYOKGntGFUB3PrMBGObeKD hPEnXH1BXpobIVeHcsrsb/w5MWuTY/tq74HyXatRWsI4KnLcAClBGHwJ9Crxhd5u wKUh8mfuJ7hhdCAGRZTMiKKL4fQzUzic12Tav+s70nsdDKZnlqAUWOv9agYd0Pea 9YOYsN4R9GJ/517HkWxPn7dDOQa0mS5hi1PyZyhwD/L1DN64GSwEeT9RX45l4b8f KHzoruKUCdwMdHDJD/hNV0jEaDHxV6gX+EE7935+r39wKNa5zv9CB2flhX99AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtKyF5ULewueZQni5dv8nd81JQ0MwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAkAMA0GCSqGSIb3DQEBCwUAA4IBAQACzRZCKx1iflU4zGD6n6QSEl/I4gHTUigk 5Jwm8+8y/qwFtwGxgmOeDtviQwCkZux9RRwMXOUHJWcvTAXrBsTOZ+VzjSOxV0Fy +y2T3tt6q75lQlW7bOa9IGu4+cxc4n8r8lthwYd0uwfQ+YQvUUGeENSJB8z8Mqh3 4erPlh16GMLsKzyBrIp0swIZcSRiE0BY74kuJQRz3PTFrsnXE69KYIrZPp2wA7ys h539Y4LeieDHEJw57IQr+D0QlDpdddY9ooKnqTMzJnzK73BQ4wGxNcslqCTKg4um tuwvZM27jaKnQHJOUdFBoLNhgh/d0dVEVBIjfMjHjbgSiqGDdnJd -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:21 2024 by rpki-client on console-fra.rpki-client.org