$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa File: 323430303a643934303a3a2f33322d3332203d3e20313336303838.roa (raw, json) Hash identifier: qlf861dkC0jBnJxRZZkWrrJmMKLad7lN/+nrPr773Js= Subject key identifier: 19:D1:25:63:8C:BB:55:D9:C8:78:9C:CF:FE:E0:EE:E9:32:91:8F:1E Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 3151CD5988DB081F56374545EE2E446B5556948C Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:38:48 +0000 ROA not before: Sat 15 Jun 2024 03:33:48 +0000 ROA not after: Sat 14 Jun 2025 03:38:48 +0000 asID: 136088 IP address blocks: 2400:d940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:51:cd:59:88:db:08:1f:56:37:45:45:ee:2e:44:6b:55:56:94:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:33:48 2024 GMT Not After : Jun 14 03:38:48 2025 GMT Subject: CN=19D125638CBB55D9C8789CCFFEE0EEE932918F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:3c:96:8a:cb:ab:2c:49:cc:c3:df:cd:c6: d1:c9:b7:91:08:6e:a1:0c:53:d5:e1:45:1c:c7:35: 7d:17:d5:e4:e1:fa:38:87:f7:23:5d:b7:1b:fb:9c: 91:cd:94:fc:6e:55:5b:c5:df:ee:25:07:42:4a:4d: 45:c9:8f:48:d7:85:4c:a8:b6:e9:f9:31:77:8d:6a: a8:ff:d8:d6:0c:23:8d:c7:3b:80:b4:53:5b:b7:3c: fb:1f:c3:40:57:ee:22:24:d6:61:c9:1a:39:8b:ac: f4:9f:44:61:c3:c1:38:5d:ba:7a:00:83:e8:4b:24: 0a:db:d9:82:cd:2f:c3:b9:ea:fc:1f:33:6f:6a:41: 00:3d:87:f3:ae:08:39:65:4d:60:af:49:5e:af:05: a8:9d:fd:72:a9:e8:15:8e:28:df:bb:4f:14:3d:57: 8c:1d:7a:14:89:44:b9:c1:b0:19:6d:f1:a6:47:91: b0:34:b7:c8:8b:96:7c:c1:32:e8:7b:87:d0:9b:c7: af:27:af:f2:5e:82:51:b0:e2:da:d3:3a:ef:07:85: ee:5a:28:01:1d:75:20:99:e1:c3:00:4a:66:b5:23: 7b:7a:83:d2:97:e2:2a:fa:46:ba:49:21:66:70:78: 22:34:f3:13:f7:75:38:48:d4:70:2f:d7:1e:d9:92: 84:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D1:25:63:8C:BB:55:D9:C8:78:9C:CF:FE:E0:EE:E9:32:91:8F:1E X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940::/32 Signature Algorithm: sha256WithRSAEncryption 00:6a:e9:76:ed:52:ff:1a:c4:ac:73:34:cd:1d:2a:9d:0d:b8: 17:d8:b1:e6:b0:38:25:8e:dd:89:63:ec:79:86:ab:ca:64:89: 16:10:79:82:d8:af:96:91:97:7f:29:ef:a9:7c:be:64:30:72: 83:dd:d8:b2:8c:c1:8e:de:aa:40:ab:d5:80:a6:ef:9d:9a:c2: 2e:c8:cb:40:2a:5c:cf:38:7c:14:a2:43:39:b9:5b:97:c7:a0: 50:75:5f:9e:78:0a:0a:42:67:83:b6:42:62:a9:da:7f:c4:b7: 98:c2:a2:19:a8:9e:eb:0c:0a:b6:7e:08:f4:1d:87:6b:53:a4: d1:29:81:a2:23:77:a9:bd:60:f5:ef:14:74:d3:a9:d6:b5:0e: 90:8e:f7:88:09:30:c7:45:65:c0:2d:dd:35:ec:c0:07:e1:75: 6b:e5:9c:cd:d2:4d:d4:1e:ee:14:64:b3:b3:5b:75:7e:84:8f: 43:38:fd:a0:8a:42:86:fd:78:67:f6:ed:9e:f9:d0:6a:12:01: 75:fa:30:c1:5d:be:59:18:1f:94:ff:fe:76:12:78:77:8e:7d: 4f:00:61:33:ff:45:ef:13:cb:eb:5c:a3:12:0c:1e:2f:45:02: ba:57:40:5d:3b:5c:d9:eb:c2:26:9f:50:28:37:c9:9f:1e:76: 25:0b:7f:27 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMVHNWYjbCB9WN0VF7i5Ea1VWlIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzMzNDhaFw0yNTA2MTQwMzM4NDhaMDMxMTAvBgNV BAMTKDE5RDEyNTYzOENCQjU1RDlDODc4OUNDRkZFRTBFRUU5MzI5MThGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3sDyWisurLEnMw9/NxtHJt5EI bqEMU9XhRRzHNX0X1eTh+jiH9yNdtxv7nJHNlPxuVVvF3+4lB0JKTUXJj0jXhUyo tun5MXeNaqj/2NYMI43HO4C0U1u3PPsfw0BX7iIk1mHJGjmLrPSfRGHDwThdunoA g+hLJArb2YLNL8O56vwfM29qQQA9h/OuCDllTWCvSV6vBaid/XKp6BWOKN+7TxQ9 V4wdehSJRLnBsBlt8aZHkbA0t8iLlnzBMuh7h9Cbx68nr/JeglGw4trTOu8Hhe5a KAEddSCZ4cMASma1I3t6g9KX4ir6RrpJIWZweCI08xP3dThI1HAv1x7ZkoS5AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGdElY4y7VdnIeJzP/uDu6TKRjx4wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA2UAwDQYJKoZI hvcNAQELBQADggEBAABq6XbtUv8axKxzNM0dKp0NuBfYseawOCWO3Ylj7HmGq8pk iRYQeYLYr5aRl38p76l8vmQwcoPd2LKMwY7eqkCr1YCm752awi7Iy0AqXM84fBSi Qzm5W5fHoFB1X554CgpCZ4O2QmKp2n/Et5jCohmonusMCrZ+CPQdh2tTpNEpgaIj d6m9YPXvFHTTqda1DpCO94gJMMdFZcAt3TXswAfhdWvlnM3STdQe7hRks7NbdX6E j0M4/aCKQob9eGf27Z750GoSAXX6MMFdvlkYH5T//nYSeHeOfU8AYTP/Re8Ty+tc oxIMHi9FArpXQF07XNnrwiafUCg3yZ8ediULfyc= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org