$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: zjrcKrFr9aMGx/ZEMncl51qSmuAxDcxz6gkBdoAaiAc= Subject key identifier: 3C:70:D8:F7:5C:7B:FB:AF:0D:44:01:B7:CB:80:29:D3:60:57:09:04 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 3EDC53D561D4B05578106E98500D172F786ED798 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:39:41 +0000 ROA not before: Sat 15 Jun 2024 03:34:41 +0000 ROA not after: Sat 14 Jun 2025 03:39:41 +0000 asID: 136088 IP address blocks: 2400:d940:baba::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 21:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:dc:53:d5:61:d4:b0:55:78:10:6e:98:50:0d:17:2f:78:6e:d7:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:34:41 2024 GMT Not After : Jun 14 03:39:41 2025 GMT Subject: CN=3C70D8F75C7BFBAF0D4401B7CB8029D360570904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ad:95:64:c2:71:c0:72:02:be:26:b2:85:13: e2:47:48:1c:dc:6b:a7:52:bb:96:56:b6:af:2d:73: 07:10:41:1d:1b:b6:e7:74:11:41:9f:be:d6:68:93: 6e:cf:4a:e7:80:fe:b6:80:0b:4f:c3:40:fc:f6:93: 23:f8:7d:28:38:d0:1e:58:1f:8a:99:d6:af:14:a2: 50:76:b4:ae:0a:cd:d0:e1:69:d1:1c:3b:d6:fb:41: ec:87:82:77:52:ba:5c:f9:33:03:9b:43:ee:c9:cc: a6:b8:1f:d7:94:2f:3b:01:ad:d2:0f:27:c9:1a:af: ff:e1:8e:49:8f:cb:34:c2:c4:bb:e7:75:33:24:44: af:e8:ac:8d:b9:a1:bc:c8:82:e8:15:51:bd:57:a7: 44:cc:a6:a8:40:50:06:82:5f:51:90:89:3c:e9:76: 8c:0b:58:e3:db:1b:3f:4f:c2:af:b0:31:cd:bf:d5: 96:d8:d4:25:7e:71:7c:7e:9e:01:93:80:82:02:ee: ba:20:e8:af:9b:27:c5:bb:49:33:e4:4f:35:0e:ed: 03:d9:a5:f9:36:0f:83:1f:9b:33:7a:2f:84:f1:18: 7b:16:d8:96:70:53:8d:e4:5a:2a:cb:7f:cf:68:6f: 02:1a:2b:ff:96:df:81:34:76:b0:bd:e2:55:1a:41: 2b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:70:D8:F7:5C:7B:FB:AF:0D:44:01:B7:CB:80:29:D3:60:57:09:04 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baba::/48 Signature Algorithm: sha256WithRSAEncryption 8e:5c:24:80:77:02:e4:e3:1e:0e:54:26:1f:4f:e0:a7:91:18: 8d:b8:2a:d5:39:68:fc:07:5e:6f:69:a4:98:90:99:bc:7a:90: 3f:6d:92:86:06:ad:b6:a3:64:ee:7c:e1:9a:a0:8c:29:ce:58: c4:52:1c:54:82:2c:56:d8:90:dc:bc:20:31:a7:89:d7:9e:6f: b2:be:91:89:db:62:27:67:34:2b:ac:a4:87:57:c9:5c:78:b4: 70:4f:1b:0f:20:e8:e1:24:40:f0:9b:d6:a0:e9:46:f8:ff:82: 28:5f:34:20:4c:3d:12:95:fb:f8:2a:a9:7a:db:cd:8e:eb:bf: 32:33:e1:62:14:6e:06:03:e8:d5:a1:27:77:4d:54:fd:0f:b8: c5:24:f3:13:d9:78:0f:b3:76:7e:22:05:10:80:a2:58:17:64: b0:69:b9:02:a2:48:9a:82:19:a6:bd:a5:f2:e8:da:70:f2:8b: 57:8e:c0:5a:39:6b:c3:7b:cc:4c:06:fa:66:69:e1:05:c7:1f: 8d:e2:00:be:9a:6f:e7:aa:60:98:d2:ec:cc:8c:5d:41:b0:bb: c5:9e:c3:6f:f3:58:b0:c6:a0:92:1b:23:59:3d:4b:82:a3:aa: 72:fe:9c:0a:53:b2:5b:0b:68:87:cd:bb:89:1c:1f:16:be:ad: 00:4a:3b:22 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPtxT1WHUsFV4EG6YUA0XL3hu15gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzM0NDFaFw0yNTA2MTQwMzM5NDFaMDMxMTAvBgNV BAMTKDNDNzBEOEY3NUM3QkZCQUYwRDQ0MDFCN0NCODAyOUQzNjA1NzA5MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGrZVkwnHAcgK+JrKFE+JHSBzc a6dSu5ZWtq8tcwcQQR0btud0EUGfvtZok27PSueA/raAC0/DQPz2kyP4fSg40B5Y H4qZ1q8UolB2tK4KzdDhadEcO9b7QeyHgndSulz5MwObQ+7JzKa4H9eULzsBrdIP J8kar//hjkmPyzTCxLvndTMkRK/orI25obzIgugVUb1Xp0TMpqhAUAaCX1GQiTzp dowLWOPbGz9Pwq+wMc2/1ZbY1CV+cXx+ngGTgIIC7rog6K+bJ8W7STPkTzUO7QPZ pfk2D4MfmzN6L4TxGHsW2JZwU43kWirLf89obwIaK/+W34E0drC94lUaQSsLAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUPHDY91x7+68NRAG3y4Ap02BXCQQwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYyNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAurowDQYJKoZIhvcNAQELBQADggEBAI5cJIB3AuTjHg5UJh9P4KeRGI24KtU5 aPwHXm9ppJiQmbx6kD9tkoYGrbajZO584ZqgjCnOWMRSHFSCLFbYkNy8IDGnidee b7K+kYnbYidnNCuspIdXyVx4tHBPGw8g6OEkQPCb1qDpRvj/gihfNCBMPRKV+/gq qXrbzY7rvzIz4WIUbgYD6NWhJ3dNVP0PuMUk8xPZeA+zdn4iBRCAolgXZLBpuQKi SJqCGaa9pfLo2nDyi1eOwFo5a8N7zEwG+mZp4QXHH43iAL6ab+eqYJjS7MyMXUGw u8Wew2/zWLDGoJIbI1k9S4KjqnL+nApTslsLaIfNu4kcHxa+rQBKOyI= -----END CERTIFICATE-----Generated at Wed Jun 19 21:14:32 2024 by rpki-client on console-ams.rpki-client.org