$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: KXDKmuqyOo6vK3hIz+8YQ8vXeK8vyv9j98U886bNxZU= Subject key identifier: B8:37:46:C0:E4:DA:23:91:B7:CF:13:BA:12:94:56:33:01:D4:10:F6 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7DBFDE3BDDB5BD4309EC9C221BAD67644D99140B Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:41:39 +0000 ROA not before: Sat 15 Jun 2024 03:36:39 +0000 ROA not after: Sat 14 Jun 2025 03:41:39 +0000 asID: 136088 IP address blocks: 2400:d940:baca::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:bf:de:3b:dd:b5:bd:43:09:ec:9c:22:1b:ad:67:64:4d:99:14:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:36:39 2024 GMT Not After : Jun 14 03:41:39 2025 GMT Subject: CN=B83746C0E4DA2391B7CF13BA1294563301D410F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:ed:f6:28:18:3c:34:b0:4e:70:71:77:23: b4:14:6c:58:c2:07:03:ae:69:84:74:99:3f:d8:6e: 9e:1c:36:d0:fa:83:e8:9c:50:18:2e:32:cc:2c:7c: f1:4a:3d:f3:d4:a7:04:45:4a:54:6f:77:f6:88:bc: f0:eb:a9:05:b3:66:d2:c6:5e:a1:84:3a:81:1a:9d: c1:19:6c:9a:15:cf:55:f1:8e:06:d9:7c:a7:9e:e3: 5f:8f:61:c9:f3:34:89:0d:8b:b0:f4:49:dd:90:5e: d9:21:8d:1a:16:8a:dc:69:bb:e3:17:e3:de:d7:e2: ec:48:79:05:cd:9a:07:81:ee:b1:2b:a6:1c:85:09: b8:ad:87:c1:97:fa:8b:bd:b0:82:73:cc:2c:50:33: a1:e4:2c:e1:89:02:ab:b3:62:64:7b:03:42:eb:fb: e5:82:0b:c2:eb:9a:03:22:07:08:ab:3d:77:29:86: 61:3e:8f:1b:0e:47:29:90:42:3c:4a:c4:9f:82:0d: 9c:c2:03:26:21:03:01:93:19:92:53:50:5e:4b:37: 9c:d8:a9:89:a5:78:a1:50:ac:3c:27:4c:c6:a4:8a: 45:ca:6b:cc:84:b8:24:ab:5e:e0:78:a9:bc:98:2d: 44:86:42:19:c6:33:f9:6e:6b:77:f3:f6:74:65:7a: 24:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:37:46:C0:E4:DA:23:91:B7:CF:13:BA:12:94:56:33:01:D4:10:F6 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baca::/48 Signature Algorithm: sha256WithRSAEncryption 10:a4:44:22:37:c8:7a:41:21:82:f2:e6:e5:76:d4:78:d7:8f: 83:f7:49:14:e5:07:6a:a6:7c:b5:ce:fa:a8:93:18:e2:38:aa: a4:f2:81:d4:94:e3:1b:ea:b4:db:6b:9b:44:9d:48:71:b0:89: 11:9a:5d:52:51:01:2b:7d:6a:98:10:f6:10:a0:53:e3:c8:ad: 75:fc:1e:77:cb:e8:03:22:29:86:f8:03:f0:b3:36:0e:c8:55: 5e:90:55:32:80:2d:5e:34:90:03:2f:fb:15:67:4f:25:b2:89: 4f:db:fb:0b:9e:b1:94:24:31:d5:e3:ab:34:b2:08:88:e6:d1: 34:b7:f1:b3:ad:a3:27:1e:a2:e5:e7:ba:cb:dc:76:9b:98:f5: 83:ed:90:10:7c:6c:fb:83:c5:3b:08:4b:aa:9d:98:68:5a:31: 6d:0b:2d:54:04:e6:1f:39:a8:b6:10:1d:5d:bc:e0:7e:5d:79: 47:ff:bb:e2:f4:96:98:a4:c6:ba:4f:c0:37:3e:be:08:54:5c: f4:e5:5c:fd:50:b9:2f:a8:c7:d4:d5:54:a7:66:91:2d:3d:a0: 7f:6f:58:3d:ae:27:48:37:20:bb:ac:d4:ec:03:82:36:c4:ef: ad:f1:47:2c:a3:a9:73:99:3b:c9:c1:8f:51:bc:cb:cd:79:c1: 57:7a:05:8d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfb/eO921vUMJ7JwiG61nZE2ZFAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzM2MzlaFw0yNTA2MTQwMzQxMzlaMDMxMTAvBgNV BAMTKEI4Mzc0NkMwRTREQTIzOTFCN0NGMTNCQTEyOTQ1NjMzMDFENDEwRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnO32KBg8NLBOcHF3I7QUbFjC BwOuaYR0mT/Ybp4cNtD6g+icUBguMswsfPFKPfPUpwRFSlRvd/aIvPDrqQWzZtLG XqGEOoEancEZbJoVz1XxjgbZfKee41+PYcnzNIkNi7D0Sd2QXtkhjRoWitxpu+MX 497X4uxIeQXNmgeB7rErphyFCbith8GX+ou9sIJzzCxQM6HkLOGJAquzYmR7A0Lr ++WCC8LrmgMiBwirPXcphmE+jxsORymQQjxKxJ+CDZzCAyYhAwGTGZJTUF5LN5zY qYmleKFQrDwnTMakikXKa8yEuCSrXuB4qbyYLUSGQhnGM/lua3fz9nRleiRxAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUuDdGwOTaI5G3zxO6EpRWMwHUEPYwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYzNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAusowDQYJKoZIhvcNAQELBQADggEBABCkRCI3yHpBIYLy5uV21HjXj4P3SRTl B2qmfLXO+qiTGOI4qqTygdSU4xvqtNtrm0SdSHGwiRGaXVJRASt9apgQ9hCgU+PI rXX8HnfL6AMiKYb4A/CzNg7IVV6QVTKALV40kAMv+xVnTyWyiU/b+wuesZQkMdXj qzSyCIjm0TS38bOtoyceouXnusvcdpuY9YPtkBB8bPuDxTsIS6qdmGhaMW0LLVQE 5h85qLYQHV284H5deUf/u+L0lpikxrpPwDc+vghUXPTlXP1QuS+ox9TVVKdmkS09 oH9vWD2uJ0g3ILus1OwDgjbE763xRyyjqXOZO8nBj1G8y815wVd6BY0= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org