$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: JwqZWB7hxl3s6TlCT78fazas+3WWGPuii4mnGmIngWY= Subject key identifier: BD:5E:6B:F3:6D:6B:0F:4E:61:D0:F5:80:FB:55:DB:95:4B:D2:36:38 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7A23FA559F12E90DF906090994FCB0DF23965972 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:18 +0000 ROA not before: Mon 01 Jul 2024 00:59:18 +0000 ROA not after: Mon 30 Jun 2025 01:04:18 +0000 asID: 136088 IP address blocks: 2400:d940:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:23:fa:55:9f:12:e9:0d:f9:06:09:09:94:fc:b0:df:23:96:59:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:18 2024 GMT Not After : Jun 30 01:04:18 2025 GMT Subject: CN=BD5E6BF36D6B0F4E61D0F580FB55DB954BD23638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:b2:c7:f0:50:b8:d8:9c:ed:f8:6d:61:33: 5a:e1:53:63:e3:66:92:7f:aa:5a:c5:32:46:ca:a6: 0a:e5:1c:5c:bc:32:51:01:32:b0:d6:0c:36:49:25: 44:9f:18:2d:82:e2:b2:0f:e5:91:3e:3d:00:4b:be: ec:63:45:b0:f5:0c:1d:bc:83:45:03:c0:2d:ed:e0: 34:c9:30:8d:11:7f:ca:0e:20:b8:4b:a9:3d:ec:8c: 87:7f:fe:28:ac:fe:a6:cb:4a:ef:ff:44:45:37:70: 88:e8:88:43:2d:ed:00:3e:12:ac:de:ca:ad:3c:bd: b8:4b:0d:b5:02:97:cc:be:c3:d5:aa:ef:74:f9:40: 99:44:97:55:39:3e:ca:a4:65:b0:fd:8f:47:a7:3a: a5:5e:80:4e:fc:94:2e:2d:a9:15:04:77:03:0c:28: 33:ad:b9:18:5e:b3:81:a6:1b:f7:51:83:68:44:bb: 8d:a8:4f:5f:de:99:31:87:37:a4:77:4d:1c:d0:2e: ef:a5:98:a9:81:cd:8e:6b:6e:89:6f:9e:ec:e5:f6: 3a:8a:43:77:fe:cc:ce:07:d2:b6:f0:a4:7e:54:99: 42:4a:96:70:1f:8a:3c:e8:cd:b5:8d:e3:10:cf:50: 98:39:e6:1e:1a:b7:18:0f:ef:a9:4c:8f:95:bc:0f: da:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5E:6B:F3:6D:6B:0F:4E:61:D0:F5:80:FB:55:DB:95:4B:D2:36:38 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:c000::/48 Signature Algorithm: sha256WithRSAEncryption 6f:4f:d1:3b:ff:bf:01:0e:d2:b0:7b:70:dc:61:b2:1d:47:6f: 88:f7:fb:38:f7:7b:9f:bc:e7:df:8c:ec:2a:93:0e:9a:2b:ca: 70:a9:51:80:ad:8e:41:93:6c:ea:da:e7:00:3d:b7:d9:b5:68: 4e:a8:90:18:73:c1:c4:a9:ca:52:cf:e9:67:a4:92:01:50:24: a0:f6:08:d7:89:6f:e8:b3:ce:0f:3a:5c:45:d2:ad:fd:c9:08: eb:3d:35:ac:be:9b:25:48:7b:a2:d4:8e:85:8e:0a:69:43:77: 72:b3:d7:26:38:bf:0f:f0:17:18:b3:22:dd:a0:99:67:e6:9e: db:7c:00:f4:66:2f:2d:2b:65:8b:b9:16:10:59:d9:b7:b9:57: 09:70:a2:03:73:3c:e5:82:92:70:33:a7:b4:ee:ea:8f:f3:30: 82:30:2c:47:09:86:db:c4:fc:f6:c9:23:39:16:6e:18:a6:95: f7:5e:d5:29:0a:60:71:a8:10:1e:43:b5:06:50:6c:cc:2d:3f: 45:a5:a9:0e:3e:f8:4b:77:b8:ed:eb:0f:e9:2c:b7:4f:75:50: a6:d5:21:cf:66:11:98:8b:b1:3e:33:81:eb:b3:ca:61:ed:c6: 9d:8c:2e:01:5e:ce:b8:9e:15:26:4b:17:76:9d:90:51:c8:ba: 8d:65:6c:01 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeiP6VZ8S6Q35BgkJlPyw3yOWWXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MThaFw0yNTA2MzAwMTA0MThaMDMxMTAvBgNV BAMTKEJENUU2QkYzNkQ2QjBGNEU2MUQwRjU4MEZCNTVEQjk1NEJEMjM2MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCFbLH8FC42Jzt+G1hM1rhU2Pj ZpJ/qlrFMkbKpgrlHFy8MlEBMrDWDDZJJUSfGC2C4rIP5ZE+PQBLvuxjRbD1DB28 g0UDwC3t4DTJMI0Rf8oOILhLqT3sjId//iis/qbLSu//REU3cIjoiEMt7QA+Eqze yq08vbhLDbUCl8y+w9Wq73T5QJlEl1U5PsqkZbD9j0enOqVegE78lC4tqRUEdwMM KDOtuRhes4GmG/dRg2hEu42oT1/emTGHN6R3TRzQLu+lmKmBzY5rbolvnuzl9jqK Q3f+zM4H0rbwpH5UmUJKlnAfijzozbWN4xDPUJg55h4atxgP76lMj5W8D9pVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvV5r821rD05h0PWA+1XblUvSNjgwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAwAAwDQYJKoZIhvcNAQELBQADggEBAG9P0Tv/vwEO0rB7cNxhsh1Hb4j3+zj3 e5+859+M7CqTDporynCpUYCtjkGTbOra5wA9t9m1aE6okBhzwcSpylLP6WekkgFQ JKD2CNeJb+izzg86XEXSrf3JCOs9Nay+myVIe6LUjoWOCmlDd3Kz1yY4vw/wFxiz It2gmWfmntt8APRmLy0rZYu5FhBZ2be5VwlwogNzPOWCknAzp7Tu6o/zMIIwLEcJ htvE/PbJIzkWbhimlfde1SkKYHGoEB5DtQZQbMwtP0WlqQ4++Et3uO3rD+kst091 UKbVIc9mEZiLsT4zgeuzymHtxp2MLgFezrieFSZLF3adkFHIuo1lbAE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org