$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: FinrK90SRn8DqUDbf83eitRiJRJgDm84dXVKodf5qbw= Subject key identifier: 13:47:F6:23:3C:15:BC:E7:C4:0B:AA:21:21:9A:1F:31:3E:07:E8:29 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 01EC51EA797745873A4449353BE9715085BDADFF Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:43:00 +0000 ROA not before: Sat 15 Jun 2024 03:38:00 +0000 ROA not after: Sat 14 Jun 2025 03:43:00 +0000 asID: 136088 IP address blocks: 2400:d940:cabe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 11:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ec:51:ea:79:77:45:87:3a:44:49:35:3b:e9:71:50:85:bd:ad:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:38:00 2024 GMT Not After : Jun 14 03:43:00 2025 GMT Subject: CN=1347F6233C15BCE7C40BAA21219A1F313E07E829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cc:23:36:58:e8:07:c6:01:96:02:8b:a2:38: 25:12:a4:75:19:c3:dd:90:1f:2b:23:57:8b:a1:50: a3:b7:e5:3c:6f:39:31:e5:1e:ce:16:2c:6c:b5:4f: 6a:eb:b5:48:38:b1:78:fc:a5:d5:f5:3d:ab:fd:10: 3e:88:c2:8e:dc:0d:ff:c4:cb:2d:b2:60:a7:44:40: 47:74:ad:ad:2b:df:e5:95:d0:35:9c:92:6e:9a:1b: 27:d9:9b:df:74:3c:db:64:99:49:05:55:5e:62:73: 95:4f:37:14:9a:50:48:83:3c:67:ba:3e:43:1e:1b: 7c:2a:58:27:bc:e4:e9:5d:14:26:9c:58:f4:91:16: e4:b7:4a:3c:3a:0e:01:1a:3c:aa:eb:22:7d:7e:e4: 37:11:0f:75:1e:cb:29:3b:dd:d6:b8:e2:7d:37:b1: 03:cc:b2:eb:3b:3f:88:ff:e2:1a:25:d1:f1:19:07: a1:f3:85:cb:b9:38:1d:8e:75:a4:ae:63:2f:74:cf: 71:a7:d6:50:4e:b8:35:cb:a0:53:59:29:f6:2e:ea: 7a:89:b7:8c:27:79:6c:fa:41:60:62:65:12:f6:fb: 07:28:f6:b4:de:66:86:ae:cc:7b:e5:ac:80:a8:cf: 58:81:b1:4e:71:c4:f8:39:c6:66:e1:c9:a2:7f:f1: f6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:47:F6:23:3C:15:BC:E7:C4:0B:AA:21:21:9A:1F:31:3E:07:E8:29 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:cabe::/48 Signature Algorithm: sha256WithRSAEncryption aa:9b:b1:5a:e5:d9:d2:0b:c8:52:13:f2:f0:1c:77:fb:9d:21: 81:cc:51:1f:5a:70:f1:97:24:a2:48:1f:9e:e4:f1:20:d8:14: ee:31:7f:5a:fa:d1:97:27:d3:b2:70:27:48:ab:71:da:cd:b1: 21:c4:8f:e0:ff:55:f9:ca:70:6f:a8:a2:07:b8:97:15:87:51: f6:3e:c6:42:87:65:7d:0a:18:49:b0:90:e0:83:f3:e8:08:b6: fa:52:c9:94:13:7c:b9:d5:d6:6e:a8:47:23:ea:b5:78:54:a6: 3d:39:97:78:44:25:42:a5:ab:eb:60:37:5c:e0:66:32:5e:bc: 50:35:ba:e7:b0:d0:25:c8:b7:b8:54:72:e0:3a:7d:a8:e2:ca: 9b:ee:07:6b:8e:c1:cd:d2:81:93:b4:ae:d9:0c:86:31:1f:e0: b9:b9:29:4a:da:14:51:ab:ba:03:6e:fd:26:dd:ae:8e:61:e6: 83:19:fb:eb:95:46:15:cf:84:d9:5a:8b:78:d2:74:7d:6c:e5: af:15:e2:92:49:1e:63:62:93:6b:24:c5:dc:2d:98:a7:63:93: 82:f0:b5:96:da:2f:b4:0b:d1:9e:60:5a:26:da:9a:39:db:1f: 70:05:fa:10:84:90:3d:d0:0e:1f:0d:05:38:59:b0:11:13:11: 00:5e:0e:5d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAexR6nl3RYc6REk1O+lxUIW9rf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzM4MDBaFw0yNTA2MTQwMzQzMDBaMDMxMTAvBgNV BAMTKDEzNDdGNjIzM0MxNUJDRTdDNDBCQUEyMTIxOUExRjMxM0UwN0U4MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzCM2WOgHxgGWAouiOCUSpHUZ w92QHysjV4uhUKO35TxvOTHlHs4WLGy1T2rrtUg4sXj8pdX1Pav9ED6Iwo7cDf/E yy2yYKdEQEd0ra0r3+WV0DWckm6aGyfZm990PNtkmUkFVV5ic5VPNxSaUEiDPGe6 PkMeG3wqWCe85OldFCacWPSRFuS3Sjw6DgEaPKrrIn1+5DcRD3Ueyyk73da44n03 sQPMsus7P4j/4hol0fEZB6Hzhcu5OB2OdaSuYy90z3Gn1lBOuDXLoFNZKfYu6nqJ t4wneWz6QWBiZRL2+wco9rTeZoauzHvlrICoz1iBsU5xxPg5xmbhyaJ/8fYhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUE0f2IzwVvOfEC6ohIZofMT4H6CkwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjM2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAyr4wDQYJKoZIhvcNAQELBQADggEBAKqbsVrl2dILyFIT8vAcd/udIYHMUR9a cPGXJKJIH57k8SDYFO4xf1r60Zcn07JwJ0ircdrNsSHEj+D/VfnKcG+ooge4lxWH UfY+xkKHZX0KGEmwkOCD8+gItvpSyZQTfLnV1m6oRyPqtXhUpj05l3hEJUKlq+tg N1zgZjJevFA1uuew0CXIt7hUcuA6fajiypvuB2uOwc3SgZO0rtkMhjEf4Lm5KUra FFGrugNu/Sbdro5h5oMZ++uVRhXPhNlai3jSdH1s5a8V4pJJHmNik2skxdwtmKdj k4LwtZbaL7QL0Z5gWibamjnbH3AF+hCEkD3QDh8NBThZsBETEQBeDl0= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:53 2025 by rpki-client