$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: mE/fZ/xaqpqZ2vVVsQ6HShpSncnBCRhwC3MXSzjY5G0= Subject key identifier: 83:71:61:8F:4D:53:4C:D2:41:83:C2:4A:49:AE:2E:24:B0:A1:B8:14 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 589F9E4BD4E0522F44E252B901C4D6E5B20B1647 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:43:15 +0000 ROA not before: Sat 15 Jun 2024 03:38:15 +0000 ROA not after: Sat 14 Jun 2025 03:43:15 +0000 asID: 136088 IP address blocks: 2400:d940:dada::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9f:9e:4b:d4:e0:52:2f:44:e2:52:b9:01:c4:d6:e5:b2:0b:16:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:38:15 2024 GMT Not After : Jun 14 03:43:15 2025 GMT Subject: CN=8371618F4D534CD24183C24A49AE2E24B0A1B814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:53:58:e6:f1:0c:9f:26:bf:66:24:e3:7c: 09:6e:42:2f:1b:14:1f:ba:51:2a:b7:8e:56:a1:4a: 60:94:0f:47:c7:c8:05:c9:ad:52:e9:bb:ea:59:9a: 5f:55:d6:82:3c:89:91:6c:8d:04:7c:36:eb:0f:42: 66:a7:16:ed:e2:95:98:a0:0d:1f:16:32:87:bf:23: 3d:61:e6:d0:9f:e0:8b:bc:6d:43:ae:1a:ba:72:80: b4:5c:24:d6:54:18:0c:3e:c7:12:cf:46:d0:04:f5: 1a:44:f3:04:64:58:f9:c7:a5:64:b1:b7:0a:ab:68: cf:1d:34:04:d6:0b:a8:d8:b9:8c:51:b4:68:90:40: 98:bb:af:97:93:49:1c:c7:c3:2a:d8:87:01:84:3b: 76:a8:1e:ea:3b:96:b3:3b:81:e5:c0:cd:47:28:26: 5f:61:a8:c0:2b:83:9e:7b:05:9a:43:c5:a0:c4:de: eb:10:c8:7e:03:8b:6d:3d:62:d3:4d:4d:9b:90:1b: ed:68:4d:48:e2:ad:fe:b5:04:9a:dd:40:8e:b7:ca: 68:79:ee:6d:3a:8d:ab:df:e7:bd:dd:8b:be:71:1f: 12:85:ec:db:c8:80:b9:cc:6f:3b:cf:e9:03:4f:0d: d8:78:4d:fc:d6:d4:6f:42:47:e1:29:65:84:5d:7c: dd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:71:61:8F:4D:53:4C:D2:41:83:C2:4A:49:AE:2E:24:B0:A1:B8:14 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dada::/48 Signature Algorithm: sha256WithRSAEncryption 62:61:f5:bb:99:ba:54:4a:5d:e0:f8:7e:07:1a:85:46:05:67: ae:d4:29:f7:2f:ff:ed:4d:29:13:06:2e:84:5e:74:53:5b:cd: a1:cc:d2:17:cb:df:8a:9b:37:3c:20:d7:0d:96:9c:e0:a9:20: 5c:01:94:04:88:d7:1b:d3:97:19:5a:59:a3:cd:f3:8f:cc:8a: fe:fe:ab:ea:90:b5:c9:ec:13:bb:2d:91:c5:93:92:4b:15:43: cc:f4:16:f7:35:c2:9f:8c:27:84:84:3d:79:39:3c:10:78:77: 7d:ad:20:a5:db:a2:48:73:f3:13:a6:9a:2f:35:2a:84:ac:43: 6f:3a:ba:bb:f9:90:43:42:f6:c5:9c:db:bf:59:25:1e:35:87: e5:44:8b:a3:57:0c:6a:0a:f9:66:05:40:f1:b9:a6:9d:6b:64: b4:3b:7e:f3:31:82:a8:86:1c:f9:c5:98:0c:76:da:b0:2c:be: 27:73:0f:45:0e:f0:54:45:b9:e3:f7:fc:f4:01:2a:a3:25:5f: b8:ec:b9:3c:26:d9:d0:4b:c1:17:e9:a0:f6:3f:0b:b6:33:27: 6b:ef:df:e1:c2:d2:d2:e1:e3:6c:75:77:94:b3:31:ae:35:98: 7b:4d:0f:b1:83:ba:fd:02:f0:79:66:e5:fc:86:b6:99:6c:d3: 67:e1:f5:1d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWJ+eS9TgUi9E4lK5AcTW5bILFkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzM4MTVaFw0yNTA2MTQwMzQzMTVaMDMxMTAvBgNV BAMTKDgzNzE2MThGNEQ1MzRDRDI0MTgzQzI0QTQ5QUUyRTI0QjBBMUI4MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ0FNY5vEMnya/ZiTjfAluQi8b FB+6USq3jlahSmCUD0fHyAXJrVLpu+pZml9V1oI8iZFsjQR8NusPQmanFu3ilZig DR8WMoe/Iz1h5tCf4Iu8bUOuGrpygLRcJNZUGAw+xxLPRtAE9RpE8wRkWPnHpWSx twqraM8dNATWC6jYuYxRtGiQQJi7r5eTSRzHwyrYhwGEO3aoHuo7lrM7geXAzUco Jl9hqMArg557BZpDxaDE3usQyH4Di209YtNNTZuQG+1oTUjirf61BJrdQI63ymh5 7m06javf573di75xHxKF7NvIgLnMbzvP6QNPDdh4TfzW1G9CR+EpZYRdfN2DAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUg3Fhj01TTNJBg8JKSa4uJLChuBQwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2MTY0NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA2towDQYJKoZIhvcNAQELBQADggEBAGJh9buZulRKXeD4fgcahUYFZ67UKfcv /+1NKRMGLoRedFNbzaHM0hfL34qbNzwg1w2WnOCpIFwBlASI1xvTlxlaWaPN84/M iv7+q+qQtcnsE7stkcWTkksVQ8z0Fvc1wp+MJ4SEPXk5PBB4d32tIKXbokhz8xOm mi81KoSsQ286urv5kENC9sWc279ZJR41h+VEi6NXDGoK+WYFQPG5pp1rZLQ7fvMx gqiGHPnFmAx22rAsvidzD0UO8FRFueP3/PQBKqMlX7jsuTwm2dBLwRfpoPY/C7Yz J2vv3+HC0tLh42x1d5SzMa41mHtND7GDuv0C8Hlm5fyGtpls02fh9R0= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org