$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 5QhcoKJWtRFQEO//nIRJYfjUFo4UPKRIgqthd7tXGjM= Subject key identifier: F4:40:14:C1:BC:CE:BE:6A:5D:24:D6:86:AF:46:76:E1:44:22:B8:6B Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 3D58728D3F3F1506EAA6766E32A219E5947E9252 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 15 Jun 2024 03:44:02 +0000 ROA not before: Sat 15 Jun 2024 03:39:02 +0000 ROA not after: Sat 14 Jun 2025 03:44:02 +0000 asID: 136088 IP address blocks: 2400:d940:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:58:72:8d:3f:3f:15:06:ea:a6:76:6e:32:a2:19:e5:94:7e:92:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 15 03:39:02 2024 GMT Not After : Jun 14 03:44:02 2025 GMT Subject: CN=F44014C1BCCEBE6A5D24D686AF4676E14422B86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:90:92:8d:78:60:3d:a2:f0:c8:b5:33:49:66: b3:89:7d:ec:2c:fe:9a:7e:9d:eb:7b:b3:bf:78:5a: 21:60:42:2e:bd:2d:8f:78:f6:b1:14:7e:f7:1a:62: 59:59:17:49:4a:01:7f:4b:d6:2c:d4:78:85:8e:e5: 83:d3:79:46:76:9a:50:22:8a:10:d6:b2:e0:5f:25: 11:00:7b:c3:7e:5e:02:0a:a5:20:b4:44:9b:76:f6: b7:8a:34:67:cb:16:81:ed:9d:4a:f9:66:35:f8:26: 8f:da:fb:6e:9f:01:c1:41:28:e0:88:90:ac:e5:75: 60:01:95:6f:ac:35:80:a1:61:b5:fa:fe:43:22:f9: a8:5a:3d:7d:94:05:66:2e:40:90:7c:f1:18:47:3c: a2:9b:54:c0:fb:ba:3b:a5:b8:e1:5d:8e:53:f7:9c: 24:88:a9:2c:d4:b5:ce:3f:c4:e8:a3:4a:fb:f0:75: d4:60:82:d6:8e:22:57:ca:42:ab:a4:9d:56:b2:42: 0f:32:a0:50:04:cb:70:98:de:eb:4b:90:85:8e:37: 8e:ed:06:96:e8:2f:01:6d:0b:61:14:32:6d:75:6a: 1c:7a:d6:9c:1d:c9:22:df:8a:ad:bf:0d:80:a5:64: 81:e3:9d:02:4d:ca:c4:2c:06:3e:c0:d4:db:13:06: f2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:40:14:C1:BC:CE:BE:6A:5D:24:D6:86:AF:46:76:E1:44:22:B8:6B X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a666163653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:face::/48 Signature Algorithm: sha256WithRSAEncryption 81:47:bf:c8:d4:15:ff:8b:4f:b3:79:fd:8b:02:5a:b8:24:71: 79:02:ea:7c:3d:74:49:3a:0a:0e:f0:b7:b4:a7:8c:1b:f2:35: f6:f9:3c:30:ce:c9:3b:d2:0e:60:12:a8:4f:7c:ed:6c:58:3e: c9:38:e3:fc:40:53:64:bd:a7:9b:92:db:d2:08:f9:d3:a4:28: 77:53:c4:6f:bd:a9:00:c0:4a:98:82:c4:f9:9f:ff:8d:55:ad: 9c:77:f9:8a:af:ba:84:b6:45:dc:0c:56:38:96:1a:8c:fd:4b: 18:7a:8a:05:11:64:55:1d:28:34:e8:76:37:69:27:90:b5:24: 61:49:30:65:41:94:06:6a:52:10:30:63:5d:70:ef:44:89:58: cf:68:d9:d7:36:13:f6:b1:4c:a9:8a:de:e8:9d:7e:76:e9:34: 7c:03:b7:b3:89:da:10:ac:6a:b7:1c:f6:5d:75:bd:df:35:66: a1:cb:b2:cf:3f:85:f2:d5:63:1b:a2:97:2d:58:3d:ab:4e:11: 4e:f1:11:de:e8:31:4c:49:60:64:b4:e7:fc:a6:98:b3:2d:aa: 7b:59:a2:11:db:30:e6:cb:19:41:af:58:27:15:dd:ec:ef:6a: 62:c7:23:6e:9a:0c:cd:87:cd:10:eb:61:ff:90:df:da:78:53: 8c:27:a5:1c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPVhyjT8/FQbqpnZuMqIZ5ZR+klIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA2MTUwMzM5MDJaFw0yNTA2MTQwMzQ0MDJaMDMxMTAvBgNV BAMTKEY0NDAxNEMxQkNDRUJFNkE1RDI0RDY4NkFGNDY3NkUxNDQyMkI4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFkJKNeGA9ovDItTNJZrOJfews /pp+net7s794WiFgQi69LY949rEUfvcaYllZF0lKAX9L1izUeIWO5YPTeUZ2mlAi ihDWsuBfJREAe8N+XgIKpSC0RJt29reKNGfLFoHtnUr5ZjX4Jo/a+26fAcFBKOCI kKzldWABlW+sNYChYbX6/kMi+ahaPX2UBWYuQJB88RhHPKKbVMD7ujuluOFdjlP3 nCSIqSzUtc4/xOijSvvwddRggtaOIlfKQquknVayQg8yoFAEy3CY3utLkIWON47t BpboLwFtC2EUMm11ahx61pwdySLfiq2/DYClZIHjnQJNysQsBj7A1NsTBvJvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU9EAUwbzOvmpdJNaGr0Z24UQiuGswHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA+s4wDQYJKoZIhvcNAQELBQADggEBAIFHv8jUFf+LT7N5/YsCWrgkcXkC6nw9 dEk6Cg7wt7SnjBvyNfb5PDDOyTvSDmASqE987WxYPsk44/xAU2S9p5uS29II+dOk KHdTxG+9qQDASpiCxPmf/41VrZx3+YqvuoS2RdwMVjiWGoz9Sxh6igURZFUdKDTo djdpJ5C1JGFJMGVBlAZqUhAwY11w70SJWM9o2dc2E/axTKmK3uidfnbpNHwDt7OJ 2hCsarcc9l11vd81ZqHLss8/hfLVYxuily1YPatOEU7xEd7oMUxJYGS05/ymmLMt qntZohHbMObLGUGvWCcV3ezvamLHI26aDM2HzRDrYf+Q39p4U4wnpRw= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org