$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa File: 323430353a343634303a3a2f33322d3332203d3e20313339343034.roa (raw, json) Hash identifier: v3ySroBCN4sNfccDqvHcUatzXZPBnzr9Qki2+Ib+sWs= Subject key identifier: 46:6B:1D:BB:40:0A:8B:11:F6:8F:50:5C:66:C4:B6:74:B3:7E:A1:A2 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 672CE26953003AE4463F2EED2305C25BD95E06F6 Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa Signing time: Mon 23 Sep 2024 09:01:40 +0000 ROA not before: Mon 23 Sep 2024 08:56:40 +0000 ROA not after: Mon 22 Sep 2025 09:01:40 +0000 asID: 139404 IP address blocks: 2405:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 09:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2c:e2:69:53:00:3a:e4:46:3f:2e:ed:23:05:c2:5b:d9:5e:06:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Sep 23 08:56:40 2024 GMT Not After : Sep 22 09:01:40 2025 GMT Subject: CN=466B1DBB400A8B11F68F505C66C4B674B37EA1A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:57:45:ac:ad:ef:94:e7:08:1b:c4:85:ba:b8: e6:39:26:f6:c5:ad:0e:3f:2c:10:fc:25:2b:d2:e3: 5e:df:3e:6c:5c:64:81:03:6f:28:da:d6:19:c9:0b: 59:65:b5:47:71:1f:b4:49:4b:2d:83:53:f1:ac:77: e3:e5:b0:6b:27:53:d6:f5:52:2a:4e:ea:8f:c6:82: 96:9b:2d:2e:64:cf:e6:d4:c4:04:40:cf:75:81:19: a8:da:1d:c7:46:a0:2e:5e:31:35:e8:e1:01:d2:75: 0b:f5:ea:c9:a2:5f:f3:bd:1e:3c:d2:12:15:29:55: 2a:47:68:7a:da:59:ca:e0:67:2d:90:dd:5b:97:4a: 93:80:f7:dd:6a:13:a9:49:ad:41:5d:28:85:ec:ad: d1:55:09:53:aa:19:7a:00:44:cb:61:b3:3d:62:25: 70:da:cf:bf:20:51:57:f9:39:3a:e0:b9:59:d9:65: 74:61:2b:47:db:32:94:20:54:2b:aa:53:87:94:05: 89:7d:8c:06:0c:93:f6:b0:24:cc:f0:a8:29:05:da: a3:5a:92:da:b1:fa:ee:61:df:5e:5c:ae:c6:b6:af: 36:26:b0:0b:42:94:9c:16:28:e1:ee:55:f5:2d:8c: ee:01:ff:a3:03:8d:64:bc:74:38:f0:3f:dd:e9:36: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6B:1D:BB:40:0A:8B:11:F6:8F:50:5C:66:C4:B6:74:B3:7E:A1:A2 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/323430353a343634303a3a2f33322d3332203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4640::/32 Signature Algorithm: sha256WithRSAEncryption ba:a7:4b:e3:80:e6:ef:0a:0d:6a:69:dc:3a:44:20:56:4a:4a: 83:2f:7b:95:11:59:db:91:3a:e6:5d:9e:03:6f:51:a1:06:fd: 5f:24:d7:21:89:97:b4:d2:02:39:9e:b1:a4:28:0d:fe:f8:4f: 41:95:00:4d:dc:4c:22:1a:b2:85:c4:4a:05:50:44:7d:61:15: af:75:e9:18:c3:39:77:af:b3:a0:a4:8c:02:02:65:0a:dd:ae: 3a:69:13:6b:03:61:a9:fe:bf:fd:ba:17:6b:16:d7:82:b2:31: 1e:4c:e4:86:a3:5a:60:bb:6d:ae:bd:c0:48:06:9e:c5:fc:d9: 16:d9:71:e9:86:2a:aa:0e:bd:63:02:9c:4e:b6:08:2c:89:95: 4d:ec:e4:22:7c:db:50:cc:bd:66:be:cf:9c:38:19:93:1f:bf: 73:e1:15:45:06:79:3d:ba:d6:5c:1b:5a:f2:fb:ff:af:42:f7: 6f:c8:3b:e2:80:9a:1f:d4:f9:a2:35:98:fa:a2:ca:24:5e:d5: 9c:92:f9:88:ed:96:68:ff:a1:17:4c:73:34:ab:96:39:9c:27: 8e:71:8c:29:35:95:b0:6c:f9:04:0a:a4:88:b3:ec:e6:53:9c: 53:b4:8b:14:4d:c0:57:cc:aa:52:a7:af:5e:79:e1:17:a6:e8: 38:7d:0f:e7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZyziaVMAOuRGPy7tIwXCW9leBvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNDA5MjMwODU2NDBaFw0yNTA5MjIwOTAxNDBaMDMxMTAvBgNV BAMTKDQ2NkIxREJCNDAwQThCMTFGNjhGNTA1QzY2QzRCNjc0QjM3RUExQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjV0Wsre+U5wgbxIW6uOY5JvbF rQ4/LBD8JSvS417fPmxcZIEDbyja1hnJC1lltUdxH7RJSy2DU/Gsd+PlsGsnU9b1 UipO6o/GgpabLS5kz+bUxARAz3WBGajaHcdGoC5eMTXo4QHSdQv16smiX/O9HjzS EhUpVSpHaHraWcrgZy2Q3VuXSpOA991qE6lJrUFdKIXsrdFVCVOqGXoARMthsz1i JXDaz78gUVf5OTrguVnZZXRhK0fbMpQgVCuqU4eUBYl9jAYMk/awJMzwqCkF2qNa ktqx+u5h315crsa2rzYmsAtClJwWKOHuVfUtjO4B/6MDjWS8dDjwP93pNhDPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQURmsdu0AKixH2j1BcZsS2dLN+oaIwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMyMzQzMDM1M2EzNDM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFRkAwDQYJKoZI hvcNAQELBQADggEBALqnS+OA5u8KDWpp3DpEIFZKSoMve5URWduROuZdngNvUaEG /V8k1yGJl7TSAjmesaQoDf74T0GVAE3cTCIasoXESgVQRH1hFa916RjDOXevs6Ck jAICZQrdrjppE2sDYan+v/26F2sW14KyMR5M5IajWmC7ba69wEgGnsX82RbZcemG KqoOvWMCnE62CCyJlU3s5CJ821DMvWa+z5w4GZMfv3PhFUUGeT261lwbWvL7/69C 92/IO+KAmh/U+aI1mPqiyiRe1ZyS+Yjtlmj/oRdMczSrljmcJ45xjCk1lbBs+QQK pIiz7OZTnFO0ixRNwFfMqlKnr1554Rem6Dh9D+c= -----END CERTIFICATE-----Generated at Fri Feb 21 11:08:36 2025 by rpki-client