$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: T4+pJPmCfgNNh91fQe+cFh2S1JfH4wE9FS6aSJjDE44= Subject key identifier: 51:58:A8:0E:84:F6:68:68:30:0B:93:8F:E0:FC:E5:C8:43:48:D0:06 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 418F016CC79875D2DC6C1BA2871ECF7FD0A7930D Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa Signing time: Mon 08 Jul 2024 17:00:00 +0000 ROA not before: Mon 08 Jul 2024 16:55:00 +0000 ROA not after: Mon 07 Jul 2025 17:00:00 +0000 asID: 38505 IP address blocks: 2401:1d00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8f:01:6c:c7:98:75:d2:dc:6c:1b:a2:87:1e:cf:7f:d0:a7:93:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jul 8 16:55:00 2024 GMT Not After : Jul 7 17:00:00 2025 GMT Subject: CN=5158A80E84F66868300B938FE0FCE5C84348D006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ba:e2:63:2d:fb:ba:6b:7b:5d:84:8d:c4:8b: c7:f1:5a:eb:fd:3a:c4:f5:f8:43:aa:89:5c:c6:99: 85:ff:f9:86:73:cb:05:d6:b7:c8:64:7e:b8:07:d6: 53:5b:2f:a2:96:f8:7b:e8:16:42:f3:ec:95:10:9a: f0:3a:94:3e:70:82:5c:a1:54:0a:65:a1:96:11:c7: c7:b6:7c:ad:8e:e7:a4:6e:b7:26:58:95:34:cd:cf: 36:f8:5a:00:bc:4d:e1:90:f3:80:20:af:33:71:18: 6c:47:45:54:b9:ba:2b:d0:ee:a6:eb:3d:86:b9:bc: ff:57:96:c3:95:d3:36:42:26:52:ff:16:07:6c:94: cb:af:6b:9a:99:0f:2f:17:15:91:89:e5:bc:53:cc: 5d:9d:2e:c8:4f:90:d0:4a:b0:ac:22:07:77:3b:f8: 0c:da:eb:40:e4:c8:22:e2:9c:eb:c3:a6:23:a2:a2: 45:38:b5:71:fd:bf:4a:6e:a5:ba:53:89:87:64:40: 69:7a:55:31:46:e5:7c:2c:e7:00:76:dc:a4:79:31: 7c:05:ee:8b:41:db:a3:be:80:93:f0:45:4a:89:fa: af:0c:a1:3f:6e:48:fd:96:4f:3c:eb:87:42:33:05: 26:77:6a:f3:7e:37:50:49:5f:48:20:fb:72:0d:7a: c4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:58:A8:0E:84:F6:68:68:30:0B:93:8F:E0:FC:E5:C8:43:48:D0:06 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00:1::/48 Signature Algorithm: sha256WithRSAEncryption 3c:8f:37:81:6d:fa:57:80:90:f8:16:38:8b:82:69:e7:0c:84: 89:51:05:94:af:ae:7a:c8:d8:6e:46:c6:19:6f:99:82:d3:a1: aa:ab:93:34:ed:41:f2:38:8e:e9:fe:28:95:a3:0e:bd:80:2e: 80:89:03:6e:ba:e8:c1:85:23:58:8b:0f:6f:7a:40:5c:f8:6f: 16:49:42:49:5c:37:e0:13:e8:c1:7a:22:1c:93:01:57:7c:82: 01:22:90:eb:3b:77:e4:dc:66:6e:99:20:0f:ed:dc:b8:31:de: 96:c5:09:8d:ba:b6:ee:6a:ee:4d:cc:17:5a:03:9c:50:4b:5c: 5d:af:2a:8a:30:9c:ba:6e:d0:a3:38:c7:17:a0:32:ef:e1:13: 2d:64:e8:fd:67:ba:70:9c:9d:c7:c7:dd:63:69:62:1d:71:85: c6:d5:c3:09:13:94:68:63:50:80:c4:48:c7:36:b9:c7:7a:4a: 8b:3f:b9:0a:0f:b8:de:7d:c7:49:7c:a5:1c:46:0c:ab:a2:fb: fd:d3:73:3b:93:cc:ec:61:62:45:b5:4f:43:39:fa:0b:8a:05: aa:48:55:c6:70:8f:70:66:be:d4:ca:8f:7b:c0:3b:0d:d6:7c: d1:26:e0:b6:6f:16:f1:bb:68:36:1a:d0:8f:c7:2f:8f:ed:84: 70:38:ca:0e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQY8BbMeYddLcbBuihx7Pf9Cnkw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNDA3MDgxNjU1MDBaFw0yNTA3MDcxNzAwMDBaMDMxMTAvBgNV BAMTKDUxNThBODBFODRGNjY4NjgzMDBCOTM4RkUwRkNFNUM4NDM0OEQwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjuuJjLfu6a3tdhI3Ei8fxWuv9 OsT1+EOqiVzGmYX/+YZzywXWt8hkfrgH1lNbL6KW+HvoFkLz7JUQmvA6lD5wglyh VAploZYRx8e2fK2O56RutyZYlTTNzzb4WgC8TeGQ84AgrzNxGGxHRVS5uivQ7qbr PYa5vP9XlsOV0zZCJlL/FgdslMuva5qZDy8XFZGJ5bxTzF2dLshPkNBKsKwiB3c7 +Aza60DkyCLinOvDpiOiokU4tXH9v0pupbpTiYdkQGl6VTFG5Xws5wB23KR5MXwF 7otB26O+gJPwRUqJ+q8MoT9uSP2WTzzrh0IzBSZ3avN+N1BJX0gg+3INesThAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUUVioDoT2aGgwC5OP4PzlyENI0AYwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEdAAABMA0G CSqGSIb3DQEBCwUAA4IBAQA8jzeBbfpXgJD4FjiLgmnnDISJUQWUr656yNhuRsYZ b5mC06Gqq5M07UHyOI7p/iiVow69gC6AiQNuuujBhSNYiw9vekBc+G8WSUJJXDfg E+jBeiIckwFXfIIBIpDrO3fk3GZumSAP7dy4Md6WxQmNurbuau5NzBdaA5xQS1xd ryqKMJy6btCjOMcXoDLv4RMtZOj9Z7pwnJ3Hx91jaWIdcYXG1cMJE5RoY1CAxEjH NrnHekqLP7kKD7jefcdJfKUcRgyrovv903M7k8zsYWJFtU9DOfoLigWqSFXGcI9w Zr7Uyo97wDsN1nzRJuC2bxbxu2g2GtCPxy+P7YRwOMoO -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org