$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: DY+I8fOVqUjezx/DmSAGLnloSubkgTLcYKo00TtWhVE= Subject key identifier: 81:2E:F9:98:24:51:BA:BE:87:DB:4F:88:99:73:80:2A:E5:99:44:C4 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 713009169026D2217AE60FA798BF1BB409C0879D Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa Signing time: Mon 08 Jul 2024 17:00:00 +0000 ROA not before: Mon 08 Jul 2024 16:55:00 +0000 ROA not after: Mon 07 Jul 2025 17:00:00 +0000 asID: 38505 IP address blocks: 2401:1d00:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:30:09:16:90:26:d2:21:7a:e6:0f:a7:98:bf:1b:b4:09:c0:87:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jul 8 16:55:00 2024 GMT Not After : Jul 7 17:00:00 2025 GMT Subject: CN=812EF9982451BABE87DB4F889973802AE59944C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:de:21:4f:e3:b5:e0:c8:40:66:c6:4f:4c:5e: cd:bd:a1:9f:3f:01:9e:a4:a2:cf:40:e3:3b:54:58: cf:3e:46:b8:1a:2a:43:e1:08:7e:14:0a:32:e7:ec: 18:f8:94:70:2c:73:94:e8:50:02:5a:89:15:c2:52: d6:92:19:ad:b7:88:f8:7b:a9:67:8b:46:62:4d:18: 4f:79:61:8f:fa:95:55:9a:95:71:2f:13:24:46:7c: 5d:6d:3e:55:38:71:a6:37:80:8a:35:d1:ff:84:83: ab:48:01:4d:c6:13:dd:67:89:68:6a:d7:d3:1b:4d: 82:ce:94:b2:1a:5d:64:30:d1:05:e7:f8:a7:ff:5d: 9d:7f:9b:e2:58:87:a7:f1:9d:1d:24:ea:4e:6d:3e: e9:ae:0a:d0:02:1e:e9:73:60:ed:0f:25:55:0b:8a: 94:c0:63:98:fd:83:2f:8d:4d:a6:1d:44:15:e5:e0: e8:44:55:b2:74:89:3b:21:42:43:b9:b4:cd:3a:53: c9:67:7b:8b:e8:d0:01:d9:60:e8:c8:c7:01:a9:bb: 45:4a:c9:01:c4:6d:34:f4:9e:79:58:5f:e8:88:1a: 66:ee:c8:88:6d:42:46:c3:1a:48:b6:4e:40:34:58: ca:d4:0d:90:bb:19:bc:6c:d3:fc:d5:7a:fe:7f:df: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2E:F9:98:24:51:BA:BE:87:DB:4F:88:99:73:80:2A:E5:99:44:C4 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a323a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00:2::/48 Signature Algorithm: sha256WithRSAEncryption ad:80:c3:50:68:2b:02:77:74:1d:58:41:34:dc:41:d4:d4:97: 14:ae:f6:4a:ad:55:96:8d:24:c7:6d:fe:97:61:25:ee:d4:46: 3b:c7:68:77:28:c8:37:4d:d5:8d:df:fe:4d:ba:96:0e:8d:85: 2f:86:d1:a2:aa:13:29:1e:80:4d:5c:92:c3:0f:f6:56:bb:fc: 56:ca:7c:47:38:84:6c:95:4a:8d:9b:07:77:71:f4:50:36:cc: 6d:ca:04:15:a4:93:ed:b7:a8:03:2b:a2:3b:0b:03:24:77:0a: 2d:28:75:5d:6f:71:f1:83:59:7c:9e:04:30:f1:cb:29:b9:9a: 93:72:dc:65:03:a4:f5:46:49:dd:c5:03:94:31:df:4e:52:4f: a1:a5:30:e2:8a:7d:a9:32:c0:a8:f2:80:ab:f2:35:7c:4e:af: 13:fc:90:9d:1b:ac:15:ca:d8:33:f9:90:87:0e:0f:7f:1b:9c: 2e:de:05:81:6b:86:e5:1e:47:ef:df:0a:df:46:b0:73:02:72: 9d:63:8a:73:a5:11:3a:0f:e2:ca:34:4b:d4:b1:0e:df:de:eb: d8:ea:6f:4b:b0:d9:8e:53:9f:c6:80:2d:bd:cc:32:b6:77:f5: a9:67:d2:eb:ea:7d:41:d6:ff:38:64:27:11:15:be:d3:9b:18: e2:31:90:9b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcTAJFpAm0iF65g+nmL8btAnAh50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNDA3MDgxNjU1MDBaFw0yNTA3MDcxNzAwMDBaMDMxMTAvBgNV BAMTKDgxMkVGOTk4MjQ1MUJBQkU4N0RCNEY4ODk5NzM4MDJBRTU5OTQ0QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD63iFP47XgyEBmxk9MXs29oZ8/ AZ6kos9A4ztUWM8+RrgaKkPhCH4UCjLn7Bj4lHAsc5ToUAJaiRXCUtaSGa23iPh7 qWeLRmJNGE95YY/6lVWalXEvEyRGfF1tPlU4caY3gIo10f+Eg6tIAU3GE91niWhq 19MbTYLOlLIaXWQw0QXn+Kf/XZ1/m+JYh6fxnR0k6k5tPumuCtACHulzYO0PJVUL ipTAY5j9gy+NTaYdRBXl4OhEVbJ0iTshQkO5tM06U8lne4vo0AHZYOjIxwGpu0VK yQHEbTT0nnlYX+iIGmbuyIhtQkbDGki2TkA0WMrUDZC7Gbxs0/zVev5/31NBAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUgS75mCRRur6H20+ImXOAKuWZRMQwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEdAAACMA0G CSqGSIb3DQEBCwUAA4IBAQCtgMNQaCsCd3QdWEE03EHU1JcUrvZKrVWWjSTHbf6X YSXu1EY7x2h3KMg3TdWN3/5NupYOjYUvhtGiqhMpHoBNXJLDD/ZWu/xWynxHOIRs lUqNmwd3cfRQNsxtygQVpJPtt6gDK6I7CwMkdwotKHVdb3Hxg1l8ngQw8cspuZqT ctxlA6T1RkndxQOUMd9OUk+hpTDiin2pMsCo8oCr8jV8Tq8T/JCdG6wVytgz+ZCH Dg9/G5wu3gWBa4blHkfv3wrfRrBzAnKdY4pzpRE6D+LKNEvUsQ7f3uvY6m9LsNmO U5/GgC29zDK2d/WpZ9Lr6n1B1v84ZCcRFb7TmxjiMZCb -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:32 2024 by rpki-client on console-ams.rpki-client.org