$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa File: 323430313a316430303a3a2f33322d3332203d3e203338353035.roa (raw, json) Hash identifier: gMz09JidDcRWBTwU6ryArFJQlq35y7FUrFAp/Wy4yQg= Subject key identifier: E9:DB:70:B1:B7:17:57:71:5F:71:35:05:F7:21:AB:02:66:BA:53:61 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 28491EA166637FBC6D1BB2D3AFC4C96DC89528DD Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa Signing time: Mon 08 Jul 2024 17:00:00 +0000 ROA not before: Mon 08 Jul 2024 16:55:00 +0000 ROA not after: Mon 07 Jul 2025 17:00:00 +0000 asID: 38505 IP address blocks: 2401:1d00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:49:1e:a1:66:63:7f:bc:6d:1b:b2:d3:af:c4:c9:6d:c8:95:28:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jul 8 16:55:00 2024 GMT Not After : Jul 7 17:00:00 2025 GMT Subject: CN=E9DB70B1B71757715F713505F721AB0266BA5361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:b2:f0:35:7a:aa:70:2a:8f:af:6a:07:20: 91:2e:1e:cb:92:f4:1d:3a:a3:d4:3b:e2:67:f1:32: d3:cb:99:b4:ed:f7:a4:c4:9e:b3:b7:5e:76:2f:e4: b1:bb:3a:d4:c8:26:43:54:62:88:e9:80:2f:21:aa: a6:97:7b:77:75:a5:22:bf:47:ed:c5:11:f2:cf:91: b1:94:67:c8:08:41:08:db:c9:1e:b7:e3:e0:78:ce: d1:6f:54:da:e9:50:5f:67:58:0d:65:c6:b6:09:7d: 51:09:28:a0:54:51:71:d6:84:71:1a:9e:95:c1:ff: 18:ce:1b:fc:45:ed:cc:8c:d3:24:47:60:f5:9a:86: 53:41:c1:55:07:7e:ad:eb:14:d8:20:de:5a:58:12: dd:37:15:d3:84:f8:3c:15:9c:2c:91:53:14:02:7a: 0c:1a:bf:92:3b:e7:99:2a:96:6d:25:c5:11:a5:f3: 03:47:69:f5:59:3b:72:2c:c7:7e:40:a0:73:af:02: fe:b8:c2:4c:cf:06:07:48:55:b0:61:68:4d:b3:9c: 81:e4:cc:1b:d9:2a:12:31:97:19:6c:25:1e:69:49: 10:6d:6a:fa:e5:24:cb:4f:54:38:63:91:bd:38:c2: 90:8f:1a:ba:b8:a8:38:1e:d7:83:60:57:61:ce:4e: 16:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DB:70:B1:B7:17:57:71:5F:71:35:05:F7:21:AB:02:66:BA:53:61 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00::/32 Signature Algorithm: sha256WithRSAEncryption 3e:a7:e9:60:c8:ca:3e:cf:b5:78:ec:a6:bb:20:96:55:ef:31: ae:bc:ac:0e:8c:6b:32:bd:eb:44:23:86:24:14:e0:ad:d1:c8: 08:5e:d9:0e:62:10:72:fd:f8:fe:ae:c2:40:c0:f4:ae:70:23: 5f:7f:f8:ef:0a:c9:e8:0c:73:45:2c:16:79:09:1f:02:bf:d9: c4:e4:0b:ad:dd:7f:3b:b7:06:4e:74:b4:cc:5b:da:44:b8:01: 09:fb:65:49:16:0c:3c:6b:36:10:fa:4d:ad:6c:41:58:8d:61: 14:ce:47:0f:53:65:ef:3b:68:ba:d9:59:fe:f1:73:ff:ee:1e: 0b:c8:be:28:19:b6:67:1b:10:f0:00:c0:79:b0:1f:ea:a6:66: cf:d8:97:d7:2a:c7:02:8c:9e:98:c9:bf:cc:5c:2c:92:28:86: 9b:50:ac:3c:ac:b9:71:8f:d3:52:a5:da:95:64:4f:22:3a:fd: 07:35:fb:5a:e1:66:96:5c:ee:61:9d:6b:25:37:48:1e:2b:e9: ec:42:69:ff:ba:ba:06:ba:0c:2b:ab:4d:d1:75:23:e1:8c:4e: 4e:a7:0a:37:cf:09:55:10:71:c6:36:b4:b0:41:74:02:47:09: 43:92:11:77:95:a9:ef:6e:da:a8:52:89:4b:f8:de:26:df:09: a7:b4:b0:11 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKEkeoWZjf7xtG7LTr8TJbciVKN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNDA3MDgxNjU1MDBaFw0yNTA3MDcxNzAwMDBaMDMxMTAvBgNV BAMTKEU5REI3MEIxQjcxNzU3NzE1RjcxMzUwNUY3MjFBQjAyNjZCQTUzNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVzLLwNXqqcCqPr2oHIJEuHsuS 9B06o9Q74mfxMtPLmbTt96TEnrO3XnYv5LG7OtTIJkNUYojpgC8hqqaXe3d1pSK/ R+3FEfLPkbGUZ8gIQQjbyR634+B4ztFvVNrpUF9nWA1lxrYJfVEJKKBUUXHWhHEa npXB/xjOG/xF7cyM0yRHYPWahlNBwVUHfq3rFNgg3lpYEt03FdOE+DwVnCyRUxQC egwav5I755kqlm0lxRGl8wNHafVZO3Isx35AoHOvAv64wkzPBgdIVbBhaE2znIHk zBvZKhIxlxlsJR5pSRBtavrlJMtPVDhjkb04wpCPGrq4qDge14NgV2HOThZrAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU6dtwsbcXV3FfcTUF9yGrAma6U2EwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzNTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAR0AMA0GCSqGSIb3 DQEBCwUAA4IBAQA+p+lgyMo+z7V47Ka7IJZV7zGuvKwOjGsyvetEI4YkFOCt0cgI XtkOYhBy/fj+rsJAwPSucCNff/jvCsnoDHNFLBZ5CR8Cv9nE5Aut3X87twZOdLTM W9pEuAEJ+2VJFgw8azYQ+k2tbEFYjWEUzkcPU2XvO2i62Vn+8XP/7h4LyL4oGbZn GxDwAMB5sB/qpmbP2JfXKscCjJ6Yyb/MXCySKIabUKw8rLlxj9NSpdqVZE8iOv0H Nfta4WaWXO5hnWslN0geK+nsQmn/uroGugwrq03RdSPhjE5Opwo3zwlVEHHGNrSw QXQCRwlDkhF3lanvbtqoUolL+N4m3wmntLAR -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org