$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa File: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (raw, json) Hash identifier: 28/7yzYFPU2INXX42MopSeFSOK24RIpHwZvJY6Bghl8= Subject key identifier: E7:1C:38:18:9F:8B:28:9A:14:5E:CA:9C:D8:DF:B1:80:8B:78:DA:E9 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 3E20C8354B2CC4EBAB284BBCA45F517DC6700E50 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa Signing time: Tue 20 Aug 2024 17:00:01 +0000 ROA not before: Tue 20 Aug 2024 16:55:01 +0000 ROA not after: Tue 19 Aug 2025 17:00:01 +0000 asID: 58376 IP address blocks: 2403:e600:f00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 18:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:20:c8:35:4b:2c:c4:eb:ab:28:4b:bc:a4:5f:51:7d:c6:70:0e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Aug 20 16:55:01 2024 GMT Not After : Aug 19 17:00:01 2025 GMT Subject: CN=E71C38189F8B289A145ECA9CD8DFB1808B78DAE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:fa:73:5a:cf:04:98:dc:2c:58:4b:9e:8b: 63:38:8b:fa:5d:4a:6b:9f:8b:31:7d:eb:6f:53:4a: 3e:1f:ce:76:18:2e:27:03:75:b5:8d:52:8f:ed:78: 43:35:75:a5:44:95:ca:8e:70:be:94:d0:f1:d7:d6: a1:5e:d6:72:f3:03:b1:e2:d6:b6:57:e2:b8:7b:50: 6e:0d:d6:dd:35:28:d7:31:d5:a0:10:f2:a8:56:1f: 1e:f9:d7:78:6c:35:19:26:10:5c:3b:db:66:12:79: 37:ca:13:82:ba:a8:9c:30:5b:e2:23:77:0f:ae:0a: d2:de:b2:0f:1e:9c:93:39:a3:b3:08:70:31:d2:69: 72:aa:e6:12:9c:07:72:99:94:17:22:73:8c:d9:d1: 21:bb:49:81:6e:5e:55:4a:6d:d7:ee:70:1c:99:44: e5:12:55:91:11:2b:9c:27:8e:03:e2:09:a0:0c:3d: d2:9a:af:35:04:35:85:6f:bf:79:d2:c8:33:9d:6b: 67:d8:64:bd:81:d2:e7:2e:e5:ee:64:5f:fe:f9:d1: ef:1b:b0:17:da:55:8d:9c:58:08:80:6c:d7:bb:21: d5:f1:f8:e3:b7:80:25:b2:73:5e:84:95:d7:b6:04: 3b:eb:b3:f7:50:8a:69:ce:6c:0f:39:00:bb:b7:97: c9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1C:38:18:9F:8B:28:9A:14:5E:CA:9C:D8:DF:B1:80:8B:78:DA:E9 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e600:f00::/40 Signature Algorithm: sha256WithRSAEncryption 32:9b:41:77:f2:40:0c:9f:4f:2f:ff:49:b4:a2:06:68:e3:ad: ea:74:97:03:73:40:a6:d2:33:00:c3:47:49:8e:22:e3:3f:e9: 63:f8:e0:0c:ff:d7:19:30:65:12:c2:24:95:8d:c0:98:61:33: 93:61:33:55:f3:7d:97:11:be:15:2e:e8:91:f3:21:6c:33:bf: 6c:12:9b:3d:0d:23:f9:8c:ac:0a:96:c2:5f:a7:1d:26:bb:7c: 29:5c:87:2e:f7:a1:90:d7:18:78:fe:18:c2:27:bd:92:b3:18: 18:7e:0b:60:e7:e8:9a:9a:ba:48:ed:53:9e:52:5d:e1:32:b9: f4:5c:73:d4:0c:0d:62:a6:e5:2d:dc:37:9d:54:31:2f:60:58: dd:7d:74:1f:6e:ea:8a:80:a6:b6:f5:83:9c:df:e8:f3:1a:66: 78:a4:37:41:90:45:3e:35:65:c8:b4:d2:77:f8:61:6a:7a:88: 9a:27:5f:9e:b9:67:50:fc:8b:26:9f:3f:0d:eb:ea:8d:b4:8e: 40:20:83:89:c6:ed:60:62:9d:8a:01:cc:a6:0c:9a:79:ed:d2: 0c:63:70:62:40:8b:87:db:82:62:cf:ee:cb:0f:38:d6:3b:c8: 3b:54:5f:2a:64:7c:f8:80:05:b7:91:06:e0:fc:33:4e:7f:73: d9:fe:ca:a1 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUPiDINUssxOurKEu8pF9RfcZwDlAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNDA4MjAxNjU1MDFaFw0yNTA4MTkxNzAwMDFaMDMxMTAvBgNV BAMTKEU3MUMzODE4OUY4QjI4OUExNDVFQ0E5Q0Q4REZCMTgwOEI3OERBRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMp/pzWs8EmNwsWEuei2M4i/pd SmufizF9629TSj4fznYYLicDdbWNUo/teEM1daVElcqOcL6U0PHX1qFe1nLzA7Hi 1rZX4rh7UG4N1t01KNcx1aAQ8qhWHx7513hsNRkmEFw722YSeTfKE4K6qJwwW+Ij dw+uCtLesg8enJM5o7MIcDHSaXKq5hKcB3KZlBcic4zZ0SG7SYFuXlVKbdfucByZ ROUSVZERK5wnjgPiCaAMPdKarzUENYVvv3nSyDOda2fYZL2B0ucu5e5kX/750e8b sBfaVY2cWAiAbNe7IdXx+OO3gCWyc16Elde2BDvrs/dQimnObA85ALu3l8mZAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU5xw4GJ+LKJoUXsqc2N+xgIt42ukwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzMyMzQzMDMzM2E2NTM2MzAzMDNhNjYzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQD5gAP MA0GCSqGSIb3DQEBCwUAA4IBAQAym0F38kAMn08v/0m0ogZo463qdJcDc0Cm0jMA w0dJjiLjP+lj+OAM/9cZMGUSwiSVjcCYYTOTYTNV832XEb4VLuiR8yFsM79sEps9 DSP5jKwKlsJfpx0mu3wpXIcu96GQ1xh4/hjCJ72SsxgYfgtg5+iamrpI7VOeUl3h Mrn0XHPUDA1ipuUt3DedVDEvYFjdfXQfbuqKgKa29YOc3+jzGmZ4pDdBkEU+NWXI tNJ3+GFqeoiaJ1+euWdQ/Ismnz8N6+qNtI5AIIOJxu1gYp2KAcymDJp57dIMY3Bi QIuH24Jiz+7LDzjWO8g7VF8qZHz4gAW3kQbg/DNOf3PZ/sqh -----END CERTIFICATE-----Generated at Mon Feb 17 07:13:34 2025 by rpki-client