$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa File: 323430343a326363303a3a2f33322d3438203d3e20313331373336.roa (raw, json) Hash identifier: MmDjqY0in3Ron4tXoyw1IFEdlRaJCNk65DIgw6xUgLY= Subject key identifier: 77:E5:3D:54:44:58:FD:20:0E:F8:7E:04:DB:8D:3D:CE:9F:E8:76:86 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 567920373385C1AAAC241AC434DDA4EE3815FF91 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa Signing time: Thu 13 Jun 2024 10:00:01 +0000 ROA not before: Thu 13 Jun 2024 09:55:01 +0000 ROA not after: Thu 12 Jun 2025 10:00:01 +0000 asID: 131736 IP address blocks: 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:79:20:37:33:85:c1:aa:ac:24:1a:c4:34:dd:a4:ee:38:15:ff:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 13 09:55:01 2024 GMT Not After : Jun 12 10:00:01 2025 GMT Subject: CN=77E53D544458FD200EF87E04DB8D3DCE9FE87686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:95:b0:a5:9b:39:6e:26:ae:b6:a4:b5:dc:e5: c2:2c:61:bb:1e:8c:7f:4a:f2:b3:99:db:c0:2a:84: 01:5f:e1:b8:07:ee:a3:f0:7c:a1:1a:5f:f2:0e:72: 6b:45:74:b8:e9:f5:c8:9c:50:61:4c:a0:0f:4d:ed: d6:b7:75:6a:4d:26:37:2b:85:e7:cb:24:b9:ed:05: 77:0d:b7:e1:30:3d:a5:9e:7d:0d:78:bd:94:cb:89: f9:4d:2f:77:13:bd:95:bb:bc:97:e2:80:a1:cd:5c: 36:18:a4:a2:6d:13:36:45:fc:54:4e:67:3b:3a:5b: 75:9f:96:76:06:9a:90:69:f8:b5:0a:f3:ac:15:ba: b0:9b:ca:7a:41:fc:b0:1b:8d:e1:59:6e:2e:43:1e: dc:2b:7a:92:71:ec:e2:d1:65:71:cf:11:85:7a:00: f2:4d:b4:14:e6:83:cd:0c:3c:fe:a3:0c:e2:51:6a: 47:b6:84:6d:2a:96:88:44:59:ad:e0:4d:0f:55:e7: 0f:6c:42:d9:33:e9:56:9c:71:cd:65:d1:bc:40:79: 62:fd:bb:6c:5c:5d:b7:d7:00:ff:45:fd:b4:14:c2: 41:6a:b2:1d:f1:50:6d:15:ea:6a:c5:93:44:95:cb: 17:98:19:9a:eb:2b:81:33:96:1a:e5:be:5e:a3:a7: f2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E5:3D:54:44:58:FD:20:0E:F8:7E:04:DB:8D:3D:CE:9F:E8:76:86 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 10:9f:56:38:58:8a:84:3e:91:c1:1f:30:fc:18:ce:eb:61:4d: 9b:59:a1:e4:ef:e3:45:9c:45:4d:82:ff:7e:d6:07:17:82:6c: 80:de:08:aa:02:56:5b:86:3e:08:57:92:af:21:25:be:3c:3d: bf:71:1a:6c:e6:af:09:05:f7:00:18:9c:96:66:00:2c:c2:53: 96:00:5c:42:e5:31:9e:dd:8b:c3:88:78:ce:91:a6:1f:d5:af: ec:b8:1d:1a:21:f7:5e:2f:d9:20:e4:59:d0:99:4a:31:0c:a8: 52:af:52:6a:15:a6:cf:d1:5c:42:f2:9e:37:e0:f3:9e:d0:c0: 64:8a:d6:e8:cd:12:4a:bf:35:72:4c:a3:65:38:a2:91:50:5f: 88:cb:41:dc:cd:b0:4b:bb:03:cc:72:12:b7:75:5b:84:8c:60: ad:46:e4:e9:dc:e8:20:da:17:f7:bf:2f:f2:da:76:f5:e7:53: 71:2e:45:17:fa:a1:8f:b8:6b:4f:12:d3:03:72:9f:1a:1f:d7: d5:c4:85:8b:6f:db:4f:3d:0f:ba:c8:01:ca:ad:c3:1c:08:13: 67:a3:e2:73:f4:df:e6:48:a6:c6:04:3c:de:62:76:2f:75:13: 30:28:c2:1e:4a:cb:bb:7b:e0:a6:da:29:23:c0:36:ae:ce:57: 5a:53:50:ff -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVnkgNzOFwaqsJBrENN2k7jgV/5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNDA2MTMwOTU1MDFaFw0yNTA2MTIxMDAwMDFaMDMxMTAvBgNV BAMTKDc3RTUzRDU0NDQ1OEZEMjAwRUY4N0UwNERCOEQzRENFOUZFODc2ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4lbClmzluJq62pLXc5cIsYbse jH9K8rOZ28AqhAFf4bgH7qPwfKEaX/IOcmtFdLjp9cicUGFMoA9N7da3dWpNJjcr hefLJLntBXcNt+EwPaWefQ14vZTLiflNL3cTvZW7vJfigKHNXDYYpKJtEzZF/FRO Zzs6W3WflnYGmpBp+LUK86wVurCbynpB/LAbjeFZbi5DHtwrepJx7OLRZXHPEYV6 APJNtBTmg80MPP6jDOJRake2hG0qlohEWa3gTQ9V5w9sQtkz6Vaccc1l0bxAeWL9 u2xcXbfXAP9F/bQUwkFqsh3xUG0V6mrFk0SVyxeYGZrrK4Ezlhrlvl6jp/LZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUd+U9VERY/SAO+H4E2409zp/odoYwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQELMAwDQYJKoZI hvcNAQELBQADggEBABCfVjhYioQ+kcEfMPwYzuthTZtZoeTv40WcRU2C/37WBxeC bIDeCKoCVluGPghXkq8hJb48Pb9xGmzmrwkF9wAYnJZmACzCU5YAXELlMZ7di8OI eM6Rph/Vr+y4HRoh914v2SDkWdCZSjEMqFKvUmoVps/RXELynjfg857QwGSK1ujN Ekq/NXJMo2U4opFQX4jLQdzNsEu7A8xyErd1W4SMYK1G5Onc6CDaF/e/L/LadvXn U3EuRRf6oY+4a08S0wNynxof19XEhYtv2089D7rIAcqtwxwIE2ej4nP03+ZIpsYE PN5idi91EzAowh5Ky7t74KbaKSPANq7OV1pTUP8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org