$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa File: 323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa (raw, json) Hash identifier: oXxgDnwYMJpA65FicRf2Vx+95SgP9QkX6KUV8l6W3uQ= Subject key identifier: 7F:D5:13:40:F7:38:61:F3:2C:06:22:41:B5:DE:D4:37:B2:36:5A:56 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 4FC9EB9CCFF6BCC5FC08D7567E6A0310EFA23ACA Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa Signing time: Wed 15 May 2024 10:01:35 +0000 ROA not before: Wed 15 May 2024 09:56:35 +0000 ROA not after: Wed 14 May 2025 10:01:35 +0000 asID: 136131 IP address blocks: 2401:8440:131::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c9:eb:9c:cf:f6:bc:c5:fc:08:d7:56:7e:6a:03:10:ef:a2:3a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: May 15 09:56:35 2024 GMT Not After : May 14 10:01:35 2025 GMT Subject: CN=7FD51340F73861F32C062241B5DED437B2365A56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:07:e4:be:2a:95:fa:f9:19:cf:5f:a9:88:d6: 59:5d:ae:31:f5:e0:11:02:63:dd:b3:7b:d2:df:b9: 83:d1:24:a8:19:92:80:39:4a:3c:df:82:20:c0:8a: d4:c5:04:26:40:65:90:62:37:39:ed:37:52:1f:36: b3:2c:d5:7c:99:ea:a7:b9:8e:42:d8:49:fc:6c:ec: 72:ef:16:df:8f:69:34:aa:ab:57:ff:eb:9a:6f:c3: 91:51:b0:0c:16:ae:ef:e7:75:13:b2:7b:e7:38:98: b6:81:e8:f3:ef:c6:35:71:de:83:1b:56:f4:ed:0e: 1e:64:70:e1:62:c6:22:46:bf:78:3c:04:94:c9:e3: f3:12:ab:ad:13:6a:e7:0a:db:9f:ba:99:a5:ac:e6: fa:7c:e0:0a:83:a0:ce:8b:5e:1f:af:0b:4a:85:60: 3d:a4:96:2a:0c:a5:e0:ae:d6:54:d3:71:0c:85:c2: f3:d2:62:71:36:76:cb:01:46:dd:ca:a5:5f:cf:a9: 68:5b:6a:a5:bb:a7:c2:5f:03:62:0d:a3:59:33:f9: 52:5d:7c:b3:8b:9b:3c:07:c2:e3:71:15:8c:bd:84: 1b:82:49:9b:a7:ae:ad:13:0e:38:88:68:26:8f:e3: 9f:4b:6b:9d:b9:16:4a:7e:af:98:02:70:46:60:0e: 49:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D5:13:40:F7:38:61:F3:2C:06:22:41:B5:DE:D4:37:B2:36:5A:56 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3133313a3a2f34382d3438203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440:131::/48 Signature Algorithm: sha256WithRSAEncryption 87:44:e3:56:48:fd:d7:ef:97:fb:ae:aa:6b:f9:2a:dc:76:b6: d3:83:3f:75:be:34:27:5f:35:65:f7:6f:3f:62:15:63:63:79: f6:41:5f:4c:ae:92:70:fb:9d:a0:21:8d:a6:14:34:b5:47:22: 34:52:4a:5e:2d:70:b4:49:71:b3:94:06:ed:88:b5:22:2f:b0: c5:a8:ef:3b:2e:96:99:1b:a1:ad:6b:d9:b8:81:05:2f:9c:69: bd:80:4f:cf:2a:67:20:ca:1e:30:ea:7f:a9:07:16:6d:76:9c: a7:ad:83:7d:e3:d9:b6:4a:d0:8b:53:b2:9f:62:a0:4c:45:78: 18:15:7f:ea:e7:d8:27:75:01:2f:6c:a0:9a:47:ec:83:fe:af: ea:9b:ca:00:ee:9c:0a:2c:8f:80:21:0b:6b:06:ea:4c:0b:47: 06:81:10:b3:c4:21:6b:a7:17:b2:e1:3d:95:0e:3b:02:57:b9: 56:59:88:79:75:ef:89:ea:c1:29:bf:e5:ad:24:5b:8c:76:4d: 9d:33:09:a3:1d:d5:15:e3:5c:aa:29:9c:78:1f:6b:7a:b8:c4: 15:a3:ac:1b:78:b4:69:c4:f4:84:cc:ee:4f:2a:e1:29:e5:88: 57:33:22:ba:22:d3:fa:2e:62:7e:3a:0b:6b:0b:d2:f9:b3:d6: 2d:c3:ad:11 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT8nrnM/2vMX8CNdWfmoDEO+iOsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNDA1MTUwOTU2MzVaFw0yNTA1MTQxMDAxMzVaMDMxMTAvBgNV BAMTKDdGRDUxMzQwRjczODYxRjMyQzA2MjI0MUI1REVENDM3QjIzNjVBNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOB+S+KpX6+RnPX6mI1lldrjH1 4BECY92ze9LfuYPRJKgZkoA5SjzfgiDAitTFBCZAZZBiNzntN1IfNrMs1XyZ6qe5 jkLYSfxs7HLvFt+PaTSqq1f/65pvw5FRsAwWru/ndROye+c4mLaB6PPvxjVx3oMb VvTtDh5kcOFixiJGv3g8BJTJ4/MSq60TaucK25+6maWs5vp84AqDoM6LXh+vC0qF YD2klioMpeCu1lTTcQyFwvPSYnE2dssBRt3KpV/PqWhbaqW7p8JfA2INo1kz+VJd fLOLmzwHwuNxFYy9hBuCSZunrq0TDjiIaCaP459La525Fkp+r5gCcEZgDkmfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUf9UTQPc4YfMsBiJBtd7UN7I2WlYwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhMzEzMzMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzEzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGE QAExMA0GCSqGSIb3DQEBCwUAA4IBAQCHRONWSP3X75f7rqpr+SrcdrbTgz91vjQn XzVl928/YhVjY3n2QV9MrpJw+52gIY2mFDS1RyI0UkpeLXC0SXGzlAbtiLUiL7DF qO87LpaZG6Gta9m4gQUvnGm9gE/PKmcgyh4w6n+pBxZtdpynrYN949m2StCLU7Kf YqBMRXgYFX/q59gndQEvbKCaR+yD/q/qm8oA7pwKLI+AIQtrBupMC0cGgRCzxCFr pxey4T2VDjsCV7lWWYh5de+J6sEpv+WtJFuMdk2dMwmjHdUV41yqKZx4H2t6uMQV o6wbeLRpxPSEzO5PKuEp5YhXMyK6ItP6LmJ+OgtrC9L5s9Ytw60R -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:20 2024 by rpki-client on console-fra.rpki-client.org