$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa File: 323430313a383434303a3a2f33322d3332203d3e20313336313331.roa (raw, json) Hash identifier: XjoAHco7m2PHrJkLw+g7kXYYTaQ359BKHQsXeKrypoE= Subject key identifier: 63:62:00:DF:16:94:BC:42:B5:BF:3C:B6:F0:93:5B:63:AF:D8:BD:14 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 54D60E82996A07B6E72F5919A112A1E79033EF5A Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa Signing time: Fri 14 Jun 2024 14:00:40 +0000 ROA not before: Fri 14 Jun 2024 13:55:40 +0000 ROA not after: Fri 13 Jun 2025 14:00:40 +0000 asID: 136131 IP address blocks: 2401:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d6:0e:82:99:6a:07:b6:e7:2f:59:19:a1:12:a1:e7:90:33:ef:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Jun 14 13:55:40 2024 GMT Not After : Jun 13 14:00:40 2025 GMT Subject: CN=636200DF1694BC42B5BF3CB6F0935B63AFD8BD14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:72:13:c0:75:d3:cd:36:5e:36:64:cd:ee:cd: 40:29:e8:8d:9f:f2:3d:bf:17:0c:41:cb:f5:63:71: 21:8e:15:c3:03:d6:f8:af:98:9d:25:7c:22:a1:76: bc:58:0f:9c:17:ef:68:c0:8e:cc:b0:b7:96:73:dd: 68:d7:7e:fd:ff:c2:58:da:5d:71:be:8b:f2:05:98: b0:ef:69:d4:5f:53:96:66:16:5c:e8:9d:58:bc:9e: 5c:b6:36:2c:15:c7:49:00:c9:78:13:bd:ff:39:dc: 29:30:c2:86:7b:94:cd:b7:9b:ae:47:81:b4:d7:fa: ac:8c:d0:5e:98:c1:33:33:ea:9f:f2:41:b5:a3:d2: ef:ae:51:9f:7f:39:a3:37:b6:84:ec:df:39:db:dd: 03:04:e0:7e:e8:24:4f:ba:9c:69:34:63:4b:09:b3: 83:d5:5a:5d:e7:33:17:7b:a5:5d:71:da:bd:9a:50: 9d:a7:c3:62:8f:be:6a:35:67:28:da:96:d8:81:ed: 81:da:62:13:de:fb:f3:10:c1:03:86:c1:77:44:c6: 31:86:98:4c:49:c8:3a:56:e8:b8:e1:c7:f7:4e:61: d0:b1:6f:e1:c9:04:98:88:f5:32:eb:c9:6f:bf:83: 10:91:61:9a:e7:98:1f:88:94:83:08:88:8d:d1:61: 16:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:62:00:DF:16:94:BC:42:B5:BF:3C:B6:F0:93:5B:63:AF:D8:BD:14 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440::/32 Signature Algorithm: sha256WithRSAEncryption a1:73:2a:59:dc:46:e8:40:fb:60:49:cb:67:11:11:38:4e:cb: b7:6b:a4:9c:4f:1d:ff:e9:9f:7b:a9:02:d1:14:b6:13:ee:86: 1c:8a:53:13:c5:9c:9b:ba:43:58:40:f4:cd:b7:e7:9b:74:84: 49:cf:8a:26:b6:92:70:b8:39:0f:c3:09:9d:56:cc:f5:c4:91: 6a:31:31:83:73:8a:74:31:ed:ae:7b:83:f0:ce:89:4f:a6:eb: 7f:5f:03:da:a5:d1:f5:fa:9e:5d:f9:54:4c:ad:6f:4a:52:d5: 14:d5:9d:52:a0:3a:c2:f9:8a:6f:7e:f6:bb:f7:39:8a:05:37: 2e:1f:c2:0b:b3:0f:bc:74:d0:bd:33:6c:4c:92:ff:e7:18:5c: 3e:bb:76:59:da:7a:93:f2:77:36:58:a5:04:73:78:b4:c2:32: 5e:09:76:69:89:46:76:1d:a6:07:94:2d:20:08:70:b9:45:f8: 1a:cb:9d:fb:70:7b:2b:6e:37:17:60:ac:8e:15:f1:3a:cb:41: 71:ec:66:61:d5:82:f2:5e:08:78:e9:3e:57:8d:46:6e:72:91: c9:b5:eb:0c:40:ef:3c:ac:1c:3f:45:39:97:25:74:d1:a8:8a: a1:3b:75:0f:13:ea:8e:8b:37:28:28:57:01:71:0b:f2:e7:8b: 56:c5:79:a9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVNYOgplqB7bnL1kZoRKh55Az71owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNDA2MTQxMzU1NDBaFw0yNTA2MTMxNDAwNDBaMDMxMTAvBgNV BAMTKDYzNjIwMERGMTY5NEJDNDJCNUJGM0NCNkYwOTM1QjYzQUZEOEJEMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3chPAddPNNl42ZM3uzUAp6I2f 8j2/FwxBy/VjcSGOFcMD1vivmJ0lfCKhdrxYD5wX72jAjsywt5Zz3WjXfv3/wlja XXG+i/IFmLDvadRfU5ZmFlzonVi8nly2NiwVx0kAyXgTvf853CkwwoZ7lM23m65H gbTX+qyM0F6YwTMz6p/yQbWj0u+uUZ9/OaM3toTs3znb3QME4H7oJE+6nGk0Y0sJ s4PVWl3nMxd7pV1x2r2aUJ2nw2KPvmo1ZyjaltiB7YHaYhPe+/MQwQOGwXdExjGG mExJyDpW6Ljhx/dOYdCxb+HJBJiI9TLryW+/gxCRYZrnmB+IlIMIiI3RYRb9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUY2IA3xaUvEK1vzy28JNbY6/YvRQwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBhEAwDQYJKoZI hvcNAQELBQADggEBAKFzKlncRuhA+2BJy2cREThOy7drpJxPHf/pn3upAtEUthPu hhyKUxPFnJu6Q1hA9M2355t0hEnPiia2knC4OQ/DCZ1WzPXEkWoxMYNzinQx7a57 g/DOiU+m639fA9ql0fX6nl35VEytb0pS1RTVnVKgOsL5im9+9rv3OYoFNy4fwguz D7x00L0zbEyS/+cYXD67dlnaepPydzZYpQRzeLTCMl4JdmmJRnYdpgeULSAIcLlF +BrLnftweytuNxdgrI4V8TrLQXHsZmHVgvJeCHjpPleNRm5ykcm16wxA7zysHD9F OZcldNGoiqE7dQ8T6o6LNygoVwFxC/Lni1bFeak= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org