$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa File: 323430323a646130303a3a2f33322d3438203d3e203234353236.roa (raw, json) Hash identifier: pIrm7aPUPJFZ4XifD9qRVgfWPMQmX5/I7DSyyV9fZas= Subject key identifier: 45:EC:78:2E:B5:AC:20:B1:54:EE:BB:76:43:44:20:79:5A:AE:C1:A2 Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Certificate serial: 3BAB58B87FE661E80C07150B6B86CDAA079321BE Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa Signing time: Wed 26 Jun 2024 08:02:12 +0000 ROA not before: Wed 26 Jun 2024 07:57:12 +0000 ROA not after: Wed 25 Jun 2025 08:02:12 +0000 asID: 24526 IP address blocks: 2402:da00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ab:58:b8:7f:e6:61:e8:0c:07:15:0b:6b:86:cd:aa:07:93:21:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Validity Not Before: Jun 26 07:57:12 2024 GMT Not After : Jun 25 08:02:12 2025 GMT Subject: CN=45EC782EB5AC20B154EEBB76434420795AAEC1A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:23:05:4b:86:98:f7:33:e4:2e:fe:db:da:06: b5:6b:7b:57:ff:f0:fc:fa:7e:1d:2d:21:87:6d:ad: a5:c1:e9:be:20:55:53:5f:a0:5e:2f:a0:24:6e:93: ec:a4:47:23:41:cd:5e:62:e6:33:c1:00:df:9e:a8: bf:64:14:81:c9:6d:39:24:05:bd:25:c8:91:21:f7: 17:5e:1a:1b:e4:57:30:a6:a7:6c:b6:55:0a:3d:7a: 1d:ad:dd:cd:c4:f6:f6:48:3e:de:dd:49:0e:73:2c: ca:30:e8:90:34:0c:1c:35:7d:0f:d8:4c:f7:a6:7b: a6:4a:b2:dc:ee:ad:2c:70:76:4f:62:12:00:33:e0: 0b:1d:6a:5d:90:19:aa:af:ca:8d:fc:95:b6:97:f7: 3a:0a:09:a1:d3:9c:e6:8b:4b:3b:50:3b:8e:a9:46: c1:2f:6b:e2:d1:af:54:b0:09:76:3a:2f:69:57:3c: 98:67:c0:d8:a4:bf:35:a7:a6:1c:3d:77:ce:00:4e: 9b:2e:bf:e7:c7:68:f9:76:d1:e7:9f:7c:32:8d:63: 49:d8:36:34:59:62:d5:56:d6:ea:d8:b4:32:9b:a0: 6f:af:a7:de:74:cc:bf:c1:c8:95:46:17:22:30:f2: 59:c4:0e:4c:d3:1c:d3:15:a0:e2:73:c5:4a:b1:9d: 5d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EC:78:2E:B5:AC:20:B1:54:EE:BB:76:43:44:20:79:5A:AE:C1:A2 X509v3 Authority Key Identifier: keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:da00::/32 Signature Algorithm: sha256WithRSAEncryption 16:70:7b:12:f4:00:02:6e:de:6a:bc:e9:5b:69:0a:4f:fe:49: c4:cf:8d:86:e8:9e:6f:e4:45:bc:32:51:ac:b6:68:8e:fe:ba: 9d:4a:fc:44:d8:cb:96:61:fc:48:4c:59:f8:9f:69:25:bc:c5: 3e:bc:48:07:c8:f3:fb:af:82:6b:09:60:62:10:d9:b9:13:a4: 45:d2:15:5b:77:c5:2c:56:20:8a:a4:66:fc:f1:23:43:a8:f5: dd:b8:42:7c:ec:2d:72:a6:53:2a:9d:de:fe:02:5d:85:8e:28: 28:b3:fb:0a:11:a1:1d:b6:95:ef:9b:61:0d:93:7d:4a:93:1d: 0f:7b:92:c1:98:18:3f:40:5b:05:b8:80:4f:82:8f:46:1d:42: 46:29:95:e8:e4:68:52:49:c9:8f:61:f3:84:83:52:c7:66:af: 3a:ec:81:08:89:91:4c:28:cc:3e:eb:bd:39:5c:76:18:f7:4b: f4:96:84:9a:6c:7e:b3:99:ee:c7:c9:20:89:e4:67:ca:de:7c: af:ee:9c:fb:8f:65:00:74:8d:da:c7:02:b6:87:12:47:3e:89: e8:b4:a7:c6:50:39:4d:44:1c:8e:38:41:88:20:10:b8:18:90: 20:12:d8:32:b9:b6:0d:5c:42:de:b4:8f:1c:6a:ba:e9:ca:66: 38:cf:d8:b9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUO6tYuH/mYegMBxULa4bNqgeTIb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQy MDg3MEZFQjAeFw0yNDA2MjYwNzU3MTJaFw0yNTA2MjUwODAyMTJaMDMxMTAvBgNV BAMTKDQ1RUM3ODJFQjVBQzIwQjE1NEVFQkI3NjQzNDQyMDc5NUFBRUMxQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6IwVLhpj3M+Qu/tvaBrVre1f/ 8Pz6fh0tIYdtraXB6b4gVVNfoF4voCRuk+ykRyNBzV5i5jPBAN+eqL9kFIHJbTkk Bb0lyJEh9xdeGhvkVzCmp2y2VQo9eh2t3c3E9vZIPt7dSQ5zLMow6JA0DBw1fQ/Y TPeme6ZKstzurSxwdk9iEgAz4Asdal2QGaqvyo38lbaX9zoKCaHTnOaLSztQO46p RsEva+LRr1SwCXY6L2lXPJhnwNikvzWnphw9d84ATpsuv+fHaPl20eeffDKNY0nY NjRZYtVW1urYtDKboG+vp950zL/ByJVGFyIw8lnEDkzTHNMVoOJzxUqxnV39AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQURex4LrWsILFU7rt2Q0QgeVquwaIwHwYDVR0j BBgwFoAU5CsHUtX/qyVMPw4iFJn2dCCHD+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzUxMjllNC0yMzI4LTQzZDItYTQ1OC05ZDM4Mjk2MTQ4MTUvMC9FNDJCMDc1MkQ1 RkZBQjI1NEMzRjBFMjIxNDk5RjY3NDIwODcwRkVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQyMDg3 MEZFQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNTEyOWU0LTIzMjgtNDNkMi1h NDU4LTlkMzgyOTYxNDgxNS8wLzMyMzQzMDMyM2E2NDYxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAtoAMA0GCSqGSIb3 DQEBCwUAA4IBAQAWcHsS9AACbt5qvOlbaQpP/knEz42G6J5v5EW8MlGstmiO/rqd SvxE2MuWYfxITFn4n2klvMU+vEgHyPP7r4JrCWBiENm5E6RF0hVbd8UsViCKpGb8 8SNDqPXduEJ87C1yplMqnd7+Al2Fjigos/sKEaEdtpXvm2ENk31Kkx0Pe5LBmBg/ QFsFuIBPgo9GHUJGKZXo5GhSScmPYfOEg1LHZq867IEIiZFMKMw+6705XHYY90v0 loSabH6zme7HySCJ5GfK3nyv7pz7j2UAdI3axwK2hxJHPonotKfGUDlNRByOOEGI IBC4GJAgEtgyubYNXELetI8carrpymY4z9i5 -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org