$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: Xew1w+gXgylH740u1c4Z60dTjHU8+UmrHSS0NUpHOoU= Subject key identifier: 0B:5E:33:AD:8E:0D:F3:51:4A:F6:C7:B4:95:18:30:60:0A:2B:B4:08 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 3D76ED5F60150572813A35B38F22C587D5930B16 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:43 +0000 ROA not before: Mon 01 Jul 2024 00:57:43 +0000 ROA not after: Mon 30 Jun 2025 01:02:43 +0000 asID: 131717 IP address blocks: 2401:10c0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:76:ed:5f:60:15:05:72:81:3a:35:b3:8f:22:c5:87:d5:93:0b:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:43 2024 GMT Not After : Jun 30 01:02:43 2025 GMT Subject: CN=0B5E33AD8E0DF3514AF6C7B4951830600A2BB408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:12:67:64:37:0f:ea:fa:8f:ca:20:6c:89:17: 09:b0:89:c8:2c:ef:a6:c5:dd:da:51:a3:43:3e:21: 50:71:af:4c:25:2f:4a:0e:f0:58:6b:c3:e9:91:7e: b3:04:fc:88:92:e7:1f:17:9b:cf:b7:d4:0e:1a:6c: 0d:9f:91:e3:c6:7c:8e:f1:cd:47:9f:e5:64:99:9a: 6e:05:fa:24:99:b4:6b:81:2e:54:95:53:14:f9:2d: b8:8b:78:70:a0:34:39:85:48:48:bb:f9:5e:1a:80: 8a:3f:c5:f4:33:72:e5:f4:62:d4:b6:42:c2:a9:d4: f6:d9:21:2e:b4:f1:d9:3b:38:ce:fa:f8:12:a3:ef: ad:c8:64:43:9d:f3:b4:a4:da:c9:46:2e:cd:c9:7a: 16:af:4e:e6:ea:f2:59:6a:27:bd:9d:34:2d:1c:73: ef:bf:c5:0d:fc:d3:85:f2:e0:3c:6c:6c:3b:68:66: 68:f2:9e:72:2e:85:08:d8:0a:3e:4d:7f:a1:f6:69: f6:a5:b0:0c:18:f2:58:5a:7f:b8:4d:97:21:6a:da: d2:a5:c8:be:08:5a:e1:d1:34:3c:98:04:80:b0:9c: 2f:dc:fa:f4:a4:cf:9e:95:e9:c4:75:bc:b0:ce:a1: bb:40:15:b9:a4:de:ff:8b:79:6c:35:35:62:3c:09: 15:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5E:33:AD:8E:0D:F3:51:4A:F6:C7:B4:95:18:30:60:0A:2B:B4:08 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption 25:88:6c:53:9a:fa:51:e9:b0:e3:54:21:fe:3a:f4:cf:0d:7f: a2:ba:85:26:2c:a7:f7:e9:fa:c1:51:b2:b7:29:fc:2d:5d:1e: df:b0:3d:ab:93:18:94:2a:e1:24:4c:c0:b5:cf:6e:91:4d:e4: 46:12:43:8f:a6:ae:c2:cf:61:b2:16:49:38:33:c2:cb:b2:cd: 10:04:e9:2b:27:e9:e5:cf:51:95:d4:de:88:b5:7f:39:75:61: b7:80:c8:43:2d:0f:b2:fc:75:22:b6:14:44:b9:09:db:bd:f2: 14:2b:5a:fa:bc:6f:79:6d:f2:67:47:45:80:00:a8:c5:d4:15: 4a:21:06:47:b6:74:c0:ee:7f:40:a7:7e:2a:dd:8f:aa:8e:8b: 05:79:d6:92:97:6d:e9:9a:90:58:1a:8b:e6:e8:9b:20:a7:e8: 5e:43:a7:b8:34:3f:27:75:75:0b:c5:a7:a9:a1:b4:c1:60:fa: d5:39:9a:a6:7d:81:3d:53:8b:8f:0f:e4:37:71:ce:61:25:a4: a1:22:14:b4:75:05:00:8a:2c:1d:84:60:a3:3b:14:ea:9e:3b: 99:e1:0f:c2:d1:86:06:8f:c0:2b:15:84:f2:22:2f:40:ad:88: 46:1d:e1:08:57:19:4c:fc:dc:48:f6:33:35:f5:66:42:5b:2a: 0b:c1:09:f2 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUPXbtX2AVBXKBOjWzjyLFh9WTCxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDNaFw0yNTA2MzAwMTAyNDNaMDMxMTAvBgNV BAMTKDBCNUUzM0FEOEUwREYzNTE0QUY2QzdCNDk1MTgzMDYwMEEyQkI0MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdEmdkNw/q+o/KIGyJFwmwicgs 76bF3dpRo0M+IVBxr0wlL0oO8Fhrw+mRfrME/IiS5x8Xm8+31A4abA2fkePGfI7x zUef5WSZmm4F+iSZtGuBLlSVUxT5LbiLeHCgNDmFSEi7+V4agIo/xfQzcuX0YtS2 QsKp1PbZIS608dk7OM76+BKj763IZEOd87Sk2slGLs3JehavTubq8llqJ72dNC0c c++/xQ3804Xy4DxsbDtoZmjynnIuhQjYCj5Nf6H2afalsAwY8lhaf7hNlyFq2tKl yL4IWuHRNDyYBICwnC/c+vSkz56V6cR1vLDOobtAFbmk3v+LeWw1NWI8CRVjAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUC14zrY4N81FK9se0lRgwYAortAgwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAgDANBgkqhkiG9w0BAQsFAAOCAQEAJYhsU5r6Uemw41Qh/jr0zw1/orqFJiyn 9+n6wVGytyn8LV0e37A9q5MYlCrhJEzAtc9ukU3kRhJDj6auws9hshZJODPCy7LN EATpKyfp5c9RldTeiLV/OXVht4DIQy0Psvx1IrYURLkJ273yFCta+rxveW3yZ0dF gACoxdQVSiEGR7Z0wO5/QKd+Kt2Pqo6LBXnWkpdt6ZqQWBqL5uibIKfoXkOnuDQ/ J3V1C8WnqaG0wWD61Tmapn2BPVOLjw/kN3HOYSWkoSIUtHUFAIosHYRgozsU6p47 meEPwtGGBo/AKxWE8iIvQK2IRh3hCFcZTPzcSPYzNfVmQlsqC8EJ8g== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org