$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: zFwcJRk1pIStXgYvOW6EJ+sh6WfmyVgLQT18K9kq+Sw= Subject key identifier: 3E:B0:1E:1D:B8:9F:5C:21:37:D8:7A:6D:FD:45:32:B9:80:5B:51:85 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 337F59A95A55915D3480E1B8F68E63FC4909E0BA Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:44 +0000 ROA not before: Mon 01 Jul 2024 00:57:44 +0000 ROA not after: Mon 30 Jun 2025 01:02:44 +0000 asID: 131717 IP address blocks: 2401:10c0::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7f:59:a9:5a:55:91:5d:34:80:e1:b8:f6:8e:63:fc:49:09:e0:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:44 2024 GMT Not After : Jun 30 01:02:44 2025 GMT Subject: CN=3EB01E1DB89F5C2137D87A6DFD4532B9805B5185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:19:68:e9:c5:0e:d1:55:4c:ba:ca:13:d7: 54:a5:6c:8d:5e:ee:fb:d1:ce:9d:37:e2:3e:85:e9: e3:07:dc:bd:a8:7d:f4:57:2f:82:15:73:40:38:a6: 79:98:83:d0:df:23:99:2d:c4:42:2a:48:e2:17:45: ca:f9:aa:ca:fe:93:a3:be:39:53:52:20:f1:16:19: 63:4f:47:a0:06:d9:18:94:f9:17:06:02:10:25:f5: 21:a3:ab:85:db:49:60:54:07:dc:18:1b:3a:1f:75: 9a:a1:e8:17:bd:2d:c2:b1:35:4e:dc:b5:46:75:e1: 9e:84:91:fa:04:58:4b:c0:b2:e5:b3:2f:59:11:bb: 34:e6:c3:d4:1e:37:f6:8b:83:86:af:b2:dc:82:f2: 8a:69:d6:48:16:d0:7a:b6:25:e5:e2:0c:c4:aa:05: 4e:83:ae:0b:b1:8f:76:d5:f0:25:3e:25:d1:c1:17: 4a:45:41:4d:d6:3a:bf:db:d1:d5:91:78:7e:67:a1: 30:62:86:1b:ea:14:ef:e2:26:7e:e1:fd:70:26:11: d0:8e:ef:cf:8d:de:a0:1c:11:88:f6:0d:8e:5a:cc: d3:57:b4:fe:82:81:ff:47:01:3f:ee:ac:e4:ac:b0: 9a:61:59:a0:16:9d:d5:6e:9f:d8:76:0c:b2:ab:5f: b3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B0:1E:1D:B8:9F:5C:21:37:D8:7A:6D:FD:45:32:B9:80:5B:51:85 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0::/34 Signature Algorithm: sha256WithRSAEncryption 82:ac:a8:69:a1:42:ac:56:41:b4:78:3a:8c:30:75:4e:7f:b4: d3:7d:4d:29:91:ff:e8:97:e7:53:2f:1e:83:a7:fc:34:a4:c7: 4b:0a:78:0f:c2:88:3d:71:88:9b:7b:01:46:85:0c:57:d8:35: 98:ab:00:7a:72:07:29:b6:10:bf:cb:94:2b:27:ba:48:e6:b2: 17:8b:25:37:3d:d5:ae:3b:72:1a:8b:8b:23:b2:6e:d1:76:7e: 8a:a0:56:24:df:54:3a:c0:7c:b4:af:17:d7:0a:c9:db:39:6c: d2:b0:d4:68:f9:5d:55:f3:bf:4a:9b:d2:fd:c3:f5:3f:54:59: 74:d4:dd:10:42:c0:09:97:6c:3f:b4:8e:06:71:b5:aa:55:0e: ff:db:74:27:14:5b:c1:75:f4:8d:7f:f5:74:62:fb:ef:3b:fa: 57:b1:c7:6b:1d:61:1d:9c:7f:25:6e:4d:52:2b:d1:a1:24:07: ce:42:ea:71:1b:6b:28:66:f6:73:09:8b:88:5a:8c:e5:0e:94: eb:c1:de:5b:68:60:e0:c5:f8:f5:d2:b9:39:1f:d3:f3:aa:02: ae:32:f2:b8:b5:82:c8:02:d3:e3:f3:aa:1d:4a:7c:f9:61:24: e8:8c:10:90:a0:b5:69:66:c4:5e:43:1e:26:09:40:d4:aa:07: f9:39:16:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM39ZqVpVkV00gOG49o5j/EkJ4LowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDRaFw0yNTA2MzAwMTAyNDRaMDMxMTAvBgNV BAMTKDNFQjAxRTFEQjg5RjVDMjEzN0Q4N0E2REZENDUzMkI5ODA1QjUxODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTIxlo6cUO0VVMusoT11SlbI1e 7vvRzp034j6F6eMH3L2offRXL4IVc0A4pnmYg9DfI5ktxEIqSOIXRcr5qsr+k6O+ OVNSIPEWGWNPR6AG2RiU+RcGAhAl9SGjq4XbSWBUB9wYGzofdZqh6Be9LcKxNU7c tUZ14Z6EkfoEWEvAsuWzL1kRuzTmw9QeN/aLg4avstyC8opp1kgW0Hq2JeXiDMSq BU6Drguxj3bV8CU+JdHBF0pFQU3WOr/b0dWReH5noTBihhvqFO/iJn7h/XAmEdCO 78+N3qAcEYj2DY5azNNXtP6Cgf9HAT/urOSssJphWaAWndVun9h2DLKrX7NdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPrAeHbifXCE32Hpt/UUyuYBbUYUwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQBEMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCCrKhpoUKsVkG0eDqMMHVOf7TTfU0pkf/ol+dTLx6Dp/w0 pMdLCngPwog9cYibewFGhQxX2DWYqwB6cgcpthC/y5QrJ7pI5rIXiyU3PdWuO3Ia i4sjsm7Rdn6KoFYk31Q6wHy0rxfXCsnbOWzSsNRo+V1V879Km9L9w/U/VFl01N0Q QsAJl2w/tI4GcbWqVQ7/23QnFFvBdfSNf/V0YvvvO/pXscdrHWEdnH8lbk1SK9Gh JAfOQupxG2soZvZzCYuIWozlDpTrwd5baGDgxfj10rk5H9PzqgKuMvK4tYLIAtPj 86odSnz5YSTojBCQoLVpZsReQx4mCUDUqgf5ORY5 -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org