$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: CicuutfGBOZwxeKedG/gAQ0s0WJUS9kFF32f9KFWSqU= Subject key identifier: 68:3D:EB:E0:B9:97:04:1C:13:65:53:5F:36:5D:59:E6:DB:56:FA:70 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 349F866D644DF2901B319A750A19BD745C2C2FDD Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 04 Jul 2024 09:25:12 +0000 ROA not before: Thu 04 Jul 2024 09:20:12 +0000 ROA not after: Thu 03 Jul 2025 09:25:12 +0000 asID: 137363 IP address blocks: 2402:fdc0:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9f:86:6d:64:4d:f2:90:1b:31:9a:75:0a:19:bd:74:5c:2c:2f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jul 4 09:20:12 2024 GMT Not After : Jul 3 09:25:12 2025 GMT Subject: CN=683DEBE0B997041C1365535F365D59E6DB56FA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8e:de:3c:09:68:a7:e1:31:99:91:ce:dd:5d: f2:42:d5:a9:eb:a7:a4:56:47:e3:a0:98:47:ec:35: 76:68:a9:a8:9c:94:90:97:6b:dc:a2:24:c9:d3:27: 85:08:94:97:d7:34:30:95:8f:2b:fb:cb:7e:60:eb: 2c:0e:f4:85:e1:31:25:43:7f:7f:ef:fa:c7:28:67: 12:8e:43:93:e5:56:c3:bf:95:5f:c3:23:70:e8:1b: 26:bc:48:e7:2d:02:08:ad:6f:b8:8f:35:20:3c:c1: 41:3b:ee:62:7c:eb:6f:9a:1c:5b:66:7a:d7:c0:97: ad:1d:ff:3b:ce:54:41:ca:1b:d7:f4:03:67:9d:e6: 75:83:f0:8e:69:76:58:ad:93:52:98:45:dc:22:67: 56:32:bb:fb:a1:6d:8c:e4:91:12:c3:1d:d9:95:1a: 92:4a:e9:48:f8:96:d1:18:e1:2b:cb:67:06:d2:da: 37:4b:c9:d1:1a:c8:dd:fa:05:d6:46:55:2a:c8:28: a4:03:71:51:cd:1b:22:44:be:d2:35:43:2b:f5:50: 76:c8:1a:a6:f8:b5:7a:df:ba:19:91:a0:a0:be:8b: f6:c9:b4:97:76:cb:d2:b6:ee:b5:5a:a8:ee:f9:52: 83:cb:6c:f0:d3:db:dc:19:dd:26:a1:ce:ea:27:ed: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3D:EB:E0:B9:97:04:1C:13:65:53:5F:36:5D:59:E6:DB:56:FA:70 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c800::/48 Signature Algorithm: sha256WithRSAEncryption 7b:65:c4:71:74:5a:9b:7f:fa:2b:52:ac:3d:9b:ef:78:3f:0a: d3:1e:ff:31:8e:06:2a:0d:b2:eb:78:f5:50:20:fb:df:4e:ca: a2:48:e2:36:e0:c8:a0:2a:03:1b:4c:c1:d4:31:f4:c7:26:d8: 7a:2b:7c:9d:49:cb:26:e4:a9:ba:e9:e3:59:12:71:ca:a9:c2: fc:30:c6:16:0c:d7:79:4c:9b:c8:3f:fa:b2:35:67:87:a1:db: de:74:89:49:4a:ab:43:09:d9:64:21:dd:1f:37:f2:14:48:4f: 32:e6:4b:87:c5:6e:29:5b:4c:13:d9:5e:ca:db:8b:e3:a9:00: 86:01:3f:c5:27:a9:70:28:ca:89:1c:39:81:e8:69:68:cc:b5: ba:06:b7:f7:e9:21:f5:88:19:cf:cb:08:dd:e8:c5:46:f5:78: ae:b2:b0:e4:0d:8c:a3:ba:b4:db:d8:f9:b9:cd:6b:f2:f5:ce: 64:a4:68:1c:3c:8c:97:e8:4f:e0:0b:58:21:95:0d:4c:7d:4c: c9:50:6c:38:66:7b:63:92:42:b2:96:2c:81:98:0d:6a:58:37: 0c:be:d7:d2:5b:5d:2e:21:30:b5:78:44:eb:5d:3b:e6:65:13: 4a:59:a1:2f:59:45:f3:2d:90:f4:a9:35:51:19:72:b8:14:1c: 4b:e5:33:93 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNJ+GbWRN8pAbMZp1Chm9dFwsL90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA3MDQwOTIwMTJaFw0yNTA3MDMwOTI1MTJaMDMxMTAvBgNV BAMTKDY4M0RFQkUwQjk5NzA0MUMxMzY1NTM1RjM2NUQ1OUU2REI1NkZBNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYjt48CWin4TGZkc7dXfJC1anr p6RWR+OgmEfsNXZoqaiclJCXa9yiJMnTJ4UIlJfXNDCVjyv7y35g6ywO9IXhMSVD f3/v+scoZxKOQ5PlVsO/lV/DI3DoGya8SOctAgitb7iPNSA8wUE77mJ862+aHFtm etfAl60d/zvOVEHKG9f0A2ed5nWD8I5pdlitk1KYRdwiZ1Yyu/uhbYzkkRLDHdmV GpJK6Uj4ltEY4SvLZwbS2jdLydEayN36BdZGVSrIKKQDcVHNGyJEvtI1Qyv1UHbI Gqb4tXrfuhmRoKC+i/bJtJd2y9K27rVaqO75UoPLbPDT29wZ3Sahzuon7RlHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUaD3r4LmXBBwTZVNfNl1Z5ttW+nAwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAAwDQYJKoZIhvcNAQELBQADggEBAHtlxHF0Wpt/+itSrD2b73g/CtMe/zGO BioNsut49VAg+99OyqJI4jbgyKAqAxtMwdQx9Mcm2HorfJ1Jyybkqbrp41kSccqp wvwwxhYM13lMm8g/+rI1Z4eh2950iUlKq0MJ2WQh3R838hRITzLmS4fFbilbTBPZ Xsrbi+OpAIYBP8UnqXAoyokcOYHoaWjMtboGt/fpIfWIGc/LCN3oxUb1eK6ysOQN jKO6tNvY+bnNa/L1zmSkaBw8jJfoT+ALWCGVDUx9TMlQbDhme2OSQrKWLIGYDWpY Nwy+19JbXS4hMLV4ROtdO+ZlE0pZoS9ZRfMtkPSpNVEZcrgUHEvlM5M= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org