$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: OqPNts/R4WNZNbG6dENNnPAh4ln7S5k7kvsYkIg7/SQ= Subject key identifier: 9A:29:95:FD:64:AF:1E:67:69:EF:98:6A:44:39:3F:7F:F4:36:CD:BF Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 78DF9770633A39845D7DC91763CDD6B2B4D52F56 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 04 Jul 2024 09:25:40 +0000 ROA not before: Thu 04 Jul 2024 09:20:40 +0000 ROA not after: Thu 03 Jul 2025 09:25:40 +0000 asID: 137363 IP address blocks: 2402:fdc0:c802::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:df:97:70:63:3a:39:84:5d:7d:c9:17:63:cd:d6:b2:b4:d5:2f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jul 4 09:20:40 2024 GMT Not After : Jul 3 09:25:40 2025 GMT Subject: CN=9A2995FD64AF1E6769EF986A44393F7FF436CDBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:3b:a4:a7:b1:2d:ed:1f:6a:6b:7c:d2:9e: d7:93:22:62:fb:80:8b:b5:7b:13:35:6b:c2:7b:aa: ee:5e:7a:99:b8:18:24:f3:58:5a:b4:50:df:12:b4: a9:b1:23:92:14:5d:55:3c:91:7f:52:af:8e:ce:f4: 17:4e:34:de:fc:a8:06:54:20:bb:e3:00:38:73:63: 02:d6:c4:45:b3:57:ae:56:8e:73:2d:e0:f3:98:69: 00:9b:1b:e6:8c:5d:78:4a:eb:cd:19:21:da:29:dd: b3:60:7c:5d:a5:20:da:aa:83:12:0d:90:4b:6b:f6: ca:fb:17:7d:ec:20:7a:9d:c6:e2:38:3b:2c:93:98: bc:33:a6:31:27:be:24:02:ce:4d:83:50:64:fb:50: 55:33:14:74:2a:99:ec:17:60:4a:bc:08:70:72:23: c9:d2:a5:64:56:be:32:ff:6b:87:9b:ef:e0:2e:68: 1f:4b:c6:df:7a:bd:f5:39:a9:7b:4e:c9:c9:55:05: 9c:1d:0f:c3:f9:7f:6c:85:9f:b7:c0:3f:33:22:fe: 72:cb:b3:5b:db:28:c9:f7:43:48:c0:04:25:7e:1e: af:0d:34:52:34:7f:5a:45:29:a1:06:a9:1a:71:69: 3e:04:11:27:fd:c6:6b:f9:bd:99:f0:39:dd:c7:46: 85:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:29:95:FD:64:AF:1E:67:69:EF:98:6A:44:39:3F:7F:F4:36:CD:BF X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c802::/48 Signature Algorithm: sha256WithRSAEncryption bc:e7:54:4e:33:d8:73:10:e6:ec:fe:5d:3f:5c:c9:1a:b6:d3: 8d:ef:ee:6b:8d:a9:d1:5c:55:51:ac:6e:4c:0f:a2:12:e4:22: 6a:b7:94:41:fb:7b:f4:f8:0b:b4:92:c5:f2:25:db:d9:80:cc: ef:e1:b6:97:b2:06:3d:c4:73:4a:ec:56:64:c8:70:f9:4f:dd: 0f:f5:d2:19:13:f9:d6:88:86:53:06:85:84:49:1d:fc:86:10: 13:eb:ff:f1:6a:19:20:cd:5d:de:32:c8:3f:c4:e9:20:12:6d: e7:39:c9:90:ba:c3:10:39:ab:ef:44:99:06:c4:5f:70:7f:28: f2:3d:4e:50:63:cf:f7:d3:02:71:0c:9b:33:73:bb:35:f4:90: 0c:39:42:00:93:f0:32:fb:9b:cd:ea:3b:6a:80:fa:3a:6c:09: b6:64:fc:d7:67:92:2f:1b:34:09:45:b2:b0:12:c1:e0:2d:66: a2:7b:4f:59:f2:54:ff:01:bc:ec:3d:08:d5:cf:e4:8e:db:ca: d0:7f:ca:48:85:5b:5d:51:ba:23:e0:af:a3:26:4c:0c:70:b8: 4e:37:d2:4f:fe:32:a1:11:bd:a0:84:2e:a1:d9:e2:a8:ce:64: 00:e1:be:75:46:24:d6:f6:43:03:a1:0d:c4:ac:f1:a1:24:d4: a3:b1:84:5b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeN+XcGM6OYRdfckXY83WsrTVL1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA3MDQwOTIwNDBaFw0yNTA3MDMwOTI1NDBaMDMxMTAvBgNV BAMTKDlBMjk5NUZENjRBRjFFNjc2OUVGOTg2QTQ0MzkzRjdGRjQzNkNEQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHDukp7Et7R9qa3zSnteTImL7 gIu1exM1a8J7qu5eepm4GCTzWFq0UN8StKmxI5IUXVU8kX9Sr47O9BdONN78qAZU ILvjADhzYwLWxEWzV65WjnMt4POYaQCbG+aMXXhK680ZIdop3bNgfF2lINqqgxIN kEtr9sr7F33sIHqdxuI4OyyTmLwzpjEnviQCzk2DUGT7UFUzFHQqmewXYEq8CHBy I8nSpWRWvjL/a4eb7+AuaB9Lxt96vfU5qXtOyclVBZwdD8P5f2yFn7fAPzMi/nLL s1vbKMn3Q0jABCV+Hq8NNFI0f1pFKaEGqRpxaT4EESf9xmv5vZnwOd3HRoUnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUmimV/WSvHmdp75hqRDk/f/Q2zb8wHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAIwDQYJKoZIhvcNAQELBQADggEBALznVE4z2HMQ5uz+XT9cyRq2043v7muN qdFcVVGsbkwPohLkImq3lEH7e/T4C7SSxfIl29mAzO/htpeyBj3Ec0rsVmTIcPlP 3Q/10hkT+daIhlMGhYRJHfyGEBPr//FqGSDNXd4yyD/E6SASbec5yZC6wxA5q+9E mQbEX3B/KPI9TlBjz/fTAnEMmzNzuzX0kAw5QgCT8DL7m83qO2qA+jpsCbZk/Ndn ki8bNAlFsrASweAtZqJ7T1nyVP8BvOw9CNXP5I7bytB/ykiFW11RuiPgr6MmTAxw uE430k/+MqERvaCELqHZ4qjOZADhvnVGJNb2QwOhDcSs8aEk1KOxhFs= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org