$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa File: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (raw, json) Hash identifier: M8G7fg26FDnNwWV4HPrq23C/br3Zk2rCpobcnxBUCyY= Subject key identifier: 56:C9:8A:7B:67:2B:AD:92:F5:1E:BA:AF:B1:B9:0F:BF:7B:CC:F9:74 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 17D26CEA93A14E8A9139E00A528E9C596562302C Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa Signing time: Mon 01 Jul 2024 01:04:50 +0000 ROA not before: Mon 01 Jul 2024 00:59:50 +0000 ROA not after: Mon 30 Jun 2025 01:04:50 +0000 asID: 136869 IP address blocks: 2402:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d2:6c:ea:93:a1:4e:8a:91:39:e0:0a:52:8e:9c:59:65:62:30:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jul 1 00:59:50 2024 GMT Not After : Jun 30 01:04:50 2025 GMT Subject: CN=56C98A7B672BAD92F51EBAAFB1B90FBF7BCCF974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e3:30:44:6d:a6:39:15:a8:a6:26:96:a8:77: 9f:68:e5:15:a2:49:7d:3f:ee:de:81:7f:23:f3:24: 3c:7b:9b:bc:00:1d:bf:c2:67:89:2f:5c:53:fd:b9: 3b:54:b0:f8:b2:4b:63:6e:3b:f8:a0:2f:d5:72:6b: 99:55:e2:69:c3:a4:24:37:67:78:93:3d:ac:19:f3: be:93:5b:0f:48:7c:e8:ae:58:70:ae:f4:9b:b4:e7: 7f:da:04:23:f0:80:2b:e3:ed:f7:9a:82:af:11:88: e3:62:6e:4d:74:1d:02:12:87:ef:36:2a:1d:80:c5: 94:e0:31:20:61:c2:dd:31:c3:46:a2:c8:44:04:cc: 4f:12:fc:5d:c0:ef:aa:36:9e:09:fc:5e:ef:44:92: c8:b0:be:31:ce:e2:17:b0:e8:d1:fa:24:a3:27:cd: 57:66:23:b5:fa:22:03:d3:9f:f8:af:74:a9:c1:ca: 83:d2:74:a8:27:e7:d3:bc:6e:50:4f:fc:3b:5b:e4: 1e:fa:47:d5:f9:25:1c:bd:ba:99:b5:8c:0e:ec:56: a0:38:6c:ae:70:72:04:4a:0e:71:18:60:40:dc:0c: 7e:e0:b5:70:a0:bf:58:d0:bc:3e:57:a4:79:97:f7: cd:16:ac:72:f9:ee:c5:40:53:64:57:21:c3:53:1c: 8e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C9:8A:7B:67:2B:AD:92:F5:1E:BA:AF:B1:B9:0F:BF:7B:CC:F9:74 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 6d:0d:a0:db:de:e2:ae:49:72:02:67:c1:cb:1c:df:a9:bb:29: 33:69:56:9e:f4:d0:f2:bb:83:50:ab:02:16:e0:17:55:cd:97: 0f:0d:c1:b7:02:fe:bc:75:4b:79:2b:8a:b4:8c:e0:a5:2d:90: 56:3d:d7:92:37:b6:23:69:d3:c8:38:ce:e4:f0:97:31:0e:db: 2f:1b:e5:b3:f3:4a:38:a3:ad:12:62:4b:c1:0d:ba:22:67:40: 30:19:32:4a:8d:46:2c:09:1b:4a:8b:f7:d1:15:63:6f:ed:31: 78:60:00:6b:fe:d3:00:2c:e9:0e:a2:cd:49:50:2f:9f:ef:82: c2:99:46:9a:ba:b2:8f:0f:a7:25:eb:3e:9f:2d:43:6a:e5:96: d1:7d:d0:6d:3b:27:41:dc:ea:b4:c4:77:86:39:64:46:43:69: 74:a0:17:66:69:ef:29:c7:a8:60:d2:b3:0a:e1:ef:c2:ae:e3: bb:cd:f5:7c:f5:db:21:30:4b:c8:44:54:4a:00:cb:6c:7b:0c: 66:5a:fc:59:3c:a5:38:34:67:53:ad:c9:cd:a1:fa:10:15:f3: 28:ce:51:dc:46:ee:54:0e:91:7d:f7:52:27:99:19:c7:10:66: d6:93:3b:37:fa:27:c0:01:d4:b4:b1:dd:86:a4:6a:99:d4:cb: aa:43:1a:d9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUF9Js6pOhToqROeAKUo6cWWViMCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNDA3MDEwMDU5NTBaFw0yNTA2MzAwMTA0NTBaMDMxMTAvBgNV BAMTKDU2Qzk4QTdCNjcyQkFEOTJGNTFFQkFBRkIxQjkwRkJGN0JDQ0Y5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr4zBEbaY5FaimJpaod59o5RWi SX0/7t6BfyPzJDx7m7wAHb/CZ4kvXFP9uTtUsPiyS2NuO/igL9Vya5lV4mnDpCQ3 Z3iTPawZ876TWw9IfOiuWHCu9Ju053/aBCPwgCvj7feagq8RiONibk10HQISh+82 Kh2AxZTgMSBhwt0xw0aiyEQEzE8S/F3A76o2ngn8Xu9EksiwvjHO4hew6NH6JKMn zVdmI7X6IgPTn/ivdKnByoPSdKgn59O8blBP/Dtb5B76R9X5JRy9upm1jA7sVqA4 bK5wcgRKDnEYYEDcDH7gtXCgv1jQvD5XpHmX980WrHL57sVAU2RXIcNTHI4HAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUVsmKe2crrZL1HrqvsbkPv3vM+XQwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMyMzQzMDMyM2EzMTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCGkAwDQYJKoZI hvcNAQELBQADggEBAG0NoNve4q5JcgJnwcsc36m7KTNpVp700PK7g1CrAhbgF1XN lw8NwbcC/rx1S3krirSM4KUtkFY915I3tiNp08g4zuTwlzEO2y8b5bPzSjijrRJi S8ENuiJnQDAZMkqNRiwJG0qL99EVY2/tMXhgAGv+0wAs6Q6izUlQL5/vgsKZRpq6 so8PpyXrPp8tQ2rlltF90G07J0Hc6rTEd4Y5ZEZDaXSgF2Zp7ynHqGDSswrh78Ku 47vN9Xz12yEwS8hEVEoAy2x7DGZa/Fk8pTg0Z1Otyc2h+hAV8yjOUdxG7lQOkX33 UieZGccQZtaTOzf6J8AB1LSx3YakapnUy6pDGtk= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org