$ rpki-client -vvf repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa File: 323430343a643563303a3a2f33322d3438203d3e20313338383534.roa (raw, json) Hash identifier: 4UtOikiEbw7MTyF2qB18hMHkq0zS5v90+Zpu/WwZgRA= Subject key identifier: 4D:10:57:D0:C9:F5:AC:0F:3C:0C:53:07:29:FF:A0:44:C9:BA:3A:E1 Certificate issuer: /CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Certificate serial: 4BAE87C17D485BF671D3751122AD597C8547B479 Authority key identifier: 96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa Signing time: Wed 10 Apr 2024 08:01:27 +0000 ROA not before: Wed 10 Apr 2024 07:56:27 +0000 ROA not after: Wed 09 Apr 2025 08:01:27 +0000 asID: 138854 IP address blocks: 2404:d5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ae:87:c1:7d:48:5b:f6:71:d3:75:11:22:ad:59:7c:85:47:b4:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Validity Not Before: Apr 10 07:56:27 2024 GMT Not After : Apr 9 08:01:27 2025 GMT Subject: CN=4D1057D0C9F5AC0F3C0C530729FFA044C9BA3AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5f:bb:d4:a8:d8:4d:52:5a:fb:2a:16:40:29: 8d:4a:78:aa:6e:be:f8:f1:f1:d0:ac:75:b0:d7:a1: 9b:f9:1c:3d:7f:48:3f:34:64:91:95:82:93:22:8c: a3:d0:ce:eb:03:e2:d8:ca:be:0a:2f:db:5f:a5:98: 9a:e6:1f:14:cc:2a:91:11:03:2c:b2:bc:30:22:d5: 8d:2a:5f:4a:73:7f:38:4a:af:fc:0f:1f:15:b4:21: 9e:36:f3:b5:66:38:03:00:8f:08:7c:b2:4b:7f:7d: a2:88:6b:8b:c7:c0:e8:94:68:53:9b:44:32:ed:25: 81:a9:03:fa:58:ac:59:7c:e3:a0:b0:2b:d5:cf:95: 57:b6:4a:ed:c3:48:47:f0:b9:2c:2f:a8:ce:17:a7: 02:59:b1:0c:ad:f6:e0:74:22:3f:13:8a:7b:fb:b2: 55:df:03:26:f0:39:4b:51:c8:85:46:f2:b3:26:7c: 5c:db:d4:01:fb:6b:eb:03:62:94:7b:ad:b4:18:17: c6:dd:98:24:b5:59:16:c6:a6:5f:71:dd:8e:18:6e: 46:f6:12:a4:41:5a:86:f7:8e:c6:b7:07:5c:d2:4e: 62:c6:c2:4b:71:54:a1:f5:54:13:71:19:bd:92:15: eb:da:48:85:8f:77:cc:54:50:1e:0e:86:72:c1:46: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:10:57:D0:C9:F5:AC:0F:3C:0C:53:07:29:FF:A0:44:C9:BA:3A:E1 X509v3 Authority Key Identifier: keyid:96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:d5c0::/32 Signature Algorithm: sha256WithRSAEncryption 8a:51:37:d0:cf:4f:00:f7:42:5d:81:85:79:34:a0:33:6c:8f: ef:9c:07:b5:64:32:8f:b3:ac:d0:34:94:3f:4b:c6:32:c3:06: 79:90:54:de:f5:ec:9c:12:fb:e8:4e:11:b9:e5:7a:e0:f5:35: 65:1b:4c:33:77:58:6d:9a:16:24:c0:7e:24:9b:8a:6f:82:84: 30:9d:72:97:3e:ce:d6:87:5d:01:81:dd:df:7e:17:9b:ed:67: 4e:33:fa:02:0b:c5:52:19:33:de:26:8e:26:47:13:8e:29:61: 25:0b:71:c4:0c:14:3e:58:54:60:86:d1:48:1c:2f:92:a9:af: 51:51:b9:d8:31:0f:73:d9:bd:94:cf:ca:5a:ee:41:2e:5c:93: f2:58:51:92:44:0e:1f:a4:2d:2d:9b:cf:de:99:fe:e3:2e:59: 78:75:52:ef:ab:cb:da:8f:0e:9d:fe:1c:45:4d:11:66:6f:08: 5d:75:91:05:49:9f:66:1f:d7:ce:76:6b:05:fb:c2:b4:22:75: 31:00:23:ee:88:21:6f:98:a1:04:0f:2c:32:a9:82:87:f5:dc: 1c:e9:d7:29:39:1d:4a:4a:e7:5b:00:9c:83:01:4c:45:18:a3: 1f:94:71:ed:ce:16:5c:ea:40:4e:23:3a:4a:4d:f0:24:5c:54: 10:37:fc:54 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS66HwX1IW/Zx03URIq1ZfIVHtHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0 MTExNzNEOTAeFw0yNDA0MTAwNzU2MjdaFw0yNTA0MDkwODAxMjdaMDMxMTAvBgNV BAMTKDREMTA1N0QwQzlGNUFDMEYzQzBDNTMwNzI5RkZBMDQ0QzlCQTNBRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsX7vUqNhNUlr7KhZAKY1KeKpu vvjx8dCsdbDXoZv5HD1/SD80ZJGVgpMijKPQzusD4tjKvgov21+lmJrmHxTMKpER AyyyvDAi1Y0qX0pzfzhKr/wPHxW0IZ4287VmOAMAjwh8skt/faKIa4vHwOiUaFOb RDLtJYGpA/pYrFl846CwK9XPlVe2Su3DSEfwuSwvqM4XpwJZsQyt9uB0Ij8Tinv7 slXfAybwOUtRyIVG8rMmfFzb1AH7a+sDYpR7rbQYF8bdmCS1WRbGpl9x3Y4Ybkb2 EqRBWob3jsa3B1zSTmLGwktxVKH1VBNxGb2SFevaSIWPd8xUUB4OhnLBRp9LAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTRBX0Mn1rA88DFMHKf+gRMm6OuEwHwYDVR0j BBgwFoAUlsQc/id/aG40dqUz/a5aD0ERc9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjUwMjIwNS01YzU0LTQ3ZGItYWU2Zi05ZDQ4ZTE4MzI0MWMvMC85NkM0MUNGRTI3 N0Y2ODZFMzQ3NkE1MzNGREFFNUEwRjQxMTE3M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0MTEx NzNEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNTAyMjA1LTVjNTQtNDdkYi1h ZTZmLTlkNDhlMTgzMjQxYy8wLzMyMzQzMDM0M2E2NDM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE1cAwDQYJKoZI hvcNAQELBQADggEBAIpRN9DPTwD3Ql2BhXk0oDNsj++cB7VkMo+zrNA0lD9LxjLD BnmQVN717JwS++hOEbnleuD1NWUbTDN3WG2aFiTAfiSbim+ChDCdcpc+ztaHXQGB 3d9+F5vtZ04z+gILxVIZM94mjiZHE44pYSULccQMFD5YVGCG0UgcL5Kpr1FRudgx D3PZvZTPylruQS5ck/JYUZJEDh+kLS2bz96Z/uMuWXh1Uu+ry9qPDp3+HEVNEWZv CF11kQVJn2Yf1852awX7wrQidTEAI+6IIW+YoQQPLDKpgof13Bzp1yk5HUpK51sA nIMBTEUYox+Uce3OFlzqQE4jOkpN8CRcVBA3/FQ= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:39 2024 by rpki-client on console-fra.rpki-client.org