$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa File: 323430333a386334303a3a2f33322d3438203d3e20313338303634.roa (raw, json) Hash identifier: WhcI/rPTYxL6IUCY8wiBGmvUbl7gccw0l7rmDchqDAA= Subject key identifier: 02:DD:BA:EE:6F:E8:40:B3:75:10:E3:63:F3:99:E8:53:FC:37:66:97 Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 7FA509C1EC9C6CA482E4E8EA19C42833933D8D52 Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa Signing time: Sat 21 Sep 2024 08:00:00 +0000 ROA not before: Sat 21 Sep 2024 07:55:00 +0000 ROA not after: Sat 20 Sep 2025 08:00:00 +0000 asID: 138064 IP address blocks: 2403:8c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:a5:09:c1:ec:9c:6c:a4:82:e4:e8:ea:19:c4:28:33:93:3d:8d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: Sep 21 07:55:00 2024 GMT Not After : Sep 20 08:00:00 2025 GMT Subject: CN=02DDBAEE6FE840B37510E363F399E853FC376697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:34:f3:f3:fd:ad:d0:b9:b4:19:8b:20:81: 2b:24:30:46:b5:3a:54:30:ae:3b:3e:bc:34:8a:d4: 93:dc:a8:62:ba:34:5f:8f:b5:83:ce:85:00:06:bc: c2:be:30:c3:49:da:6a:82:b0:f4:a9:4e:10:e1:f8: 6d:1c:43:ef:b9:ae:03:ec:4d:65:23:60:d5:60:cf: cc:a0:d4:4e:59:e3:87:f3:ce:32:de:fd:e2:a5:52: 74:2a:32:7c:bd:c1:49:ca:94:f4:75:84:27:56:7c: c7:93:56:88:6d:85:57:dd:31:e1:80:a2:59:4e:8f: 2d:63:72:c3:dd:87:b2:ff:c8:84:2e:18:b6:d6:17: 58:eb:82:61:dd:e9:0e:a3:00:1f:ed:58:9f:ba:e1: 56:7f:84:2c:77:b1:f5:af:67:b6:ba:ec:eb:83:b6: 2f:69:82:c7:a9:54:f8:0e:7f:74:f9:00:0c:7b:30: a1:89:ea:3e:76:b7:6d:95:56:64:c2:9d:51:f2:de: 9d:9a:0e:cc:69:6a:f2:cb:31:42:7d:cb:b5:11:8a: dc:2c:97:88:c6:2f:69:10:0a:54:6a:28:b7:05:97: 20:32:76:72:da:64:34:54:ea:ef:34:f7:48:41:3f: 41:c7:e2:ae:46:36:ba:7d:a6:d4:3b:43:93:95:fd: fe:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DD:BA:EE:6F:E8:40:B3:75:10:E3:63:F3:99:E8:53:FC:37:66:97 X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:8c40::/32 Signature Algorithm: sha256WithRSAEncryption a0:28:aa:9c:c1:9e:4c:c2:e7:aa:d7:66:5a:4f:2a:02:0a:2a: 4a:f1:ea:54:d7:11:c8:12:14:9d:97:c9:cb:13:df:82:1a:c2: 4a:6c:3a:03:35:9d:39:e8:8e:5e:ea:30:11:8e:2f:a5:c5:60: a4:43:b0:e4:4d:13:05:12:0a:f8:f5:54:11:70:5d:56:10:99: fa:93:76:d4:c4:02:3e:50:30:6a:ab:32:25:ee:31:2c:d0:a8: a7:3d:cb:df:75:68:95:f5:28:95:ac:96:6c:1d:dd:19:3f:ce: 95:8d:2a:3c:a0:95:34:56:94:32:13:fd:8e:d9:d0:45:88:7e: 52:52:cd:1b:70:fb:85:80:c3:72:5e:0e:c1:e9:62:95:00:51: 2e:29:89:40:6a:0b:64:78:37:7c:d2:7f:c6:f8:4e:ae:a6:d3: 89:95:c6:b2:c2:7e:c7:81:f7:6c:20:5d:92:51:38:d1:b0:35: 73:26:c8:3c:58:9b:9b:8d:ad:4b:80:0c:b0:af:c0:0a:2b:3e: 58:b2:06:5e:c1:38:bd:9e:72:17:72:80:b1:92:f6:d5:70:54: 7e:81:74:12:a6:5b:30:35:42:99:20:0d:7e:b9:d6:1e:ba:3c: 08:da:cc:01:f5:69:a4:73:e3:a0:04:be:21:4e:a2:2b:27:9c: 54:4f:ca:58 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUf6UJweycbKSC5OjqGcQoM5M9jVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yNDA5MjEwNzU1MDBaFw0yNTA5MjAwODAwMDBaMDMxMTAvBgNV BAMTKDAyRERCQUVFNkZFODQwQjM3NTEwRTM2M0YzOTlFODUzRkMzNzY2OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+DTz8/2t0Lm0GYsggSskMEa1 OlQwrjs+vDSK1JPcqGK6NF+PtYPOhQAGvMK+MMNJ2mqCsPSpThDh+G0cQ++5rgPs TWUjYNVgz8yg1E5Z44fzzjLe/eKlUnQqMny9wUnKlPR1hCdWfMeTVohthVfdMeGA ollOjy1jcsPdh7L/yIQuGLbWF1jrgmHd6Q6jAB/tWJ+64VZ/hCx3sfWvZ7a67OuD ti9pgsepVPgOf3T5AAx7MKGJ6j52t22VVmTCnVHy3p2aDsxpavLLMUJ9y7URitws l4jGL2kQClRqKLcFlyAydnLaZDRU6u8090hBP0HH4q5GNrp9ptQ7Q5OV/f4dAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUAt267m/oQLN1EONj85noU/w3ZpcwHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMyMzQzMDMzM2EzODYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDjEAwDQYJKoZI hvcNAQELBQADggEBAKAoqpzBnkzC56rXZlpPKgIKKkrx6lTXEcgSFJ2XycsT34Ia wkpsOgM1nTnojl7qMBGOL6XFYKRDsORNEwUSCvj1VBFwXVYQmfqTdtTEAj5QMGqr MiXuMSzQqKc9y991aJX1KJWslmwd3Rk/zpWNKjyglTRWlDIT/Y7Z0EWIflJSzRtw +4WAw3JeDsHpYpUAUS4piUBqC2R4N3zSf8b4Tq6m04mVxrLCfseB92wgXZJRONGw NXMmyDxYm5uNrUuADLCvwAorPliyBl7BOL2echdygLGS9tVwVH6BdBKmWzA1Qpkg DX651h66PAjazAH1aaRz46AEviFOoisnnFRPylg= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org