$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa File: 323430333a386334303a3a2f33322d3438203d3e20313338303634.roa (raw, json) Hash identifier: 9QC1yNkG3QPrr0a+X5bnTEw9HANCHMMNm7drj/X0r9E= Subject key identifier: 63:70:54:48:AE:7C:8D:F1:21:A2:AF:DB:16:EF:93:F0:DC:29:1B:5C Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 13D168AF09F1F27F98F805E5A5B945E644DB6ADC Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa Signing time: Sat 21 Oct 2023 08:00:00 +0000 ROA not before: Sat 21 Oct 2023 07:55:00 +0000 ROA not after: Sat 19 Oct 2024 08:00:00 +0000 asID: 138064 IP address blocks: 2403:8c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d1:68:af:09:f1:f2:7f:98:f8:05:e5:a5:b9:45:e6:44:db:6a:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: Oct 21 07:55:00 2023 GMT Not After : Oct 19 08:00:00 2024 GMT Subject: CN=63705448AE7C8DF121A2AFDB16EF93F0DC291B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:01:01:b4:54:a4:2b:95:c2:8f:7d:b7:7f:8e: 3b:0e:00:26:c8:92:c7:20:42:47:68:41:b6:f0:6a: 88:f4:1a:82:ea:b4:f6:dc:e9:61:50:6f:7a:39:26: 42:57:e5:12:96:bf:2e:f9:29:2b:10:12:e2:53:6f: 9c:d5:b3:6a:2a:c3:0e:0e:2f:f0:11:2f:8e:a2:9c: 1b:fa:99:ef:8b:cd:7d:b1:e5:25:06:86:f2:3c:97: d3:f9:40:4b:36:07:88:43:57:10:d7:6d:3a:70:1a: 5c:26:32:98:f5:68:30:9f:7c:68:6b:c7:f8:82:c7: 79:97:a2:07:58:f2:e4:60:d0:0d:3a:fa:d4:a5:d4: 66:f8:01:0d:3f:c6:1e:06:d7:3a:15:e1:53:81:2d: c1:bf:31:b4:86:03:dd:eb:4b:c4:1e:5b:11:82:38: 81:bd:d7:46:3f:1c:6c:44:dd:76:b4:d1:94:89:7d: d5:9d:04:22:fd:81:44:08:86:f0:e6:e1:8e:df:5d: 38:f6:fd:bf:2b:e6:74:6b:f8:95:4e:a1:68:73:32: 2b:12:de:ee:21:78:a9:76:96:8c:54:12:14:c3:81: f1:9d:6e:56:4d:79:f4:3b:e4:b1:0e:99:42:96:f0: df:39:41:c9:3f:96:ee:0f:89:0c:d2:8d:4a:c8:06: 29:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:70:54:48:AE:7C:8D:F1:21:A2:AF:DB:16:EF:93:F0:DC:29:1B:5C X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/323430333a386334303a3a2f33322d3438203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:8c40::/32 Signature Algorithm: sha256WithRSAEncryption 3f:ee:4b:37:d2:ce:c5:eb:43:91:a1:d9:b8:f1:dd:45:e9:a4: 83:da:62:79:85:87:54:c9:20:dd:30:65:40:df:af:03:92:cf: d1:d8:0d:98:3e:06:2d:76:80:8a:b3:0b:93:f9:2a:96:ee:78: 7a:f7:93:73:53:32:5b:83:7d:bd:fc:2d:16:f4:c8:34:ec:eb: 5f:a5:5c:55:29:9d:7e:b6:59:2b:8a:64:16:2d:e1:a7:3c:d4: d5:dc:0f:ce:6e:08:1d:fd:ed:76:bc:77:a7:b3:10:30:81:31: 6e:e0:31:27:d0:20:5b:b6:1b:76:a2:c1:80:6b:dc:f9:60:9a: bf:58:b6:df:86:c0:f3:e7:db:37:0b:42:26:ef:84:32:59:5c: e7:33:3c:ee:c9:a4:53:4e:8e:25:d1:13:1d:63:c4:c7:a4:c2: bb:c5:a9:76:b1:08:1f:eb:14:97:0f:db:7d:97:82:42:85:43: ff:82:58:46:02:a6:27:76:e4:4c:29:ac:8c:82:72:9e:8b:1a: 94:79:bd:43:8d:f8:35:fe:30:a1:0a:7d:85:09:06:43:91:39: 3b:72:9b:96:ff:e3:65:4a:23:71:e8:18:25:1d:19:9d:a0:29: 93:d1:ad:be:0c:c4:23:15:a2:df:e3:e3:48:c6:ce:74:9a:3d: 1d:b5:46:db -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUE9Forwnx8n+Y+AXlpblF5kTbatwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yMzEwMjEwNzU1MDBaFw0yNDEwMTkwODAwMDBaMDMxMTAvBgNV BAMTKDYzNzA1NDQ4QUU3QzhERjEyMUEyQUZEQjE2RUY5M0YwREMyOTFCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZAQG0VKQrlcKPfbd/jjsOACbI kscgQkdoQbbwaoj0GoLqtPbc6WFQb3o5JkJX5RKWvy75KSsQEuJTb5zVs2oqww4O L/ARL46inBv6me+LzX2x5SUGhvI8l9P5QEs2B4hDVxDXbTpwGlwmMpj1aDCffGhr x/iCx3mXogdY8uRg0A06+tSl1Gb4AQ0/xh4G1zoV4VOBLcG/MbSGA93rS8QeWxGC OIG910Y/HGxE3Xa00ZSJfdWdBCL9gUQIhvDm4Y7fXTj2/b8r5nRr+JVOoWhzMisS 3u4heKl2loxUEhTDgfGdblZNefQ75LEOmUKW8N85Qck/lu4PiQzSjUrIBimFAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUY3BUSK58jfEhoq/bFu+T8NwpG1wwHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMyMzQzMDMzM2EzODYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDjEAwDQYJKoZI hvcNAQELBQADggEBAD/uSzfSzsXrQ5Gh2bjx3UXppIPaYnmFh1TJIN0wZUDfrwOS z9HYDZg+Bi12gIqzC5P5KpbueHr3k3NTMluDfb38LRb0yDTs61+lXFUpnX62WSuK ZBYt4ac81NXcD85uCB397Xa8d6ezEDCBMW7gMSfQIFu2G3aiwYBr3Plgmr9Ytt+G wPPn2zcLQibvhDJZXOczPO7JpFNOjiXREx1jxMekwrvFqXaxCB/rFJcP232XgkKF Q/+CWEYCpid25EwprIyCcp6LGpR5vUON+DX+MKEKfYUJBkOROTtym5b/42VKI3Ho GCUdGZ2gKZPRrb4MxCMVot/j40jGznSaPR21Rts= -----END CERTIFICATE-----Generated at Sat Apr 27 10:13:23 2024 by rpki-client on console-ams.rpki-client.org