$ rpki-client -vvf repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa File: 323430353a633934303a3a2f33322d3332203d3e20313430303132.roa (raw, json) Hash identifier: xj74juQcT+CUxiMh/vxPzjondMCg0pv/+MpCN6N8gS0= Subject key identifier: BA:47:FF:B5:92:8A:6A:24:78:EA:49:A7:3C:A0:D8:58:F1:3E:A4:6E Certificate issuer: /CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A Certificate serial: 08F167141C7C9E7AD2EA6065AD90EF60C25B67BB Authority key identifier: E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa Signing time: Tue 09 Jul 2024 04:00:01 +0000 ROA not before: Tue 09 Jul 2024 03:55:01 +0000 ROA not after: Tue 08 Jul 2025 04:00:01 +0000 asID: 140012 IP address blocks: 2405:c940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f1:67:14:1c:7c:9e:7a:d2:ea:60:65:ad:90:ef:60:c2:5b:67:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A Validity Not Before: Jul 9 03:55:01 2024 GMT Not After : Jul 8 04:00:01 2025 GMT Subject: CN=BA47FFB5928A6A2478EA49A73CA0D858F13EA46E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6d:3f:f1:07:88:48:e7:23:bb:7d:f8:b3:6b: c2:ac:6d:9f:b1:69:64:6d:25:34:06:01:3a:69:d1: e4:f0:5c:3d:bb:2a:19:91:ef:01:c3:fa:a3:05:56: a7:65:f3:3b:e0:42:66:a0:87:66:9a:65:62:a1:fd: ba:67:d0:8b:31:4d:b4:dd:b2:1c:e5:ed:67:6a:13: cd:d0:e6:01:72:62:f4:ed:a3:49:8d:d8:34:04:87: 30:e8:11:af:e7:ca:d0:ae:ad:f5:55:a3:b8:4a:5b: 5e:5a:23:af:cc:6b:d1:8e:e5:33:c6:ae:4b:cb:3e: a8:bf:be:74:38:69:80:ba:83:63:62:d2:8d:e0:fe: d2:35:f4:cf:fe:22:3f:d4:d9:4d:ca:ba:c5:b8:4d: fc:d3:56:2c:85:7d:43:ff:94:7c:50:7b:cd:46:9b: ff:88:e0:21:ec:bc:75:3b:e3:2e:a4:20:2b:59:f8: 53:95:a9:1d:1b:55:1d:8f:d5:d8:c9:c7:d0:6b:42: 63:5a:96:97:8d:27:7f:8d:72:90:32:c1:e4:86:b5: 56:34:ec:d2:5a:d1:a9:94:08:c5:ee:40:c8:67:a7: b2:6e:a0:84:23:a5:bf:ac:4c:52:17:ab:98:bd:d0: d1:18:c9:ad:2f:c3:65:95:cc:1e:35:40:7d:c5:08: 60:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:47:FF:B5:92:8A:6A:24:78:EA:49:A7:3C:A0:D8:58:F1:3E:A4:6E X509v3 Authority Key Identifier: keyid:E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/323430353a633934303a3a2f33322d3332203d3e20313430303132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c940::/32 Signature Algorithm: sha256WithRSAEncryption 3b:4d:7f:65:08:42:3d:b0:e8:16:3c:ff:14:ca:a5:bb:2e:33: 6e:08:14:9a:3d:c7:00:6a:ce:dc:98:26:d1:b9:05:b1:82:61: 1c:81:e1:4a:9d:cc:13:d1:42:cb:78:e6:f2:70:2e:36:23:d8: ef:12:2a:4f:65:a5:7c:89:86:7a:96:91:7c:35:8e:87:55:0b: 67:fe:da:5b:cc:2f:16:35:27:0f:c2:fa:53:5b:5b:91:be:1c: a3:f2:6c:0c:97:31:46:21:54:f4:fc:49:aa:5e:7a:c9:a8:dc: ec:1a:d5:e5:b7:71:2c:b3:4a:e8:5e:31:a4:92:c4:0f:5f:c1: b8:2f:d5:78:6a:57:f9:bc:49:94:ab:71:91:2f:8d:0f:e6:63: 01:20:68:a2:5d:61:82:b6:24:19:fb:1d:0e:c1:d5:c7:fc:28: 99:9a:0a:66:38:f4:68:2e:87:5e:7b:71:d6:46:85:0f:55:38: cc:46:5c:57:49:c8:fc:54:75:f2:28:3d:ea:13:51:16:5b:09: ab:38:64:da:b9:70:f2:ae:ee:ba:ba:14:c6:59:d8:d4:25:98: a5:64:12:ef:2a:97:59:c9:7f:57:61:db:26:b6:8a:a0:84:bf: f4:49:d2:70:45:91:6b:32:06:c2:2b:66:6d:71:b9:ac:1b:6e: 2e:f9:37:90 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCPFnFBx8nnrS6mBlrZDvYMJbZ7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTE3MzU3RTQxRjM2NDREMTNFQkM3QzRCMjVCOEEyOTM2 QjkxMTY1QTAeFw0yNDA3MDkwMzU1MDFaFw0yNTA3MDgwNDAwMDFaMDMxMTAvBgNV BAMTKEJBNDdGRkI1OTI4QTZBMjQ3OEVBNDlBNzNDQTBEODU4RjEzRUE0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhbT/xB4hI5yO7ffiza8KsbZ+x aWRtJTQGATpp0eTwXD27KhmR7wHD+qMFVqdl8zvgQmagh2aaZWKh/bpn0IsxTbTd shzl7WdqE83Q5gFyYvTto0mN2DQEhzDoEa/nytCurfVVo7hKW15aI6/Ma9GO5TPG rkvLPqi/vnQ4aYC6g2Ni0o3g/tI19M/+Ij/U2U3KusW4TfzTViyFfUP/lHxQe81G m/+I4CHsvHU74y6kICtZ+FOVqR0bVR2P1djJx9BrQmNalpeNJ3+NcpAyweSGtVY0 7NJa0amUCMXuQMhnp7JuoIQjpb+sTFIXq5i90NEYya0vw2WVzB41QH3FCGBBAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUukf/tZKKaiR46kmnPKDYWPE+pG4wHwYDVR0j BBgwFoAU4XNX5B82RNE+vHxLJbiik2uRFlowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmFjOWU2My05ODkwLTQyMmUtODhkYy03Y2I2ZGRhYzIyZmEvMC9FMTczNTdFNDFG MzY0NEQxM0VCQzdDNEIyNUI4QTI5MzZCOTExNjVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTE3MzU3RTQxRjM2NDREMTNFQkM3QzRCMjVCOEEyOTM2Qjkx MTY1QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyYWM5ZTYzLTk4OTAtNDIyZS04 OGRjLTdjYjZkZGFjMjJmYS8wLzMyMzQzMDM1M2E2MzM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDMwMzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyUAwDQYJKoZI hvcNAQELBQADggEBADtNf2UIQj2w6BY8/xTKpbsuM24IFJo9xwBqztyYJtG5BbGC YRyB4UqdzBPRQst45vJwLjYj2O8SKk9lpXyJhnqWkXw1jodVC2f+2lvMLxY1Jw/C +lNbW5G+HKPybAyXMUYhVPT8Sapeesmo3Owa1eW3cSyzSuheMaSSxA9fwbgv1Xhq V/m8SZSrcZEvjQ/mYwEgaKJdYYK2JBn7HQ7B1cf8KJmaCmY49Gguh157cdZGhQ9V OMxGXFdJyPxUdfIoPeoTURZbCas4ZNq5cPKu7rq6FMZZ2NQlmKVkEu8ql1nJf1dh 2ya2iqCEv/RJ0nBFkWsyBsIrZm1xuawbbi75N5A= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org