$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa File: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (raw, json) Hash identifier: zibfZf7uhnHSJmYE9o2ZdTLhnmN7F6Ep7luCbEj5RWk= Subject key identifier: 7F:64:89:00:D8:F7:4A:3F:30:1F:28:3E:C9:BF:11:97:08:B4:1B:B3 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 205A7314E01D6C131B43F83E013FA52441DA3507 Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa Signing time: Sat 18 May 2024 11:00:01 +0000 ROA not before: Sat 18 May 2024 10:55:01 +0000 ROA not after: Sat 17 May 2025 11:00:01 +0000 asID: 138822 IP address blocks: 2404:a4c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5a:73:14:e0:1d:6c:13:1b:43:f8:3e:01:3f:a5:24:41:da:35:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: May 18 10:55:01 2024 GMT Not After : May 17 11:00:01 2025 GMT Subject: CN=7F648900D8F74A3F301F283EC9BF119708B41BB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:61:d2:b9:bc:28:c6:af:60:bb:c1:8c:af: 03:75:c7:62:d0:8a:16:90:e2:82:4f:05:c4:78:08: d5:d3:be:be:a0:ab:57:fc:d2:2d:8d:f1:d2:36:c6: 2a:3d:e6:21:d8:e0:32:21:1a:f0:2c:47:af:12:6b: 3a:1c:7c:9b:cc:90:d1:67:46:b7:f3:51:9c:69:9d: 87:3b:16:01:a1:73:fa:f8:f7:82:88:34:72:19:d9: 28:01:cf:1e:ac:b0:de:dc:7d:ac:b0:63:64:65:e9: 22:b0:37:a9:bb:a4:f3:de:6c:15:e8:3b:06:b2:27: 17:3f:85:de:be:da:64:6a:7c:ea:65:17:1e:7c:5a: 6d:db:8e:13:8c:11:d8:c6:72:d1:db:36:dd:60:06: 0d:27:03:dd:da:c3:f6:62:bc:53:4a:a0:65:3b:a3: 00:9b:f0:0c:b1:82:f7:b4:2c:50:7f:2d:30:eb:70: b6:80:4a:b8:1e:fc:d6:8d:90:53:b2:8b:14:bf:be: dc:da:8d:64:c1:38:77:61:68:34:c9:70:35:8c:6d: 12:3d:a8:35:f0:0d:c6:90:07:33:86:08:e6:cc:39: 48:d0:64:d8:24:4f:5e:98:24:20:7e:be:73:bf:a5: de:d6:24:f5:a0:18:d1:05:85:98:cc:0c:4c:b4:27: 95:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:64:89:00:D8:F7:4A:3F:30:1F:28:3E:C9:BF:11:97:08:B4:1B:B3 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a3a2f33322d3438203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a4c0::/32 Signature Algorithm: sha256WithRSAEncryption 99:d5:5c:d8:e6:23:73:c5:cd:75:b2:68:4e:88:a4:90:85:bb: fa:f9:0a:77:7c:47:70:d7:b3:7c:0e:ae:f7:7c:18:4d:e0:44: e0:f7:31:60:8f:4c:d0:e1:b5:91:75:71:9b:70:e8:09:a6:40: cb:5d:4a:1c:be:53:83:9e:5f:ce:04:d2:35:04:48:59:70:a5: 49:ed:4f:54:0f:1a:b4:40:fe:1d:ee:fb:09:da:4f:11:22:5a: b3:ac:e6:df:4d:f5:6a:2b:42:a2:6d:c3:e0:be:9e:da:24:ae: c3:d9:5d:25:6c:c7:23:7f:b5:c8:8c:e5:5e:b4:db:9b:dc:d2: 05:0f:50:33:2c:da:57:4a:62:1c:72:4f:55:50:58:88:7f:39: 28:24:0e:c4:7c:e4:9b:17:7d:69:6f:32:c9:0c:bc:85:bf:62: 7c:4c:96:ee:8b:d4:92:f9:c6:35:fe:34:7f:4d:93:97:a6:f9: 23:ea:cb:24:02:99:9a:ac:49:9a:8e:a5:92:53:dd:13:3c:08: 17:5d:9f:86:dc:e4:ad:74:94:26:43:89:39:28:36:fe:5c:c3: 82:59:62:66:fa:11:ff:bd:37:47:34:e6:e0:b0:8a:20:d2:5f: ca:ed:d9:d5:51:c0:9c:74:eb:d2:73:46:03:67:95:95:b0:0b: ce:c5:69:17 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIFpzFOAdbBMbQ/g+AT+lJEHaNQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNDA1MTgxMDU1MDFaFw0yNTA1MTcxMTAwMDFaMDMxMTAvBgNV BAMTKDdGNjQ4OTAwRDhGNzRBM0YzMDFGMjgzRUM5QkYxMTk3MDhCNDFCQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1+mHSubwoxq9gu8GMrwN1x2LQ ihaQ4oJPBcR4CNXTvr6gq1f80i2N8dI2xio95iHY4DIhGvAsR68SazocfJvMkNFn RrfzUZxpnYc7FgGhc/r494KINHIZ2SgBzx6ssN7cfaywY2Rl6SKwN6m7pPPebBXo OwayJxc/hd6+2mRqfOplFx58Wm3bjhOMEdjGctHbNt1gBg0nA93aw/ZivFNKoGU7 owCb8Ayxgve0LFB/LTDrcLaASrge/NaNkFOyixS/vtzajWTBOHdhaDTJcDWMbRI9 qDXwDcaQBzOGCObMOUjQZNgkT16YJCB+vnO/pd7WJPWgGNEFhZjMDEy0J5WhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUf2SJANj3Sj8wHyg+yb8Rlwi0G7MwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEpMAwDQYJKoZI hvcNAQELBQADggEBAJnVXNjmI3PFzXWyaE6IpJCFu/r5Cnd8R3DXs3wOrvd8GE3g ROD3MWCPTNDhtZF1cZtw6AmmQMtdShy+U4OeX84E0jUESFlwpUntT1QPGrRA/h3u +wnaTxEiWrOs5t9N9WorQqJtw+C+ntokrsPZXSVsxyN/tciM5V6025vc0gUPUDMs 2ldKYhxyT1VQWIh/OSgkDsR85JsXfWlvMskMvIW/YnxMlu6L1JL5xjX+NH9Nk5em +SPqyyQCmZqsSZqOpZJT3RM8CBddn4bc5K10lCZDiTkoNv5cw4JZYmb6Ef+9N0c0 5uCwiiDSX8rt2dVRwJx069JzRgNnlZWwC87FaRc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org