$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/323430333a656134303a3a2f33322d3332203d3e20313338303837.roa File: 323430333a656134303a3a2f33322d3332203d3e20313338303837.roa (raw, json) Hash identifier: ABGCcK0TboSKN20K4dPkcf3C/xR1IoqJbw9jVUWJS7I= Subject key identifier: 13:59:EE:54:1D:AD:D5:0D:3C:1F:9C:F7:D9:46:AF:18:90:37:83:B9 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 7E408D0FE6A89928B5007D64450DCA50B5CA3CC4 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/323430333a656134303a3a2f33322d3332203d3e20313338303837.roa Signing time: Fri 15 Nov 2024 10:00:01 +0000 ROA not before: Fri 15 Nov 2024 09:55:01 +0000 ROA not after: Fri 14 Nov 2025 10:00:01 +0000 asID: 138087 IP address blocks: 2403:ea40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:40:8d:0f:e6:a8:99:28:b5:00:7d:64:45:0d:ca:50:b5:ca:3c:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Nov 15 09:55:01 2024 GMT Not After : Nov 14 10:00:01 2025 GMT Subject: CN=1359EE541DADD50D3C1F9CF7D946AF18903783B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:a8:6c:7a:1e:0b:9e:d6:de:45:44:e5:f9: 89:c8:6d:c3:c5:db:f6:ee:83:3e:9b:10:06:4d:29: 2f:23:2a:34:fd:aa:7f:4b:96:3e:9a:c8:38:de:1b: 07:be:c0:48:82:50:33:e4:f1:e4:64:25:d8:4b:ec: d7:e8:61:68:de:5b:7c:8b:81:ab:9b:a7:39:5b:8b: 19:ff:44:1e:d4:ab:08:d6:78:e1:c0:72:3b:58:12: 52:c5:cc:04:ea:78:03:dd:7f:c6:e5:7a:10:cf:e4: d4:0b:dc:a1:55:dd:99:ea:5c:49:6a:a4:47:c9:41: 53:15:05:74:59:a2:bb:b7:d4:7d:db:9b:80:1b:39: ad:5f:db:4b:58:4c:13:62:cf:2d:06:a1:f0:5c:ed: d2:3c:20:e2:e9:7d:7a:2f:0e:59:2c:62:23:5e:05: ad:58:4c:59:95:b4:d5:5b:5b:64:26:1d:5d:4f:38: 63:6f:de:2b:ac:85:50:d9:41:1d:08:59:1b:ba:4f: 66:ff:d5:dd:7b:b0:dc:c7:ea:80:84:d0:5a:f3:ee: e6:0c:e3:d5:c0:e0:0e:ae:a2:5c:94:3d:30:16:9c: 4d:fe:88:27:6c:08:03:65:c6:19:f3:85:82:02:1a: d0:b1:5c:c2:cf:05:a6:83:6f:d6:0e:2a:a3:cb:83: 0b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:59:EE:54:1D:AD:D5:0D:3C:1F:9C:F7:D9:46:AF:18:90:37:83:B9 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/323430333a656134303a3a2f33322d3332203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 64:7e:57:7b:e2:2b:0c:de:cb:e2:5d:3a:d8:18:0f:03:a7:83: a4:a1:43:42:54:90:c0:5b:96:3d:85:a4:81:4f:8d:e4:6d:56: 98:d6:22:9e:e8:e5:b2:e6:80:e5:a5:25:3a:c4:62:a5:e4:5e: e0:45:01:66:5b:d8:13:dc:32:ae:ba:d1:b8:db:e1:5f:e8:c9: 07:5a:b0:e8:6b:6b:18:04:83:b1:d8:08:64:8e:45:58:b7:a6: 89:ed:6a:02:6b:48:fc:06:8d:62:53:c0:08:4b:49:e6:b1:26: a7:e2:15:9f:95:65:7c:78:dc:05:a3:8b:71:dc:e3:e0:75:34: 34:ea:f3:c0:b0:51:90:2b:f8:87:0c:f5:64:20:c1:a7:b2:74: d5:5b:cd:45:b8:ee:2e:e8:dd:c6:f7:42:86:d8:80:94:e1:30: b0:98:43:b5:51:f3:c6:43:a7:45:cb:35:fa:14:08:86:0e:71: 4c:f6:a6:53:88:08:2e:b4:bd:5e:77:8c:ad:ef:28:72:8d:4c: f6:f7:8e:40:af:5b:14:7e:4a:e3:12:01:a5:15:99:af:b8:c6: 1e:4d:cf:68:7d:9f:4e:c9:95:03:d4:f4:ce:2d:5d:65:51:90: 5b:a6:c9:cf:35:1a:a7:1a:d2:4e:17:55:54:73:c6:6c:74:4f: 04:39:62:8f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUfkCND+aomSi1AH1kRQ3KULXKPMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDExMTUwOTU1MDFaFw0yNTExMTQxMDAwMDFaMDMxMTAvBgNV BAMTKDEzNTlFRTU0MURBREQ1MEQzQzFGOUNGN0Q5NDZBRjE4OTAzNzgzQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBbqhseh4LntbeRUTl+YnIbcPF 2/bugz6bEAZNKS8jKjT9qn9Llj6ayDjeGwe+wEiCUDPk8eRkJdhL7NfoYWjeW3yL gaubpzlbixn/RB7UqwjWeOHAcjtYElLFzATqeAPdf8blehDP5NQL3KFV3ZnqXElq pEfJQVMVBXRZoru31H3bm4AbOa1f20tYTBNizy0GofBc7dI8IOLpfXovDlksYiNe Ba1YTFmVtNVbW2QmHV1POGNv3iushVDZQR0IWRu6T2b/1d17sNzH6oCE0Frz7uYM 49XA4A6uolyUPTAWnE3+iCdsCANlxhnzhYICGtCxXMLPBaaDb9YOKqPLgwuXAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUE1nuVB2t1Q08H5z32UavGJA3g7kwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMyMzQzMDMzM2E2NTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD6kAwDQYJKoZI hvcNAQELBQADggEBAGR+V3viKwzey+JdOtgYDwOng6ShQ0JUkMBblj2FpIFPjeRt VpjWIp7o5bLmgOWlJTrEYqXkXuBFAWZb2BPcMq660bjb4V/oyQdasOhraxgEg7HY CGSORVi3pontagJrSPwGjWJTwAhLSeaxJqfiFZ+VZXx43AWji3Hc4+B1NDTq88Cw UZAr+IcM9WQgwaeydNVbzUW47i7o3cb3QobYgJThMLCYQ7VR88ZDp0XLNfoUCIYO cUz2plOICC60vV53jK3vKHKNTPb3jkCvWxR+SuMSAaUVma+4xh5Nz2h9n07JlQPU 9M4tXWVRkFumyc81Gqca0k4XVVRzxmx0TwQ5Yo8= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:57 2024 by rpki-client on console-ams.rpki-client.org