$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa File: 323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa (raw, json) Hash identifier: Exo0JftOsR+tWlfE10byEJYmXP7h23OXwg4EP+gcTS4= Subject key identifier: BE:DF:56:7B:A8:62:66:A6:EA:CE:09:E4:21:4A:17:DE:68:9F:B1:99 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 1CA195E82E7862A3F9506A47FC6AD905022A140D Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa Signing time: Mon 01 Jul 2024 01:02:15 +0000 ROA not before: Mon 01 Jul 2024 00:57:15 +0000 ROA not after: Mon 30 Jun 2025 01:02:15 +0000 asID: 135478 IP address blocks: 2001:d10:9400::/38 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a1:95:e8:2e:78:62:a3:f9:50:6a:47:fc:6a:d9:05:02:2a:14:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Jul 1 00:57:15 2024 GMT Not After : Jun 30 01:02:15 2025 GMT Subject: CN=BEDF567BA86266A6EACE09E4214A17DE689FB199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:72:d7:b6:e3:08:b2:0d:dc:2c:46:57:38: b4:19:e9:1c:78:da:14:dc:cc:c5:a0:18:19:68:3a: e7:ba:41:8e:c1:0c:cf:e1:94:71:d0:21:de:d3:43: 1c:ae:f8:d5:7b:a2:9f:7c:85:80:ee:89:ef:f4:06: 71:39:79:0d:fc:b8:d9:67:91:cd:78:8b:25:92:f2: 78:17:8b:6e:3f:8a:b8:e0:83:d2:28:ac:d3:01:0c: f5:e2:e1:c9:42:23:6b:1a:94:0d:ab:b6:30:3d:41: a5:b6:de:2c:96:4e:98:9f:25:50:46:14:d0:c5:9f: 3e:8e:21:fa:3e:09:59:6c:a2:36:e0:84:8d:2b:0c: de:d6:03:61:21:c5:e0:fc:e8:b2:bf:76:79:c7:3a: b9:30:a3:7d:83:96:2a:21:0d:17:27:5e:1e:27:e5: ef:41:63:d1:55:63:1f:63:f9:95:c9:d5:27:c0:20: 1d:92:a1:30:e1:6c:70:61:f2:ef:e0:3c:41:03:ec: ca:7c:2c:ee:77:ff:5c:2b:72:db:00:fb:d0:b5:9e: 56:43:8e:22:3c:58:d1:ed:12:eb:41:99:47:00:f0: dd:6b:56:ac:fa:18:b5:64:f9:e2:34:e3:f7:23:b1: b4:e4:94:a5:d3:d7:26:e3:f4:b1:33:04:01:e7:62: f6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DF:56:7B:A8:62:66:A6:EA:CE:09:E4:21:4A:17:DE:68:9F:B1:99 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323030313a6431303a393430303a3a2f33382d3438203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:d10:9400::/38 Signature Algorithm: sha256WithRSAEncryption 2a:55:f1:7d:39:eb:82:39:51:1d:6c:de:7c:4d:99:53:b3:2f: 39:34:cd:44:fd:cf:21:a9:26:d8:e5:09:db:09:b0:02:f0:85: bc:01:1b:fd:3a:6a:5e:05:3a:66:69:85:b2:52:a3:69:9d:1a: c6:bd:32:b1:53:1a:bf:64:09:d9:d3:c2:13:5d:39:ca:ba:86: 9a:be:82:f8:88:f1:9c:c8:7b:03:8c:5a:ce:5a:d7:6e:5e:3b: 6f:a5:e0:b1:41:71:1e:2f:b0:75:b3:d1:02:aa:3d:4c:28:6a: 93:8e:8b:b5:17:33:1a:b4:d9:89:1e:45:8e:d7:8e:a1:ad:77: da:e1:51:cd:e5:d6:c9:6a:50:35:e5:35:4d:60:23:3b:4a:56: fc:2f:3f:16:9e:94:fa:f8:b7:48:6b:ab:b8:6e:66:fb:29:b0: ee:6f:26:cc:64:29:29:7d:fe:2b:6c:9d:f6:a9:b7:43:98:cb: 5a:99:a9:c9:09:5c:67:84:3e:f0:4b:a7:02:42:f5:fd:94:5a: 49:c2:fe:c9:e5:50:f8:16:41:a4:a4:73:ed:63:cf:de:54:0d: 04:d5:90:2b:b3:2c:82:7a:ff:b3:4d:a5:25:af:14:a2:3f:36: 4e:2f:4c:93:94:7c:a9:88:b8:80:ff:bb:29:23:9c:33:b0:84: cc:b5:4f:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHKGV6C54YqP5UGpH/GrZBQIqFA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDA3MDEwMDU3MTVaFw0yNTA2MzAwMTAyMTVaMDMxMTAvBgNV BAMTKEJFREY1NjdCQTg2MjY2QTZFQUNFMDlFNDIxNEExN0RFNjg5RkIxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbK3LXtuMIsg3cLEZXOLQZ6Rx4 2hTczMWgGBloOue6QY7BDM/hlHHQId7TQxyu+NV7op98hYDuie/0BnE5eQ38uNln kc14iyWS8ngXi24/irjgg9IorNMBDPXi4clCI2salA2rtjA9QaW23iyWTpifJVBG FNDFnz6OIfo+CVlsojbghI0rDN7WA2EhxeD86LK/dnnHOrkwo32DliohDRcnXh4n 5e9BY9FVYx9j+ZXJ1SfAIB2SoTDhbHBh8u/gPEED7Mp8LO53/1wrctsA+9C1nlZD jiI8WNHtEutBmUcA8N1rVqz6GLVk+eI04/cjsbTklKXT1ybj9LEzBAHnYvZTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvt9We6hiZqbqzgnkIUoX3mifsZkwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzAzMDMxM2E2NDMxMzAzYTM5MzQzMDMwM2Ez YTJmMzMzODJkMzQzODIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCIAEN EJQwDQYJKoZIhvcNAQELBQADggEBACpV8X0564I5UR1s3nxNmVOzLzk0zUT9zyGp JtjlCdsJsALwhbwBG/06al4FOmZphbJSo2mdGsa9MrFTGr9kCdnTwhNdOcq6hpq+ gviI8ZzIewOMWs5a125eO2+l4LFBcR4vsHWz0QKqPUwoapOOi7UXMxq02YkeRY7X jqGtd9rhUc3l1slqUDXlNU1gIztKVvwvPxaelPr4t0hrq7huZvspsO5vJsxkKSl9 /itsnfapt0OYy1qZqckJXGeEPvBLpwJC9f2UWknC/snlUPgWQaSkc+1jz95UDQTV kCuzLIJ6/7NNpSWvFKI/Nk4vTJOUfKmIuID/uykjnDOwhMy1T5c= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org