$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa File: 323430353a383138303a3a2f33322d3438203d3e20313335343738.roa (raw, json) Hash identifier: iU4O+4m5tujQVxnp/4Adigc7sGjZ5zmejSmnE7rldmA= Subject key identifier: 2C:D5:86:B0:C4:5B:61:BF:3C:37:1A:08:DA:D6:9B:B7:28:76:07:F5 Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Certificate serial: 4710A40DE9AE3F22CF8237CD5A064C4889B4C14E Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa Signing time: Tue 19 Nov 2024 02:00:00 +0000 ROA not before: Tue 19 Nov 2024 01:55:00 +0000 ROA not after: Tue 18 Nov 2025 02:00:00 +0000 asID: 135478 IP address blocks: 2405:8180::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:10:a4:0d:e9:ae:3f:22:cf:82:37:cd:5a:06:4c:48:89:b4:c1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A Validity Not Before: Nov 19 01:55:00 2024 GMT Not After : Nov 18 02:00:00 2025 GMT Subject: CN=2CD586B0C45B61BF3C371A08DAD69BB7287607F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b7:56:22:8b:a3:31:75:a6:3b:03:ce:52:af: fe:d0:b5:ea:a7:66:f4:68:49:ea:d5:9f:15:80:63: a1:66:ec:d4:04:a1:fe:15:5f:b5:29:e5:a1:63:1e: bf:03:5f:3b:39:a5:6d:30:4a:16:ac:c1:f2:55:e7: 80:53:8b:80:e5:fd:23:3b:32:fe:5c:25:03:30:34: 47:f1:9b:a6:f2:d8:1f:c1:65:31:45:ee:35:23:eb: 55:64:06:8c:a0:44:3c:4f:a5:fb:ca:8b:2b:99:d3: 30:c2:b0:5f:f7:36:0c:15:10:7d:0b:1b:bb:e8:be: 09:d8:ef:8c:f4:41:bc:1a:b5:67:27:e0:6c:a6:fe: 9c:6d:da:58:e1:42:30:e2:ec:ae:e4:7f:27:ee:22: a2:57:02:fa:23:a9:fa:51:d9:f4:2c:33:c6:1b:dd: 03:03:ab:31:68:52:c0:4e:78:f1:de:0f:71:45:19: 09:7e:06:c2:31:73:9f:05:08:38:d3:bb:2b:a7:7f: 8a:d2:35:84:bb:f2:4b:c0:cb:00:dc:cf:0e:fb:2e: 2c:f7:b7:e2:eb:a4:79:83:c7:6b:3f:57:3f:9d:f5: b7:9e:de:72:d3:4e:9a:ce:19:82:0b:bc:7c:fb:13: 2f:1a:9b:a8:ff:65:f7:ca:4b:62:2f:0a:02:19:56: 85:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D5:86:B0:C4:5B:61:BF:3C:37:1A:08:DA:D6:9B:B7:28:76:07:F5 X509v3 Authority Key Identifier: keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/323430353a383138303a3a2f33322d3438203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8180::/32 Signature Algorithm: sha256WithRSAEncryption 94:1f:f3:76:88:40:59:08:28:96:85:2c:d6:be:e6:fe:2b:27: ba:13:d3:4c:e2:3a:2a:7d:9c:73:d8:db:7a:92:d9:ef:83:56: a8:4a:ae:1d:b6:9c:d8:b1:a1:44:fc:70:66:5c:ac:3d:ed:f1: e1:1e:5d:79:57:87:54:fc:78:86:f0:4c:5c:2f:e9:92:23:77: f5:d0:e9:0c:3a:b8:8d:dd:b2:de:81:15:13:30:7f:06:8c:36: 2d:3a:91:3e:ba:e2:4b:66:0f:c5:71:7a:35:3c:09:10:4d:e9: 60:9b:0d:c2:8f:a0:be:4b:6b:51:74:4d:10:86:cc:e3:10:a1: bf:65:7e:50:78:1e:c6:4e:46:a3:3e:76:94:81:98:a0:c5:50: 5a:35:3b:d1:d7:24:1e:d6:4b:97:ef:73:31:64:4b:96:16:45: de:aa:a6:78:19:6e:b9:bf:c1:3d:2b:28:c1:f0:e3:bd:34:3d: bd:b5:db:34:6f:c0:00:ff:6d:aa:39:90:ca:59:79:05:55:de: 92:5a:5a:1c:54:80:23:02:fc:ec:3f:6d:05:b0:68:be:a0:a2: 23:88:27:37:52:bd:8f:9b:20:64:c2:90:b4:a6:cd:48:15:02: 1f:9c:2f:4a:37:72:ad:ba:4a:02:f6:d5:99:b9:7c:87:f2:15: 79:f5:13:f3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURxCkDemuPyLPgjfNWgZMSIm0wU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEz N0Q2OTk4QTAeFw0yNDExMTkwMTU1MDBaFw0yNTExMTgwMjAwMDBaMDMxMTAvBgNV BAMTKDJDRDU4NkIwQzQ1QjYxQkYzQzM3MUEwOERBRDY5QkI3Mjg3NjA3RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgt1Yii6MxdaY7A85Sr/7Qteqn ZvRoSerVnxWAY6Fm7NQEof4VX7Up5aFjHr8DXzs5pW0wShaswfJV54BTi4Dl/SM7 Mv5cJQMwNEfxm6by2B/BZTFF7jUj61VkBoygRDxPpfvKiyuZ0zDCsF/3NgwVEH0L G7vovgnY74z0QbwatWcn4Gym/pxt2ljhQjDi7K7kfyfuIqJXAvojqfpR2fQsM8Yb 3QMDqzFoUsBOePHeD3FFGQl+BsIxc58FCDjTuyunf4rSNYS78kvAywDczw77Liz3 t+LrpHmDx2s/Vz+d9bee3nLTTprOGYILvHz7Ey8am6j/ZffKS2IvCgIZVoXrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULNWGsMRbYb88NxoI2tabtyh2B/UwHwYDVR0j BBgwFoAUfizzRtXehA3A7pRMkY7cUTfWmYowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTcwMjcyNi1iMmM2LTQ2ZmMtODI5Ny0yZGJkZWM2ZDZkNWQvMC83RTJDRjM0NkQ1 REU4NDBEQzBFRTk0NEM5MThFREM1MTM3RDY5OThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0UyQ0YzNDZENURFODQwREMwRUU5NDRDOTE4RURDNTEzN0Q2 OTk4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNzAyNzI2LWIyYzYtNDZmYy04 Mjk3LTJkYmRlYzZkNmQ1ZC8wLzMyMzQzMDM1M2EzODMxMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFgYAwDQYJKoZI hvcNAQELBQADggEBAJQf83aIQFkIKJaFLNa+5v4rJ7oT00ziOip9nHPY23qS2e+D VqhKrh22nNixoUT8cGZcrD3t8eEeXXlXh1T8eIbwTFwv6ZIjd/XQ6Qw6uI3dst6B FRMwfwaMNi06kT664ktmD8VxejU8CRBN6WCbDcKPoL5La1F0TRCGzOMQob9lflB4 HsZORqM+dpSBmKDFUFo1O9HXJB7WS5fvczFkS5YWRd6qpngZbrm/wT0rKMHw4700 Pb212zRvwAD/bao5kMpZeQVV3pJaWhxUgCMC/Ow/bQWwaL6goiOIJzdSvY+bIGTC kLSmzUgVAh+cL0o3cq26SgL21Zm5fIfyFXn1E/M= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org