$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa File: 323430343a3162383a3a2f33322d3332203d3e2039373934.roa (raw, json) Hash identifier: U9E89rrxXeawu9OHo1wy2Q9E2AYUMGniKkKnsoChPUc= Subject key identifier: 3C:34:E2:18:E8:BE:2D:1C:20:F8:3C:66:A5:12:98:A3:1F:58:A6:C5 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 453E104D22F64093B5985CF4C4426735EC265E04 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa Signing time: Mon 31 Jul 2023 00:03:48 +0000 ROA not before: Sun 30 Jul 2023 23:58:48 +0000 ROA not after: Mon 29 Jul 2024 00:03:48 +0000 asID: 9794 IP address blocks: 2404:1b8::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:3e:10:4d:22:f6:40:93:b5:98:5c:f4:c4:42:67:35:ec:26:5e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 30 23:58:48 2023 GMT Not After : Jul 29 00:03:48 2024 GMT Subject: CN=3C34E218E8BE2D1C20F83C66A51298A31F58A6C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0c:ef:d2:5d:d4:0e:3f:3f:01:97:52:12:67: 38:c1:aa:1b:6d:5d:ae:fb:6d:b7:d0:e6:06:fe:b2: 17:23:4d:64:30:f3:f4:c3:d0:bf:11:95:54:ef:0e: 95:4c:11:0d:75:d4:90:9d:cd:9d:70:6e:18:fb:a0: 3b:0f:4c:75:ee:7f:b0:88:fd:9f:90:3e:c2:9e:aa: cb:59:78:12:56:6e:93:b7:39:ee:d4:30:fa:51:72: 94:85:7c:e9:3a:d2:c3:35:65:3f:db:49:ac:7e:40: f7:d0:de:c3:54:90:cf:b4:a4:06:78:d4:bc:8c:c4: 96:6c:fa:f0:7b:cf:e8:a5:8e:96:a1:7e:60:8f:39: e0:33:ec:88:69:0a:67:19:df:76:d9:f3:c1:52:e9: 09:d1:74:12:17:5d:ae:98:82:e5:23:27:ec:42:bb: 5f:b3:2e:2d:ae:d5:f2:a6:43:62:2d:71:4e:37:1f: 1d:79:18:e2:92:93:59:48:f5:c6:0c:df:0b:7b:dc: 31:86:09:98:3a:4f:c8:59:81:46:3a:a7:4d:29:d9: 4d:bf:8e:62:68:52:75:30:e4:01:e1:86:d3:e2:6d: 87:ee:5c:55:d0:bb:14:9a:63:fb:b0:02:66:15:d2: ac:e8:64:48:e5:03:b3:47:cf:31:53:a2:00:d1:0d: 2a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:34:E2:18:E8:BE:2D:1C:20:F8:3C:66:A5:12:98:A3:1F:58:A6:C5 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1b8::/32 Signature Algorithm: sha256WithRSAEncryption 30:f1:ca:fa:24:08:7e:d4:8e:54:f0:b2:97:af:da:0f:54:1d: 85:cf:b4:a5:0d:bd:8a:39:41:28:61:d5:2d:6b:89:eb:8c:38: 42:ae:dc:9d:65:3a:c4:24:b0:ce:d2:e6:81:3a:0b:20:91:86: f4:ba:34:e6:15:be:01:40:35:9b:72:76:19:e1:df:74:41:4c: 3a:d1:1a:9f:5a:8f:49:36:7b:a7:6f:db:e0:32:0a:ee:4b:32: 40:b7:10:de:6b:48:b6:27:ff:c4:06:a5:29:25:93:d3:a5:3a: f9:12:5c:ab:b3:0b:f2:8a:a6:48:71:1e:3c:da:4a:bf:24:60: 9c:ec:09:20:36:c3:c2:ff:2d:dc:28:7d:d3:8b:5b:90:77:3e: f3:14:de:b6:9e:ed:7a:1e:85:33:e2:4f:66:71:17:99:09:65: 59:b1:96:f0:ea:04:00:f7:f2:5f:20:52:68:86:84:6d:71:81: 3b:d2:45:ae:95:1b:b5:59:e1:3c:30:58:74:ca:62:95:1b:09: ab:5e:9d:0a:e4:d2:7f:38:43:b4:e7:1c:ce:bf:1f:dd:7b:dd: d4:ed:4c:30:61:11:39:77:23:9f:64:f7:11:0e:57:fa:40:80: ae:01:c0:6e:52:26:f1:fa:fa:5f:0c:3e:0e:23:67:58:37:6e: 18:7a:81:58 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIURT4QTSL2QJO1mFz0xEJnNewmXgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yMzA3MzAyMzU4NDhaFw0yNDA3MjkwMDAzNDhaMDMxMTAvBgNV BAMTKDNDMzRFMjE4RThCRTJEMUMyMEY4M0M2NkE1MTI5OEEzMUY1OEE2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcDO/SXdQOPz8Bl1ISZzjBqhtt Xa77bbfQ5gb+shcjTWQw8/TD0L8RlVTvDpVMEQ111JCdzZ1wbhj7oDsPTHXuf7CI /Z+QPsKeqstZeBJWbpO3Oe7UMPpRcpSFfOk60sM1ZT/bSax+QPfQ3sNUkM+0pAZ4 1LyMxJZs+vB7z+iljpahfmCPOeAz7IhpCmcZ33bZ88FS6QnRdBIXXa6YguUjJ+xC u1+zLi2u1fKmQ2ItcU43Hx15GOKSk1lI9cYM3wt73DGGCZg6T8hZgUY6p00p2U2/ jmJoUnUw5AHhhtPibYfuXFXQuxSaY/uwAmYV0qzoZEjlA7NHzzFTogDRDSp9AgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUPDTiGOi+LRwg+DxmpRKYox9YpsUwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzNDMwMzQzYTMxNjIzODNhM2EyZjMzMzIyZDMz MzIyMDNkM2UyMDM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQBuDANBgkqhkiG9w0BAQsF AAOCAQEAMPHK+iQIftSOVPCyl6/aD1Qdhc+0pQ29ijlBKGHVLWuJ64w4Qq7cnWU6 xCSwztLmgToLIJGG9Lo05hW+AUA1m3J2GeHfdEFMOtEan1qPSTZ7p2/b4DIK7ksy QLcQ3mtItif/xAalKSWT06U6+RJcq7ML8oqmSHEePNpKvyRgnOwJIDbDwv8t3Ch9 04tbkHc+8xTetp7teh6FM+JPZnEXmQllWbGW8OoEAPfyXyBSaIaEbXGBO9JFrpUb tVnhPDBYdMpilRsJq16dCuTSfzhDtOcczr8f3Xvd1O1MMGEROXcjn2T3EQ5X+kCA rgHAblIm8fr6Xww+DiNnWDduGHqBWA== -----END CERTIFICATE-----Generated at Tue Apr 30 19:13:27 2024 by rpki-client on console-ams.rpki-client.org