$ rpki-client -vvf repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa File: 323430353a346338303a3a2f33322d3438203d3e20313335343635.roa (raw, json) Hash identifier: OYU7ZkcN3C3+DAiJQaAnt/A43gCXXQ/u9mZU7QAOaPs= Subject key identifier: 6A:B7:F8:62:FB:E9:27:8F:F4:1E:AE:19:8C:3D:9C:3F:73:4B:55:B6 Certificate issuer: /CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Certificate serial: 3538E22D4908BF670A4CDDD2381A353E7AC34B26 Authority key identifier: 45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa Signing time: Mon 01 Jul 2024 01:05:13 +0000 ROA not before: Mon 01 Jul 2024 01:00:13 +0000 ROA not after: Mon 30 Jun 2025 01:05:13 +0000 asID: 135465 IP address blocks: 2405:4c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:38:e2:2d:49:08:bf:67:0a:4c:dd:d2:38:1a:35:3e:7a:c3:4b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Validity Not Before: Jul 1 01:00:13 2024 GMT Not After : Jun 30 01:05:13 2025 GMT Subject: CN=6AB7F862FBE9278FF41EAE198C3D9C3F734B55B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:9b:41:20:7f:f0:aa:5c:d5:10:9a:c0:ed: 7d:e9:21:a5:69:ee:2e:0e:7b:0c:20:d1:2d:a5:a1: b1:8d:73:a5:75:81:74:b1:37:0b:fc:94:44:bd:05: 61:5b:9d:1c:c5:65:92:c5:2f:fc:ce:69:27:61:54: d9:42:2f:ab:2d:9e:05:cf:18:0a:bb:e9:5e:48:89: 79:92:75:c1:40:33:04:bb:f5:52:66:14:80:be:56: be:48:bd:a5:95:21:67:ab:f6:9a:70:7b:bb:63:8e: d1:f7:f5:85:3e:4c:b8:9b:1c:0b:6f:55:92:2c:ae: f1:38:e8:fd:e2:29:e8:42:58:a8:97:a3:2a:a9:e7: 1e:74:2e:23:95:ea:db:9a:33:08:5f:aa:3a:07:62: 59:1a:7f:5e:30:0b:93:5e:4d:98:1e:87:dd:47:c1: 19:09:22:00:34:2d:77:13:0e:48:0d:d7:5b:c1:e1: 56:9a:d5:5d:c8:a9:43:bf:e8:68:2c:34:37:b3:74: 88:7f:4e:85:be:33:c5:dc:19:50:37:7f:52:00:69: 91:c7:ec:b4:85:e7:dd:78:59:9d:33:ce:f0:2b:98: 86:da:d5:e8:46:05:7a:04:8c:9e:42:dc:c4:7c:23: 15:9e:50:95:6c:73:7d:be:2c:eb:41:17:d8:8f:03: 38:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B7:F8:62:FB:E9:27:8F:F4:1E:AE:19:8C:3D:9C:3F:73:4B:55:B6 X509v3 Authority Key Identifier: keyid:45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4c80::/32 Signature Algorithm: sha256WithRSAEncryption 88:45:81:10:8a:c0:e6:a2:4b:a7:ff:9f:78:76:20:2c:68:8e: d8:90:d5:f1:27:8e:88:73:61:a0:dd:a6:6c:c5:fe:2f:13:ba: 2b:9e:dc:bd:14:a2:31:70:ae:18:fc:25:ce:55:1f:b6:45:fc: 8e:dc:54:9a:d6:f7:91:f3:5e:54:52:50:28:a7:9d:6a:8f:ae: b1:38:e5:45:5d:8a:a2:bc:ac:a0:59:d5:91:3c:dc:d4:a9:3e: 29:b3:33:fc:f7:7d:f2:d8:84:8e:51:3b:15:f5:ba:52:d1:66: 8e:08:36:50:dd:7c:37:fb:03:ae:04:e5:16:99:ca:9d:ac:af: c8:6f:18:a7:d4:b3:76:c9:a2:c2:63:c3:c6:53:7d:13:69:94: a4:9f:66:fd:ea:fe:39:bf:6a:4b:81:f2:9f:af:54:15:55:4f: b5:2d:f5:fa:28:31:e6:97:cf:f2:b3:74:25:b6:f2:be:95:6a: 85:28:1d:f1:4f:03:df:c7:48:fd:62:be:60:14:b2:4e:06:0c: 5d:ce:48:75:c3:2a:39:61:39:72:a3:53:81:56:11:e4:f1:cc: 3b:80:e8:de:a3:4f:e9:95:f5:2b:f9:31:d1:b4:a2:94:dc:11: b7:8f:0a:3d:22:f2:f8:15:69:12:63:1e:54:ee:f4:bc:22:22: a4:83:e3:81 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNTjiLUkIv2cKTN3SOBo1PnrDSyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNF MzVCNEM0NjAeFw0yNDA3MDEwMTAwMTNaFw0yNTA2MzAwMTA1MTNaMDMxMTAvBgNV BAMTKDZBQjdGODYyRkJFOTI3OEZGNDFFQUUxOThDM0Q5QzNGNzM0QjU1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz1ZtBIH/wqlzVEJrA7X3pIaVp 7i4Oewwg0S2lobGNc6V1gXSxNwv8lES9BWFbnRzFZZLFL/zOaSdhVNlCL6stngXP GAq76V5IiXmSdcFAMwS79VJmFIC+Vr5IvaWVIWer9ppwe7tjjtH39YU+TLibHAtv VZIsrvE46P3iKehCWKiXoyqp5x50LiOV6tuaMwhfqjoHYlkaf14wC5NeTZgeh91H wRkJIgA0LXcTDkgN11vB4Vaa1V3IqUO/6GgsNDezdIh/ToW+M8XcGVA3f1IAaZHH 7LSF5914WZ0zzvArmIba1ehGBXoEjJ5C3MR8IxWeUJVsc32+LOtBF9iPAzhbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUarf4YvvpJ4/0Hq4ZjD2cP3NLVbYwHwYDVR0j BBgwFoAURVGgMsREhf9lk+BDUn4+HONbTEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2E2MmM5YS1kNGYwLTQ1NGItODA3Zi04NGY5YjNjMjAyYjMvMC80NTUxQTAzMkM0 NDQ4NUZGNjU5M0UwNDM1MjdFM0UxQ0UzNUI0QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNFMzVC NEM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYTYyYzlhLWQ0ZjAtNDU0Yi04 MDdmLTg0ZjliM2MyMDJiMy8wLzMyMzQzMDM1M2EzNDYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFTIAwDQYJKoZI hvcNAQELBQADggEBAIhFgRCKwOaiS6f/n3h2ICxojtiQ1fEnjohzYaDdpmzF/i8T uiue3L0UojFwrhj8Jc5VH7ZF/I7cVJrW95HzXlRSUCinnWqPrrE45UVdiqK8rKBZ 1ZE83NSpPimzM/z3ffLYhI5ROxX1ulLRZo4INlDdfDf7A64E5RaZyp2sr8hvGKfU s3bJosJjw8ZTfRNplKSfZv3q/jm/akuB8p+vVBVVT7Ut9fooMeaXz/KzdCW28r6V aoUoHfFPA9/HSP1ivmAUsk4GDF3OSHXDKjlhOXKjU4FWEeTxzDuA6N6jT+mV9Sv5 MdG0opTcEbePCj0i8vgVaRJjHlTu9LwiIqSD44E= -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:16 2024 by rpki-client on console-fra.rpki-client.org