$ rpki-client -vvf repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa File: 323430353a636163303a3a2f33322d3332203d3e20313339393832.roa (raw, json) Hash identifier: eSN10hWkG5N2K4YHdMA/u+/sUdR291RxIkflBiR4U+A= Subject key identifier: 37:A4:00:42:20:A3:B5:23:1F:29:A2:EA:E8:F8:88:47:28:11:74:3C Certificate issuer: /CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Certificate serial: 25A86348805DAA540AA365FCA3104CDA050AFD59 Authority key identifier: 36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa Signing time: Sun 04 Feb 2024 12:06:10 +0000 ROA not before: Sun 04 Feb 2024 12:01:10 +0000 ROA not after: Sun 02 Feb 2025 12:06:10 +0000 asID: 139982 IP address blocks: 2405:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a8:63:48:80:5d:aa:54:0a:a3:65:fc:a3:10:4c:da:05:0a:fd:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Validity Not Before: Feb 4 12:01:10 2024 GMT Not After : Feb 2 12:06:10 2025 GMT Subject: CN=37A4004220A3B5231F29A2EAE8F888472811743C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:72:fa:b2:99:9d:58:38:6c:ae:1b:36:16:da: 0f:e2:24:23:8b:93:5f:3c:03:a1:eb:a8:25:26:04: 3d:98:36:31:42:34:f4:fe:1b:a8:f2:8a:7e:eb:b1: 47:63:b6:bb:94:47:02:c8:3c:a9:4f:10:d9:d9:b5: ab:07:ac:48:73:6b:d7:cc:91:f8:a2:72:f8:9a:ad: 40:78:ed:ea:80:c7:2b:8c:29:c2:6e:90:1a:05:58: 91:d8:06:8f:7d:a6:32:5d:38:64:8a:ae:ae:f0:6d: 46:d6:0f:3f:5a:a4:47:17:b9:e5:25:a5:dd:60:3b: dd:d6:76:30:95:93:99:d2:5c:bb:6a:24:53:66:59: 9d:6e:fd:4e:c6:6d:28:df:10:95:cb:73:37:cf:84: 9d:da:bf:ef:8d:86:d9:a0:8a:38:bc:3e:93:7d:75: e2:85:ed:d6:57:84:2a:dc:1c:69:4b:ed:4f:bc:ce: 68:ef:41:ba:77:97:07:38:36:bd:63:58:ba:ef:07: 5f:eb:78:dc:02:bf:5d:df:07:77:f9:63:b4:58:8e: 13:23:72:98:9a:2e:50:d0:98:ec:a1:bb:ca:6b:43: f2:22:7e:65:bb:99:2c:41:d0:8a:9b:da:40:b5:dd: 6c:ee:5c:72:67:a1:7b:34:80:d1:cf:17:a4:29:f8: a5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A4:00:42:20:A3:B5:23:1F:29:A2:EA:E8:F8:88:47:28:11:74:3C X509v3 Authority Key Identifier: keyid:36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 99:4b:d1:89:a9:db:d3:42:95:1a:6c:c1:b0:be:59:1b:92:e6: f0:4f:2d:8d:7b:c7:02:c7:4c:c5:9b:07:df:e2:e6:f0:5a:b1: de:0e:56:70:15:9e:c6:f6:b3:0a:34:f1:a7:7b:11:00:2b:e4: df:f1:2b:7b:9a:12:86:c2:31:bf:92:f8:da:cb:2f:d7:09:0d: ab:f8:fe:71:b0:90:eb:01:83:82:71:28:cd:39:b0:dc:2c:38: 08:3a:8a:ca:6e:c4:f4:59:9d:4f:97:85:57:07:2f:6c:c9:11: 1e:85:da:1b:c5:d6:a8:b8:94:eb:79:26:3b:b6:e3:8b:80:76: e1:e6:61:3f:04:a6:03:30:f6:ad:6a:ba:2c:ec:23:90:6d:66: f1:90:79:6e:62:38:6d:6c:df:d9:32:d5:76:28:93:d4:d0:7a: f3:8e:f5:3b:be:78:6c:d1:76:fe:bd:59:74:8d:6b:57:01:45: a6:45:c1:20:5e:bd:89:ce:0a:64:6b:5b:34:ec:39:c1:6f:67: a7:4a:a5:63:d3:cc:6b:3c:e1:47:d8:91:de:9d:cb:21:97:2e: 04:42:64:03:f3:4c:c5:93:b3:18:32:02:af:93:6d:23:da:0b: c5:e5:86:24:63:23:1f:b5:48:53:13:0f:35:f1:40:ce:13:1e: e5:a5:40:91 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJahjSIBdqlQKo2X8oxBM2gUK/VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4 QTNCQjZENDAeFw0yNDAyMDQxMjAxMTBaFw0yNTAyMDIxMjA2MTBaMDMxMTAvBgNV BAMTKDM3QTQwMDQyMjBBM0I1MjMxRjI5QTJFQUU4Rjg4ODQ3MjgxMTc0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxcvqymZ1YOGyuGzYW2g/iJCOL k188A6HrqCUmBD2YNjFCNPT+G6jyin7rsUdjtruURwLIPKlPENnZtasHrEhza9fM kfiicviarUB47eqAxyuMKcJukBoFWJHYBo99pjJdOGSKrq7wbUbWDz9apEcXueUl pd1gO93WdjCVk5nSXLtqJFNmWZ1u/U7GbSjfEJXLczfPhJ3av++Nhtmgiji8PpN9 deKF7dZXhCrcHGlL7U+8zmjvQbp3lwc4Nr1jWLrvB1/reNwCv13fB3f5Y7RYjhMj cpiaLlDQmOyhu8prQ/IifmW7mSxB0Iqb2kC13WzuXHJnoXs0gNHPF6Qp+KVtAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUN6QAQiCjtSMfKaLq6PiIRygRdDwwHwYDVR0j BBgwFoAUNoNp0JbOCYLM8fERAB8qLoo7ttQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWYyNmZiOC03MmM0LTQ5ZDktOWNiZS04MjI2Mzk3MjcxYTIvMC8zNjgzNjlEMDk2 Q0UwOTgyQ0NGMUYxMTEwMDFGMkEyRThBM0JCNkQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4QTNC QjZENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ZjI2ZmI4LTcyYzQtNDlkOS05 Y2JlLTgyMjYzOTcyNzFhMi8wLzMyMzQzMDM1M2E2MzYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFysAwDQYJKoZI hvcNAQELBQADggEBAJlL0Ymp29NClRpswbC+WRuS5vBPLY17xwLHTMWbB9/i5vBa sd4OVnAVnsb2swo08ad7EQAr5N/xK3uaEobCMb+S+NrLL9cJDav4/nGwkOsBg4Jx KM05sNwsOAg6ispuxPRZnU+XhVcHL2zJER6F2hvF1qi4lOt5Jju244uAduHmYT8E pgMw9q1quizsI5BtZvGQeW5iOG1s39ky1XYok9TQevOO9Tu+eGzRdv69WXSNa1cB RaZFwSBevYnOCmRrWzTsOcFvZ6dKpWPTzGs84UfYkd6dyyGXLgRCZAPzTMWTsxgy Aq+TbSPaC8XlhiRjIx+1SFMTDzXxQM4THuWlQJE= -----END CERTIFICATE-----Generated at Thu May 2 00:51:51 2024 by rpki-client on console-ams.rpki-client.org