$ rpki-client -vvf repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa File: 323430353a633963303a3a2f33322d3438203d3e20313338383233.roa (raw, json) Hash identifier: s8lHN6mCeR+HJshcEVWQRH0RHZcp4BOPgK7V87vFKcA= Subject key identifier: 7A:82:C0:1D:54:B8:97:10:63:B1:A5:F2:78:B3:DC:40:68:86:7A:88 Certificate issuer: /CN=E2111F10F01C17C4A322DAF5076425FBD824219D Certificate serial: 1F439C64D66646E58611FC59C037A356C7332882 Authority key identifier: E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa Signing time: Sun 18 Aug 2024 09:00:00 +0000 ROA not before: Sun 18 Aug 2024 08:55:00 +0000 ROA not after: Sun 17 Aug 2025 09:00:00 +0000 asID: 138823 IP address blocks: 2405:c9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:43:9c:64:d6:66:46:e5:86:11:fc:59:c0:37:a3:56:c7:33:28:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2111F10F01C17C4A322DAF5076425FBD824219D Validity Not Before: Aug 18 08:55:00 2024 GMT Not After : Aug 17 09:00:00 2025 GMT Subject: CN=7A82C01D54B8971063B1A5F278B3DC4068867A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:d1:2a:9c:f1:08:06:9a:2f:6e:9b:a9:06: 46:02:f8:18:34:a2:39:95:ae:95:d1:12:f5:d8:6d: b9:04:2a:98:58:a4:61:51:d2:d1:b6:a8:15:06:a4: 62:a1:a5:73:2d:a4:98:11:77:96:b6:fe:5a:a2:b4: 33:f7:62:65:f6:f2:00:04:91:fa:36:7d:fd:44:53: 3c:b3:6e:85:29:7e:18:93:d5:4e:46:3d:0f:17:5c: f0:6d:70:e1:92:30:fe:08:d8:f3:d1:e0:36:38:d7: 67:46:d0:ac:85:97:f6:b8:7d:fb:f9:ff:d4:6d:9a: d2:3f:f4:ba:eb:a7:75:59:6b:72:05:0c:f8:c4:11: 11:49:cf:d6:74:35:32:51:c5:e2:cb:d1:6e:b6:b2: bc:e5:0a:a7:f2:cf:72:0b:b7:f6:14:c8:7d:6e:d1: be:c0:6c:ec:3f:ce:1d:49:cc:77:86:df:3f:99:6b: 15:11:bf:8f:58:70:fd:7d:c2:c2:ad:30:66:3f:35: 32:57:3d:fe:0f:f3:c1:68:92:a5:36:40:5b:29:58: e5:a7:d9:d2:30:26:67:8a:62:52:62:a1:5c:ca:cc: 69:54:55:82:2f:81:cb:ff:d4:fe:4e:56:0d:5a:d7: 01:d2:61:23:e8:5f:81:8d:6c:37:2b:de:c0:ce:db: 80:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:82:C0:1D:54:B8:97:10:63:B1:A5:F2:78:B3:DC:40:68:86:7A:88 X509v3 Authority Key Identifier: keyid:E2:11:1F:10:F0:1C:17:C4:A3:22:DA:F5:07:64:25:FB:D8:24:21:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/E2111F10F01C17C4A322DAF5076425FBD824219D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2111F10F01C17C4A322DAF5076425FBD824219D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02158aec-5281-42e6-979b-fca61d47c845/0/323430353a633963303a3a2f33322d3438203d3e20313338383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 56:dd:25:0c:f5:da:bf:5b:28:ab:18:ae:41:88:c5:c0:d9:c0: b4:c4:a7:5e:de:4d:31:0b:eb:19:fe:4f:29:19:b4:3d:be:08: 39:fb:63:c3:3e:55:95:a5:70:a3:3e:fe:0f:3a:80:4e:f1:12: 47:e8:99:26:9e:fd:6b:70:38:f5:cd:f2:c8:3e:5b:11:b7:04: 59:2a:e3:f3:6a:81:54:ec:ac:74:47:8a:ee:ae:83:4e:62:fa: b0:a1:78:27:6e:7b:01:0f:4f:2b:c2:ce:6c:d2:05:e0:d2:87: b9:d6:a8:e8:97:98:c3:76:fa:ab:33:cc:1e:7a:d8:cd:a8:de: fe:7a:5d:32:05:9e:98:5c:32:cb:93:38:2a:76:68:45:6f:1c: e9:13:eb:d0:01:b2:21:0a:af:35:dc:69:b5:99:8f:fd:90:36: bd:23:a1:1b:03:cf:2c:dd:eb:69:e5:b3:60:9a:b3:9d:b6:94: c5:30:70:0e:26:42:bc:9a:b9:f6:59:8d:b1:2e:b9:34:dc:8f: 1c:50:fa:1c:46:9d:b4:17:71:fe:c3:87:6a:f7:86:d3:0f:2f: 7b:90:eb:34:d9:83:96:4a:43:88:86:01:c7:73:23:0f:34:c9: c4:cd:2c:90:7a:bd:9b:c0:7b:2f:28:45:93:78:55:c7:9f:d2: cf:d2:a9:01 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUH0OcZNZmRuWGEfxZwDejVsczKIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJE ODI0MjE5RDAeFw0yNDA4MTgwODU1MDBaFw0yNTA4MTcwOTAwMDBaMDMxMTAvBgNV BAMTKDdBODJDMDFENTRCODk3MTA2M0IxQTVGMjc4QjNEQzQwNjg4NjdBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jtEqnPEIBpovbpupBkYC+Bg0 ojmVrpXREvXYbbkEKphYpGFR0tG2qBUGpGKhpXMtpJgRd5a2/lqitDP3YmX28gAE kfo2ff1EUzyzboUpfhiT1U5GPQ8XXPBtcOGSMP4I2PPR4DY412dG0KyFl/a4ffv5 /9RtmtI/9Lrrp3VZa3IFDPjEERFJz9Z0NTJRxeLL0W62srzlCqfyz3ILt/YUyH1u 0b7AbOw/zh1JzHeG3z+ZaxURv49YcP19wsKtMGY/NTJXPf4P88FokqU2QFspWOWn 2dIwJmeKYlJioVzKzGlUVYIvgcv/1P5OVg1a1wHSYSPoX4GNbDcr3sDO24BXAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUeoLAHVS4lxBjsaXyeLPcQGiGeogwHwYDVR0j BBgwFoAU4hEfEPAcF8SjItr1B2Ql+9gkIZ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjE1OGFlYy01MjgxLTQyZTYtOTc5Yi1mY2E2MWQ0N2M4NDUvMC9FMjExMUYxMEYw MUMxN0M0QTMyMkRBRjUwNzY0MjVGQkQ4MjQyMTlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTIxMTFGMTBGMDFDMTdDNEEzMjJEQUY1MDc2NDI1RkJEODI0 MjE5RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMTU4YWVjLTUyODEtNDJlNi05 NzliLWZjYTYxZDQ3Yzg0NS8wLzMyMzQzMDM1M2E2MzM5NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFycAwDQYJKoZI hvcNAQELBQADggEBAFbdJQz12r9bKKsYrkGIxcDZwLTEp17eTTEL6xn+TykZtD2+ CDn7Y8M+VZWlcKM+/g86gE7xEkfomSae/WtwOPXN8sg+WxG3BFkq4/NqgVTsrHRH iu6ug05i+rCheCduewEPTyvCzmzSBeDSh7nWqOiXmMN2+qszzB562M2o3v56XTIF nphcMsuTOCp2aEVvHOkT69ABsiEKrzXcabWZj/2QNr0joRsDzyzd62nls2Cas522 lMUwcA4mQryaufZZjbEuuTTcjxxQ+hxGnbQXcf7Dh2r3htMPL3uQ6zTZg5ZKQ4iG AcdzIw80ycTNLJB6vZvAey8oRZN4Vcef0s/SqQE= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org