$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: 964SsHdjlIVh/7LSyp2y0wuc4knjdZ0AWpEtptA0Cfw= Subject key identifier: 44:4E:21:40:AE:56:7B:47:BC:C0:07:A6:D8:CE:C4:9C:09:B3:DD:9D Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 216A563A4CEAC7D8677CB95A183A1EAF93A88657 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa Signing time: Thu 04 Jan 2024 10:33:04 +0000 ROA not before: Thu 04 Jan 2024 10:28:04 +0000 ROA not after: Thu 02 Jan 2025 10:33:04 +0000 asID: 24534 IP address blocks: 2404:9580:30::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6a:56:3a:4c:ea:c7:d8:67:7c:b9:5a:18:3a:1e:af:93:a8:86:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jan 4 10:28:04 2024 GMT Not After : Jan 2 10:33:04 2025 GMT Subject: CN=444E2140AE567B47BCC007A6D8CEC49C09B3DD9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:f0:87:d1:e6:85:8c:18:04:9a:6a:6d:5d: 39:b8:de:05:3d:2b:ac:8d:d3:ef:1d:6c:8c:5c:d2: c9:56:2b:a2:d4:fd:49:70:5c:71:ba:c7:92:80:28: 38:85:1f:0b:56:c6:ce:dc:7a:5c:f5:d0:05:80:25: a3:20:de:48:f7:21:ff:4c:62:8e:73:20:b6:cd:7b: 1b:2e:af:db:e2:48:d1:86:4b:2f:db:99:6a:d7:6a: e5:8c:5d:88:f5:85:43:62:42:bd:60:34:5f:d5:b9: 8c:fb:d6:24:04:28:16:32:e2:cf:2b:d1:6f:5c:63: b8:47:3f:f4:16:1b:d1:8c:c5:1e:aa:d7:a4:1c:8f: 06:78:4a:29:f8:f2:8b:32:0b:9d:44:91:83:4c:e2: 5e:de:30:d8:2c:6f:6a:63:d4:be:b3:b8:c2:7a:44: ff:a5:00:df:fe:ce:69:2c:7c:4b:4f:58:73:41:5e: 74:0a:70:e3:1b:13:01:e9:08:dc:3a:f7:75:30:db: da:54:73:45:d9:4b:25:fe:91:6f:39:79:07:71:6d: 02:fe:2a:d5:57:c8:40:94:30:0f:12:2b:e5:82:d2: ba:c8:bd:9d:37:ea:4a:3d:42:4e:80:6f:95:de:be: dc:76:01:54:95:93:5c:19:9d:e6:d7:e1:be:6a:e4: 44:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4E:21:40:AE:56:7B:47:BC:C0:07:A6:D8:CE:C4:9C:09:B3:DD:9D X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:30::/48 Signature Algorithm: sha256WithRSAEncryption 0c:4a:be:0c:e4:57:b6:7d:eb:66:74:49:fe:a9:38:34:0b:fb: 63:98:3d:37:05:94:8d:00:59:bc:8e:71:d4:d6:54:7d:f5:78: 0b:94:c6:f8:c1:be:1d:5b:5b:c4:a5:d6:39:f4:02:56:49:14: 91:11:44:1e:9b:81:70:84:1e:41:8c:21:3e:0b:81:8c:36:bb: fa:01:57:cc:78:b0:83:aa:63:43:35:c9:de:1a:e0:b9:d2:f7: b1:b2:19:6c:21:b7:b3:8b:f3:76:aa:39:d3:48:a7:0b:5d:ad: 32:b2:28:9a:6e:dd:00:1f:8e:c8:67:cd:cb:b4:21:12:6c:65: e6:9c:e4:88:44:90:b1:19:c8:b0:62:a4:af:33:dd:46:00:dd: d5:d7:72:54:8b:75:eb:3e:72:ea:91:f5:57:4a:f0:37:f4:a6: 52:3c:0f:31:e9:f5:b4:7f:20:ca:80:62:4a:25:3d:9a:9c:3c: 5b:7a:9f:fa:1f:46:1e:ce:f6:e3:6d:ab:30:f0:10:89:9e:50: 1b:1e:74:5c:3c:18:ce:14:25:88:c0:6d:15:4b:97:f4:41:21: 8d:aa:73:51:ae:d5:ce:7b:13:c2:ba:d9:f1:46:24:d4:cb:ed: 2e:da:33:c6:cd:02:f3:c2:da:89:f0:78:af:3d:ee:f5:83:45: 34:62:6b:57 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIWpWOkzqx9hnfLlaGDoer5OohlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDAxMDQxMDI4MDRaFw0yNTAxMDIxMDMzMDRaMDMxMTAvBgNV BAMTKDQ0NEUyMTQwQUU1NjdCNDdCQ0MwMDdBNkQ4Q0VDNDlDMDlCM0REOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0zPCH0eaFjBgEmmptXTm43gU9 K6yN0+8dbIxc0slWK6LU/UlwXHG6x5KAKDiFHwtWxs7celz10AWAJaMg3kj3If9M Yo5zILbNexsur9viSNGGSy/bmWrXauWMXYj1hUNiQr1gNF/VuYz71iQEKBYy4s8r 0W9cY7hHP/QWG9GMxR6q16QcjwZ4Sin48osyC51EkYNM4l7eMNgsb2pj1L6zuMJ6 RP+lAN/+zmksfEtPWHNBXnQKcOMbEwHpCNw693Uw29pUc0XZSyX+kW85eQdxbQL+ KtVXyECUMA8SK+WC0rrIvZ036ko9Qk6Ab5Xevtx2AVSVk1wZnebX4b5q5ETTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURE4hQK5We0e8wAem2M7EnAmz3Z0wHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAADAw DQYJKoZIhvcNAQELBQADggEBAAxKvgzkV7Z962Z0Sf6pODQL+2OYPTcFlI0AWbyO cdTWVH31eAuUxvjBvh1bW8Sl1jn0AlZJFJERRB6bgXCEHkGMIT4LgYw2u/oBV8x4 sIOqY0M1yd4a4LnS97GyGWwht7OL83aqOdNIpwtdrTKyKJpu3QAfjshnzcu0IRJs Zeac5IhEkLEZyLBipK8z3UYA3dXXclSLdes+cuqR9VdK8Df0plI8DzHp9bR/IMqA YkolPZqcPFt6n/ofRh7O9uNtqzDwEImeUBsedFw8GM4UJYjAbRVLl/RBIY2qc1Gu 1c57E8K62fFGJNTL7S7aM8bNAvPC2onweK897vWDRTRia1c= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org