$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: 3duj5FpID2Vk2dyPdpEPnPPpgo3ld3zGzf8W1+UBM7A= Subject key identifier: 99:14:88:63:E2:4D:D7:FD:ED:6F:34:6E:BF:55:17:8F:E4:E1:72:EC Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 285EA9EBFC1209D6281109C939027B93295CEAF4 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa Signing time: Thu 04 Jan 2024 10:33:33 +0000 ROA not before: Thu 04 Jan 2024 10:28:33 +0000 ROA not after: Thu 02 Jan 2025 10:33:33 +0000 asID: 24534 IP address blocks: 2404:9580:32::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5e:a9:eb:fc:12:09:d6:28:11:09:c9:39:02:7b:93:29:5c:ea:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jan 4 10:28:33 2024 GMT Not After : Jan 2 10:33:33 2025 GMT Subject: CN=99148863E24DD7FDED6F346EBF55178FE4E172EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:91:99:ef:37:30:b6:f4:d7:68:cd:b9:7d:6b: a3:05:8a:a2:8a:9d:8b:99:e1:56:d5:7d:91:38:31: a5:d1:f9:df:cc:4a:71:0f:bc:b4:c8:e7:5b:e1:06: 27:39:1e:24:49:90:bd:b3:32:c0:93:d9:61:28:62: 63:4e:38:e1:59:92:a7:49:a5:f3:3e:e5:23:f6:98: 62:58:ea:37:dd:c2:b1:45:25:45:ae:2c:75:64:50: 5b:f5:a9:68:e8:45:ac:cf:79:1f:89:75:a8:4d:e5: 7d:eb:ad:21:64:aa:ff:42:a1:c0:43:30:6b:bb:1a: 96:15:55:9f:56:f1:d8:9c:6a:a4:6e:34:95:c7:5c: 74:d4:4c:4b:f2:33:0f:de:e7:fd:ea:93:69:09:4e: bc:6e:9e:0e:f8:21:91:44:54:33:d4:51:7c:c4:f8: f8:db:89:1b:10:d3:83:f9:08:01:97:db:a5:a1:36: bc:e2:4a:5e:0d:de:70:ad:6b:12:0e:e0:27:87:4c: 5f:f3:b5:86:66:1d:bc:59:c3:d6:76:02:39:75:80: f1:82:6a:8a:d4:52:6a:53:ad:31:e5:e1:df:a0:f1: 73:97:fe:27:ba:58:14:e3:40:d1:40:e4:0c:37:a5: 0a:0c:8a:23:e5:eb:9a:1b:d1:81:c3:2c:76:f5:fc: bc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:14:88:63:E2:4D:D7:FD:ED:6F:34:6E:BF:55:17:8F:E4:E1:72:EC X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:32::/48 Signature Algorithm: sha256WithRSAEncryption 8f:86:4e:01:2c:6a:58:93:89:21:89:b3:df:f6:2d:a7:9f:e0: ff:6f:29:72:03:16:ec:2e:60:34:0e:7e:2f:fd:ae:30:84:cb: c7:8c:56:f3:74:c3:7b:27:e3:e3:ae:99:af:4e:e0:78:01:eb: 33:e7:79:1f:d3:42:db:a2:23:22:86:7b:45:30:3b:04:5f:b9: 7b:61:61:60:6e:25:bd:1d:9e:26:d4:38:47:df:39:c1:d7:2e: f0:51:ff:54:5a:30:1b:af:49:42:5b:b8:3d:3a:91:38:16:76: a5:2f:c9:70:71:52:d0:03:1d:d6:4d:49:bb:bb:81:c0:22:ca: fb:d5:5e:fc:cd:b4:e4:e9:55:6b:5e:64:d4:d3:c2:e9:ec:4f: 4a:68:cb:2c:d3:ba:a5:4f:9e:43:42:a0:0d:c9:bb:96:af:a4: 3f:c5:42:d1:c8:c5:45:7d:42:fe:8e:a0:ba:1b:a2:0e:a2:4f: 7d:2e:3f:5c:51:b3:09:9e:c1:41:ed:62:7f:f0:6e:b5:f8:15: 83:7a:95:9d:c1:f1:61:8b:7f:07:cf:64:16:83:5d:0e:4b:e4: 75:9c:c9:f7:2c:27:b0:5b:01:de:6a:94:3d:59:1a:a0:52:60: 5e:b1:b0:51:d2:f4:7b:15:cd:2e:74:54:7a:0d:84:09:03:1e: 20:1b:ba:68 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKF6p6/wSCdYoEQnJOQJ7kylc6vQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDAxMDQxMDI4MzNaFw0yNTAxMDIxMDMzMzNaMDMxMTAvBgNV BAMTKDk5MTQ4ODYzRTI0REQ3RkRFRDZGMzQ2RUJGNTUxNzhGRTRFMTcyRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJkZnvNzC29Ndozbl9a6MFiqKK nYuZ4VbVfZE4MaXR+d/MSnEPvLTI51vhBic5HiRJkL2zMsCT2WEoYmNOOOFZkqdJ pfM+5SP2mGJY6jfdwrFFJUWuLHVkUFv1qWjoRazPeR+JdahN5X3rrSFkqv9CocBD MGu7GpYVVZ9W8dicaqRuNJXHXHTUTEvyMw/e5/3qk2kJTrxung74IZFEVDPUUXzE +PjbiRsQ04P5CAGX26WhNrziSl4N3nCtaxIO4CeHTF/ztYZmHbxZw9Z2Ajl1gPGC aorUUmpTrTHl4d+g8XOX/ie6WBTjQNFA5Aw3pQoMiiPl65ob0YHDLHb1/LzfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUmRSIY+JN1/3tbzRuv1UXj+ThcuwwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzMzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAADIw DQYJKoZIhvcNAQELBQADggEBAI+GTgEsaliTiSGJs9/2Laef4P9vKXIDFuwuYDQO fi/9rjCEy8eMVvN0w3sn4+Ouma9O4HgB6zPneR/TQtuiIyKGe0UwOwRfuXthYWBu Jb0dnibUOEffOcHXLvBR/1RaMBuvSUJbuD06kTgWdqUvyXBxUtADHdZNSbu7gcAi yvvVXvzNtOTpVWteZNTTwunsT0poyyzTuqVPnkNCoA3Ju5avpD/FQtHIxUV9Qv6O oLobog6iT30uP1xRswmewUHtYn/wbrX4FYN6lZ3B8WGLfwfPZBaDXQ5L5HWcyfcs J7BbAd5qlD1ZGqBSYF6xsFHS9HsVzS50VHoNhAkDHiAbumg= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org