$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa File: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (raw, json) Hash identifier: plFUYvoZx+Zhhi7/vKanQppp3zTRIZoJyKujyLUaQfM= Subject key identifier: 8E:88:BC:90:5F:28:71:04:34:F9:5E:E9:2D:4C:6B:EC:9B:9D:B8:E1 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 2328891901D23BCE7B3CAB8EDFD464892F2A138D Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa Signing time: Tue 20 Aug 2024 05:00:00 +0000 ROA not before: Tue 20 Aug 2024 04:55:00 +0000 ROA not after: Tue 19 Aug 2025 05:00:00 +0000 asID: 23951 IP address blocks: 2401:ee00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:28:89:19:01:d2:3b:ce:7b:3c:ab:8e:df:d4:64:89:2f:2a:13:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:00 2024 GMT Not After : Aug 19 05:00:00 2025 GMT Subject: CN=8E88BC905F28710434F95EE92D4C6BEC9B9DB8E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:92:38:46:f8:d8:d2:89:29:72:f1:0c:ee:e7: e4:62:90:a9:85:58:f9:a0:7e:3f:2f:46:a2:af:6e: 31:77:2b:a0:9e:21:26:da:7e:8e:c3:7b:db:b8:4c: 40:f5:b8:fd:a1:cb:13:55:0d:ea:a4:1d:26:9f:2b: 3a:72:99:d6:b5:85:c8:a6:10:c0:05:17:2f:88:0b: 07:b0:8e:ee:fa:d6:58:41:0f:b7:e2:a2:66:28:95: 68:72:b7:64:6f:69:09:4b:44:2b:75:c3:6a:df:cf: b3:20:38:d2:2b:58:fb:95:e3:e1:63:57:9d:29:19: 1a:a7:10:37:51:da:c2:af:b6:81:b6:1d:da:29:04: 6e:d1:97:68:f6:48:60:12:bb:0a:27:84:0b:79:88: 03:19:01:25:ec:04:89:ba:b5:ac:2a:b9:e4:12:b0: 0f:ed:10:be:ad:81:93:09:35:50:85:6e:d2:c0:9e: c2:62:e5:a2:9f:b8:53:5a:dc:66:00:63:49:8e:8c: da:90:52:81:83:60:ca:a2:4b:f9:91:53:7d:a9:a7: 16:4d:ee:ac:80:08:33:31:6e:9f:6d:9b:dd:67:84: f1:94:c4:6e:78:e0:74:f4:4f:a3:d6:a6:d8:d9:9e: 2d:90:7d:1f:de:02:db:fd:28:08:50:cd:ef:1d:03: ba:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:88:BC:90:5F:28:71:04:34:F9:5E:E9:2D:4C:6B:EC:9B:9D:B8:E1 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ee00::/32 Signature Algorithm: sha256WithRSAEncryption 64:ed:32:4d:5c:d0:7b:3f:c3:17:8b:9f:9d:17:50:2f:17:3a: e0:51:4f:3e:a7:9d:01:6c:a8:f3:91:38:29:12:a6:99:1d:ef: 11:7b:c5:c9:37:27:dd:39:cc:23:d6:2f:11:ce:a0:b4:6f:eb: 97:cc:8e:50:4b:2b:d5:e7:b8:43:0a:87:ac:34:7a:ae:fa:ab: 30:50:f7:54:c6:2b:3e:bf:26:2f:61:5e:d6:44:63:0e:62:3d: 53:1f:4d:3f:62:b9:6f:2f:25:cd:ed:ba:e7:b2:aa:c4:63:b2: 37:d5:b0:16:c6:0c:33:10:3b:0f:91:e9:a8:ab:44:d3:3e:de: 75:c8:1d:be:87:5c:e1:fc:75:12:8f:b9:5a:e4:dc:97:2d:3d: e3:20:cf:2e:d2:68:ee:10:ec:49:2d:24:dc:b2:ef:2e:69:3a: ee:6a:27:55:4c:92:83:27:d3:03:1b:20:f7:3e:bf:0b:0f:3a: c6:68:3c:96:bf:9d:c9:01:ba:50:54:bb:ce:7f:87:f7:d3:54: bd:92:61:70:e7:69:29:10:5e:85:2c:83:f2:4e:24:07:2b:04: 29:4b:6e:4b:14:33:80:62:0c:4d:f6:37:2f:49:8b:ea:0a:82: 73:22:e0:e6:87:f9:06:4d:76:8f:cb:33:bf:7e:c5:c4:12:8c: f9:c2:c8:07 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUIyiJGQHSO857PKuO39RkiS8qE40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDBaFw0yNTA4MTkwNTAwMDBaMDMxMTAvBgNV BAMTKDhFODhCQzkwNUYyODcxMDQzNEY5NUVFOTJENEM2QkVDOUI5REI4RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdkjhG+NjSiSly8Qzu5+RikKmF WPmgfj8vRqKvbjF3K6CeISbafo7De9u4TED1uP2hyxNVDeqkHSafKzpymda1hcim EMAFFy+ICwewju761lhBD7fiomYolWhyt2RvaQlLRCt1w2rfz7MgONIrWPuV4+Fj V50pGRqnEDdR2sKvtoG2HdopBG7Rl2j2SGASuwonhAt5iAMZASXsBIm6tawqueQS sA/tEL6tgZMJNVCFbtLAnsJi5aKfuFNa3GYAY0mOjNqQUoGDYMqiS/mRU32ppxZN 7qyACDMxbp9tm91nhPGUxG544HT0T6PWptjZni2QfR/eAtv9KAhQze8dA7oFAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUjoi8kF8ocQQ0+V7pLUxr7JuduOEwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzQzMDMxM2E2NTY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAe4AMA0GCSqGSIb3 DQEBCwUAA4IBAQBk7TJNXNB7P8MXi5+dF1AvFzrgUU8+p50BbKjzkTgpEqaZHe8R e8XJNyfdOcwj1i8RzqC0b+uXzI5QSyvV57hDCoesNHqu+qswUPdUxis+vyYvYV7W RGMOYj1TH00/YrlvLyXN7brnsqrEY7I31bAWxgwzEDsPkemoq0TTPt51yB2+h1zh /HUSj7la5NyXLT3jIM8u0mjuEOxJLSTcsu8uaTruaidVTJKDJ9MDGyD3Pr8LDzrG aDyWv53JAbpQVLvOf4f301S9kmFw52kpEF6FLIPyTiQHKwQpS25LFDOAYgxN9jcv SYvqCoJzIuDmh/kGTXaPyzO/fsXEEoz5wsgH -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org