$ rpki-client -vvf repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa File: 323430303a386238303a3a2f33322d3332203d3e20313331373637.roa (raw, json) Hash identifier: mE4j7gpBCxYCzmtebP+W7JvzIm1JCi0eQIsNW6AvGWY= Subject key identifier: 7E:0C:A8:BB:B7:5D:DC:AC:95:94:1D:99:02:80:EA:CC:39:09:86:12 Certificate issuer: /CN=4FA812FE6A4A85F790CB2740EF08836883716912 Certificate serial: 0648651870B147640E134808E31DD77C7AAB2919 Authority key identifier: 4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa Signing time: Thu 08 Aug 2024 03:14:07 +0000 ROA not before: Thu 08 Aug 2024 03:09:07 +0000 ROA not after: Thu 07 Aug 2025 03:14:07 +0000 asID: 131767 IP address blocks: 2400:8b80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 12:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:48:65:18:70:b1:47:64:0e:13:48:08:e3:1d:d7:7c:7a:ab:29:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA812FE6A4A85F790CB2740EF08836883716912 Validity Not Before: Aug 8 03:09:07 2024 GMT Not After : Aug 7 03:14:07 2025 GMT Subject: CN=7E0CA8BBB75DDCAC95941D990280EACC39098612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:66:1f:f0:d7:ff:a7:79:7f:11:9d:79:9c:0a: 36:3a:a2:5a:19:fd:4f:2b:f1:91:29:29:dd:b9:35: c9:0b:b8:9f:8c:34:fa:2d:8f:df:ee:54:29:39:c3: d6:0c:36:12:17:0f:1f:7b:b3:dc:0f:e7:67:29:4c: 64:bb:e9:20:26:59:79:81:66:16:e3:98:32:7d:e4: 3b:f3:d0:07:fc:e8:24:e8:03:c3:7c:8e:03:8e:1c: fd:9a:1c:60:90:12:13:3b:fb:d9:5e:42:9d:ce:2e: c1:03:27:e3:5c:1d:5c:43:af:45:3c:ff:24:6c:08: 9e:c2:11:c2:4c:6b:0e:ff:fe:98:65:68:0c:32:70: a1:63:16:e2:71:ef:3a:95:d7:bc:2a:1d:e7:04:69: d7:f9:06:81:cb:49:9e:dd:f6:e1:b6:34:90:3d:ee: e6:92:62:7e:90:d9:71:ac:06:db:0b:09:05:ed:07: 38:e3:8c:61:29:cf:b7:b0:b9:86:ab:c4:ca:c6:48: 16:04:40:8b:d3:27:06:0c:3a:77:04:bb:b9:04:05: 63:14:28:aa:9f:ea:0a:81:4c:aa:4d:90:47:0d:be: 8c:06:a1:cc:4d:e1:66:aa:70:e0:df:6d:84:e1:ce: c8:67:e0:86:7a:96:f8:e0:d6:a3:93:38:f0:7b:5d: dd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0C:A8:BB:B7:5D:DC:AC:95:94:1D:99:02:80:EA:CC:39:09:86:12 X509v3 Authority Key Identifier: keyid:4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8b80::/32 Signature Algorithm: sha256WithRSAEncryption 72:ce:c3:ce:8a:fb:bf:66:7a:df:bf:ed:0a:50:3e:87:4f:c1: f7:c0:63:ec:29:56:82:aa:62:fa:cf:22:4a:77:8f:92:8e:4b: 03:b3:df:62:28:08:d8:bd:bf:d4:44:67:f4:f7:39:fd:8d:14: de:83:2c:2a:d2:ff:28:7d:c8:94:cf:7d:c7:80:0e:f3:60:66: 9c:8c:63:cc:43:a1:97:6a:f4:92:21:e4:57:4f:ab:a1:ce:0a: b0:b9:73:61:6d:e5:72:bf:2a:bf:ab:6b:6e:1b:ef:73:3b:19: b5:bf:71:68:86:60:a1:c8:02:cc:7f:3e:39:de:49:05:bd:3c: f3:69:d7:fd:5a:51:78:6a:78:54:2c:10:bf:12:61:2d:ba:77: e3:be:2c:07:ad:58:a4:4f:c7:2b:90:14:fc:49:05:31:e5:78: fd:77:fd:02:01:62:ed:a1:f5:33:03:b8:f9:01:db:36:38:f7: dd:dc:a5:b0:aa:af:cc:6e:13:26:a4:90:74:50:26:c5:15:1c: 99:9f:c2:7e:6d:fb:28:9f:e1:ee:61:12:89:87:9f:6f:05:20: 3b:03:a0:dc:a8:2b:fe:1a:3a:31:1e:70:06:6e:1f:85:94:f2: 25:93:ab:b2:79:ea:88:a8:59:ba:cb:dc:11:4d:10:c7:54:78: d0:d7:fc:ff -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBkhlGHCxR2QOE0gI4x3XfHqrKRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4 MzcxNjkxMjAeFw0yNDA4MDgwMzA5MDdaFw0yNTA4MDcwMzE0MDdaMDMxMTAvBgNV BAMTKDdFMENBOEJCQjc1RERDQUM5NTk0MUQ5OTAyODBFQUNDMzkwOTg2MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKZh/w1/+neX8RnXmcCjY6oloZ /U8r8ZEpKd25NckLuJ+MNPotj9/uVCk5w9YMNhIXDx97s9wP52cpTGS76SAmWXmB ZhbjmDJ95Dvz0Af86CToA8N8jgOOHP2aHGCQEhM7+9leQp3OLsEDJ+NcHVxDr0U8 /yRsCJ7CEcJMaw7//phlaAwycKFjFuJx7zqV17wqHecEadf5BoHLSZ7d9uG2NJA9 7uaSYn6Q2XGsBtsLCQXtBzjjjGEpz7ewuYarxMrGSBYEQIvTJwYMOncEu7kEBWMU KKqf6gqBTKpNkEcNvowGocxN4WaqcODfbYThzshn4IZ6lvjg1qOTOPB7Xd2VAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUfgyou7dd3KyVlB2ZAoDqzDkJhhIwHwYDVR0j BBgwFoAUT6gS/mpKhfeQyydA7wiDaINxaRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGQxMDhmNy0wOGIyLTQwOWYtOGE3MC1hOWM2N2FlNWVkMjIvMC80RkE4MTJGRTZB NEE4NUY3OTBDQjI3NDBFRjA4ODM2ODgzNzE2OTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4Mzcx NjkxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0ZDEwOGY3LTA4YjItNDA5Zi04 YTcwLWE5YzY3YWU1ZWQyMi8wLzMyMzQzMDMwM2EzODYyMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMTM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAi4AwDQYJKoZI hvcNAQELBQADggEBAHLOw86K+79met+/7QpQPodPwffAY+wpVoKqYvrPIkp3j5KO SwOz32IoCNi9v9REZ/T3Of2NFN6DLCrS/yh9yJTPfceADvNgZpyMY8xDoZdq9JIh 5FdPq6HOCrC5c2Ft5XK/Kr+ra24b73M7GbW/cWiGYKHIAsx/PjneSQW9PPNp1/1a UXhqeFQsEL8SYS26d+O+LAetWKRPxyuQFPxJBTHleP13/QIBYu2h9TMDuPkB2zY4 993cpbCqr8xuEyakkHRQJsUVHJmfwn5t+yif4e5hEomHn28FIDsDoNyoK/4aOjEe cAZuH4WU8iWTq7J56oioWbrL3BFNEMdUeNDX/P8= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org