$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e203538343935.roa File: 323430343a343738303a313a3a2f34382d3438203d3e203538343935.roa (raw, json) Hash identifier: wpqAylZ/2JLIsixzqjZbQUW1PLTzI+fqS0UU/awB9+g= Subject key identifier: 0B:43:78:FA:52:A1:19:85:A6:AB:0A:F5:E6:00:54:41:8E:CE:0E:68 Certificate issuer: /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Certificate serial: 4BE6105E91D29B72E82CF50D1F0E2C4FB457C6 Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e203538343935.roa Signing time: Tue 20 Aug 2024 09:03:35 +0000 ROA not before: Tue 20 Aug 2024 08:58:35 +0000 ROA not after: Tue 19 Aug 2025 09:03:35 +0000 asID: 58495 IP address blocks: 2404:4780:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e6:10:5e:91:d2:9b:72:e8:2c:f5:0d:1f:0e:2c:4f:b4:57:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Validity Not Before: Aug 20 08:58:35 2024 GMT Not After : Aug 19 09:03:35 2025 GMT Subject: CN=0B4378FA52A11985A6AB0AF5E60054418ECE0E68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:bb:e2:ff:38:75:c3:08:a3:5a:6b:4d:37: 95:20:c3:05:0c:e4:26:23:e7:21:4d:97:89:e5:39: d6:84:1b:fa:93:b0:e7:02:d4:2c:54:6b:61:d3:6b: 34:0f:a8:31:09:6c:5a:b6:aa:2a:c6:ff:6e:1a:37: 1a:c8:9f:c3:90:66:94:4c:74:22:20:5d:86:d6:32: 6f:ab:fe:08:31:20:3f:86:fd:c0:98:91:9c:7b:80: f6:76:ec:2e:d7:2a:2f:8b:e0:8a:67:d6:77:a1:a9: 1c:62:0d:de:7a:d0:6e:3a:b7:44:cc:6f:1c:95:58: 5c:3b:d8:b3:7b:5d:be:d8:68:88:f0:99:34:15:92: eb:98:71:7d:88:f6:eb:86:7e:de:a7:7a:b9:35:3b: 09:84:55:bd:38:24:0a:f6:d5:fb:87:1f:8c:11:b4: 81:8e:83:34:e9:2b:d4:9c:41:86:98:3f:cf:ce:1b: 76:3a:f8:c3:ec:d9:f8:1e:da:0c:61:ac:c0:2e:2b: d8:e3:87:b5:e0:0a:65:f8:e5:cd:12:5e:18:e9:9f: 8e:96:e3:d9:9a:09:c6:a8:8e:31:b0:3e:03:f6:91: 2d:00:4b:b7:25:90:29:6c:ac:38:c5:81:82:72:8c: 6e:8e:89:72:f8:f7:0b:46:56:39:61:2c:e2:c6:f1: f2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:43:78:FA:52:A1:19:85:A6:AB:0A:F5:E6:00:54:41:8E:CE:0E:68 X509v3 Authority Key Identifier: keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/323430343a343738303a313a3a2f34382d3438203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4780:1::/48 Signature Algorithm: sha256WithRSAEncryption 3e:a6:14:9d:fe:95:cc:02:19:5e:bc:77:81:64:e0:cf:6c:70: a1:42:6a:ae:60:d4:e2:a3:53:0a:b9:5f:2f:fa:a2:0f:e1:2f: 78:60:f8:9f:d2:2d:0c:cb:71:66:2c:2c:c1:74:0c:d0:3a:c4: 96:ba:42:a3:00:59:05:cf:20:8f:d2:72:8a:fa:24:4a:77:7c: fc:bc:38:52:3a:2e:d4:64:8c:fd:dc:fa:1a:ff:e4:ab:2e:c2: 87:68:6d:7e:20:0b:ff:a7:26:f7:ba:8c:aa:cb:da:d4:5c:a0: 12:84:26:f6:e3:26:4c:b6:70:28:ce:1b:8e:65:44:1c:17:9d: b3:05:b0:a1:49:dc:f1:05:fc:c0:db:7f:d2:6f:0b:2d:fe:b4: 76:a2:9e:4a:fc:a8:fe:ed:30:10:16:b5:1e:b0:a6:9d:66:8c: 24:3f:5b:40:1e:93:66:d6:60:86:c2:b7:ac:04:99:4b:a4:58: 4a:44:0e:79:a5:82:91:58:1e:66:47:f3:18:1c:37:dc:fd:bd: 37:78:ab:84:9f:f0:83:a2:51:07:07:53:09:2c:a9:28:9b:4a: 7d:0d:54:af:5b:67:ea:fa:75:82:c2:81:5c:31:c4:bb:94:0a: c7:6e:f7:64:f7:6e:b0:5d:47:bb:f7:07:b7:3b:a6:ea:6b:3d: a0:9c:66:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgITS+YQXpHSm3LoLPUNHw4sT7RXxjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg4MDNDOUZGMTAyODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTky RTI2QUYzMB4XDTI0MDgyMDA4NTgzNVoXDTI1MDgxOTA5MDMzNVowMzExMC8GA1UE AxMoMEI0Mzc4RkE1MkExMTk4NUE2QUIwQUY1RTYwMDU0NDE4RUNFMEU2ODCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALG0u+L/OHXDCKNaa003lSDDBQzk JiPnIU2XieU51oQb+pOw5wLULFRrYdNrNA+oMQlsWraqKsb/bho3Gsifw5BmlEx0 IiBdhtYyb6v+CDEgP4b9wJiRnHuA9nbsLtcqL4vgimfWd6GpHGIN3nrQbjq3RMxv HJVYXDvYs3tdvthoiPCZNBWS65hxfYj264Z+3qd6uTU7CYRVvTgkCvbV+4cfjBG0 gY6DNOkr1JxBhpg/z84bdjr4w+zZ+B7aDGGswC4r2OOHteAKZfjlzRJeGOmfjpbj 2ZoJxqiOMbA+A/aRLQBLtyWQKWysOMWBgnKMbo6Jcvj3C0ZWOWEs4sbx8v0CAwEA AaOCAjcwggIzMB0GA1UdDgQWBBQLQ3j6UqEZhaarCvXmAFRBjs4OaDAfBgNVHSME GDAWgBSAPJ/xAoNs7IzsSfAfz6oOkuJq8zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3 NzI3YzNlLTljMWEtNDZkZS1hMmI4LWM4OGI5MDM5OWYzZC8wLzgwM0M5RkYxMDI4 MzZDRUM4Q0VDNDlGMDFGQ0ZBQTBFOTJFMjZBRjMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi84MDNDOUZGMTAyODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTkyRTI2 QUYzLmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjc3MjdjM2UtOWMxYS00NmRlLWEy YjgtYzg4YjkwMzk5ZjNkLzAvMzIzNDMwMzQzYTM0MzczODMwM2EzMTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBEeAAAEwDQYJ KoZIhvcNAQELBQADggEBAD6mFJ3+lcwCGV68d4Fk4M9scKFCaq5g1OKjUwq5Xy/6 og/hL3hg+J/SLQzLcWYsLMF0DNA6xJa6QqMAWQXPII/Scor6JEp3fPy8OFI6LtRk jP3c+hr/5KsuwodobX4gC/+nJve6jKrL2tRcoBKEJvbjJky2cCjOG45lRBwXnbMF sKFJ3PEF/MDbf9JvCy3+tHainkr8qP7tMBAWtR6wpp1mjCQ/W0Aek2bWYIbCt6wE mUukWEpEDnmlgpFYHmZH8xgcN9z9vTd4q4Sf8IOiUQcHUwksqSibSn0NVK9bZ+r6 dYLCgVwxxLuUCsdu92T3brBdR7v3B7c7puprPaCcZq4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org