$ rpki-client -vvf repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa File: 323430353a396363303a3a2f33322d3438203d3e20313339393637.roa (raw, json) Hash identifier: dqqK2b30QcWDUvsFT2ynFnDCTSvisXhj5I9h/iJg6fA= Subject key identifier: CB:6D:97:88:F3:29:65:59:D9:17:2D:82:D8:A9:C9:67:80:B1:AC:31 Certificate issuer: /CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Certificate serial: 3E7732AB5DCC86108E3CA896E79B83BEE45337A9 Authority key identifier: 4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa Signing time: Sat 05 Oct 2024 20:00:00 +0000 ROA not before: Sat 05 Oct 2024 19:55:00 +0000 ROA not after: Sat 04 Oct 2025 20:00:00 +0000 asID: 139967 IP address blocks: 2405:9cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:77:32:ab:5d:cc:86:10:8e:3c:a8:96:e7:9b:83:be:e4:53:37:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48 Validity Not Before: Oct 5 19:55:00 2024 GMT Not After : Oct 4 20:00:00 2025 GMT Subject: CN=CB6D9788F3296559D9172D82D8A9C96780B1AC31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2d:9b:88:95:08:64:2e:5f:76:f9:bf:da:9a: 56:9a:14:f6:fe:02:2a:73:ac:8e:52:04:c2:8c:3e: a1:46:e9:55:46:d2:ed:1d:ad:c3:98:ca:af:ad:9b: 48:de:91:e8:08:f2:df:7a:c9:10:51:bf:73:e0:43: ff:02:8d:3c:6f:db:89:f1:41:e8:23:6f:3c:5b:53: f1:a8:36:a9:ec:91:b7:fa:c1:61:94:85:92:b8:92: f0:e2:37:8f:0d:6e:64:b7:4a:f8:0a:6e:14:0b:20: 51:ec:be:95:36:7c:20:f4:24:be:df:49:2f:31:bf: 5c:55:da:c7:ea:39:cf:e3:a8:98:53:2c:db:c8:43: f1:1a:c0:6b:8c:f2:71:f3:57:f7:12:1c:26:18:fb: 4d:67:33:38:5c:9b:af:9e:f7:14:19:f1:65:ae:28: 6b:c5:3d:24:a2:aa:0c:8f:40:f9:b2:eb:b1:6e:da: bf:34:23:00:08:e3:0d:80:8f:b2:2f:3c:2f:fc:69: 10:fa:0e:ba:98:2b:c8:29:b4:82:34:0c:dc:8a:aa: bd:e8:22:a4:d9:7f:9f:36:1e:fa:93:c1:d9:bb:7e: 6c:90:40:22:fd:a1:0c:8f:42:3d:e1:f8:0c:96:cd: 5d:e5:e9:8d:77:ab:8b:6b:35:1c:e9:62:46:5c:75: 20:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6D:97:88:F3:29:65:59:D9:17:2D:82:D8:A9:C9:67:80:B1:AC:31 X509v3 Authority Key Identifier: keyid:4F:29:04:EA:E6:6A:DD:5D:3A:C5:3C:6A:CC:B9:21:33:B4:26:DF:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F2904EAE66ADD5D3AC53C6ACCB92133B426DF48.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29c5327f-10fd-4cf0-851c-0cfcd3c3c697/0/323430353a396363303a3a2f33322d3438203d3e20313339393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:9cc0::/32 Signature Algorithm: sha256WithRSAEncryption 6a:56:77:69:2d:23:03:4a:78:bf:fa:89:84:2f:5c:68:3c:6d: 99:bf:8b:e8:d4:1c:9b:77:1d:06:56:d6:2a:3c:b8:5f:2f:74: bd:e7:69:f1:93:ad:42:c0:3f:cb:62:6b:15:6d:43:27:eb:5c: 84:46:5d:a1:56:a4:09:d7:46:5d:db:d0:7d:5a:92:6b:da:f7: 63:54:f7:14:83:93:49:47:7d:0c:43:5f:72:0e:8c:34:12:46: fd:dc:21:85:c4:74:cc:8a:99:8e:91:e0:70:54:8a:d5:76:42: 26:52:e0:75:32:91:b6:82:f2:1d:16:ee:56:50:23:75:1c:20: f3:38:1f:fb:39:e4:19:37:06:36:7d:65:c1:04:6e:6b:3b:64: 68:bf:2c:28:55:33:37:c9:dd:1a:22:5c:95:26:cd:f9:19:2b: ed:d8:3c:08:12:8c:4b:c9:e3:c9:80:83:15:da:57:47:6b:cc: c1:64:b2:e6:5e:f4:9b:83:02:a2:a9:ce:2e:1b:60:1b:39:00: c1:1c:7f:a2:25:a2:c7:26:b0:e5:0c:57:3c:83:df:1e:be:d1: 13:f4:ad:8f:31:7d:fd:00:17:a3:66:5e:6d:71:4a:a8:ed:de: bc:e4:2e:15:33:f5:6f:72:97:b6:7e:06:fa:5d:f5:55:77:72: ea:2a:44:93 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPncyq13MhhCOPKiW55uDvuRTN6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNC NDI2REY0ODAeFw0yNDEwMDUxOTU1MDBaFw0yNTEwMDQyMDAwMDBaMDMxMTAvBgNV BAMTKENCNkQ5Nzg4RjMyOTY1NTlEOTE3MkQ4MkQ4QTlDOTY3ODBCMUFDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDULZuIlQhkLl92+b/amlaaFPb+ AipzrI5SBMKMPqFG6VVG0u0drcOYyq+tm0jekegI8t96yRBRv3PgQ/8CjTxv24nx QegjbzxbU/GoNqnskbf6wWGUhZK4kvDiN48NbmS3SvgKbhQLIFHsvpU2fCD0JL7f SS8xv1xV2sfqOc/jqJhTLNvIQ/EawGuM8nHzV/cSHCYY+01nMzhcm6+e9xQZ8WWu KGvFPSSiqgyPQPmy67Fu2r80IwAI4w2Aj7IvPC/8aRD6DrqYK8gptII0DNyKqr3o IqTZf582HvqTwdm7fmyQQCL9oQyPQj3h+AyWzV3l6Y13q4trNRzpYkZcdSCBAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUy22XiPMpZVnZFy2C2KnJZ4CxrDEwHwYDVR0j BBgwFoAUTykE6uZq3V06xTxqzLkhM7Qm30gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWM1MzI3Zi0xMGZkLTRjZjAtODUxYy0wY2ZjZDNjM2M2OTcvMC80RjI5MDRFQUU2 NkFERDVEM0FDNTNDNkFDQ0I5MjEzM0I0MjZERjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYyOTA0RUFFNjZBREQ1RDNBQzUzQzZBQ0NCOTIxMzNCNDI2 REY0OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YzUzMjdmLTEwZmQtNGNmMC04 NTFjLTBjZmNkM2MzYzY5Ny8wLzMyMzQzMDM1M2EzOTYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFnMAwDQYJKoZI hvcNAQELBQADggEBAGpWd2ktIwNKeL/6iYQvXGg8bZm/i+jUHJt3HQZW1io8uF8v dL3nafGTrULAP8tiaxVtQyfrXIRGXaFWpAnXRl3b0H1akmva92NU9xSDk0lHfQxD X3IOjDQSRv3cIYXEdMyKmY6R4HBUitV2QiZS4HUykbaC8h0W7lZQI3UcIPM4H/s5 5Bk3BjZ9ZcEEbms7ZGi/LChVMzfJ3RoiXJUmzfkZK+3YPAgSjEvJ48mAgxXaV0dr zMFksuZe9JuDAqKpzi4bYBs5AMEcf6IloscmsOUMVzyD3x6+0RP0rY8xff0AF6Nm Xm1xSqjt3rzkLhUz9W9yl7Z+Bvpd9VV3cuoqRJM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org