$ rpki-client -vvf repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa File: 323430353a6263303a3a2f33332d3438203d3e20313336383432.roa (raw, json) Hash identifier: NgCvE1hp44YLC96n/lodIlhmLB1FaaOx9l0TuasHSug= Subject key identifier: A0:E9:C9:59:3D:5D:40:32:32:8D:3F:98:5D:1C:4E:0F:69:91:BC:32 Certificate issuer: /CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Certificate serial: 3CE9423EBFAB0B694B505563243809721EDEDA Authority key identifier: A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa Signing time: Fri 13 Sep 2024 08:00:02 +0000 ROA not before: Fri 13 Sep 2024 07:55:02 +0000 ROA not after: Fri 12 Sep 2025 08:00:02 +0000 asID: 136842 IP address blocks: 2405:bc0::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e9:42:3e:bf:ab:0b:69:4b:50:55:63:24:38:09:72:1e:de:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08B1B14AA5B6512424EDF8650A984942F27A4EF Validity Not Before: Sep 13 07:55:02 2024 GMT Not After : Sep 12 08:00:02 2025 GMT Subject: CN=A0E9C9593D5D4032328D3F985D1C4E0F6991BC32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:68:08:27:b4:85:bb:50:3a:fa:2b:27:7c:62: dc:a3:53:96:16:00:0b:1c:bc:32:2e:7b:82:4c:74: 9d:1f:52:b0:48:f9:09:60:77:37:18:f7:29:77:26: 1a:e0:0b:ba:d2:aa:4b:ab:1d:47:5e:b5:9b:79:a5: 4e:7c:78:ea:73:1f:ec:79:7c:f1:fe:ba:0f:66:4a: 34:b7:a0:da:56:cd:b4:84:35:1a:d5:6c:17:47:e9: 30:55:6e:a7:93:08:2b:f1:27:2f:3f:24:a6:fe:c2: d2:a1:85:7e:ab:af:47:f5:00:00:3f:92:21:1a:56: 58:2e:f4:94:c0:71:b2:18:93:39:da:88:da:ed:52: 39:47:28:d8:cc:64:e5:b8:6d:59:7d:52:3e:e1:33: 2f:d7:b4:10:41:ca:48:b6:5d:9f:6f:a6:b8:fc:89: ab:10:61:85:e8:a3:b9:e7:8d:3a:89:ba:4d:a3:fa: 0a:de:38:41:ae:93:c7:89:e2:41:99:7d:f0:1d:71: 3c:66:75:6d:6e:a3:6b:27:90:54:ea:1a:94:ae:24: 56:07:d2:99:aa:ba:9e:82:5b:b2:0c:39:4d:95:2d: cf:f4:5d:b8:b4:18:e0:bc:f9:6c:65:ae:59:41:cf: f3:d7:e0:96:61:4e:0e:79:e9:dc:89:4b:45:d1:83: 63:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E9:C9:59:3D:5D:40:32:32:8D:3F:98:5D:1C:4E:0F:69:91:BC:32 X509v3 Authority Key Identifier: keyid:A0:8B:1B:14:AA:5B:65:12:42:4E:DF:86:50:A9:84:94:2F:27:A4:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/A08B1B14AA5B6512424EDF8650A984942F27A4EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A08B1B14AA5B6512424EDF8650A984942F27A4EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/323430353a6263303a3a2f33332d3438203d3e20313336383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:bc0::/33 Signature Algorithm: sha256WithRSAEncryption 41:ec:25:0b:35:98:79:87:6a:7b:4d:f5:89:0e:4b:95:b8:fa: 3a:93:fe:a8:0b:0f:c3:6c:2d:2f:f6:b6:1b:91:40:8f:b9:b4: 4b:b6:2a:da:0a:38:98:1f:cd:cf:ad:ed:fd:75:ea:b3:58:2b: 15:5d:ca:9b:1d:6d:b1:cc:8e:f1:32:2b:00:de:b3:10:62:a9: 9e:3d:38:7a:4f:1a:84:20:69:7c:d2:fd:ee:83:85:b4:7f:92: 44:b8:47:30:7a:3c:25:63:09:49:e7:41:65:93:ea:c0:ec:7f: cf:ad:d3:a8:27:8e:3d:b3:6f:83:bf:5e:1a:dc:5f:86:d8:81: bb:9d:d9:44:98:18:a6:d7:be:7c:17:9f:84:e0:9e:6e:92:87: dd:56:66:36:ea:fe:ed:09:ec:69:5c:f7:41:a4:0a:d5:da:89: 2e:1a:e2:a9:89:35:77:34:85:48:a3:d6:01:0c:cc:1d:28:c2: c2:df:d3:05:22:7b:b2:60:6d:d0:e4:04:47:46:c5:60:fc:b3: b0:42:45:52:92:28:ce:a1:49:de:bd:29:5a:9d:29:43:7f:d3: 52:aa:21:93:48:44:19:d1:b9:1d:d6:c1:ac:ce:7e:db:93:81: de:3f:ca:d6:80:52:45:68:d8:5d:f4:38:38:8a:19:c8:a4:34: f6:f4:eb:d6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITPOlCPr+rC2lLUFVjJDgJch7e2jANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhBMDhCMUIxNEFBNUI2NTEyNDI0RURGODY1MEE5ODQ5NDJG MjdBNEVGMB4XDTI0MDkxMzA3NTUwMloXDTI1MDkxMjA4MDAwMlowMzExMC8GA1UE AxMoQTBFOUM5NTkzRDVENDAzMjMyOEQzRjk4NUQxQzRFMEY2OTkxQkMzMjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOxoCCe0hbtQOvorJ3xi3KNTlhYA Cxy8Mi57gkx0nR9SsEj5CWB3Nxj3KXcmGuALutKqS6sdR161m3mlTnx46nMf7Hl8 8f66D2ZKNLeg2lbNtIQ1GtVsF0fpMFVup5MIK/EnLz8kpv7C0qGFfquvR/UAAD+S IRpWWC70lMBxshiTOdqI2u1SOUco2Mxk5bhtWX1SPuEzL9e0EEHKSLZdn2+muPyJ qxBhheijueeNOom6TaP6Ct44Qa6Tx4niQZl98B1xPGZ1bW6jayeQVOoalK4kVgfS maq6noJbsgw5TZUtz/RduLQY4Lz5bGWuWUHP89fglmFODnnp3IlLRdGDY8UCAwEA AaOCAjIwggIuMB0GA1UdDgQWBBSg6clZPV1AMjKNP5hdHE4PaZG8MjAfBgNVHSME GDAWgBSgixsUqltlEkJO34ZQqYSULyek7zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJh OTdiY2Y0LWUxYWEtNDdkNi1iZGU2LTJlNjY3YjlkNjEzNC8wL0EwOEIxQjE0QUE1 QjY1MTI0MjRFREY4NjUwQTk4NDk0MkYyN0E0RUYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9BMDhCMUIxNEFBNUI2NTEyNDI0RURGODY1MEE5ODQ5NDJGMjdB NEVGLmNlcjCBoAYIKwYBBQUHAQsEgZMwgZAwgY0GCCsGAQUFBzALhoGAcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE5N2JjZjQtZTFhYS00N2Q2LWJk ZTYtMmU2NjdiOWQ2MTM0LzAvMzIzNDMwMzUzYTYyNjMzMDNhM2EyZjMzMzMyZDM0 MzgyMDNkM2UyMDMxMzMzNjM4MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQFC8AAMA0GCSqGSIb3 DQEBCwUAA4IBAQBB7CULNZh5h2p7TfWJDkuVuPo6k/6oCw/DbC0v9rYbkUCPubRL tiraCjiYH83Pre39deqzWCsVXcqbHW2xzI7xMisA3rMQYqmePTh6TxqEIGl80v3u g4W0f5JEuEcwejwlYwlJ50Flk+rA7H/PrdOoJ449s2+Dv14a3F+G2IG7ndlEmBim 1758F5+E4J5ukofdVmY26v7tCexpXPdBpArV2okuGuKpiTV3NIVIo9YBDMwdKMLC 39MFInuyYG3Q5ARHRsVg/LOwQkVSkijOoUnevSlanSlDf9NSqiGTSEQZ0bkd1sGs zn7bk4HeP8rWgFJFaNhd9Dg4ihnIpDT29OvW -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org