$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: r5ISPP8o2HPfHpTYeKJqTMHFk0FOHbid87VW1uUq8a8= Subject key identifier: 1B:BC:BD:60:97:3D:7E:ED:D1:22:88:48:CC:8C:90:77:27:52:CF:51 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 3CFCE24D376809AE80B02163584E079C2A6853C1 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 19 Oct 2024 19:00:00 +0000 ROA not before: Sat 19 Oct 2024 18:55:00 +0000 ROA not after: Sat 18 Oct 2025 19:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fc:e2:4d:37:68:09:ae:80:b0:21:63:58:4e:07:9c:2a:68:53:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Oct 19 18:55:00 2024 GMT Not After : Oct 18 19:00:00 2025 GMT Subject: CN=1BBCBD60973D7EEDD1228848CC8C90772752CF51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:27:18:90:62:1d:a7:78:2d:fa:df:81:92:b6: 79:4e:24:d8:4f:9c:a4:17:c4:1d:dd:38:71:18:40: 8e:56:d8:4f:c9:22:cc:b4:2e:26:1d:2f:00:6a:66: fe:15:05:02:9a:e9:6e:39:22:36:84:a4:11:11:3d: fd:0d:e2:93:87:f2:d1:05:e5:a9:20:b8:a1:af:0f: 69:79:94:2e:ee:2d:3b:c2:f2:f5:31:2c:ea:07:83: d2:1d:45:8a:3d:c3:87:90:87:8f:47:da:40:5c:b2: 8c:b3:68:b1:5e:ce:e0:79:54:d9:cf:de:dd:65:86: 71:d1:a8:6f:a0:c1:66:6d:df:1e:45:92:dd:1a:af: a6:22:d4:19:fc:0b:8e:30:34:93:2f:69:30:89:25: 74:d4:70:6c:fc:00:6d:f0:78:89:df:95:c0:81:bc: 28:aa:b4:00:c0:2d:47:f8:3c:7d:12:3a:e4:55:29: dc:5f:26:1b:ea:8f:f2:2c:74:28:5c:54:7c:d5:51: 9a:13:69:4e:7b:84:c6:d4:2e:6c:a6:c8:8e:57:63: e7:d6:dd:dc:51:56:1c:4b:70:95:27:e7:35:96:cc: 5a:86:52:bc:dd:3d:63:31:c6:30:c8:dc:12:c1:26: 2c:a2:0c:09:5a:71:1b:4a:b2:62:7c:00:bd:d8:0d: ff:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BC:BD:60:97:3D:7E:ED:D1:22:88:48:CC:8C:90:77:27:52:CF:51 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3130303a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:100::/48 Signature Algorithm: sha256WithRSAEncryption d9:a4:ff:f9:05:63:13:73:7a:5b:2d:a8:d9:af:51:7f:39:ea: 6b:25:e2:f6:46:e6:27:7c:aa:5e:67:ab:81:02:77:63:10:ec: b0:1d:e7:09:c2:28:c3:a6:fe:d2:09:ed:82:81:0b:0a:8a:ef: 96:01:15:80:bc:69:a7:3e:f7:c4:33:26:44:e0:39:98:94:69: cc:13:52:1f:8a:5f:79:9d:6c:98:86:e4:e1:cb:47:d2:a6:0a: c2:38:aa:ed:82:cf:c9:94:8e:45:51:72:ed:cd:a2:0a:4f:b8: 95:54:91:32:e5:9f:47:2f:f9:ba:b3:bc:cf:a2:5b:74:67:97: 61:1d:c8:c7:0c:22:23:7e:79:db:ae:21:15:25:2f:35:fe:e4: be:c1:cf:0f:31:2a:8a:69:a8:d2:ea:20:1c:fd:df:de:88:42: ed:08:65:4a:19:a1:5b:f3:8c:22:3a:cd:b8:d7:32:cf:2b:93: a5:52:19:1b:89:07:d4:cb:34:d8:2e:91:1b:8f:47:11:c2:99: 9b:27:d4:8f:d4:68:0f:b3:d7:46:95:8e:c1:4b:88:d1:85:ed: 76:cf:9d:f8:66:64:a3:da:de:ae:9b:30:bb:05:96:c7:19:45: da:72:21:3d:f9:74:16:a0:f0:5a:e9:00:01:7b:c3:e6:f4:36: bf:c6:93:c3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPPziTTdoCa6AsCFjWE4HnCpoU8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDEwMTkxODU1MDBaFw0yNTEwMTgxOTAwMDBaMDMxMTAvBgNV BAMTKDFCQkNCRDYwOTczRDdFRUREMTIyODg0OENDOEM5MDc3Mjc1MkNGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrJxiQYh2neC3634GStnlOJNhP nKQXxB3dOHEYQI5W2E/JIsy0LiYdLwBqZv4VBQKa6W45IjaEpBERPf0N4pOH8tEF 5akguKGvD2l5lC7uLTvC8vUxLOoHg9IdRYo9w4eQh49H2kBcsoyzaLFezuB5VNnP 3t1lhnHRqG+gwWZt3x5Fkt0ar6Yi1Bn8C44wNJMvaTCJJXTUcGz8AG3weInflcCB vCiqtADALUf4PH0SOuRVKdxfJhvqj/IsdChcVHzVUZoTaU57hMbULmymyI5XY+fW 3dxRVhxLcJUn5zWWzFqGUrzdPWMxxjDI3BLBJiyiDAlacRtKsmJ8AL3YDf9VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUG7y9YJc9fu3RIohIzIyQdydSz1EwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAEAMA0GCSqGSIb3DQEBCwUAA4IBAQDZpP/5BWMTc3pbLajZr1F/OeprJeL2RuYn fKpeZ6uBAndjEOywHecJwijDpv7SCe2CgQsKiu+WARWAvGmnPvfEMyZE4DmYlGnM E1Ifil95nWyYhuThy0fSpgrCOKrtgs/JlI5FUXLtzaIKT7iVVJEy5Z9HL/m6s7zP olt0Z5dhHcjHDCIjfnnbriEVJS81/uS+wc8PMSqKaajS6iAc/d/eiELtCGVKGaFb 84wiOs241zLPK5OlUhkbiQfUyzTYLpEbj0cRwpmbJ9SP1GgPs9dGlY7BS4jRhe12 z534ZmSj2t6umzC7BZbHGUXaciE9+XQWoPBa6QABe8Pm9Da/xpPD -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org