$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: Cu1z5KCpRxnxlOm9tBDJXUdlb7h1bqn0dG5xRCk7zxA= Subject key identifier: CC:A0:C8:A2:79:5E:2E:39:38:3A:01:6E:00:4B:84:F5:56:B2:E8:0F Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 03CB39A5E69ED2D06ACDF35AA7D47C7ED2C159C7 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 20 May 2024 18:00:00 +0000 ROA not before: Mon 20 May 2024 17:55:00 +0000 ROA not after: Mon 19 May 2025 18:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:cb:39:a5:e6:9e:d2:d0:6a:cd:f3:5a:a7:d4:7c:7e:d2:c1:59:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: May 20 17:55:00 2024 GMT Not After : May 19 18:00:00 2025 GMT Subject: CN=CCA0C8A2795E2E39383A016E004B84F556B2E80F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fa:3b:57:14:65:7d:c8:4d:b4:30:62:ca:81: 8f:92:52:5e:ae:0b:af:14:83:12:f6:9f:87:f9:91: aa:c6:c3:91:7e:fb:06:82:af:fa:62:62:4c:ca:c3: ce:ce:21:fc:ab:4a:bb:94:34:ea:13:a7:a5:3b:b0: a2:0d:a4:cb:3b:fa:84:3b:a9:bb:76:3c:29:fc:3e: f7:d1:0c:53:18:ec:56:1c:08:53:58:4d:52:01:36: 85:a0:72:e9:9f:9f:c9:f4:6c:51:9e:41:c1:d2:1a: 87:82:41:62:e0:73:af:5f:0d:53:c8:f3:84:86:2d: c4:c9:93:0a:6d:d1:02:74:b2:c8:3f:b0:4f:b5:81: eb:12:de:6a:fa:5b:cb:25:b4:33:80:b5:ae:28:38: 12:87:20:63:3b:99:fe:40:bf:4e:cd:51:29:19:51: dd:38:4d:90:c0:a4:41:d8:4e:2c:c3:bd:2b:72:50: bd:ea:ba:fc:22:ef:e3:93:95:af:7a:fb:79:ed:6a: be:ff:a2:b4:63:5d:60:4d:78:e4:e6:08:f8:d6:00: 95:94:05:b3:31:f5:f2:c5:af:cf:4a:da:b1:06:1c: 21:3e:df:4d:4c:3c:fa:99:fa:e8:1d:09:1f:83:8a: 6f:0e:f5:84:db:5f:36:b2:31:27:d6:57:80:9f:89: 79:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A0:C8:A2:79:5E:2E:39:38:3A:01:6E:00:4B:84:F5:56:B2:E8:0F X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31343a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:14::/48 Signature Algorithm: sha256WithRSAEncryption 93:d6:cf:94:c0:81:86:67:3a:99:7d:e6:b4:0c:47:b7:66:61: 13:89:db:cf:58:26:6c:01:91:4e:7f:6b:0a:7e:28:96:94:4b: e0:9e:8b:a6:40:8b:68:e5:c9:f7:5f:1b:15:e8:97:40:bb:11: 99:d8:df:66:ee:3f:8a:cb:66:ce:23:7c:bb:13:51:51:6a:9b: 00:b0:6c:fd:bf:11:16:b1:a5:d6:c4:32:08:33:ea:9e:19:32: ba:80:44:14:bc:1d:83:89:28:a0:60:31:04:30:c4:38:19:cc: 1b:1a:bb:cf:7a:4a:21:7e:5a:54:56:2c:83:ec:d6:61:fc:9b: be:52:6c:5b:65:62:75:6d:70:71:38:4b:22:03:a7:f9:f3:4a: 9e:7f:4f:16:34:4d:35:a8:c3:9b:b9:ac:4d:e1:f0:cd:b6:a8: 4f:07:c2:10:72:2b:2c:08:21:f4:db:27:28:af:08:fb:c2:27: 77:31:bd:16:60:50:31:03:fa:d7:a1:58:f2:84:80:33:82:20: ec:a1:67:00:79:8a:cb:db:f3:35:9b:47:cc:7c:bd:ed:d3:14: 14:18:29:ee:47:cf:cd:30:fd:c7:a8:64:c3:70:ab:34:8a:7f: d2:84:72:72:e7:aa:a8:b6:ac:94:e8:58:53:c7:cb:b4:64:a1: 14:20:e9:6c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUA8s5peae0tBqzfNap9R8ftLBWccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA1MjAxNzU1MDBaFw0yNTA1MTkxODAwMDBaMDMxMTAvBgNV BAMTKENDQTBDOEEyNzk1RTJFMzkzODNBMDE2RTAwNEI4NEY1NTZCMkU4MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl+jtXFGV9yE20MGLKgY+SUl6u C68UgxL2n4f5karGw5F++waCr/piYkzKw87OIfyrSruUNOoTp6U7sKINpMs7+oQ7 qbt2PCn8PvfRDFMY7FYcCFNYTVIBNoWgcumfn8n0bFGeQcHSGoeCQWLgc69fDVPI 84SGLcTJkwpt0QJ0ssg/sE+1gesS3mr6W8sltDOAta4oOBKHIGM7mf5Av07NUSkZ Ud04TZDApEHYTizDvStyUL3quvwi7+OTla96+3ntar7/orRjXWBNeOTmCPjWAJWU BbMx9fLFr89K2rEGHCE+301MPPqZ+ugdCR+Dim8O9YTbXzayMSfWV4CfiXl7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUzKDIonleLjk4OgFuAEuE9Vay6A8wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA FDANBgkqhkiG9w0BAQsFAAOCAQEAk9bPlMCBhmc6mX3mtAxHt2ZhE4nbz1gmbAGR Tn9rCn4olpRL4J6LpkCLaOXJ918bFeiXQLsRmdjfZu4/istmziN8uxNRUWqbALBs /b8RFrGl1sQyCDPqnhkyuoBEFLwdg4kooGAxBDDEOBnMGxq7z3pKIX5aVFYsg+zW YfybvlJsW2VidW1wcThLIgOn+fNKnn9PFjRNNajDm7msTeHwzbaoTwfCEHIrLAgh 9NsnKK8I+8IndzG9FmBQMQP616FY8oSAM4Ig7KFnAHmKy9vzNZtHzHy97dMUFBgp 7kfPzTD9x6hkw3CrNIp/0oRycueqqLaslOhYU8fLtGShFCDpbA== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org