$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa File: 323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa (raw, json) Hash identifier: Zwf6XUbRXYFjehHU1h9I5ryNBsEeHpo1RBUo7mecalo= Subject key identifier: F6:D9:99:FB:EF:16:13:B0:B5:9E:98:81:25:EA:D6:FE:AB:B7:4D:10 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 617A19DC249FC0067782B6B680ECB55E8C68070A Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa Signing time: Mon 05 Aug 2024 11:23:32 +0000 ROA not before: Mon 05 Aug 2024 11:18:32 +0000 ROA not after: Mon 04 Aug 2025 11:23:32 +0000 asID: 139970 IP address blocks: 2405:aac0:221::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 07:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7a:19:dc:24:9f:c0:06:77:82:b6:b6:80:ec:b5:5e:8c:68:07:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Aug 5 11:18:32 2024 GMT Not After : Aug 4 11:23:32 2025 GMT Subject: CN=F6D999FBEF1613B0B59E988125EAD6FEABB74D10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5d:31:4a:28:d4:bb:80:20:84:33:04:9e:1c: 91:58:71:69:f9:2e:96:a0:cc:9c:60:1d:48:f9:f5: b9:74:b7:4e:2f:4c:99:2f:6b:1f:80:3e:af:ca:5e: 9b:10:c0:e0:77:1e:54:ee:5a:de:83:81:c4:76:5e: ef:39:1a:d3:71:10:22:64:e6:42:58:49:f4:6a:c3: 75:81:2c:9f:70:7e:96:a7:3d:b7:53:b8:f9:98:84: d7:7f:19:77:61:8d:a8:41:ef:57:bd:96:db:09:e7: 67:12:8e:13:7b:e5:0f:7d:90:f6:bb:51:f0:b2:ab: 8d:72:f1:10:cb:5d:f1:09:44:18:d9:25:06:eb:e3: 01:db:8f:07:42:63:b5:32:01:ae:c8:62:0d:b6:37: d6:7a:a4:e4:67:36:d4:52:08:b1:31:28:52:47:e3: fd:e6:38:57:47:c6:0d:72:76:75:01:fc:0e:b3:67: 87:fc:f5:1a:e4:ae:a0:c0:93:af:7e:c7:fc:cf:3b: 6c:d7:66:cb:e6:19:93:69:5b:8f:8b:36:fd:5c:62: d7:17:34:6b:a5:a9:ee:13:6d:87:a8:42:00:11:75: 6a:59:f9:9d:ab:0a:98:3f:82:b6:6e:49:23:03:a6: ec:64:60:9b:5a:a5:b5:e1:9c:0d:04:97:5c:4e:99: 17:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D9:99:FB:EF:16:13:B0:B5:9E:98:81:25:EA:D6:FE:AB:B7:4D:10 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232313a3a2f34382d3438203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:221::/48 Signature Algorithm: sha256WithRSAEncryption 6f:23:2b:d9:57:55:ce:db:69:b8:70:85:e7:4c:63:e0:c5:54: 50:69:85:3a:63:ab:5f:2d:4a:aa:f1:7b:2f:cd:cf:68:be:cd: f0:63:b5:4f:be:5f:25:d6:b9:86:f8:7c:ba:0d:9e:7b:4d:ea: ef:30:0b:b8:7d:1b:0e:8d:de:d5:8b:85:91:11:6f:b2:55:df: 35:5f:f1:6a:9a:b9:6b:92:a2:c4:ca:5b:b5:9a:81:cd:f8:d1: 96:73:ba:35:ff:3b:df:2d:23:94:b8:ca:8a:c7:20:7d:34:0f: 56:36:e4:28:42:c6:25:c0:ae:eb:50:f4:3d:33:20:f4:6f:2d: 7a:e3:1e:fb:6e:64:24:5d:16:9c:41:89:e5:75:aa:04:24:e8: 68:01:15:8b:72:89:f9:52:13:22:d8:6e:2c:ee:36:36:be:6a: 06:59:6c:16:cc:d7:0a:3e:86:f3:d7:d6:8b:48:17:74:8f:72: e1:b6:16:66:42:a0:c8:e4:db:57:39:d9:5e:7d:64:e9:e8:5c: 1c:c0:61:a6:08:39:48:8a:04:1f:ee:cb:da:7e:48:2c:75:4e: 7e:6f:c1:a2:06:c4:e5:2a:24:d6:e6:bd:88:64:d6:cd:fd:b0: 08:4c:ff:01:54:8f:f6:78:01:88:6d:04:5f:f2:98:22:ba:d2: 7e:23:6a:c0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYXoZ3CSfwAZ3gra2gOy1XoxoBwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA4MDUxMTE4MzJaFw0yNTA4MDQxMTIzMzJaMDMxMTAvBgNV BAMTKEY2RDk5OUZCRUYxNjEzQjBCNTlFOTg4MTI1RUFENkZFQUJCNzREMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkXTFKKNS7gCCEMwSeHJFYcWn5 LpagzJxgHUj59bl0t04vTJkvax+APq/KXpsQwOB3HlTuWt6DgcR2Xu85GtNxECJk 5kJYSfRqw3WBLJ9wfpanPbdTuPmYhNd/GXdhjahB71e9ltsJ52cSjhN75Q99kPa7 UfCyq41y8RDLXfEJRBjZJQbr4wHbjwdCY7UyAa7IYg22N9Z6pORnNtRSCLExKFJH 4/3mOFdHxg1ydnUB/A6zZ4f89RrkrqDAk69+x/zPO2zXZsvmGZNpW4+LNv1cYtcX NGulqe4TbYeoQgARdWpZ+Z2rCpg/grZuSSMDpuxkYJtapbXhnA0El1xOmRflAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9tmZ++8WE7C1npiBJerW/qu3TRAwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMxM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIhMA0GCSqGSIb3DQEBCwUAA4IBAQBvIyvZV1XO22m4cIXnTGPgxVRQaYU6Y6tf LUqq8Xsvzc9ovs3wY7VPvl8l1rmG+Hy6DZ57TervMAu4fRsOjd7Vi4WREW+yVd81 X/FqmrlrkqLEylu1moHN+NGWc7o1/zvfLSOUuMqKxyB9NA9WNuQoQsYlwK7rUPQ9 MyD0by164x77bmQkXRacQYnldaoEJOhoARWLcon5UhMi2G4s7jY2vmoGWWwWzNcK Pobz19aLSBd0j3LhthZmQqDI5NtXOdlefWTp6FwcwGGmCDlIigQf7svafkgsdU5+ b8GiBsTlKiTW5r2IZNbN/bAITP8BVI/2eAGIbQRf8pgiutJ+I2rA -----END CERTIFICATE-----Generated at Tue Mar 11 05:06:06 2025 by rpki-client