$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa File: 323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa (raw, json) Hash identifier: P1ezuvcXd/dXHbJpsEnb4/Rkjy/xfn0EypTeR0QwgvA= Subject key identifier: 96:D2:95:42:66:FD:E7:20:E4:E7:06:79:4A:7C:A7:43:A1:8D:B7:6A Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 04E18C01869B84E5EDD704E69614C58241A1ED79 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa Signing time: Mon 05 Aug 2024 04:06:37 +0000 ROA not before: Mon 05 Aug 2024 04:01:37 +0000 ROA not after: Mon 04 Aug 2025 04:06:37 +0000 asID: 139970 IP address blocks: 2405:aac0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e1:8c:01:86:9b:84:e5:ed:d7:04:e6:96:14:c5:82:41:a1:ed:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Aug 5 04:01:37 2024 GMT Not After : Aug 4 04:06:37 2025 GMT Subject: CN=96D2954266FDE720E4E706794A7CA743A18DB76A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:63:20:fa:5e:12:a3:12:95:4f:df:5f:7a:9c: f5:c8:91:dc:a6:6a:4c:e3:c3:df:b4:89:92:cb:da: 30:5f:83:59:5d:5a:38:5c:0a:84:af:8b:c0:88:07: ba:d3:32:2f:18:64:f5:3c:bb:ab:89:63:0c:d2:74: 39:b6:6e:5a:2b:08:68:fa:32:88:c7:42:03:10:17: 88:6f:dd:b0:9a:69:7f:7a:9b:12:e1:bd:a3:f9:12: ae:c2:30:ab:21:60:e9:8d:45:bf:72:ff:68:08:7b: c7:b9:e0:d5:b6:84:03:65:4a:df:9d:66:04:4e:56: ea:33:7f:0b:23:49:20:00:20:94:d8:06:66:76:73: ee:53:fd:4a:34:77:c4:5c:70:92:af:53:7c:49:c0: 72:bc:75:6c:a1:bb:9d:61:d5:1b:36:5a:38:2b:47: 40:18:6e:6b:f1:87:14:bf:05:04:4b:18:35:99:70: 6d:b8:60:83:37:97:db:d7:c2:ac:81:55:2e:31:a1: e8:af:a7:3e:da:b4:6d:41:e4:87:cb:bd:89:59:1e: ab:57:b5:82:9a:ac:93:5b:b0:2a:c4:31:43:2c:d2: 7d:98:68:97:48:1c:d9:58:9f:b0:17:57:b8:bd:67: 3c:6d:a5:43:46:53:f8:d8:f0:7a:ec:ff:b5:e2:ec: 54:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D2:95:42:66:FD:E7:20:E4:E7:06:79:4A:7C:A7:43:A1:8D:B7:6A X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:222::/48 Signature Algorithm: sha256WithRSAEncryption 3d:a0:e9:32:e2:44:8f:7d:11:32:9f:c4:e5:c2:6c:7a:d1:89: 67:5b:fc:98:bf:d7:f2:03:5e:b6:03:cb:28:0c:e8:69:98:3f: c5:2b:4d:b7:d4:60:b9:f9:d0:80:47:51:0f:69:46:37:c2:bc: ab:1a:a6:d6:07:8f:f5:bb:a7:6f:e3:4f:4c:4c:ab:d5:28:d0: b2:75:1c:0f:87:4f:1e:1f:62:c5:8c:5c:03:a3:e5:fa:e9:ae: 7e:32:7c:61:f0:ef:91:6d:0e:6b:4a:61:fd:7f:98:f0:66:9d: b9:ad:dc:22:47:c9:50:39:8a:02:0e:95:c2:9b:08:0a:53:07: 12:d4:62:d8:8f:12:d6:b3:a4:4d:db:01:a0:2f:64:d3:1b:22: ef:f4:fe:92:43:8b:28:bd:e6:b1:99:0e:9d:e7:30:b3:71:49: 54:eb:d6:7f:c1:07:cd:2a:e2:3d:75:60:de:7c:83:5f:9a:22: 94:e7:ed:60:d6:8a:06:97:f3:9d:3b:aa:6c:6d:5f:17:0c:ba: 1c:e2:56:13:ee:4f:0f:d7:e0:46:bb:39:35:2a:37:28:87:48: 7f:54:45:3b:a1:27:d0:7f:85:ad:40:d8:73:12:4c:fc:b3:c7: bc:a4:ae:e5:b2:dc:6c:e7:d1:d0:e5:0d:67:c8:a5:c2:83:f0: 9e:55:74:9d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBOGMAYabhOXt1wTmlhTFgkGh7XkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA4MDUwNDAxMzdaFw0yNTA4MDQwNDA2MzdaMDMxMTAvBgNV BAMTKDk2RDI5NTQyNjZGREU3MjBFNEU3MDY3OTRBN0NBNzQzQTE4REI3NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7YyD6XhKjEpVP3196nPXIkdym akzjw9+0iZLL2jBfg1ldWjhcCoSvi8CIB7rTMi8YZPU8u6uJYwzSdDm2blorCGj6 MojHQgMQF4hv3bCaaX96mxLhvaP5Eq7CMKshYOmNRb9y/2gIe8e54NW2hANlSt+d ZgROVuozfwsjSSAAIJTYBmZ2c+5T/Uo0d8RccJKvU3xJwHK8dWyhu51h1Rs2Wjgr R0AYbmvxhxS/BQRLGDWZcG24YIM3l9vXwqyBVS4xoeivpz7atG1B5IfLvYlZHqtX tYKarJNbsCrEMUMs0n2YaJdIHNlYn7AXV7i9ZzxtpUNGU/jY8Hrs/7Xi7FTFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUltKVQmb95yDk5wZ5SnynQ6GNt2owHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQA9oOky4kSPfREyn8Tlwmx60YlnW/yYv9fy A162A8soDOhpmD/FK0231GC5+dCAR1EPaUY3wryrGqbWB4/1u6dv409MTKvVKNCy dRwPh08eH2LFjFwDo+X66a5+Mnxh8O+RbQ5rSmH9f5jwZp25rdwiR8lQOYoCDpXC mwgKUwcS1GLYjxLWs6RN2wGgL2TTGyLv9P6SQ4soveaxmQ6d5zCzcUlU69Z/wQfN KuI9dWDefINfmiKU5+1g1ooGl/OdO6psbV8XDLoc4lYT7k8P1+BGuzk1Kjcoh0h/ VEU7oSfQf4WtQNhzEkz8s8e8pK7lstxs59HQ5Q1nyKXCg/CeVXSd -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org