$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa File: 323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa (raw, json) Hash identifier: 5CrIhCxkbIkEfEXaUTYMOAIyPQ2xJAnB7+3H6Y4z5MI= Subject key identifier: 4A:90:99:E3:E2:06:34:E5:39:04:F9:F8:E8:2C:98:6F:65:94:D1:DC Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4ECC95EA47FC611215B242D603C4BB6595AC6216 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa Signing time: Sat 18 Nov 2023 19:00:00 +0000 ROA not before: Sat 18 Nov 2023 18:55:00 +0000 ROA not after: Sat 16 Nov 2024 19:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:400::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:cc:95:ea:47:fc:61:12:15:b2:42:d6:03:c4:bb:65:95:ac:62:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Nov 18 18:55:00 2023 GMT Not After : Nov 16 19:00:00 2024 GMT Subject: CN=4A9099E3E20634E53904F9F8E82C986F6594D1DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:05:8c:51:b6:b3:ab:5d:26:9d:c4:66:b0: dc:4d:df:e4:ce:06:5c:44:11:22:bb:64:80:d9:c7: 07:3a:95:fd:da:4f:09:83:16:cc:af:14:2a:4f:e4: 9d:f1:72:f7:8a:e8:e5:93:a6:1b:d9:7b:2c:fa:3d: c7:23:9d:4c:bd:6d:fb:80:59:e8:93:3e:de:a9:9d: d3:da:d6:a5:8f:fe:ee:8b:de:8e:92:60:47:b2:f2: 23:76:79:0c:e7:7b:2e:83:41:c2:06:a9:a8:4e:5d: a6:a5:f2:c0:57:a7:c8:4f:a9:97:b0:7c:3a:58:52: 4d:98:ba:56:38:6c:98:d9:1c:7c:48:72:0c:1a:12: 7f:5a:01:e7:c4:b9:60:b3:e2:1d:f8:5a:b1:e1:1e: fc:96:3c:a3:72:c4:db:96:ec:af:e3:e4:bf:e3:33: ba:22:09:12:dd:81:1f:2a:cd:97:e9:e0:af:21:bd: 62:c9:a2:0f:17:72:30:b4:52:b3:45:f4:96:16:94: ab:ee:92:08:2b:91:4c:fd:6e:20:17:70:f7:f2:19: f7:24:21:22:80:c4:0f:4f:79:09:6a:03:66:39:a5: 64:5b:3f:dc:65:86:84:9a:75:94:d1:19:50:77:6f: 7d:76:1e:26:89:0e:07:be:23:01:ee:99:aa:ca:a5: e4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:90:99:E3:E2:06:34:E5:39:04:F9:F8:E8:2C:98:6F:65:94:D1:DC X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:400::/40 Signature Algorithm: sha256WithRSAEncryption 62:60:50:7f:84:8b:8c:e8:71:87:ce:c3:13:f2:a4:93:7c:03: ee:9e:4a:28:ef:fb:83:53:c9:1b:1c:d9:6e:3d:6d:ca:31:50: ac:8f:d4:c9:d1:f2:f5:88:05:a6:ec:98:db:c7:23:5e:ad:41: f3:b8:fb:67:dc:88:87:ce:81:31:ac:8d:28:c2:8f:b1:b9:6c: 8d:b5:6b:ba:8d:06:bb:b7:d5:9a:d5:d3:22:3f:94:f5:78:c2: 44:02:2e:31:da:81:3a:ba:da:f7:4c:2a:7f:17:fe:44:8b:dc: 59:76:ab:b9:f5:88:30:31:60:c7:db:72:b7:7a:5e:c9:05:04: 17:05:ce:6c:66:b3:31:d7:9b:d0:db:b7:b8:c6:50:38:ef:63: af:b2:df:ad:09:ca:a8:30:6f:82:c8:0b:26:2d:73:d2:78:e6: 85:37:e7:98:ba:65:c7:4b:7f:e1:9f:6c:3e:c0:37:2b:6f:d4: 28:08:ff:e6:00:f1:52:b5:15:d9:62:86:d1:71:2c:a1:20:e6: 78:06:d6:16:ab:10:2f:d5:d8:7b:ed:86:22:79:b1:a5:81:a1: 00:e0:95:da:04:54:9b:25:96:61:11:d4:c9:e7:32:4c:76:04: 6b:93:99:99:4b:cc:ee:7c:1d:9b:2f:7c:d1:2a:f5:6b:f7:f9: 4b:7e:65:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTsyV6kf8YRIVskLWA8S7ZZWsYhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yMzExMTgxODU1MDBaFw0yNDExMTYxOTAwMDBaMDMxMTAvBgNV BAMTKDRBOTA5OUUzRTIwNjM0RTUzOTA0RjlGOEU4MkM5ODZGNjU5NEQxREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC9QWMUbazq10mncRmsNxN3+TO BlxEESK7ZIDZxwc6lf3aTwmDFsyvFCpP5J3xcveK6OWTphvZeyz6PccjnUy9bfuA WeiTPt6pndPa1qWP/u6L3o6SYEey8iN2eQzney6DQcIGqahOXaal8sBXp8hPqZew fDpYUk2YulY4bJjZHHxIcgwaEn9aAefEuWCz4h34WrHhHvyWPKNyxNuW7K/j5L/j M7oiCRLdgR8qzZfp4K8hvWLJog8XcjC0UrNF9JYWlKvukggrkUz9biAXcPfyGfck ISKAxA9PeQlqA2Y5pWRbP9xlhoSadZTRGVB3b312HiaJDge+IwHumarKpeTzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSpCZ4+IGNOU5BPn46CyYb2WU0dwwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzQzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAWq wAQwDQYJKoZIhvcNAQELBQADggEBAGJgUH+Ei4zocYfOwxPypJN8A+6eSijv+4NT yRsc2W49bcoxUKyP1MnR8vWIBabsmNvHI16tQfO4+2fciIfOgTGsjSjCj7G5bI21 a7qNBru31ZrV0yI/lPV4wkQCLjHagTq62vdMKn8X/kSL3Fl2q7n1iDAxYMfbcrd6 XskFBBcFzmxmszHXm9Dbt7jGUDjvY6+y360Jyqgwb4LICyYtc9J45oU355i6ZcdL f+GfbD7ANytv1CgI/+YA8VK1FdlihtFxLKEg5ngG1harEC/V2HvthiJ5saWBoQDg ldoEVJsllmER1MnnMkx2BGuTmZlLzO58HZsvfNEq9Wv3+Ut+Zcc= -----END CERTIFICATE-----Generated at Sun May 5 08:37:12 2024 by rpki-client on console-fra.rpki-client.org