$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa File: 323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa (raw, json) Hash identifier: EdYd7IGuHyCu/cThwtshNLf7zxuRmElBhySIxR+qG6g= Subject key identifier: B8:56:75:DB:DC:54:A2:1C:D8:AA:25:37:1E:7E:6F:85:6E:93:B6:BC Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 0B31E2CA409D01DABD9DFBD8CCD106FBEC5CA296 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa Signing time: Sat 19 Oct 2024 20:00:00 +0000 ROA not before: Sat 19 Oct 2024 19:55:00 +0000 ROA not after: Sat 18 Oct 2025 20:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:400::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:31:e2:ca:40:9d:01:da:bd:9d:fb:d8:cc:d1:06:fb:ec:5c:a2:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Oct 19 19:55:00 2024 GMT Not After : Oct 18 20:00:00 2025 GMT Subject: CN=B85675DBDC54A21CD8AA25371E7E6F856E93B6BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b5:bf:24:75:c6:fa:2b:74:0a:0e:7c:d9:49: 13:dd:3b:f5:4f:3a:03:28:83:12:0a:35:cc:60:7c: 48:15:0a:54:61:aa:a4:9c:15:32:a8:1c:5d:ad:88: 0b:01:5a:d4:0e:f6:b6:e6:28:f4:71:6b:8d:06:7f: bd:39:56:8a:40:58:e4:9a:e4:3f:ed:e1:3f:d8:2c: 0a:d5:47:c8:c6:7b:ba:1f:3a:d2:03:6d:94:20:7d: a7:e8:91:1a:6a:ab:a8:91:eb:31:5d:db:dc:f2:7e: e5:8e:d0:61:e9:4b:25:a0:09:22:4c:ef:bc:c0:6c: 1e:1e:c3:2c:c2:b1:1e:7f:9f:b4:81:6b:d1:5d:ea: 06:a1:6a:d2:32:5a:78:fd:26:3e:9c:1d:00:dc:49: b6:ea:58:c5:e1:cd:b9:ba:3b:d7:83:6f:e6:b7:5f: e2:f8:58:34:52:b7:58:12:14:01:f5:84:16:7e:9e: c9:60:6c:c2:1a:e8:71:8c:5a:5c:c7:89:ee:4f:21: e7:6e:e6:ed:a1:b8:c4:48:76:1e:78:a1:c8:57:3f: 62:6f:cc:c0:95:4d:be:0b:c1:57:15:b6:25:c9:17: 6e:33:42:c6:49:52:0e:47:ef:35:bd:8c:a3:9d:fb: a4:5e:39:08:57:68:66:05:2c:7f:e2:b1:6f:81:a7: 61:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:56:75:DB:DC:54:A2:1C:D8:AA:25:37:1E:7E:6F:85:6E:93:B6:BC X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3430303a3a2f34302d3430203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:400::/40 Signature Algorithm: sha256WithRSAEncryption ed:72:77:58:8b:b0:13:09:18:21:76:43:89:37:85:64:d8:9b: 14:b0:c2:90:ab:a6:30:e1:37:31:72:9a:9c:ca:45:3c:95:88: c2:9d:d0:fb:2f:30:3a:1a:08:37:7a:bc:4e:9f:b8:a4:d4:9d: 4d:32:6d:17:d2:44:b3:94:86:2c:32:f5:31:ee:43:96:aa:e6: 33:96:b5:21:e4:9e:35:d1:b4:fb:01:c2:e7:2c:d3:7b:a1:32: 95:26:7c:4d:e0:c7:94:d9:7b:f1:a7:bd:5a:46:99:af:91:c8: 67:dd:5c:d1:35:bb:ef:27:59:ba:a4:7d:c8:50:c6:ea:31:05: 15:35:0c:24:1a:52:b3:99:be:06:6a:d5:63:e4:f7:79:a3:52: 63:de:34:a6:30:b7:7f:4d:3b:ba:28:e5:ca:28:fd:fd:b3:3b: a9:0d:a4:14:db:8c:c7:a1:b8:6e:ba:ea:42:94:60:b0:ff:a8: 94:89:7b:31:84:92:a6:44:36:34:c1:34:9a:14:e8:c6:da:5a: e3:f6:b0:a5:a7:bc:e5:05:a1:be:f5:f4:5e:15:a2:66:bd:54: 08:df:8b:8d:fb:7f:7c:8c:31:c5:84:c5:08:e4:51:95:f4:59: 6d:a2:4c:09:63:f0:67:0d:37:24:72:e0:0a:2c:38:44:1d:a2: 26:7f:d1:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzHiykCdAdq9nfvYzNEG++xcopYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDEwMTkxOTU1MDBaFw0yNTEwMTgyMDAwMDBaMDMxMTAvBgNV BAMTKEI4NTY3NURCREM1NEEyMUNEOEFBMjUzNzFFN0U2Rjg1NkU5M0I2QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXtb8kdcb6K3QKDnzZSRPdO/VP OgMogxIKNcxgfEgVClRhqqScFTKoHF2tiAsBWtQO9rbmKPRxa40Gf705VopAWOSa 5D/t4T/YLArVR8jGe7ofOtIDbZQgfafokRpqq6iR6zFd29zyfuWO0GHpSyWgCSJM 77zAbB4ewyzCsR5/n7SBa9Fd6gahatIyWnj9Jj6cHQDcSbbqWMXhzbm6O9eDb+a3 X+L4WDRSt1gSFAH1hBZ+nslgbMIa6HGMWlzHie5PIedu5u2huMRIdh54ochXP2Jv zMCVTb4LwVcVtiXJF24zQsZJUg5H7zW9jKOd+6ReOQhXaGYFLH/isW+Bp2FZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuFZ129xUohzYqiU3Hn5vhW6TtrwwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzQzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAWq wAQwDQYJKoZIhvcNAQELBQADggEBAO1yd1iLsBMJGCF2Q4k3hWTYmxSwwpCrpjDh NzFympzKRTyViMKd0PsvMDoaCDd6vE6fuKTUnU0ybRfSRLOUhiwy9THuQ5aq5jOW tSHknjXRtPsBwucs03uhMpUmfE3gx5TZe/GnvVpGma+RyGfdXNE1u+8nWbqkfchQ xuoxBRU1DCQaUrOZvgZq1WPk93mjUmPeNKYwt39NO7oo5coo/f2zO6kNpBTbjMeh uG666kKUYLD/qJSJezGEkqZENjTBNJoU6MbaWuP2sKWnvOUFob719F4Voma9VAjf i437f3yMMcWExQjkUZX0WW2iTAlj8GcNNyRy4AosOEQdoiZ/0Vs= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org