$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: w9qb3Np2jEp+gLtY5Ht7czjk8Xqwgx5y2Ho1C1qiHWo= Subject key identifier: FE:C6:F5:52:2B:7A:49:4D:D0:0D:FA:1E:97:5A:F5:F5:FB:11:46:32 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4BEF1B4B6F1487BEDC3A530FDE57906B518BCB46 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 01 Jul 2024 01:02:52 +0000 ROA not before: Mon 01 Jul 2024 00:57:52 +0000 ROA not after: Mon 30 Jun 2025 01:02:52 +0000 asID: 139949 IP address blocks: 2405:aac0:52::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ef:1b:4b:6f:14:87:be:dc:3a:53:0f:de:57:90:6b:51:8b:cb:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 1 00:57:52 2024 GMT Not After : Jun 30 01:02:52 2025 GMT Subject: CN=FEC6F5522B7A494DD00DFA1E975AF5F5FB114632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:05:01:0f:4c:2c:77:14:ed:34:51:f5:b0: de:87:84:f7:47:04:0d:fe:c0:c2:02:27:f3:8a:39: d9:32:8e:85:e8:d5:77:dc:69:23:f0:ef:f4:3f:8f: 33:f4:8c:b2:fa:80:e9:84:fa:88:97:72:ea:91:93: ef:53:cd:f8:c2:fd:13:6c:20:01:7f:79:f8:fb:4b: 2d:4d:c4:e7:68:bb:26:32:ab:4d:08:0d:05:46:11: 1d:ec:4d:ba:26:3b:6c:39:db:70:7d:12:f4:ec:d5: 1d:97:ed:de:b4:c7:7d:72:da:0b:c9:07:e8:17:54: e6:ce:16:eb:ee:96:d9:8f:c1:51:82:77:e4:61:32: ae:ee:40:38:d4:3d:4f:b2:da:7d:0d:19:a1:1b:b1: b0:69:d0:86:c8:d3:11:e9:6a:12:2d:e9:86:4f:f2: ac:0d:eb:ea:cd:e5:64:b5:ae:2a:47:21:65:b1:8c: 61:bd:4a:bd:96:ed:0d:43:82:af:16:4e:70:fe:10: 95:f7:89:8c:24:b9:b2:92:f0:52:89:cc:d0:96:2b: d5:5c:e9:18:60:5b:80:1e:19:4b:f3:94:c7:c0:df: 8f:51:d7:f2:f4:9b:d5:00:78:8f:40:ae:ee:ad:bd: c6:3e:30:b9:8a:a5:70:18:40:d9:f7:c4:af:f0:9b: 16:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C6:F5:52:2B:7A:49:4D:D0:0D:FA:1E:97:5A:F5:F5:FB:11:46:32 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:52::/48 Signature Algorithm: sha256WithRSAEncryption 8d:e3:4c:19:b1:a8:b5:0f:5a:0e:3e:21:b4:bb:fc:bb:93:0a: a4:bf:95:8f:30:e2:1c:b3:a4:65:f4:aa:fb:e9:6e:b6:6b:0d: 18:55:f7:4e:2e:9b:50:f6:b2:09:76:92:29:60:19:76:fa:c9: a9:03:e8:d9:fb:85:c6:da:5f:e0:4f:d0:70:cd:72:b1:a5:84: 3f:c1:72:0b:9d:6a:99:6f:a5:bf:c2:4d:41:8c:2c:c8:37:88: 81:dd:37:41:2d:fd:46:97:d2:2b:10:49:42:f7:09:c4:da:0f: 80:43:77:7f:8a:b2:f3:08:03:c7:98:ad:65:78:dc:c4:9a:00: 83:7c:aa:0a:01:25:21:4e:c1:20:e5:6d:85:c5:72:cc:0e:d1: 1b:79:d5:ea:10:93:48:a4:c2:b2:82:93:63:c1:db:3e:32:e9: b9:b3:ec:e5:66:29:ea:2d:98:cf:bb:cb:0d:60:95:f5:9f:07: f7:20:fa:73:3c:57:6b:0f:43:e0:94:b2:82:17:0b:6a:c9:d0: 3b:8c:c8:eb:c2:6f:20:74:0d:19:8b:6c:ec:65:24:9a:4e:2f: 3e:de:d8:17:9a:3c:f1:b3:32:69:9e:b0:93:24:92:ca:9a:24: 19:1a:cb:2f:16:86:80:86:4d:45:a3:90:93:b2:ee:f5:dc:a3: 84:f0:1e:36 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUS+8bS28Uh77cOlMP3leQa1GLy0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA3MDEwMDU3NTJaFw0yNTA2MzAwMTAyNTJaMDMxMTAvBgNV BAMTKEZFQzZGNTUyMkI3QTQ5NEREMDBERkExRTk3NUFGNUY1RkIxMTQ2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+HAUBD0wsdxTtNFH1sN6HhPdH BA3+wMICJ/OKOdkyjoXo1XfcaSPw7/Q/jzP0jLL6gOmE+oiXcuqRk+9TzfjC/RNs IAF/efj7Sy1NxOdouyYyq00IDQVGER3sTbomO2w523B9EvTs1R2X7d60x31y2gvJ B+gXVObOFuvultmPwVGCd+RhMq7uQDjUPU+y2n0NGaEbsbBp0IbI0xHpahIt6YZP 8qwN6+rN5WS1ripHIWWxjGG9Sr2W7Q1Dgq8WTnD+EJX3iYwkubKS8FKJzNCWK9Vc 6RhgW4AeGUvzlMfA349R1/L0m9UAeI9Aru6tvcY+MLmKpXAYQNn3xK/wmxbPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU/sb1Uit6SU3QDfoel1r19fsRRjIwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA UjANBgkqhkiG9w0BAQsFAAOCAQEAjeNMGbGotQ9aDj4htLv8u5MKpL+VjzDiHLOk ZfSq++lutmsNGFX3Ti6bUPayCXaSKWAZdvrJqQPo2fuFxtpf4E/QcM1ysaWEP8Fy C51qmW+lv8JNQYwsyDeIgd03QS39RpfSKxBJQvcJxNoPgEN3f4qy8wgDx5itZXjc xJoAg3yqCgElIU7BIOVthcVyzA7RG3nV6hCTSKTCsoKTY8HbPjLpubPs5WYp6i2Y z7vLDWCV9Z8H9yD6czxXaw9D4JSyghcLasnQO4zI68JvIHQNGYts7GUkmk4vPt7Y F5o88bMyaZ6wkySSypokGRrLLxaGgIZNRaOQk7Lu9dyjhPAeNg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org