$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: 020qXb6fxBPPQD9oydTx8URwcN7iFSS5uXlTmQveyfY= Subject key identifier: DB:AE:B5:B4:6F:73:0C:4C:5F:DA:46:80:0B:B2:87:63:87:E1:2A:FD Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 5B1BEE42ED297CDDF22C465B10F88A41D9AAD686 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 01 Jul 2024 01:02:52 +0000 ROA not before: Mon 01 Jul 2024 00:57:52 +0000 ROA not after: Mon 30 Jun 2025 01:02:52 +0000 asID: 139949 IP address blocks: 2405:aac0:53::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1b:ee:42:ed:29:7c:dd:f2:2c:46:5b:10:f8:8a:41:d9:aa:d6:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 1 00:57:52 2024 GMT Not After : Jun 30 01:02:52 2025 GMT Subject: CN=DBAEB5B46F730C4C5FDA46800BB2876387E12AFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ed:7e:ad:1a:93:7f:59:f3:8e:6f:cd:59:c2: 75:cb:ca:3d:47:6e:85:a9:fd:8f:de:e3:0f:8d:6c: 2a:e8:5e:43:13:af:3e:bc:9e:45:6a:a2:64:cf:d9: 5a:f8:91:74:aa:eb:f7:6c:95:24:b3:d7:45:2a:ef: 3d:61:a7:0e:ea:7b:cb:7f:cb:f3:8a:1a:ff:66:ea: 8b:bc:c6:65:22:7e:a7:5d:f7:2e:5f:16:03:ab:02: fe:8d:f4:4d:70:98:1d:7b:08:b2:02:b2:b5:fb:fc: a9:ef:dd:42:f7:59:1d:23:42:c8:00:3b:10:dd:4c: 8a:72:8b:80:6a:6b:7d:db:8c:67:65:ac:af:bc:c1: cd:af:07:dc:ad:c3:1f:26:73:a3:8b:b5:c0:5d:92: 63:8b:05:6c:7b:64:a3:9e:4b:e0:5a:8f:1d:0b:91: a0:6c:f4:40:18:45:ca:d5:f7:99:f7:d6:11:f4:e0: 24:be:b3:36:94:a6:69:cc:00:87:44:8d:2f:1e:25: 66:2d:82:08:98:31:19:6e:d1:f5:0c:c2:77:9c:bd: ab:71:fb:43:c4:25:40:30:ac:57:84:2b:67:dc:6a: 4f:7e:2f:ee:08:f3:b3:08:43:c5:55:25:f9:4c:21: d1:0e:93:6b:c0:a9:d4:83:b1:10:53:17:86:1f:c1: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:AE:B5:B4:6F:73:0C:4C:5F:DA:46:80:0B:B2:87:63:87:E1:2A:FD X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:53::/48 Signature Algorithm: sha256WithRSAEncryption 94:c4:ad:78:b0:3c:08:4f:7b:99:eb:b8:ff:30:c6:f0:34:24: 1f:25:53:57:1f:a7:f3:7f:67:ac:51:1d:cd:ea:d1:63:c9:79: 5d:d4:50:8e:5e:86:7e:f1:6a:01:09:af:d8:43:ad:16:e0:2b: ef:e3:53:b2:14:91:1f:31:4f:0f:be:29:92:fd:46:a1:b2:6e: 4a:57:8d:c2:99:ba:d9:fe:1e:dc:34:a9:f2:2c:99:1f:4c:ba: b4:05:fa:00:6b:22:3d:c7:ef:b8:ed:2b:d3:7b:be:74:a4:1b: d9:cd:c2:cb:d8:2f:b4:89:4e:cb:53:e3:69:f5:2a:ba:e5:84: 22:83:46:04:e5:10:d5:d8:ed:e7:95:b8:c9:eb:90:f9:b3:37: b3:36:c5:26:91:54:9c:cc:39:73:13:a0:d2:ae:dd:bb:ee:6f: ff:ef:bc:96:2b:c8:9b:ad:30:02:3a:8f:da:c0:61:6c:22:89: a0:30:b2:f6:fa:68:00:0b:43:9a:99:e8:94:73:3d:42:79:ec: 95:f4:7d:71:bb:4f:b8:eb:16:88:1f:9a:02:84:dc:91:a9:b7: c6:2b:ec:ec:c0:c6:ef:7d:04:7f:9c:da:6b:44:c1:7d:4d:c4: 0e:e0:2f:54:06:dc:90:2d:d1:c9:de:ff:7e:d9:1e:41:d4:51: e0:d4:c2:b7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWxvuQu0pfN3yLEZbEPiKQdmq1oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA3MDEwMDU3NTJaFw0yNTA2MzAwMTAyNTJaMDMxMTAvBgNV BAMTKERCQUVCNUI0NkY3MzBDNEM1RkRBNDY4MDBCQjI4NzYzODdFMTJBRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz7X6tGpN/WfOOb81ZwnXLyj1H boWp/Y/e4w+NbCroXkMTrz68nkVqomTP2Vr4kXSq6/dslSSz10Uq7z1hpw7qe8t/ y/OKGv9m6ou8xmUifqdd9y5fFgOrAv6N9E1wmB17CLICsrX7/Knv3UL3WR0jQsgA OxDdTIpyi4Bqa33bjGdlrK+8wc2vB9ytwx8mc6OLtcBdkmOLBWx7ZKOeS+Bajx0L kaBs9EAYRcrV95n31hH04CS+szaUpmnMAIdEjS8eJWYtggiYMRlu0fUMwnecvatx +0PEJUAwrFeEK2fcak9+L+4I87MIQ8VVJflMIdEOk2vAqdSDsRBTF4YfwS9nAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2661tG9zDExf2kaAC7KHY4fhKv0wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA UzANBgkqhkiG9w0BAQsFAAOCAQEAlMSteLA8CE97meu4/zDG8DQkHyVTVx+n839n rFEdzerRY8l5XdRQjl6GfvFqAQmv2EOtFuAr7+NTshSRHzFPD74pkv1GobJuSleN wpm62f4e3DSp8iyZH0y6tAX6AGsiPcfvuO0r03u+dKQb2c3Cy9gvtIlOy1PjafUq uuWEIoNGBOUQ1djt55W4yeuQ+bM3szbFJpFUnMw5cxOg0q7du+5v/++8livIm60w AjqP2sBhbCKJoDCy9vpoAAtDmpnolHM9QnnslfR9cbtPuOsWiB+aAoTckam3xivs 7MDG730Ef5zaa0TBfU3EDuAvVAbckC3Ryd7/ftkeQdRR4NTCtw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org