$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: ClX6YjP1U64O0x9o8QokVLrn1o3v+XEkhwuow1RaaYI= Subject key identifier: D9:9C:0D:BE:A7:3B:47:5A:AF:43:1B:C2:68:CB:B2:8C:6C:C5:5E:78 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 501651402072F39A7397374E9C42C9B802BD0DEE Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa Signing time: Fri 01 Mar 2024 13:00:00 +0000 ROA not before: Fri 01 Mar 2024 12:55:00 +0000 ROA not after: Fri 28 Feb 2025 13:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:55::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 10:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:16:51:40:20:72:f3:9a:73:97:37:4e:9c:42:c9:b8:02:bd:0d:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Mar 1 12:55:00 2024 GMT Not After : Feb 28 13:00:00 2025 GMT Subject: CN=D99C0DBEA73B475AAF431BC268CBB28C6CC55E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:a5:b9:7b:06:d0:3b:4e:a5:7c:89:25:25: dc:73:6c:0f:72:75:41:cf:83:cd:97:9e:6e:4d:bb: 83:54:86:e5:4d:fe:0a:17:b2:97:dd:22:ba:86:7b: 52:51:cd:88:68:fd:48:78:c6:e8:5a:d2:d7:36:b7: 62:7c:7b:82:22:59:b7:11:e3:cf:2f:91:fa:8e:bf: 55:18:f8:d2:17:73:1a:be:20:f8:fb:c8:39:9d:80: 9c:d2:b8:3a:47:1c:e4:cc:3e:34:e6:d1:d9:a9:dd: c4:f5:1d:d0:f4:bb:df:f6:5e:e9:28:c7:81:a7:47: 92:9b:b6:1a:9b:76:dd:b2:3e:13:cc:18:96:6e:22: 05:c7:27:15:1f:0d:f3:8f:57:aa:c8:30:3c:15:a4: b5:37:c8:16:d9:2d:85:bc:0a:83:14:2d:25:b4:05: 78:93:d7:68:ac:78:53:b4:1a:e8:67:4f:58:0b:92: 7c:59:70:f1:09:1a:30:3a:ac:c1:22:5f:1f:64:6d: ab:f8:f1:ac:47:3a:19:c6:1d:75:e2:dd:6a:1c:db: 39:35:6f:b9:7a:f3:9a:91:8d:1b:7a:9a:46:94:82: 1e:38:e6:ef:3c:54:ba:d1:32:02:15:6e:6a:8d:13: be:30:0c:42:7c:cb:ea:ef:b7:b7:d9:1e:70:c8:70: 20:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9C:0D:BE:A7:3B:47:5A:AF:43:1B:C2:68:CB:B2:8C:6C:C5:5E:78 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35353a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:55::/48 Signature Algorithm: sha256WithRSAEncryption c3:a5:83:ad:57:33:d6:71:8f:12:4a:7a:71:94:d7:f6:cb:4f: 34:78:89:46:1f:6c:59:7c:03:5d:dd:e5:58:82:26:4e:6a:63: df:40:46:f0:32:98:40:79:53:2b:e6:d2:fc:08:c0:0f:09:e3: 21:7c:3e:72:6f:45:c4:f0:94:a3:69:5a:4f:81:a3:c0:a0:02: 84:09:13:e5:ab:b1:de:39:34:0b:66:f4:ab:1c:32:5d:12:a9: 3a:96:2e:ae:3e:6c:fa:b8:aa:a8:37:81:f5:47:eb:c0:ec:51: c3:84:45:e1:b6:40:4a:bb:0c:74:c8:e3:76:74:4b:3c:f4:62: 5b:d9:4b:fb:47:54:bf:f1:51:70:5e:f3:07:5c:e1:e5:cd:9b: 36:1d:3b:76:5d:ea:3d:9b:c6:02:9a:9a:3f:61:a1:e9:5a:48: 2a:76:41:fd:06:2d:f7:5f:a6:78:87:89:9c:37:48:54:4e:39: bf:0c:04:0d:9f:6d:2f:3b:bc:60:95:ed:01:8b:04:65:f8:f1: 77:be:7f:9f:31:d3:53:15:f5:79:ac:e7:10:3d:fb:51:eb:34: da:1e:4e:3f:74:78:f9:33:b0:da:8a:a7:a0:c6:4b:48:d9:c0: ee:01:3a:43:a7:be:57:c8:c8:04:08:15:d6:ca:03:bb:24:ef: 9f:4f:e1:58 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUUBZRQCBy85pzlzdOnELJuAK9De4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDAzMDExMjU1MDBaFw0yNTAyMjgxMzAwMDBaMDMxMTAvBgNV BAMTKEQ5OUMwREJFQTczQjQ3NUFBRjQzMUJDMjY4Q0JCMjhDNkNDNTVFNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1eaW5ewbQO06lfIklJdxzbA9y dUHPg82Xnm5Nu4NUhuVN/goXspfdIrqGe1JRzYho/Uh4xuha0tc2t2J8e4IiWbcR 488vkfqOv1UY+NIXcxq+IPj7yDmdgJzSuDpHHOTMPjTm0dmp3cT1HdD0u9/2Xuko x4GnR5Kbthqbdt2yPhPMGJZuIgXHJxUfDfOPV6rIMDwVpLU3yBbZLYW8CoMULSW0 BXiT12iseFO0GuhnT1gLknxZcPEJGjA6rMEiXx9kbav48axHOhnGHXXi3Woc2zk1 b7l685qRjRt6mkaUgh445u88VLrRMgIVbmqNE74wDEJ8y+rvt7fZHnDIcCDPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2ZwNvqc7R1qvQxvCaMuyjGzFXngwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA VTANBgkqhkiG9w0BAQsFAAOCAQEAw6WDrVcz1nGPEkp6cZTX9stPNHiJRh9sWXwD Xd3lWIImTmpj30BG8DKYQHlTK+bS/AjADwnjIXw+cm9FxPCUo2laT4GjwKAChAkT 5aux3jk0C2b0qxwyXRKpOpYurj5s+riqqDeB9UfrwOxRw4RF4bZASrsMdMjjdnRL PPRiW9lL+0dUv/FRcF7zB1zh5c2bNh07dl3qPZvGApqaP2Gh6VpIKnZB/QYt91+m eIeJnDdIVE45vwwEDZ9tLzu8YJXtAYsEZfjxd75/nzHTUxX1eaznED37Ues02h5O P3R4+TOw2oqnoMZLSNnA7gE6Q6e+V8jIBAgV1soDuyTvn0/hWA== -----END CERTIFICATE-----Generated at Sun May 5 08:37:12 2024 by rpki-client on console-fra.rpki-client.org