$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: dfMyY1+apmjDSv4RT94o2bI5n2Rl6/A6pyJmAiEHNu0= Subject key identifier: 4B:83:C4:24:F6:9D:1B:BA:B3:EF:C4:A7:53:B1:ED:90:87:8D:0E:83 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 0480CD3DF2B41D020536EB296477155EF204F46D Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa Signing time: Thu 06 Jun 2024 05:00:00 +0000 ROA not before: Thu 06 Jun 2024 04:55:00 +0000 ROA not after: Thu 05 Jun 2025 05:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:80:cd:3d:f2:b4:1d:02:05:36:eb:29:64:77:15:5e:f2:04:f4:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jun 6 04:55:00 2024 GMT Not After : Jun 5 05:00:00 2025 GMT Subject: CN=4B83C424F69D1BBAB3EFC4A753B1ED90878D0E83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:09:8d:8b:a2:7f:67:df:28:27:fb:c0:cc: d6:42:da:ab:61:ce:cc:19:de:e1:73:81:b1:28:4e: 10:7c:5d:30:1b:31:4c:6c:b9:2c:07:3a:a8:01:0d: 00:8c:ba:ad:03:e1:27:f5:fd:80:10:78:e6:8f:64: b6:14:5e:e1:91:aa:cf:e3:ea:f8:1f:6f:b6:e3:7a: c1:f2:97:b3:a5:f0:50:e0:45:a2:72:fd:70:bc:bf: 20:04:92:d1:3a:f7:db:10:b0:92:36:1d:f4:f1:d6: 64:b4:04:ad:0d:bc:7b:5f:23:0f:aa:d0:3c:52:c3: 05:a8:60:80:fc:b0:1a:ce:ae:40:57:61:2a:63:e9: 31:1f:2e:30:d7:1a:e8:c1:b2:72:db:b3:52:35:2e: 3f:29:66:6d:93:c3:3a:ac:f1:5b:e4:71:dc:0d:96: d9:e4:5f:8d:f1:75:1f:20:76:4c:9a:03:73:8b:96: 48:8e:c9:14:d6:32:61:6b:e9:45:5f:51:e2:0a:9b: 82:ae:e7:3a:8a:3a:b6:1e:3a:a3:bb:e9:49:7b:a3: 52:a1:87:72:61:18:04:3b:3b:42:e4:4f:6b:d6:9a: 66:b1:9a:07:0e:dd:99:9a:bd:19:29:98:7c:cc:5a: fb:08:28:6e:03:d4:a4:99:dd:cb:bf:cb:b7:cd:71: 94:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:83:C4:24:F6:9D:1B:BA:B3:EF:C4:A7:53:B1:ED:90:87:8D:0E:83 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:6::/48 Signature Algorithm: sha256WithRSAEncryption b1:6a:dd:9b:e6:d4:0b:92:5f:2c:5d:09:b6:e8:bb:71:7b:5e: f4:9f:27:a8:49:a9:c2:c6:44:ff:8d:09:20:0b:ae:a6:fc:ba: c0:60:b6:63:54:b6:2f:f5:9d:45:42:58:fc:81:08:55:0e:b2: 0c:ce:b2:3b:87:ff:dd:03:6a:cc:2d:5a:a5:ee:ba:71:69:2f: fe:bf:be:7b:3c:e2:7c:75:98:b4:79:08:a0:e2:bc:3e:9f:dc: 98:ba:c0:d3:34:7a:b2:82:ef:42:eb:71:45:f6:35:cc:b2:91: 81:0e:fe:2d:c8:c4:34:cf:68:f1:a6:30:65:f6:df:99:a9:25: 60:70:d5:be:ea:c2:38:73:bd:dc:fe:9a:4d:68:73:36:f7:dd: dd:ef:f8:05:85:37:d3:d2:ae:29:2b:a6:e4:6b:ce:e7:7b:5a: 09:a4:f4:fa:f9:ca:0d:83:7b:d2:80:61:b3:5f:75:4a:06:7c: 1a:87:28:e7:59:31:94:3f:23:52:3a:b2:2e:86:2a:07:46:23: f0:29:a0:71:98:54:c4:78:b7:30:6b:96:00:1e:c2:cb:d6:15: 7e:1a:1b:57:78:ea:1c:67:48:29:02:4f:7c:df:9a:f2:a0:45: b3:b2:20:67:d5:cd:fa:67:f4:99:cc:18:9c:49:5b:86:3b:2a: 73:8d:06:fd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBIDNPfK0HQIFNuspZHcVXvIE9G0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA2MDYwNDU1MDBaFw0yNTA2MDUwNTAwMDBaMDMxMTAvBgNV BAMTKDRCODNDNDI0RjY5RDFCQkFCM0VGQzRBNzUzQjFFRDkwODc4RDBFODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR5AmNi6J/Z98oJ/vAzNZC2qth zswZ3uFzgbEoThB8XTAbMUxsuSwHOqgBDQCMuq0D4Sf1/YAQeOaPZLYUXuGRqs/j 6vgfb7bjesHyl7Ol8FDgRaJy/XC8vyAEktE699sQsJI2HfTx1mS0BK0NvHtfIw+q 0DxSwwWoYID8sBrOrkBXYSpj6TEfLjDXGujBsnLbs1I1Lj8pZm2Twzqs8VvkcdwN ltnkX43xdR8gdkyaA3OLlkiOyRTWMmFr6UVfUeIKm4Ku5zqKOrYeOqO76Ul7o1Kh h3JhGAQ7O0LkT2vWmmaxmgcO3ZmavRkpmHzMWvsIKG4D1KSZ3cu/y7fNcZS1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUS4PEJPadG7qz78SnU7HtkIeNDoMwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBarAAAYw DQYJKoZIhvcNAQELBQADggEBALFq3Zvm1AuSXyxdCbbou3F7XvSfJ6hJqcLGRP+N CSALrqb8usBgtmNUti/1nUVCWPyBCFUOsgzOsjuH/90DaswtWqXuunFpL/6/vns8 4nx1mLR5CKDivD6f3Ji6wNM0erKC70LrcUX2NcyykYEO/i3IxDTPaPGmMGX235mp JWBw1b7qwjhzvdz+mk1oczb33d3v+AWFN9PSrikrpuRrzud7Wgmk9Pr5yg2De9KA YbNfdUoGfBqHKOdZMZQ/I1I6si6GKgdGI/ApoHGYVMR4tzBrlgAewsvWFX4aG1d4 6hxnSCkCT3zfmvKgRbOyIGfVzfpn9JnMGJxJW4Y7KnONBv0= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org