$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: LWmX8VJBo79sp16mdPKaXRXV6xMs7AWHG724RPLxSoc= Subject key identifier: AF:4B:C8:55:97:DA:27:34:81:E3:B2:BF:EE:E7:B0:33:61:90:CC:BB Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 661327A8C6B0A1EF83091FA38F373BEDE56BC886 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa Signing time: Sat 19 Oct 2024 21:00:00 +0000 ROA not before: Sat 19 Oct 2024 20:55:00 +0000 ROA not after: Sat 18 Oct 2025 21:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:13:27:a8:c6:b0:a1:ef:83:09:1f:a3:8f:37:3b:ed:e5:6b:c8:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Oct 19 20:55:00 2024 GMT Not After : Oct 18 21:00:00 2025 GMT Subject: CN=AF4BC85597DA273481E3B2BFEEE7B0336190CCBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:11:ce:cb:20:b3:80:2f:34:ce:a9:33:e2:b9: 04:77:3c:cf:59:12:0a:b6:e7:d1:37:e1:a9:a1:ba: 1f:e4:87:f9:a5:b9:4a:77:ab:63:14:27:90:35:49: b7:46:bb:7a:ff:63:ac:79:57:25:57:ef:d6:53:e0: 96:aa:4c:85:45:0e:bc:53:4f:f7:a2:31:06:39:12: e2:e9:4c:a8:6a:1d:4c:55:e5:fa:cd:c3:e6:85:e4: 4f:62:8e:13:83:7b:7b:ad:51:8c:9d:05:06:83:bb: bc:72:9f:8c:5e:3d:6c:be:14:2c:11:d3:b1:79:53: b1:97:c5:22:12:c0:dc:54:7f:f6:3f:71:16:f5:23: c7:f0:1d:32:f4:90:a8:c9:42:46:7e:d6:a9:29:b6: fa:15:42:df:d8:4e:46:37:45:5d:82:3c:06:93:b7: 74:e1:04:b5:a1:8b:98:c1:01:6a:63:6f:47:74:2e: a6:dd:ae:aa:3a:33:e6:04:91:da:cb:dd:73:e7:c8: ab:35:f8:eb:b4:82:80:1b:00:aa:50:86:e2:7d:f6: 06:32:8f:71:31:4d:77:94:0e:2a:61:55:40:ec:c7: d7:dc:8f:cc:66:89:fa:13:2c:d6:20:79:0b:ca:e5: 0a:dc:91:a9:23:0c:e5:00:f0:85:67:68:ec:c2:fa: bb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:4B:C8:55:97:DA:27:34:81:E3:B2:BF:EE:E7:B0:33:61:90:CC:BB X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a383a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:8::/48 Signature Algorithm: sha256WithRSAEncryption aa:3f:f9:a3:3c:c7:7d:9c:de:71:b0:e4:e9:9e:cc:10:00:19: 83:3e:7a:47:84:48:b4:e5:bf:1b:3d:45:4c:97:72:29:6e:ac: fc:ee:7f:d8:7f:8d:74:81:9e:50:2f:ae:6b:5b:d7:82:20:e6: 3f:a4:f7:94:28:2e:37:72:b0:50:08:00:01:86:31:e4:75:8e: 58:45:a0:67:ef:03:2e:e2:7a:7f:46:5e:7f:7d:5f:4d:bd:d6: ad:b8:c0:cd:6a:66:7a:6b:32:1f:dd:3f:92:e8:cf:d0:70:60: c2:e4:1f:48:2f:82:9e:73:9f:70:a9:97:df:f7:0b:f6:35:78: 24:e7:a2:cc:db:17:62:7a:1c:ff:8c:5a:d9:27:b1:5f:a9:58: e9:00:30:da:f3:20:96:a4:16:87:0c:13:4d:09:3c:8e:4c:b8: c0:bc:97:26:46:d9:e9:8b:4d:fa:50:a3:ea:75:d7:b4:67:1b: 09:fe:d9:a6:35:07:c9:a8:7d:62:7c:c1:97:d9:8c:f6:ba:d1: af:47:58:31:ce:05:ee:c2:4a:14:4e:b4:01:42:59:a0:49:5d: a2:06:6d:f2:72:27:c3:3d:14:67:a8:3b:b9:df:ef:8c:2b:fe: 85:20:b3:11:fb:88:af:e5:44:67:e4:8d:6f:30:7b:cb:47:89: 6e:b2:a8:77 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZhMnqMawoe+DCR+jjzc77eVryIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDEwMTkyMDU1MDBaFw0yNTEwMTgyMTAwMDBaMDMxMTAvBgNV BAMTKEFGNEJDODU1OTdEQTI3MzQ4MUUzQjJCRkVFRTdCMDMzNjE5MENDQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeEc7LILOALzTOqTPiuQR3PM9Z Egq259E34amhuh/kh/mluUp3q2MUJ5A1SbdGu3r/Y6x5VyVX79ZT4JaqTIVFDrxT T/eiMQY5EuLpTKhqHUxV5frNw+aF5E9ijhODe3utUYydBQaDu7xyn4xePWy+FCwR 07F5U7GXxSISwNxUf/Y/cRb1I8fwHTL0kKjJQkZ+1qkptvoVQt/YTkY3RV2CPAaT t3ThBLWhi5jBAWpjb0d0Lqbdrqo6M+YEkdrL3XPnyKs1+Ou0goAbAKpQhuJ99gYy j3ExTXeUDiphVUDsx9fcj8xmifoTLNYgeQvK5QrckakjDOUA8IVnaOzC+ru3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUr0vIVZfaJzSB47K/7uewM2GQzLswHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBarAAAgw DQYJKoZIhvcNAQELBQADggEBAKo/+aM8x32c3nGw5OmezBAAGYM+ekeESLTlvxs9 RUyXcilurPzuf9h/jXSBnlAvrmtb14Ig5j+k95QoLjdysFAIAAGGMeR1jlhFoGfv Ay7ien9GXn99X0291q24wM1qZnprMh/dP5Loz9BwYMLkH0gvgp5zn3Cpl9/3C/Y1 eCTnoszbF2J6HP+MWtknsV+pWOkAMNrzIJakFocME00JPI5MuMC8lyZG2emLTfpQ o+p117RnGwn+2aY1B8mofWJ8wZfZjPa60a9HWDHOBe7CShROtAFCWaBJXaIGbfJy J8M9FGeoO7nf74wr/oUgsxH7iK/lRGfkjW8we8tHiW6yqHc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org