$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a66653a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a66653a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: beL+gm/Z0HEOJLWebvTWM02eae65ZxzPPiShihmuKhI= Subject key identifier: F7:C4:D7:1D:6D:28:AB:14:E9:2D:3A:CB:D2:D8:D0:B6:73:C0:01:1B Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 7D44C11B4DBCBE65198926645AE54A5B8C89AC67 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a66653a3a2f34382d3438203d3e20313339393439.roa Signing time: Tue 22 Oct 2024 12:00:00 +0000 ROA not before: Tue 22 Oct 2024 11:55:00 +0000 ROA not after: Tue 21 Oct 2025 12:00:00 +0000 asID: 139949 IP address blocks: 2405:aac0:fe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:44:c1:1b:4d:bc:be:65:19:89:26:64:5a:e5:4a:5b:8c:89:ac:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Oct 22 11:55:00 2024 GMT Not After : Oct 21 12:00:00 2025 GMT Subject: CN=F7C4D71D6D28AB14E92D3ACBD2D8D0B673C0011B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:39:90:98:77:72:d6:43:a2:f7:14:f0:79:8a: 88:11:5b:1a:29:36:46:fa:5c:02:98:40:6d:6c:ee: c5:ad:47:fd:4d:67:47:00:9e:7c:bd:b9:54:5c:a7: 0c:f6:2e:5f:ff:97:86:1c:70:23:99:57:c4:f5:43: 7d:a3:20:a3:39:0f:29:dc:3c:c6:f6:d4:03:68:f1: 84:1b:91:0a:22:29:f3:55:7d:ab:f2:0f:f5:7a:74: 78:4f:45:54:d5:8c:4d:a7:b9:81:38:01:15:9d:b4: 5b:51:ab:b8:88:5a:98:4f:60:64:cd:46:78:94:7d: e1:9a:08:4b:24:b0:a4:96:2a:7f:6c:fc:cd:98:9d: 99:d8:9b:33:bc:f0:96:49:0b:98:81:2d:73:3f:b4: de:26:f0:33:32:04:09:28:46:2c:dd:17:76:77:a0: ba:d5:18:ac:76:b6:4a:91:b0:26:1e:48:9b:d6:32: fb:99:89:9d:b2:9b:c7:e1:f0:9a:02:82:a9:30:5c: 68:51:fd:36:70:83:0b:67:22:02:1f:73:f0:ee:0f: 3e:7a:03:1e:39:09:95:94:4a:1d:ea:ac:f1:af:19: cc:0a:e3:b7:ea:60:e4:e6:c2:74:94:d7:06:f4:e5: dd:9b:ee:c3:3f:5a:a7:3c:b1:80:c5:18:ed:a5:a3: 03:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C4:D7:1D:6D:28:AB:14:E9:2D:3A:CB:D2:D8:D0:B6:73:C0:01:1B X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a66653a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:fe::/48 Signature Algorithm: sha256WithRSAEncryption e4:a5:5b:e1:03:b3:bd:91:3e:ce:2e:e2:d6:e5:5c:30:fb:05: 31:a1:40:86:58:11:fc:3f:fe:49:89:09:54:58:a8:6a:8b:9f: 18:1e:54:0c:24:b4:56:d1:ed:88:6e:5d:e2:35:48:38:a9:7c: 93:7c:9a:52:52:35:f0:f6:fc:79:24:af:78:11:ce:2f:c9:c0: 2a:d1:12:46:b5:78:4b:0d:8d:b6:ec:08:86:64:72:eb:62:d6: f3:2a:e5:96:d4:ed:88:ac:8b:34:76:02:46:78:62:34:19:ed: 61:53:63:85:26:55:5b:44:f8:76:bf:31:55:32:a9:50:18:c3: ca:f9:62:92:b0:02:22:77:75:99:41:af:3f:e9:76:0f:88:b6: 00:e8:8e:62:66:66:13:75:54:a3:6d:25:5a:9e:38:a0:37:f0: bd:7f:33:da:1a:0c:00:12:f0:48:55:3b:63:49:b5:03:85:ac: 52:d8:a3:19:f3:db:f6:13:83:04:94:6d:0f:03:71:0d:15:ab: ba:91:b8:78:73:5e:ac:c2:2f:ad:37:b5:1e:12:5e:f9:4b:48: b7:39:5f:b5:06:ef:11:e9:d7:8b:11:8e:a0:45:07:7f:88:17: a6:e2:a2:1c:ad:c5:16:37:1d:2b:14:5c:f2:5e:0a:04:9c:30: e6:3f:29:76 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfUTBG028vmUZiSZkWuVKW4yJrGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDEwMjIxMTU1MDBaFw0yNTEwMjExMjAwMDBaMDMxMTAvBgNV BAMTKEY3QzRENzFENkQyOEFCMTRFOTJEM0FDQkQyRDhEMEI2NzNDMDAxMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+OZCYd3LWQ6L3FPB5iogRWxop Nkb6XAKYQG1s7sWtR/1NZ0cAnny9uVRcpwz2Ll//l4YccCOZV8T1Q32jIKM5Dync PMb21ANo8YQbkQoiKfNVfavyD/V6dHhPRVTVjE2nuYE4ARWdtFtRq7iIWphPYGTN RniUfeGaCEsksKSWKn9s/M2YnZnYmzO88JZJC5iBLXM/tN4m8DMyBAkoRizdF3Z3 oLrVGKx2tkqRsCYeSJvWMvuZiZ2ym8fh8JoCgqkwXGhR/TZwgwtnIgIfc/DuDz56 Ax45CZWUSh3qrPGvGcwK47fqYOTmwnSU1wb05d2b7sM/Wqc8sYDFGO2lowNXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU98TXHW0oqxTpLTrL0tjQtnPAARswHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhNjY2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA /jANBgkqhkiG9w0BAQsFAAOCAQEA5KVb4QOzvZE+zi7i1uVcMPsFMaFAhlgR/D/+ SYkJVFioaoufGB5UDCS0VtHtiG5d4jVIOKl8k3yaUlI18Pb8eSSveBHOL8nAKtES RrV4Sw2NtuwIhmRy62LW8yrlltTtiKyLNHYCRnhiNBntYVNjhSZVW0T4dr8xVTKp UBjDyvlikrACInd1mUGvP+l2D4i2AOiOYmZmE3VUo20lWp44oDfwvX8z2hoMABLw SFU7Y0m1A4WsUtijGfPb9hODBJRtDwNxDRWrupG4eHNerMIvrTe1HhJe+UtItzlf tQbvEenXixGOoEUHf4gXpuKiHK3FFjcdKxRc8l4KBJww5j8pdg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org