$ rpki-client -vvf repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa File: 323430313a383034303a3a2f33322d3332203d3e20313336313237.roa (raw, json) Hash identifier: ejjY61bhmlJl0lxMoyTYYJxk49QNB+St/BGfTNpwclI= Subject key identifier: 8D:B0:DB:3B:1D:9D:66:B4:B1:F5:CB:33:1A:0F:FB:62:8B:7B:76:C9 Certificate issuer: /CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Certificate serial: 133B78FA3F2B8A92282EAFFE44B86D406E723FAC Authority key identifier: 8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa Signing time: Fri 18 Oct 2024 04:03:18 +0000 ROA not before: Fri 18 Oct 2024 03:58:18 +0000 ROA not after: Fri 17 Oct 2025 04:03:18 +0000 asID: 136127 IP address blocks: 2401:8040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:3b:78:fa:3f:2b:8a:92:28:2e:af:fe:44:b8:6d:40:6e:72:3f:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Validity Not Before: Oct 18 03:58:18 2024 GMT Not After : Oct 17 04:03:18 2025 GMT Subject: CN=8DB0DB3B1D9D66B4B1F5CB331A0FFB628B7B76C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:35:85:9d:9b:57:de:2d:17:af:77:00:21:6e: 42:51:7d:ab:21:3c:d1:2a:d2:3a:fd:97:f1:8d:38: 11:ae:15:68:f9:d8:c7:2c:00:91:53:ad:a9:93:10: c1:34:e9:d0:a7:cc:08:e7:ff:ad:ed:b3:3f:74:55: f9:02:99:37:93:9e:44:07:5c:fd:36:3c:8e:1a:34: fc:57:df:52:61:18:8a:82:0a:5c:7b:8c:da:6d:62: 8b:f5:ef:c0:57:cc:86:7b:66:25:ab:2d:8b:d0:f5: 6b:57:e0:a7:61:64:e4:a7:11:a5:3e:8d:fd:c8:79: bb:af:a2:15:46:71:55:72:3c:0a:5f:ce:40:8d:98: ff:64:7c:58:fe:50:fa:9a:f2:01:e5:42:00:91:74: 8d:91:06:dc:c9:b9:ee:e7:a9:bc:7e:cf:0e:15:3f: 38:71:6e:fe:d8:4d:90:34:b8:ac:a0:02:9c:c0:83: f2:d8:b8:76:8f:1d:65:7f:c0:e3:5b:79:86:a0:a2: 0a:7c:68:4a:ff:af:f0:26:a6:c7:6c:4b:4a:62:e0: 1c:f2:35:11:c5:5f:cd:13:35:07:8f:8b:5a:be:f5: 89:a4:a3:e0:5d:6f:57:6a:31:7e:e1:08:2d:0d:b6: 12:06:48:02:6b:09:b6:64:a4:43:ed:52:3d:ca:92: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B0:DB:3B:1D:9D:66:B4:B1:F5:CB:33:1A:0F:FB:62:8B:7B:76:C9 X509v3 Authority Key Identifier: keyid:8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8040::/32 Signature Algorithm: sha256WithRSAEncryption 69:c7:47:ae:86:a7:94:3e:4a:04:5f:4c:2c:b8:85:1c:f5:15: 88:66:c3:9e:17:72:26:9b:2f:ec:26:c0:90:6d:0a:a9:ec:93: 02:87:27:c0:a9:18:04:3a:66:cd:8a:8f:c1:1b:2e:a3:4d:b9: 6c:41:af:10:db:7e:22:12:e4:2d:a8:34:4e:cc:b6:a3:db:28: 78:b9:10:c3:49:b8:2f:3f:55:f2:fa:81:27:d2:f0:66:8f:7d: e3:4d:35:fc:33:bf:44:d7:02:2e:a4:ff:c7:53:0c:93:6f:2e: 0a:4b:26:83:29:d7:fe:bd:48:96:3f:0c:f4:67:ea:73:15:0a: d9:a4:37:8d:6c:71:c2:f2:fa:f0:96:f0:8d:b1:34:b0:4b:af: 28:c9:c7:46:86:d3:96:f6:7d:b3:63:31:13:f7:34:5a:e4:a3: b4:27:f1:8a:f1:4f:7c:86:98:57:f2:25:0b:8a:a6:3f:0a:4a: 88:76:11:14:f7:0c:c5:79:19:f5:38:ae:a8:f5:83:b5:5c:a9: eb:c5:07:47:4b:82:a3:04:98:e9:56:dd:81:f8:0d:e2:6e:56: 01:60:cb:65:18:9f:3a:bf:49:ac:7f:d5:19:fd:7e:72:f3:b3: bf:86:ca:b1:98:8a:f8:c8:51:02:d8:2e:bc:da:03:1b:39:d2: 36:2b:61:1d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEzt4+j8ripIoLq/+RLhtQG5yP6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0 NjNBMUEyMjAeFw0yNDEwMTgwMzU4MThaFw0yNTEwMTcwNDAzMThaMDMxMTAvBgNV BAMTKDhEQjBEQjNCMUQ5RDY2QjRCMUY1Q0IzMzFBMEZGQjYyOEI3Qjc2QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuNYWdm1feLRevdwAhbkJRfash PNEq0jr9l/GNOBGuFWj52McsAJFTramTEME06dCnzAjn/63tsz90VfkCmTeTnkQH XP02PI4aNPxX31JhGIqCClx7jNptYov178BXzIZ7ZiWrLYvQ9WtX4KdhZOSnEaU+ jf3IebuvohVGcVVyPApfzkCNmP9kfFj+UPqa8gHlQgCRdI2RBtzJue7nqbx+zw4V Pzhxbv7YTZA0uKygApzAg/LYuHaPHWV/wONbeYagogp8aEr/r/AmpsdsS0pi4Bzy NRHFX80TNQePi1q+9Ymko+Bdb1dqMX7hCC0NthIGSAJrCbZkpEPtUj3Kkv7tAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUjbDbOx2dZrSx9cszGg/7Yot7dskwHwYDVR0j BBgwFoAUjIiOmWWIUnvF74q9KTZ2w0Y6GiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGIyNzMwMy05ZTNkLTRkNDItYWYyNS02YTBmMTE4MDhmMjcvMC84Qzg4OEU5OTY1 ODg1MjdCQzVFRjhBQkQyOTM2NzZDMzQ2M0ExQTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0NjNB MUEyMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjI3MzAzLTllM2QtNGQ0Mi1h ZjI1LTZhMGYxMTgwOGYyNy8wLzMyMzQzMDMxM2EzODMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBgEAwDQYJKoZI hvcNAQELBQADggEBAGnHR66Gp5Q+SgRfTCy4hRz1FYhmw54XciabL+wmwJBtCqns kwKHJ8CpGAQ6Zs2Kj8EbLqNNuWxBrxDbfiIS5C2oNE7MtqPbKHi5EMNJuC8/VfL6 gSfS8GaPfeNNNfwzv0TXAi6k/8dTDJNvLgpLJoMp1/69SJY/DPRn6nMVCtmkN41s ccLy+vCW8I2xNLBLryjJx0aG05b2fbNjMRP3NFrko7Qn8YrxT3yGmFfyJQuKpj8K Soh2ERT3DMV5GfU4rqj1g7VcqevFB0dLgqMEmOlW3YH4DeJuVgFgy2UYnzq/Sax/ 1Rn9fnLzs7+GyrGYivjIUQLYLrzaAxs50jYrYR0= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org