$ rpki-client -vvf repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa File: 323430343a653134303a3a2f33322d3438203d3e20313338383632.roa (raw, json) Hash identifier: wygMRWpWYrOcZ46ARQQR4s9zeM2Bs+6zuSLJK/ddP6k= Subject key identifier: B5:65:DA:FE:5F:BA:76:2B:FB:86:68:73:B5:49:11:C7:69:B6:18:F4 Certificate issuer: /CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Certificate serial: 05E63B6E27B367BC6BC887EBAB275BD938EF1F11 Authority key identifier: 88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa Signing time: Wed 24 Jan 2024 04:11:19 +0000 ROA not before: Wed 24 Jan 2024 04:06:19 +0000 ROA not after: Wed 22 Jan 2025 04:11:19 +0000 asID: 138862 IP address blocks: 2404:e140::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e6:3b:6e:27:b3:67:bc:6b:c8:87:eb:ab:27:5b:d9:38:ef:1f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Validity Not Before: Jan 24 04:06:19 2024 GMT Not After : Jan 22 04:11:19 2025 GMT Subject: CN=B565DAFE5FBA762BFB866873B54911C769B618F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c4:37:e1:5e:bc:95:c3:f3:78:6f:2b:dc:ac: 46:8a:f1:ef:5d:da:7c:0a:44:7e:b7:7f:49:35:91: 36:aa:bd:45:24:ef:4f:2b:bf:12:39:bc:c5:91:a4: ab:b7:f6:3f:eb:94:9d:44:3b:78:7b:d5:38:b7:dc: bd:50:d1:fe:5b:d5:74:56:d4:b8:93:75:9d:a3:72: 50:c8:28:bb:d4:12:91:07:85:04:bf:e3:63:6a:6b: 2b:69:d2:cc:b9:8f:51:df:d6:9b:f1:91:52:37:2c: 57:14:3b:5e:6f:e1:18:18:01:dc:46:e1:3d:d1:b5: 42:aa:d3:6d:d6:27:a9:83:dc:32:54:a6:e3:66:05: ee:c1:4c:03:59:10:ce:f6:c7:5e:28:b8:3a:57:bd: 91:3c:d6:26:b3:e0:1a:47:f8:dd:c7:c6:f7:1d:83: 2a:5e:6d:0b:f9:76:12:c3:cf:84:67:7e:1f:aa:a1: 62:74:d0:89:b5:31:77:63:8b:fc:62:81:7d:ae:70: 67:41:26:f0:5c:8c:b7:f6:1d:e6:0a:51:1e:46:88: d7:79:e6:3b:10:30:19:7e:4a:79:ba:b4:6b:2f:d9: 0e:bc:3a:53:b6:0e:4a:2d:2e:a2:18:8b:66:7d:2f: 3b:c5:a6:c4:ac:eb:ab:39:98:58:16:88:d5:67:26: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:65:DA:FE:5F:BA:76:2B:FB:86:68:73:B5:49:11:C7:69:B6:18:F4 X509v3 Authority Key Identifier: keyid:88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/323430343a653134303a3a2f33322d3438203d3e20313338383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e140::/32 Signature Algorithm: sha256WithRSAEncryption c5:68:ae:94:0a:00:28:f9:8d:1d:0b:db:fc:37:dc:b2:60:78: 35:93:0f:ed:66:e9:e5:96:1e:7b:cb:e6:db:ea:82:69:77:9f: 90:d0:a0:c3:98:68:74:c9:d4:ce:68:98:6c:d3:32:1c:30:51: 5b:cc:d7:61:17:a0:32:1b:54:ec:6a:30:83:5b:65:08:fa:0d: 13:fd:0f:df:ec:3e:c1:83:95:53:85:9d:08:e4:c4:3a:ef:75: 9c:a4:36:ce:32:85:82:ce:4a:78:da:00:1d:63:54:42:bb:a7: a9:53:77:40:6d:5a:c9:d4:e4:dc:02:a5:b0:4c:c5:c5:a5:3f: 2d:02:c4:88:de:7e:6c:01:af:26:e5:59:e5:6f:05:fd:22:e4: b2:4e:c1:f9:82:e5:52:8c:c4:cf:b3:99:8f:63:62:11:78:be: 18:2e:e2:2e:cc:6f:01:c4:57:b0:a3:ca:07:10:fd:40:d4:db: 39:a7:6f:09:0e:38:d2:1b:47:3d:b2:ba:ba:0d:40:60:c1:f4: c1:f5:73:6b:fb:47:4c:17:05:bb:73:20:92:42:00:cf:5f:42: 5a:c9:0d:e4:5b:15:8a:70:99:d7:e4:a9:2e:33:42:21:4b:99: ea:36:a3:32:78:15:c1:5d:01:c4:a6:35:5e:f0:80:81:9e:6a: ed:d5:66:e9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBeY7biezZ7xryIfrqydb2TjvHxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkx Qjc3MURFNjAeFw0yNDAxMjQwNDA2MTlaFw0yNTAxMjIwNDExMTlaMDMxMTAvBgNV BAMTKEI1NjVEQUZFNUZCQTc2MkJGQjg2Njg3M0I1NDkxMUM3NjlCNjE4RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhxDfhXryVw/N4byvcrEaK8e9d 2nwKRH63f0k1kTaqvUUk708rvxI5vMWRpKu39j/rlJ1EO3h71Ti33L1Q0f5b1XRW 1LiTdZ2jclDIKLvUEpEHhQS/42Nqaytp0sy5j1Hf1pvxkVI3LFcUO15v4RgYAdxG 4T3RtUKq023WJ6mD3DJUpuNmBe7BTANZEM72x14ouDpXvZE81iaz4BpH+N3Hxvcd gypebQv5dhLDz4Rnfh+qoWJ00Im1MXdji/xigX2ucGdBJvBcjLf2HeYKUR5GiNd5 5jsQMBl+Snm6tGsv2Q68OlO2DkotLqIYi2Z9LzvFpsSs66s5mFgWiNVnJlD9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUtWXa/l+6div7hmhztUkRx2m2GPQwHwYDVR0j BBgwFoAUiNVrk3KYeXTXXV/rbEj6SRt3HeYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTA2MzNmYy1mZTIzLTRkODItYmE2NC1iYjdlZTZkZDZlMDYvMC84OEQ1NkI5Mzcy OTg3OTc0RDc1RDVGRUI2QzQ4RkE0OTFCNzcxREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkxQjc3 MURFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MDYzM2ZjLWZlMjMtNGQ4Mi1i YTY0LWJiN2VlNmRkNmUwNi8wLzMyMzQzMDM0M2E2NTMxMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE4UAwDQYJKoZI hvcNAQELBQADggEBAMVorpQKACj5jR0L2/w33LJgeDWTD+1m6eWWHnvL5tvqgml3 n5DQoMOYaHTJ1M5omGzTMhwwUVvM12EXoDIbVOxqMINbZQj6DRP9D9/sPsGDlVOF nQjkxDrvdZykNs4yhYLOSnjaAB1jVEK7p6lTd0BtWsnU5NwCpbBMxcWlPy0CxIje fmwBryblWeVvBf0i5LJOwfmC5VKMxM+zmY9jYhF4vhgu4i7MbwHEV7CjygcQ/UDU 2zmnbwkOONIbRz2yuroNQGDB9MH1c2v7R0wXBbtzIJJCAM9fQlrJDeRbFYpwmdfk qS4zQiFLmeo2ozJ4FcFdAcSmNV7wgIGeau3VZuk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org