$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa File: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (raw, json) Hash identifier: ALHucxfZn6/DilYu8UfYHg2H5JY1f1TtwEgS6ThEO7s= Subject key identifier: 0F:CF:30:87:EC:3F:B2:50:60:C0:A3:D8:83:B5:E6:7D:EA:AD:1A:50 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 09223AECF48A609947ECA390F1E04A89F00EDAD5 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa Signing time: Mon 01 Jul 2024 01:04:23 +0000 ROA not before: Mon 01 Jul 2024 00:59:23 +0000 ROA not after: Mon 30 Jun 2025 01:04:23 +0000 asID: 24204 IP address blocks: 2405:8e00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:22:3a:ec:f4:8a:60:99:47:ec:a3:90:f1:e0:4a:89:f0:0e:da:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 1 00:59:23 2024 GMT Not After : Jun 30 01:04:23 2025 GMT Subject: CN=0FCF3087EC3FB25060C0A3D883B5E67DEAAD1A50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8c:66:b6:a8:16:f9:a2:3c:e4:33:cb:aa:3c: 7d:fc:b9:8e:ed:03:4b:5a:aa:d5:a0:73:d1:6b:7c: b2:74:33:cf:33:d9:c1:f5:c6:cb:a4:d7:5e:2f:e8: 7b:34:02:c9:03:db:b9:6f:04:4a:1b:48:fc:4f:fa: f8:bc:44:6e:a1:cb:c0:54:68:cb:91:6b:5c:13:7b: 52:a6:3f:62:37:d0:5b:92:26:39:47:3f:26:7e:72: 48:46:c3:cf:b8:a5:45:bf:3c:fc:77:45:2e:4f:cb: e2:d0:13:50:3f:42:5a:00:d2:62:fd:7c:f7:05:fc: 61:8c:fe:b7:27:10:6a:bf:98:b9:6b:32:2b:6b:47: f2:fc:a2:2b:a0:8d:23:29:5a:fa:b7:bf:91:47:f1: 5a:93:9e:bf:bf:c0:6c:31:97:44:4a:58:34:fe:44: 39:2e:37:cf:33:ad:fe:c7:fc:12:03:1d:06:95:a6: 4d:70:5d:1e:36:67:f0:b3:1e:2a:83:a6:54:fc:58: 58:9e:a9:40:25:49:32:71:ee:7b:ee:0e:a3:8b:0e: 3a:36:c6:f4:1c:5e:e5:d4:db:c4:74:09:2e:b3:dc: 91:b2:94:f1:f6:f1:e0:3b:3a:71:ab:ad:4e:12:35: a8:29:eb:23:60:86:e0:70:2b:cd:c0:3b:fa:00:c9: 64:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CF:30:87:EC:3F:B2:50:60:C0:A3:D8:83:B5:E6:7D:EA:AD:1A:50 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8e00::/32 Signature Algorithm: sha256WithRSAEncryption 72:4a:2a:45:da:6d:2f:f0:3d:a5:38:99:e5:f0:6c:30:d5:65: b1:c3:87:99:c3:5a:79:fc:46:2a:22:96:82:14:7d:25:61:38: cd:26:4a:f1:0c:d0:ca:2d:44:d1:ef:92:c3:27:af:17:e9:10: 05:ad:a2:33:9a:92:fa:3b:a5:b9:c0:ad:1b:de:fb:25:83:35: c4:d5:c0:68:2b:9b:75:4e:f0:7f:3c:56:22:23:6d:c0:92:33: d1:6b:d1:46:ab:55:76:3b:9a:9e:77:71:da:d0:77:48:ea:55: c1:40:61:b7:33:7c:90:ae:cd:dd:ba:9c:14:ed:e3:5f:d7:7d: de:cf:84:74:6e:2e:1b:e6:98:74:89:c2:6f:10:ba:79:52:ad: 71:da:57:2f:a0:15:52:e1:85:d2:c6:5c:e0:92:57:b1:cd:b4: 23:cf:0f:0b:f2:80:ec:8d:41:b3:37:fe:9a:90:3f:54:ce:41: cb:e7:27:ae:36:f8:fe:56:c9:28:8b:70:dc:35:b6:4c:da:21: 7f:09:85:c1:7d:86:9d:f5:b4:9c:1d:80:24:5a:c4:26:77:7c: b1:ce:e4:89:e4:c2:06:26:06:e3:c7:4d:4f:5a:12:8b:ad:60: 1f:e0:e9:6e:cd:de:02:63:b7:49:01:ea:b7:de:32:2c:04:db: 61:4c:6e:c0 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUCSI67PSKYJlH7KOQ8eBKifAO2tUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNDA3MDEwMDU5MjNaFw0yNTA2MzAwMTA0MjNaMDMxMTAvBgNV BAMTKDBGQ0YzMDg3RUMzRkIyNTA2MEMwQTNEODgzQjVFNjdERUFBRDFBNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDojGa2qBb5ojzkM8uqPH38uY7t A0taqtWgc9FrfLJ0M88z2cH1xsuk114v6Hs0AskD27lvBEobSPxP+vi8RG6hy8BU aMuRa1wTe1KmP2I30FuSJjlHPyZ+ckhGw8+4pUW/PPx3RS5Py+LQE1A/QloA0mL9 fPcF/GGM/rcnEGq/mLlrMitrR/L8oiugjSMpWvq3v5FH8VqTnr+/wGwxl0RKWDT+ RDkuN88zrf7H/BIDHQaVpk1wXR42Z/CzHiqDplT8WFieqUAlSTJx7nvuDqOLDjo2 xvQcXuXU28R0CS6z3JGylPH28eA7OnGrrU4SNagp6yNghuBwK83AO/oAyWQHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUD88wh+w/slBgwKPYg7XmfeqtGlAwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzQzMDM1M2EzODY1MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBY4AMA0GCSqGSIb3 DQEBCwUAA4IBAQBySipF2m0v8D2lOJnl8Gww1WWxw4eZw1p5/EYqIpaCFH0lYTjN JkrxDNDKLUTR75LDJ68X6RAFraIzmpL6O6W5wK0b3vslgzXE1cBoK5t1TvB/PFYi I23AkjPRa9FGq1V2O5qed3Ha0HdI6lXBQGG3M3yQrs3dupwU7eNf133ez4R0bi4b 5ph0icJvELp5Uq1x2lcvoBVS4YXSxlzgklexzbQjzw8L8oDsjUGzN/6akD9UzkHL 5yeuNvj+Vskoi3DcNbZM2iF/CYXBfYad9bScHYAkWsQmd3yxzuSJ5MIGJgbjx01P WhKLrWAf4Oluzd4CY7dJAeq33jIsBNthTG7A -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org