$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a313030303a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a313030303a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: cYsi38ubyN8k6uM8v+LoFEkILV2dAZvBmYpYDv1oo90= Subject key identifier: 70:4F:6F:B8:BE:8E:68:F1:8A:61:A5:C9:61:8E:5F:84:48:DB:08:AC Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 6305D5B7ADC1320AD2E47C62BC43F631B898D79B Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a313030303a3a2f34382d3438203d3e2034383030.roa Signing time: Mon 01 Jul 2024 01:03:18 +0000 ROA not before: Mon 01 Jul 2024 00:58:18 +0000 ROA not after: Mon 30 Jun 2025 01:03:18 +0000 asID: 4800 IP address blocks: 2400:8000:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:05:d5:b7:ad:c1:32:0a:d2:e4:7c:62:bc:43:f6:31:b8:98:d7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 1 00:58:18 2024 GMT Not After : Jun 30 01:03:18 2025 GMT Subject: CN=704F6FB8BE8E68F18A61A5C9618E5F8448DB08AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:32:9e:e6:7e:19:b4:6e:1b:b3:b0:75:fa: f0:23:b6:0a:d7:38:f2:1d:e1:72:ec:fe:40:cd:39: fb:c2:11:ac:cf:a9:0e:64:f5:96:45:1e:62:86:84: af:4b:1b:c2:96:57:2c:28:9a:55:cb:8b:7b:b1:e9: 08:d3:35:99:69:88:67:4d:af:b1:16:83:33:97:0f: 42:16:a1:f2:a0:67:f9:35:70:71:8b:a3:fd:44:54: 11:0d:cf:e9:1b:b5:a6:ee:02:0d:91:3f:12:d0:54: b9:38:f1:d0:5d:d9:6a:84:17:44:7b:89:75:4b:be: 2c:2d:4e:ea:41:48:11:4e:8b:11:25:2d:a9:0e:c1: 26:0f:29:9f:ad:b3:60:bc:d3:4e:35:51:68:6a:4a: c9:f5:33:6c:0b:b9:2e:15:fb:a5:a1:54:c5:02:f7: 1d:69:f1:9c:9e:da:32:17:c5:32:b3:3d:5a:3d:66: 16:29:65:32:fc:72:b4:df:d6:40:99:99:ea:a3:a4: ef:b3:2d:3e:74:87:5c:5c:9c:73:e8:c6:08:ed:8f: 5b:6e:8f:89:68:3f:a8:c5:3f:1c:d5:a7:33:4c:1f: 1b:c2:32:be:bf:5c:4a:b2:fb:5c:87:04:6f:69:6e: c1:23:a4:d2:b3:e3:f3:ae:a1:9f:a3:76:f0:5a:29: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4F:6F:B8:BE:8E:68:F1:8A:61:A5:C9:61:8E:5F:84:48:DB:08:AC X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a313030303a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:1000::/48 Signature Algorithm: sha256WithRSAEncryption 25:bc:69:2a:9e:8f:74:9f:22:8f:b0:6b:29:62:5f:76:f2:3e: 74:dd:91:89:c8:93:ed:f9:bb:30:27:06:e5:af:94:0f:7c:4e: 96:6d:36:34:bd:46:27:a6:8c:d9:8a:5c:23:04:fd:21:cd:3b: a0:23:09:95:56:dc:c9:70:f7:69:0b:22:0e:ce:66:64:47:bd: 2b:b8:24:19:34:e3:6a:79:ec:5a:dd:97:13:c9:5e:28:f1:ed: 9f:f9:14:56:5c:87:9c:14:57:38:03:ca:e7:f2:f7:7f:e1:65: 6f:2b:10:01:c6:a8:8a:34:a4:c3:51:a8:a2:a3:e1:24:17:20: 90:72:fe:5c:d0:d7:db:5e:00:4b:16:6a:63:3b:d9:15:56:f3: 13:54:a3:d1:0f:75:db:b8:88:5d:ad:f7:e6:0d:be:a0:a2:d9: 66:5d:15:79:4b:31:f0:63:7b:d6:47:0e:40:aa:e2:64:dd:80: e5:d9:36:03:20:bd:ef:98:55:89:d5:67:7f:0e:26:bf:29:99: 92:0a:6d:f4:95:fd:ec:84:ad:a1:1a:03:c9:b6:48:a7:06:18: 81:97:57:19:35:db:2e:ff:c7:16:f0:8f:64:40:7a:d2:4a:13: 1e:fb:bc:40:64:ea:b6:52:46:83:3e:3d:15:29:67:36:f5:23: 33:9b:a1:91 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYwXVt63BMgrS5HxivEP2MbiY15swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA3MDEwMDU4MThaFw0yNTA2MzAwMTAzMThaMDMxMTAvBgNV BAMTKDcwNEY2RkI4QkU4RTY4RjE4QTYxQTVDOTYxOEU1Rjg0NDhEQjA4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSzKe5n4ZtG4bs7B1+vAjtgrX OPId4XLs/kDNOfvCEazPqQ5k9ZZFHmKGhK9LG8KWVywomlXLi3ux6QjTNZlpiGdN r7EWgzOXD0IWofKgZ/k1cHGLo/1EVBENz+kbtabuAg2RPxLQVLk48dBd2WqEF0R7 iXVLviwtTupBSBFOixElLakOwSYPKZ+ts2C80041UWhqSsn1M2wLuS4V+6WhVMUC 9x1p8Zye2jIXxTKzPVo9ZhYpZTL8crTf1kCZmeqjpO+zLT50h1xcnHPoxgjtj1tu j4loP6jFPxzVpzNMHxvCMr6/XEqy+1yHBG9pbsEjpNKz4/OuoZ+jdvBaKaa9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUcE9vuL6OaPGKYaXJYY5fhEjbCKwwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAQ ADANBgkqhkiG9w0BAQsFAAOCAQEAJbxpKp6PdJ8ij7BrKWJfdvI+dN2RiciT7fm7 MCcG5a+UD3xOlm02NL1GJ6aM2YpcIwT9Ic07oCMJlVbcyXD3aQsiDs5mZEe9K7gk GTTjannsWt2XE8leKPHtn/kUVlyHnBRXOAPK5/L3f+FlbysQAcaoijSkw1GooqPh JBcgkHL+XNDX214ASxZqYzvZFVbzE1Sj0Q9127iIXa335g2+oKLZZl0VeUsx8GN7 1kcOQKriZN2A5dk2AyC975hVidVnfw4mvymZkgpt9JX97IStoRoDybZIpwYYgZdX GTXbLv/HFvCPZEB60koTHvu8QGTqtlJGgz49FSlnNvUjM5uhkQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org