$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: dAtS6S36oRx6R0V+C7gz2VKzbEm3pgtyQ4d2aLsPsW8= Subject key identifier: 0B:F8:89:EB:5C:46:3C:E9:D2:E1:A6:F1:79:29:48:1B:C4:7F:3E:D3 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 17DF4B52BBEAD079D43F2F0CAC293C1C8FBB5C81 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa Signing time: Fri 09 Aug 2024 09:00:01 +0000 ROA not before: Fri 09 Aug 2024 08:55:01 +0000 ROA not after: Fri 08 Aug 2025 09:00:01 +0000 asID: 4800 IP address blocks: 2400:8000:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:df:4b:52:bb:ea:d0:79:d4:3f:2f:0c:ac:29:3c:1c:8f:bb:5c:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Aug 9 08:55:01 2024 GMT Not After : Aug 8 09:00:01 2025 GMT Subject: CN=0BF889EB5C463CE9D2E1A6F17929481BC47F3ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:9c:fc:5e:34:60:f2:b4:45:fb:47:19:2b: f6:a4:16:59:1e:6c:b3:d0:1f:58:4b:12:93:b8:13: fe:4d:4b:58:1f:72:5c:1f:22:f1:7d:5f:87:6c:e1: 74:1f:31:86:74:2e:da:bf:6a:17:6d:a2:40:b8:ba: 00:6f:b2:81:62:4f:1e:44:2f:f9:a6:a6:23:47:a0: af:3f:fe:05:d7:6d:cb:f8:4d:60:ef:fc:d1:da:c5: 50:88:79:21:1a:ac:c0:4b:fa:8d:fe:ea:e2:7b:96: 3c:65:08:07:c6:81:4c:4d:51:e9:43:83:c3:0a:f4: 65:fb:be:48:3e:06:8c:e7:09:0d:84:42:ac:29:80: 77:31:24:92:a9:f3:82:b0:88:c5:b9:57:28:87:ed: 71:fd:8c:8d:d3:ab:ff:67:91:32:44:f6:86:0a:82: 78:6b:0a:0c:2e:fd:33:c9:b7:29:bf:5a:3e:27:8a: 17:21:81:9b:fb:d2:a6:d2:70:da:1c:cb:86:76:ba: 8a:21:0c:f2:61:32:f0:59:b0:a2:e3:83:21:4f:d4: 31:2b:53:f1:57:21:85:75:24:85:c7:04:5b:e8:bc: 1b:36:65:fd:07:33:ff:cc:ca:59:e4:44:13:0b:b2: 0c:68:76:c2:c7:6f:37:39:3a:36:43:ad:f6:5a:0a: ce:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F8:89:EB:5C:46:3C:E9:D2:E1:A6:F1:79:29:48:1B:C4:7F:3E:D3 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:3002::/48 Signature Algorithm: sha256WithRSAEncryption 60:01:74:de:7f:3b:ba:0c:b5:84:4e:d6:a8:f4:e9:19:b8:5f: de:0e:60:80:47:52:d5:5f:0b:7a:5d:b8:4b:19:f9:5c:04:b0: 49:d4:a4:16:a3:d4:27:c1:5a:23:04:61:f8:f3:47:52:17:af: 90:4d:c6:85:d6:bb:03:2e:e6:eb:73:a2:d0:3a:83:17:9f:a7: ef:c3:16:62:63:cc:73:93:a8:ee:d7:b7:cb:fb:c2:12:e0:46: a3:a1:08:61:b3:a5:87:e5:8e:2c:51:1e:5d:74:c2:43:0d:e9: 28:c8:5f:37:03:f8:c9:7c:09:4f:6d:15:02:07:97:b7:74:b3: 2e:3d:5e:5a:ee:b7:4f:c3:6d:2a:57:9f:d1:49:fc:38:b6:b8: e7:88:16:45:a1:01:0a:cf:03:95:eb:6e:78:de:07:38:fe:20: cf:fb:66:ff:7a:4d:2d:bf:1e:09:e4:10:aa:3b:b1:c8:b1:eb: 29:47:45:10:65:e7:88:be:49:38:a9:4d:09:c8:83:02:f2:79: 86:27:ea:ad:ed:c4:27:91:c2:fd:7e:68:14:72:a8:cd:3a:d0: 61:4a:c5:67:06:2f:ee:95:c0:e4:22:47:b7:6d:5b:66:fe:02: c8:99:49:aa:2a:e6:48:38:c0:67:4b:2a:f4:49:e9:dc:03:be: f6:1a:88:e3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUF99LUrvq0HnUPy8MrCk8HI+7XIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNDA4MDkwODU1MDFaFw0yNTA4MDgwOTAwMDFaMDMxMTAvBgNV BAMTKDBCRjg4OUVCNUM0NjNDRTlEMkUxQTZGMTc5Mjk0ODFCQzQ3RjNFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8Jz8XjRg8rRF+0cZK/akFlke bLPQH1hLEpO4E/5NS1gfclwfIvF9X4ds4XQfMYZ0Ltq/ahdtokC4ugBvsoFiTx5E L/mmpiNHoK8//gXXbcv4TWDv/NHaxVCIeSEarMBL+o3+6uJ7ljxlCAfGgUxNUelD g8MK9GX7vkg+BoznCQ2EQqwpgHcxJJKp84KwiMW5VyiH7XH9jI3Tq/9nkTJE9oYK gnhrCgwu/TPJtym/Wj4nihchgZv70qbScNocy4Z2uoohDPJhMvBZsKLjgyFP1DEr U/FXIYV1JIXHBFvovBs2Zf0HM//MylnkRBMLsgxodsLHbzc5OjZDrfZaCs7pAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUC/iJ61xGPOnS4abxeSlIG8R/PtMwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzMzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAw AjANBgkqhkiG9w0BAQsFAAOCAQEAYAF03n87ugy1hE7WqPTpGbhf3g5ggEdS1V8L el24Sxn5XASwSdSkFqPUJ8FaIwRh+PNHUhevkE3Ghda7Ay7m63Oi0DqDF5+n78MW YmPMc5Oo7te3y/vCEuBGo6EIYbOlh+WOLFEeXXTCQw3pKMhfNwP4yXwJT20VAgeX t3SzLj1eWu63T8NtKlef0Un8OLa454gWRaEBCs8DletueN4HOP4gz/tm/3pNLb8e CeQQqjuxyLHrKUdFEGXniL5JOKlNCciDAvJ5hifqre3EJ5HC/X5oFHKozTrQYUrF ZwYv7pXA5CJHt21bZv4CyJlJqirmSDjAZ0sq9Enp3AO+9hqI4w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org