$ rpki-client -vvf repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa File: 323430373a363338303a3a2f33322d3430203d3e20313331373133.roa (raw, json) Hash identifier: n6EnpwYdLmSL8WaVyIXMn7tuvtOoZcAKI7Mz6TbpG8E= Subject key identifier: BB:B0:11:F7:3A:D1:A3:F0:4D:E3:F1:B0:BB:11:8C:FC:0E:22:60:BF Certificate issuer: /CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Certificate serial: 0546CBF871FED5B9AEB447332AFBE750E120A9EC Authority key identifier: 8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa Signing time: Tue 27 Aug 2024 05:00:02 +0000 ROA not before: Tue 27 Aug 2024 04:55:02 +0000 ROA not after: Tue 26 Aug 2025 05:00:02 +0000 asID: 131713 IP address blocks: 2407:6380::/32 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:46:cb:f8:71:fe:d5:b9:ae:b4:47:33:2a:fb:e7:50:e1:20:a9:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Validity Not Before: Aug 27 04:55:02 2024 GMT Not After : Aug 26 05:00:02 2025 GMT Subject: CN=BBB011F73AD1A3F04DE3F1B0BB118CFC0E2260BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1c:61:ab:81:c2:92:36:30:8f:55:be:c2:d9: 7d:d5:7b:74:29:22:48:7e:b6:2c:d4:97:57:85:cd: 51:e8:a8:4c:66:92:3e:e9:b6:4d:e5:0d:30:62:a3: 6a:3e:ff:93:f0:a4:6f:f1:21:cf:4d:41:70:fc:88: 05:19:4a:be:f9:7d:6b:7c:ae:b0:d4:29:ad:5c:ad: 80:a9:24:6b:bc:6d:03:48:a9:ec:3b:b1:82:29:66: 0f:1d:9e:e7:d4:91:c8:af:79:76:1f:f1:5a:22:3a: 93:5c:dd:88:7e:1f:89:07:2d:1c:ac:3f:b6:02:7f: d3:94:31:c6:55:8c:a7:71:22:09:f9:8f:65:01:08: 91:72:9a:85:e8:1e:9a:d3:9d:fb:ee:d6:40:e4:0e: 4a:ad:10:18:1b:a4:43:55:5d:03:c1:10:98:db:1a: 56:52:b9:43:91:0a:d0:43:42:fd:07:dd:8c:44:e4: d4:03:3c:2f:89:04:1d:e1:e4:17:bb:c4:ad:0a:7a: 5f:a0:88:fa:6e:8c:86:ec:d0:b4:7a:32:46:a8:5b: 15:cb:bb:ad:64:a1:83:c0:76:15:4d:50:2a:ce:89: ad:7a:1b:66:f3:35:79:0e:a3:f3:f3:8a:df:56:f7: c7:d7:71:a2:1c:57:e5:40:9d:ae:80:1f:e5:4d:51: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B0:11:F7:3A:D1:A3:F0:4D:E3:F1:B0:BB:11:8C:FC:0E:22:60:BF X509v3 Authority Key Identifier: keyid:8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6380::/32 Signature Algorithm: sha256WithRSAEncryption 50:7e:f1:90:6e:5a:08:d5:4f:af:51:5e:b2:1d:5d:0d:66:d9: fa:0b:94:c2:d3:ab:a8:95:b9:e3:49:5f:45:c6:e1:aa:91:9a: df:41:ef:27:07:3a:ce:b7:5d:e3:ed:aa:dc:3c:20:45:13:37: e6:47:5a:bd:dd:32:f2:81:f9:8f:b1:b5:56:d0:24:10:e2:c6: 7d:96:d5:83:14:97:e8:34:c8:6f:90:f8:8c:af:6d:a3:81:ad: a6:5f:48:70:02:c0:a0:be:0b:51:d0:95:2b:91:5f:b2:fc:80: 10:ac:84:ec:fb:69:8a:d1:e0:24:34:dd:f7:de:77:7a:15:85: 54:6b:58:7c:59:b1:5e:b1:c2:d0:a0:21:ef:71:ca:6e:08:f4: cd:6b:48:f5:4f:a7:a6:68:6d:4e:f5:a9:11:4d:8e:9e:8a:8c: 49:4e:11:b1:e3:d0:b1:ca:16:91:5c:86:13:bc:42:03:a5:4e: d2:39:45:34:bb:4f:72:07:71:40:99:27:93:d4:b2:d7:ef:5b: 88:1a:49:0f:5c:26:e1:7a:16:f6:c4:bc:ca:ae:13:66:5f:df: 17:a8:e7:a2:30:ef:25:7e:7a:eb:8b:e2:d0:e1:bb:87:31:a3: 2f:47:68:25:7c:d6:b6:36:ff:1c:5f:56:76:8d:90:72:ac:fb: fc:db:ba:fe -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBUbL+HH+1bmutEczKvvnUOEgqewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAz QjA3MkVEODAeFw0yNDA4MjcwNDU1MDJaFw0yNTA4MjYwNTAwMDJaMDMxMTAvBgNV BAMTKEJCQjAxMUY3M0FEMUEzRjA0REUzRjFCMEJCMTE4Q0ZDMEUyMjYwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlHGGrgcKSNjCPVb7C2X3Ve3Qp Ikh+tizUl1eFzVHoqExmkj7ptk3lDTBio2o+/5PwpG/xIc9NQXD8iAUZSr75fWt8 rrDUKa1crYCpJGu8bQNIqew7sYIpZg8dnufUkciveXYf8VoiOpNc3Yh+H4kHLRys P7YCf9OUMcZVjKdxIgn5j2UBCJFymoXoHprTnfvu1kDkDkqtEBgbpENVXQPBEJjb GlZSuUORCtBDQv0H3YxE5NQDPC+JBB3h5Be7xK0Kel+giPpujIbs0LR6MkaoWxXL u61koYPAdhVNUCrOia16G2bzNXkOo/Pzit9W98fXcaIcV+VAna6AH+VNUQ3lAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUu7AR9zrRo/BN4/GwuxGM/A4iYL8wHwYDVR0j BBgwFoAUi+H1CpCTiubU5temoqIvADsHLtgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OGI1OGFlZS1lOGVlLTQyODctYTJiOC02MTYxNTVjM2VlYzIvMC84QkUxRjUwQTkw OTM4QUU2RDRFNkQ3QTZBMkEyMkYwMDNCMDcyRUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAzQjA3 MkVEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4YjU4YWVlLWU4ZWUtNDI4Ny1h MmI4LTYxNjE1NWMzZWVjMi8wLzMyMzQzMDM3M2EzNjMzMzgzMDNhM2EyZjMzMzIy ZDM0MzAyMDNkM2UyMDMxMzMzMTM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHY4AwDQYJKoZI hvcNAQELBQADggEBAFB+8ZBuWgjVT69RXrIdXQ1m2foLlMLTq6iVueNJX0XG4aqR mt9B7ycHOs63XePtqtw8IEUTN+ZHWr3dMvKB+Y+xtVbQJBDixn2W1YMUl+g0yG+Q +IyvbaOBraZfSHACwKC+C1HQlSuRX7L8gBCshOz7aYrR4CQ03ffed3oVhVRrWHxZ sV6xwtCgIe9xym4I9M1rSPVPp6ZobU71qRFNjp6KjElOEbHj0LHKFpFchhO8QgOl TtI5RTS7T3IHcUCZJ5PUstfvW4gaSQ9cJuF6FvbEvMquE2Zf3xeo56Iw7yV+euuL 4tDhu4cxoy9HaCV81rY2/xxfVnaNkHKs+/zbuv4= -----END CERTIFICATE-----Generated at Fri Sep 27 06:20:06 2024 by rpki-client on console-ams.rpki-client.org