$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: y+koXC0SKC7czkSwcd2cG19vH0+o53OQtkOYra+BrVo= Subject key identifier: 8C:1A:B2:7F:7D:B2:88:68:A5:D2:5C:81:77:73:FA:29:B7:50:6E:2D Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 3CFDC73BCF84FC4338065AA15975D2E3FD460C27 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 01 Jul 2024 16:00:02 +0000 ROA not before: Mon 01 Jul 2024 15:55:02 +0000 ROA not after: Mon 30 Jun 2025 16:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:250::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fd:c7:3b:cf:84:fc:43:38:06:5a:a1:59:75:d2:e3:fd:46:0c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 1 15:55:02 2024 GMT Not After : Jun 30 16:00:02 2025 GMT Subject: CN=8C1AB27F7DB28868A5D25C817773FA29B7506E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8a:e6:f0:35:70:3a:db:f9:0b:7a:24:52:e2: 3e:1a:6d:12:8f:5f:11:84:c0:6c:eb:0d:7b:2b:0a: dc:bf:27:e9:4b:e2:d1:5b:c2:e5:bd:64:ed:23:55: 57:48:5e:ea:de:1d:b9:45:85:39:05:1a:b6:d8:f0: ab:13:ac:f4:78:dd:d3:00:0e:37:8c:01:29:c6:d9: 62:29:0e:8f:3f:41:95:3c:03:a8:4c:46:d5:54:09: ab:84:4d:cb:65:0e:12:3b:a0:74:94:c2:ff:41:42: 12:b0:43:e6:84:e2:a6:df:4d:0f:44:bc:8d:89:42: 17:51:0a:d6:60:af:16:6e:7f:9f:05:ac:49:16:49: b6:59:88:19:9f:30:8c:c4:e5:bf:6a:46:00:a3:94: d3:64:54:89:e2:63:a3:d1:37:d2:52:64:76:0a:fb: 56:fb:04:52:cc:03:13:dc:3a:76:44:30:6d:1e:83: a8:64:0a:ae:96:01:02:d5:e1:a7:aa:97:fb:5b:69: c9:0b:bb:ea:2e:9a:f8:39:cc:77:ce:df:be:41:07: 90:ae:9e:85:79:c0:01:d0:88:38:a1:c2:af:21:9b: 87:bd:a8:4f:a9:3e:9d:4d:df:6b:94:7f:7a:79:59: f4:22:b3:58:fb:b6:62:aa:b6:84:37:8a:00:f2:c9: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:1A:B2:7F:7D:B2:88:68:A5:D2:5C:81:77:73:FA:29:B7:50:6E:2D X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:250::/48 Signature Algorithm: sha256WithRSAEncryption 7e:4b:65:b6:b5:9a:68:a3:e4:5d:a1:a4:19:7f:4f:0c:65:2b: ae:55:d5:da:a9:27:e0:1c:64:6a:8f:dd:f4:1d:b7:d9:ba:6a: 9d:63:5f:a1:96:4c:39:93:7f:53:51:05:3a:21:36:80:55:91: 43:ca:ba:62:64:07:1f:fd:01:d4:a6:c2:b2:74:6a:0c:80:d6: fb:02:f5:61:e8:73:a8:c8:e8:19:f3:27:68:a3:5a:78:9e:6f: 9e:ff:98:5d:a6:52:64:3b:c8:73:70:53:13:ff:8f:73:7c:e0: 7e:fe:78:70:b6:ac:4d:8a:96:08:33:0b:1f:5c:4c:58:f1:de: d2:bc:9e:04:69:92:a1:8a:c7:24:c8:24:22:84:49:7a:ff:9d: 68:e5:2f:e9:8b:f9:d1:23:ce:d8:84:0d:2a:cf:cc:2c:0d:ff: 2d:8b:35:b9:f9:73:77:a9:01:86:c1:8a:71:d3:16:db:bd:5b: 1c:af:a5:a0:03:08:a5:82:3a:f6:30:cb:6b:c0:73:c0:70:da: b1:81:3c:85:fe:df:05:4a:b1:7e:c5:8f:ae:46:7f:73:5a:78: bf:28:e1:d2:df:aa:30:e0:26:ca:a3:82:22:8c:cc:cd:c8:8d: 75:a0:27:09:1e:e1:51:7f:4d:d3:97:e0:78:43:11:89:8e:55: 70:98:80:45 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPP3HO8+E/EM4BlqhWXXS4/1GDCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA3MDExNTU1MDJaFw0yNTA2MzAxNjAwMDJaMDMxMTAvBgNV BAMTKDhDMUFCMjdGN0RCMjg4NjhBNUQyNUM4MTc3NzNGQTI5Qjc1MDZFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAiubwNXA62/kLeiRS4j4abRKP XxGEwGzrDXsrCty/J+lL4tFbwuW9ZO0jVVdIXureHblFhTkFGrbY8KsTrPR43dMA DjeMASnG2WIpDo8/QZU8A6hMRtVUCauETctlDhI7oHSUwv9BQhKwQ+aE4qbfTQ9E vI2JQhdRCtZgrxZuf58FrEkWSbZZiBmfMIzE5b9qRgCjlNNkVIniY6PRN9JSZHYK +1b7BFLMAxPcOnZEMG0eg6hkCq6WAQLV4aeql/tbackLu+oumvg5zHfO375BB5Cu noV5wAHQiDihwq8hm4e9qE+pPp1N32uUf3p5WfQis1j7tmKqtoQ3igDyyfOTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjBqyf32yiGil0lyBd3P6KbdQbi0wHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzNTMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT+ wAJQMA0GCSqGSIb3DQEBCwUAA4IBAQB+S2W2tZpoo+RdoaQZf08MZSuuVdXaqSfg HGRqj930HbfZumqdY1+hlkw5k39TUQU6ITaAVZFDyrpiZAcf/QHUpsKydGoMgNb7 AvVh6HOoyOgZ8ydoo1p4nm+e/5hdplJkO8hzcFMT/49zfOB+/nhwtqxNipYIMwsf XExY8d7SvJ4EaZKhisckyCQihEl6/51o5S/pi/nRI87YhA0qz8wsDf8tizW5+XN3 qQGGwYpx0xbbvVscr6WgAwilgjr2MMtrwHPAcNqxgTyF/t8FSrF+xY+uRn9zWni/ KOHS36ow4CbKo4IijMzNyI11oCcJHuFRf03Tl+B4QxGJjlVwmIBF -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org