$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: e2hZqRmumwwjihIOo4NSyIcflDvxaVJmQVJkA8KGCsQ= Subject key identifier: 8B:14:22:E9:26:ED:73:EF:40:5E:39:C7:B0:16:BC:3B:63:82:6E:F0 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 351FC1EEA7A73C0C8E290926EFCE8355BFA0A8F3 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 01 Jul 2024 16:00:02 +0000 ROA not before: Mon 01 Jul 2024 15:55:02 +0000 ROA not after: Mon 30 Jun 2025 16:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:1f:c1:ee:a7:a7:3c:0c:8e:29:09:26:ef:ce:83:55:bf:a0:a8:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 1 15:55:02 2024 GMT Not After : Jun 30 16:00:02 2025 GMT Subject: CN=8B1422E926ED73EF405E39C7B016BC3B63826EF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:2e:15:49:25:69:88:4f:48:8a:86:03:ef: f4:68:7c:b6:74:d0:c6:9d:fa:75:d1:63:23:12:51: 57:07:f5:0d:60:06:7f:bd:ae:aa:85:ee:ce:5f:1b: 96:d7:58:45:b8:70:f1:e3:b9:4c:d8:f2:f5:79:af: 80:c4:99:6e:31:86:91:df:92:f6:da:e9:8e:f4:d7: d7:2f:64:a3:80:5c:10:d4:51:86:31:41:d2:00:c2: fb:6b:80:91:52:88:0a:3d:39:b1:12:4f:8b:7b:a7: 55:06:e9:f3:b4:42:48:86:60:10:c3:91:b0:ed:a8: 59:63:ea:a2:c9:8a:e7:1e:e7:07:a4:07:dc:bd:7b: fb:a0:47:ce:92:59:07:34:b0:ca:ba:0f:15:57:b4: bb:6a:9f:ae:38:a4:a8:c1:82:9a:17:c0:88:d8:5d: cc:81:46:3a:1b:5f:17:09:ce:c1:58:54:48:3c:41: 77:4c:15:57:3f:e7:bb:13:50:ab:1d:f8:ec:e0:06: 82:ab:31:3c:0e:60:01:50:7b:26:6b:45:1a:ba:7c: 14:47:3b:12:91:9a:6a:3a:54:49:05:1e:c4:33:69: 6f:30:77:58:3a:46:c3:53:63:25:fe:3d:e7:a1:28: 22:34:d0:a7:93:a3:53:bc:8c:d5:05:af:d7:a8:76: 63:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:14:22:E9:26:ED:73:EF:40:5E:39:C7:B0:16:BC:3B:63:82:6E:F0 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:2::/48 Signature Algorithm: sha256WithRSAEncryption 66:2f:b4:1e:a5:dd:ed:5b:ac:54:90:89:60:84:ec:c5:df:62: 18:1b:98:4e:8d:96:70:7b:13:97:bb:d7:d5:24:c2:26:2b:b4: 46:c2:80:e3:f0:9e:db:6b:55:a1:94:f5:84:1c:83:f3:34:94: 11:4b:46:9f:83:35:ef:e7:50:ac:ce:0c:7a:16:a7:85:c1:4b: cf:8f:01:52:14:ca:6d:ad:14:8b:48:9f:53:8f:1d:bb:30:fd: cc:95:1e:79:01:89:4e:da:f1:25:dc:62:2d:c2:ba:f8:7e:f4: 3a:15:25:bd:81:fb:30:3c:45:95:72:5d:1c:fd:2a:16:02:c7: 9a:0e:6e:2c:d1:9d:3c:34:f0:de:ea:5a:0b:ac:ed:f1:5d:c6: b5:09:b5:b8:da:17:f3:88:6f:40:ea:25:a8:93:30:6d:f3:5c: 8d:fd:3f:26:04:b1:98:35:8e:0f:6a:ca:54:ac:15:72:07:46: 82:a6:c6:29:1f:1a:fd:7c:c2:82:bd:ba:a4:2a:41:f0:bc:0b: 4c:92:21:ed:09:43:5d:4d:bc:12:40:0e:53:b5:5f:f9:d5:ad: 02:a2:9c:4d:91:df:38:84:6d:63:b6:a3:f1:0a:2d:87:83:db: 09:3e:0c:49:8a:e0:e5:00:0e:aa:44:91:cc:1c:e6:53:c4:fa: 13:4c:5e:e8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNR/B7qenPAyOKQkm786DVb+gqPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA3MDExNTU1MDJaFw0yNTA2MzAxNjAwMDJaMDMxMTAvBgNV BAMTKDhCMTQyMkU5MjZFRDczRUY0MDVFMzlDN0IwMTZCQzNCNjM4MjZFRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRy4VSSVpiE9IioYD7/RofLZ0 0Mad+nXRYyMSUVcH9Q1gBn+9rqqF7s5fG5bXWEW4cPHjuUzY8vV5r4DEmW4xhpHf kvba6Y7019cvZKOAXBDUUYYxQdIAwvtrgJFSiAo9ObEST4t7p1UG6fO0QkiGYBDD kbDtqFlj6qLJiuce5wekB9y9e/ugR86SWQc0sMq6DxVXtLtqn644pKjBgpoXwIjY XcyBRjobXxcJzsFYVEg8QXdMFVc/57sTUKsd+OzgBoKrMTwOYAFQeyZrRRq6fBRH OxKRmmo6VEkFHsQzaW8wd1g6RsNTYyX+PeehKCI00KeTo1O8jNUFr9eodmPbAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUixQi6Sbtc+9AXjnHsBa8O2OCbvAwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAIw DQYJKoZIhvcNAQELBQADggEBAGYvtB6l3e1brFSQiWCE7MXfYhgbmE6NlnB7E5e7 19UkwiYrtEbCgOPwnttrVaGU9YQcg/M0lBFLRp+DNe/nUKzODHoWp4XBS8+PAVIU ym2tFItIn1OPHbsw/cyVHnkBiU7a8SXcYi3Cuvh+9DoVJb2B+zA8RZVyXRz9KhYC x5oObizRnTw08N7qWgus7fFdxrUJtbjaF/OIb0DqJaiTMG3zXI39PyYEsZg1jg9q ylSsFXIHRoKmxikfGv18woK9uqQqQfC8C0ySIe0JQ11NvBJADlO1X/nVrQKinE2R 3ziEbWO2o/EKLYeD2wk+DEmK4OUADqpEkcwc5lPE+hNMXug= -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org