$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: A10fZ5oBGWm/ydsGNd4ClvdYu28lRcTQqL1+gfTVn6c= Subject key identifier: E9:09:76:40:0B:9B:BB:56:E5:3E:18:66:4E:E6:96:FF:67:AE:52:2F Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 189E00C12E58A4C375555406D3CD663125C0322B Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 01 Jul 2024 16:00:02 +0000 ROA not before: Mon 01 Jul 2024 15:55:02 +0000 ROA not after: Mon 30 Jun 2025 16:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9e:00:c1:2e:58:a4:c3:75:55:54:06:d3:cd:66:31:25:c0:32:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 1 15:55:02 2024 GMT Not After : Jun 30 16:00:02 2025 GMT Subject: CN=E90976400B9BBB56E53E18664EE696FF67AE522F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:38:0a:a6:5a:90:69:0b:b2:2d:d9:32:cc:3b: f9:24:fe:20:1e:f1:21:24:86:fd:9e:eb:af:d7:0f: eb:5f:8b:58:59:ba:a9:74:61:e5:ee:2f:28:73:7d: 07:80:2c:5d:6f:e6:ab:2c:bd:97:99:fb:bb:49:26: 82:05:6e:49:ea:61:2f:8d:d0:a9:ad:49:6c:7a:50: 4f:c1:36:cb:7e:9a:0d:af:7d:47:9c:8e:64:90:6b: 16:ba:2d:f6:b0:55:6e:d7:83:1a:27:bc:68:03:af: d6:30:a5:2c:b4:4d:6a:ec:6d:6c:19:03:e4:91:22: ee:db:a4:e3:03:d4:8e:ec:95:4b:e6:a0:36:95:27: 37:b1:cd:e7:23:fd:2f:49:a2:b3:3e:0a:2d:5f:b5: 65:ff:b7:76:1f:06:8c:2d:f5:9b:08:79:75:15:54: 98:1c:83:fa:9a:c8:d5:0a:02:1b:99:08:ce:25:2c: 2a:8c:5b:65:74:b6:5b:6f:a4:e5:03:45:b9:20:68: 1e:8b:b7:05:76:91:34:bd:7d:f4:c2:f1:74:35:a5: 1d:3d:42:34:f5:ca:2d:8a:ca:67:d5:b5:a7:db:32: 5f:58:da:8e:da:cb:57:04:69:93:06:5e:aa:eb:1c: b4:85:5e:4d:7e:b2:8c:99:1c:65:6f:7f:44:17:d1: ec:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:09:76:40:0B:9B:BB:56:E5:3E:18:66:4E:E6:96:FF:67:AE:52:2F X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:3::/48 Signature Algorithm: sha256WithRSAEncryption 0c:c2:d9:3c:d7:57:ad:a4:ca:fe:44:1f:69:c5:44:92:c7:3d: 12:ab:94:a4:e1:4b:82:ab:35:b7:ef:72:d9:71:de:e2:44:9a: 32:33:aa:ec:54:19:8b:46:c4:f3:5f:2c:9b:5c:ab:72:a0:c1: 8d:c8:f8:95:42:71:5e:e2:0c:a3:05:31:1c:1b:ba:98:64:0a: 68:92:7f:b6:53:d5:1b:b5:da:41:d7:e7:76:1b:3e:6c:a0:a2: c0:27:d6:67:b8:88:4d:e6:06:b8:f7:2b:40:cf:c3:eb:57:f1: d7:ef:1a:e0:34:47:ca:98:49:c5:84:4e:a7:81:58:90:19:32: 34:87:9b:c9:61:54:27:61:8f:6d:77:e4:fd:8f:a1:c1:82:85: 0d:76:0a:0f:09:b4:28:4b:13:e9:8e:66:4d:1c:a0:2e:b2:45: 53:7b:91:b1:29:ee:20:68:bf:9a:b5:be:2a:ec:25:24:3d:e3: f8:1a:8c:76:0f:80:de:de:a7:2c:e3:da:90:fe:16:8d:1c:05: 62:97:2c:87:f7:fe:c9:a6:d0:c3:49:57:7f:09:70:0d:95:78: 38:0e:8a:61:96:3c:98:d9:77:aa:63:d8:3f:6e:2a:af:9e:02: 2e:db:13:ce:cd:10:03:71:cb:c5:37:23:21:88:0b:17:c6:99: 6d:67:57:45 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGJ4AwS5YpMN1VVQG081mMSXAMiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA3MDExNTU1MDJaFw0yNTA2MzAxNjAwMDJaMDMxMTAvBgNV BAMTKEU5MDk3NjQwMEI5QkJCNTZFNTNFMTg2NjRFRTY5NkZGNjdBRTUyMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcOAqmWpBpC7It2TLMO/kk/iAe 8SEkhv2e66/XD+tfi1hZuql0YeXuLyhzfQeALF1v5qssvZeZ+7tJJoIFbknqYS+N 0KmtSWx6UE/BNst+mg2vfUecjmSQaxa6LfawVW7XgxonvGgDr9YwpSy0TWrsbWwZ A+SRIu7bpOMD1I7slUvmoDaVJzexzecj/S9JorM+Ci1ftWX/t3YfBowt9ZsIeXUV VJgcg/qayNUKAhuZCM4lLCqMW2V0tltvpOUDRbkgaB6LtwV2kTS9ffTC8XQ1pR09 QjT1yi2KymfVtafbMl9Y2o7ay1cEaZMGXqrrHLSFXk1+soyZHGVvf0QX0eyRAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU6Ql2QAubu1blPhhmTuaW/2euUi8wHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAMw DQYJKoZIhvcNAQELBQADggEBAAzC2TzXV62kyv5EH2nFRJLHPRKrlKThS4KrNbfv ctlx3uJEmjIzquxUGYtGxPNfLJtcq3KgwY3I+JVCcV7iDKMFMRwbuphkCmiSf7ZT 1Ru12kHX53YbPmygosAn1me4iE3mBrj3K0DPw+tX8dfvGuA0R8qYScWETqeBWJAZ MjSHm8lhVCdhj2135P2PocGChQ12Cg8JtChLE+mOZk0coC6yRVN7kbEp7iBov5q1 virsJSQ94/gajHYPgN7epyzj2pD+Fo0cBWKXLIf3/smm0MNJV38JcA2VeDgOimGW PJjZd6pj2D9uKq+eAi7bE87NEANxy8U3IyGICxfGmW1nV0U= -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org