$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3438203d3e20313338383636.roa (raw, json) Hash identifier: oInZsMVgdwEvnpVcu4rctnbwGDY+GjcyJ5+JQSNMsAM= Subject key identifier: 1E:5D:93:1C:7D:05:3D:4B:BE:E4:42:96:23:C5:24:49:76:18:3F:F0 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 1AEABAF2A250445C5FDC9CE3E7A9A9F38DCF35D7 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa Signing time: Sat 29 Jun 2024 16:00:01 +0000 ROA not before: Sat 29 Jun 2024 15:55:01 +0000 ROA not after: Sat 28 Jun 2025 16:00:01 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ea:ba:f2:a2:50:44:5c:5f:dc:9c:e3:e7:a9:a9:f3:8d:cf:35:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 29 15:55:01 2024 GMT Not After : Jun 28 16:00:01 2025 GMT Subject: CN=1E5D931C7D053D4BBEE4429623C5244976183FF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:70:66:be:ee:0f:74:5c:af:63:7b:0d:2f:03: 78:2c:bb:18:be:c7:64:44:57:e3:1e:82:e1:87:c0: 85:44:c2:77:92:40:d9:9a:52:7c:a3:64:57:b1:0d: a1:43:1c:93:26:32:6a:cf:50:27:2f:69:ea:6b:a7: 97:d2:15:e4:61:77:40:2c:35:38:20:ac:0a:6a:05: 50:5d:d2:0b:de:ef:2e:84:42:2d:95:4e:2b:ec:13: 46:a0:34:66:0e:c4:4a:21:5f:e1:49:03:60:91:ea: ae:e0:da:d6:1c:02:8e:c4:fd:be:b3:ea:33:82:0b: d1:e0:cf:89:66:8b:a0:80:d5:63:34:28:70:85:f5: ce:1f:e4:a8:14:63:59:9f:bf:ba:0d:9b:f3:82:e2: b4:93:cb:d4:ae:b0:45:3f:0a:51:83:1f:56:e8:07: 89:d2:6f:e2:e6:d4:eb:73:2d:98:4d:4f:3f:49:6d: de:ec:9f:3b:72:de:ed:40:22:e8:67:46:bc:e6:f3: 27:c0:ba:4d:db:ed:9a:6c:2c:5e:9a:a7:5d:1c:80: cd:6e:f1:03:b6:65:31:80:30:93:63:c9:5a:ec:fd: 52:50:65:f6:9d:fa:9e:be:4c:ba:19:40:5d:31:74: 11:8b:3d:11:5e:23:7f:cd:5c:54:0a:eb:36:47:90: 48:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5D:93:1C:7D:05:3D:4B:BE:E4:42:96:23:C5:24:49:76:18:3F:F0 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption 51:08:7c:5b:1c:0e:56:97:98:e3:50:f3:ec:4d:70:3e:6f:e7: 21:2b:ed:7f:91:0e:83:d5:ea:af:2a:f3:97:33:c0:d3:7a:68: 8f:36:59:b0:a4:4d:e8:af:f4:47:c8:b6:eb:51:48:91:fa:cf: 29:07:94:40:fe:40:22:b4:d0:9f:39:22:68:76:b6:52:01:ca: f6:e2:3e:c5:ff:72:8f:bd:56:ea:4d:52:a9:ae:58:6d:ce:6a: 70:d7:db:e7:cd:20:7d:4a:48:cd:9c:f0:8f:ce:e5:45:e6:8e: 65:88:9b:c4:2b:a5:67:92:06:ca:b2:98:e7:36:34:cd:91:3b: 45:7f:72:97:8b:77:15:27:94:da:a4:06:69:77:ea:59:3d:3d: ce:a3:cf:29:34:ed:33:f8:f4:f7:6e:47:10:41:24:09:a6:aa: fc:b8:4c:87:91:fa:72:18:3f:e6:6f:5a:ce:5c:07:c8:66:4f: 69:37:c4:8e:f4:67:78:ee:d4:35:2d:17:cf:2d:1d:41:fa:68: 57:4e:fc:0c:c0:ae:ca:39:36:5d:72:73:a2:0b:22:03:d5:78: 6f:a4:0d:b3:ee:40:33:0a:67:ba:01:f0:7e:d2:ef:d1:96:ad: 7b:d6:e7:67:34:7c:51:fb:fa:19:55:11:82:f1:82:83:d4:17: 77:c1:54:9a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUGuq68qJQRFxf3Jzj56mp843PNdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA2MjkxNTU1MDFaFw0yNTA2MjgxNjAwMDFaMDMxMTAvBgNV BAMTKDFFNUQ5MzFDN0QwNTNENEJCRUU0NDI5NjIzQzUyNDQ5NzYxODNGRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIcGa+7g90XK9jew0vA3gsuxi+ x2REV+MeguGHwIVEwneSQNmaUnyjZFexDaFDHJMmMmrPUCcvaeprp5fSFeRhd0As NTggrApqBVBd0gve7y6EQi2VTivsE0agNGYOxEohX+FJA2CR6q7g2tYcAo7E/b6z 6jOCC9Hgz4lmi6CA1WM0KHCF9c4f5KgUY1mfv7oNm/OC4rSTy9SusEU/ClGDH1bo B4nSb+Lm1OtzLZhNTz9Jbd7snzty3u1AIuhnRrzm8yfAuk3b7ZpsLF6ap10cgM1u 8QO2ZTGAMJNjyVrs/VJQZfad+p6+TLoZQF0xdBGLPRFeI3/NXFQK6zZHkEjhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUHl2THH0FPUu+5EKWI8UkSXYYP/AwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBAFEIfFscDlaXmONQ8+xNcD5v5yEr7X+RDoPV6q8q85czwNN6 aI82WbCkTeiv9EfItutRSJH6zykHlED+QCK00J85Imh2tlIByvbiPsX/co+9VupN UqmuWG3OanDX2+fNIH1KSM2c8I/O5UXmjmWIm8QrpWeSBsqymOc2NM2RO0V/cpeL dxUnlNqkBml36lk9Pc6jzyk07TP49PduRxBBJAmmqvy4TIeR+nIYP+ZvWs5cB8hm T2k3xI70Z3ju1DUtF88tHUH6aFdO/AzArso5Nl1yc6ILIgPVeG+kDbPuQDMKZ7oB 8H7S79GWrXvW52c0fFH7+hlVEYLxgoPUF3fBVJo= -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org