$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: 9IIX/I4LwDiuE+KeZYA2yYvi5TMJFCE/fbqcURjEk/E= Subject key identifier: 54:C1:DE:33:43:33:66:66:5B:AD:43:58:AB:FE:EA:F8:C7:CC:7C:59 Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 38C1D21E9EC556C7D48CCC2A6AD1F215C6C9F77C Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa Signing time: Thu 08 Aug 2024 04:00:03 +0000 ROA not before: Thu 08 Aug 2024 03:55:03 +0000 ROA not after: Thu 07 Aug 2025 04:00:03 +0000 asID: 133827 IP address blocks: 2404:a640:957::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c1:d2:1e:9e:c5:56:c7:d4:8c:cc:2a:6a:d1:f2:15:c6:c9:f7:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Aug 8 03:55:03 2024 GMT Not After : Aug 7 04:00:03 2025 GMT Subject: CN=54C1DE33433366665BAD4358ABFEEAF8C7CC7C59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d1:86:67:a7:6e:67:c0:33:b4:8f:1b:90:61: bb:f3:43:84:68:02:f7:fb:01:d1:e2:55:00:9e:bf: f2:a6:5f:d7:7a:ec:8b:ae:26:4c:a6:f8:7f:f4:05: be:a5:89:96:6f:b5:c8:c4:fb:62:81:b4:19:a8:84: f5:a1:bc:5a:5c:79:23:c3:c7:9a:15:07:c4:ff:14: 7c:97:0d:73:9b:b4:b2:df:09:83:42:b3:32:bd:ed: 5a:90:45:e2:78:09:46:da:6a:80:fb:bf:11:3f:89: d9:28:47:d5:76:36:ac:f5:62:4f:e9:58:65:9b:3a: dc:4f:f0:ca:dc:50:ed:37:3d:9e:04:ee:f9:d9:10: ed:33:d8:ef:87:31:e5:e8:60:2a:f4:98:2f:69:5a: 39:98:aa:f6:1e:36:2e:c0:48:01:fe:5a:a7:8b:11: 9d:42:c3:bb:dd:e5:f2:46:86:5c:a8:cf:aa:75:9f: 97:ee:11:d6:25:c2:83:5f:9b:32:80:e3:3a:50:b4: 45:84:f2:d1:93:a0:c6:b1:97:1b:4a:37:42:4a:ff: 2f:dc:af:8b:5d:ec:74:4a:3c:c2:a0:ef:46:aa:8e: fa:cc:5e:d1:7f:01:d6:f3:3d:36:ef:fe:51:90:30: db:e2:0d:f2:cf:c2:43:e9:72:87:f1:c0:a5:cc:18: 51:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C1:DE:33:43:33:66:66:5B:AD:43:58:AB:FE:EA:F8:C7:CC:7C:59 X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:957::/48 Signature Algorithm: sha256WithRSAEncryption 95:c3:9a:47:71:e7:26:82:1f:9a:0b:63:0c:bd:79:0d:0a:db: 4c:f8:f9:e6:c8:20:c8:de:30:f4:be:00:42:b2:c4:9a:18:e9: 8b:22:48:c6:5f:20:5e:cf:04:36:34:1b:07:38:75:83:50:00: 14:9d:61:1a:1a:99:46:ae:64:5c:5f:f8:2b:02:0d:9b:4b:4b: fe:60:37:21:ad:d6:41:40:ce:e2:30:b0:2e:51:47:61:4c:c8: 9a:a5:8f:7c:00:8e:dd:68:79:de:12:a7:de:33:6f:a1:8f:a9: 3f:61:ba:32:7b:2e:78:d6:c7:71:9d:6b:c5:4d:db:56:e1:2c: 4c:e2:91:50:65:b9:47:fb:bf:a1:cd:ac:e7:e9:be:87:ad:c1: 9c:65:29:92:5a:98:76:2a:0c:81:08:9e:47:3c:27:78:f0:37: 30:4d:3e:5a:2f:1a:a8:e2:03:47:67:f1:a5:8c:0a:31:f6:60: 1c:3d:ff:3a:5e:9d:73:d7:79:ae:5f:9b:a6:ef:c4:21:98:4d: 65:57:93:4d:a3:1b:94:37:e7:88:d2:1a:62:ab:6a:36:ba:8b: f1:f3:d3:63:e8:61:91:d9:c3:42:5b:97:99:29:e8:6b:a3:df: 55:fc:26:4a:65:d4:8a:ba:98:c5:4d:b5:bc:9d:93:6c:8f:97: 17:a3:d9:59 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOMHSHp7FVsfUjMwqatHyFcbJ93wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNDA4MDgwMzU1MDNaFw0yNTA4MDcwNDAwMDNaMDMxMTAvBgNV BAMTKDU0QzFERTMzNDMzMzY2NjY1QkFENDM1OEFCRkVFQUY4QzdDQzdDNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX0YZnp25nwDO0jxuQYbvzQ4Ro Avf7AdHiVQCev/KmX9d67IuuJkym+H/0Bb6liZZvtcjE+2KBtBmohPWhvFpceSPD x5oVB8T/FHyXDXObtLLfCYNCszK97VqQReJ4CUbaaoD7vxE/idkoR9V2Nqz1Yk/p WGWbOtxP8MrcUO03PZ4E7vnZEO0z2O+HMeXoYCr0mC9pWjmYqvYeNi7ASAH+WqeL EZ1Cw7vd5fJGhlyoz6p1n5fuEdYlwoNfmzKA4zpQtEWE8tGToMaxlxtKN0JK/y/c r4td7HRKPMKg70aqjvrMXtF/AdbzPTbv/lGQMNviDfLPwkPpcofxwKXMGFFPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVMHeM0MzZmZbrUNYq/7q+MfMfFkwHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzkzNTM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAlXMA0GCSqGSIb3DQEBCwUAA4IBAQCVw5pHcecmgh+aC2MMvXkNCttM+PnmyCDI 3jD0vgBCssSaGOmLIkjGXyBezwQ2NBsHOHWDUAAUnWEaGplGrmRcX/grAg2bS0v+ YDchrdZBQM7iMLAuUUdhTMiapY98AI7daHneEqfeM2+hj6k/Yboyey541sdxnWvF TdtW4SxM4pFQZblH+7+hzazn6b6HrcGcZSmSWph2KgyBCJ5HPCd48DcwTT5aLxqo 4gNHZ/GljAox9mAcPf86Xp1z13muX5um78QhmE1lV5NNoxuUN+eI0hpiq2o2uovx 89Nj6GGR2cNCW5eZKehro99V/CZKZdSKupjFTbW8nZNsj5cXo9lZ -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org