$ rpki-client -vvf repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa File: 323430313a613565303a3a2f33322d3438203d3e20313532383130.roa (raw, json) Hash identifier: s292PcC6dBIs43USme90wNYPw9OQTbk8ASa0Cok4ryc= Subject key identifier: 5C:CC:97:52:5C:0D:67:DE:1E:E7:CB:85:61:04:80:98:A9:8A:2D:0C Certificate issuer: /CN=F52826976E7EBDBF89B93A42A1682E42B84289FB Certificate serial: 3CF39EDA10F24688EAD9C9867D8CA9FCA292A9E5 Authority key identifier: F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa Signing time: Fri 28 Jun 2024 16:09:37 +0000 ROA not before: Fri 28 Jun 2024 16:04:37 +0000 ROA not after: Fri 27 Jun 2025 16:09:37 +0000 asID: 152810 IP address blocks: 2401:a5e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.crl rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f3:9e:da:10:f2:46:88:ea:d9:c9:86:7d:8c:a9:fc:a2:92:a9:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F52826976E7EBDBF89B93A42A1682E42B84289FB Validity Not Before: Jun 28 16:04:37 2024 GMT Not After : Jun 27 16:09:37 2025 GMT Subject: CN=5CCC97525C0D67DE1EE7CB8561048098A98A2D0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2c:ba:49:ac:1a:3c:7a:8b:d9:29:0e:33:2c: 88:11:e8:da:c6:fc:b5:71:78:6c:53:0f:0d:66:6c: a2:c3:ab:0a:65:ee:31:d5:6b:a1:78:4b:88:88:fb: ab:dd:e9:4e:4f:b8:0b:48:27:f2:a2:3c:08:ff:ce: 94:ca:bd:17:c0:97:4a:55:75:7a:9d:18:90:74:dd: 98:52:dc:50:2b:83:66:07:0a:29:df:cc:40:a9:e6: 21:3c:bf:78:a4:ea:40:89:b2:8c:2f:ff:4c:f2:73: 45:9a:16:f8:59:d9:eb:20:84:36:d3:96:88:a3:40: 3f:32:d6:33:1f:1e:a6:1b:d3:80:2e:ba:a9:47:28: 89:3d:93:05:05:fd:ba:b3:52:d7:5a:38:89:b9:e0: 83:4a:0f:00:ca:9c:1d:7a:a6:13:09:a5:b9:e4:e3: 4d:b2:e5:e8:13:40:5f:ba:2c:93:1d:51:96:46:36: 08:5a:4e:3f:0e:86:e9:48:6f:99:96:bb:0a:a2:e0: 72:c8:44:ba:3f:96:26:d3:b1:28:2b:17:44:3d:21: 22:7c:5e:ae:b4:9e:f3:6e:d0:4c:ae:59:93:bb:4f: 70:fe:72:c3:0b:d7:06:db:14:33:56:af:c1:9e:2a: 13:48:d5:f1:46:63:f2:eb:01:b7:51:3f:20:85:7d: 21:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CC:97:52:5C:0D:67:DE:1E:E7:CB:85:61:04:80:98:A9:8A:2D:0C X509v3 Authority Key Identifier: keyid:F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:a5e0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:54:b6:19:98:98:2f:74:27:3c:74:96:1b:1b:8e:6f:8a:18: a6:54:6a:41:dc:c5:7c:00:24:e4:66:f1:a5:e2:bc:5d:fd:cf: a6:9d:43:00:3f:5e:f0:2f:a7:f2:d9:8f:42:a8:cf:30:58:d0: 5f:72:ee:e6:01:d5:65:e7:fd:85:7e:9e:89:c2:5c:5c:3b:ec: 4a:89:9a:9d:f3:5a:6d:ea:bf:0c:16:22:9b:46:20:6c:fb:15: 38:30:ed:84:45:30:f0:ec:f9:7f:1a:4b:72:e0:87:a7:d9:96: c6:1b:32:2d:a4:f9:d8:9e:35:f5:97:ab:c3:81:66:23:89:cc: ff:6c:50:ea:44:b9:c2:be:2f:e9:6f:22:99:84:b0:56:8c:1e: 57:28:b2:fb:f9:1a:0c:38:a9:4a:5e:dc:2b:2e:ed:1f:41:64: 17:7c:7e:3a:a2:ff:5e:9e:44:11:d2:b0:ab:b8:16:08:db:c6: ef:54:a3:00:53:be:aa:49:27:04:c3:aa:f9:e2:6c:29:6d:a5: 3a:91:1b:6d:41:61:81:3a:dd:66:7c:84:c6:81:32:4b:67:dd: fe:fe:5b:0d:ef:06:2f:69:f4:cb:94:a7:d0:4d:fc:15:34:a7: bd:f2:9d:2b:5a:1b:ef:2d:6a:3b:3b:3b:c1:87:c9:f8:ed:eb: b7:fe:3a:48 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPPOe2hDyRojq2cmGfYyp/KKSqeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjUyODI2OTc2RTdFQkRCRjg5QjkzQTQyQTE2ODJFNDJC ODQyODlGQjAeFw0yNDA2MjgxNjA0MzdaFw0yNTA2MjcxNjA5MzdaMDMxMTAvBgNV BAMTKDVDQ0M5NzUyNUMwRDY3REUxRUU3Q0I4NTYxMDQ4MDk4QTk4QTJEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeLLpJrBo8eovZKQ4zLIgR6NrG /LVxeGxTDw1mbKLDqwpl7jHVa6F4S4iI+6vd6U5PuAtIJ/KiPAj/zpTKvRfAl0pV dXqdGJB03ZhS3FArg2YHCinfzECp5iE8v3ik6kCJsowv/0zyc0WaFvhZ2esghDbT loijQD8y1jMfHqYb04AuuqlHKIk9kwUF/bqzUtdaOIm54INKDwDKnB16phMJpbnk 402y5egTQF+6LJMdUZZGNghaTj8OhulIb5mWuwqi4HLIRLo/libTsSgrF0Q9ISJ8 Xq60nvNu0EyuWZO7T3D+csML1wbbFDNWr8GeKhNI1fFGY/LrAbdRPyCFfSFbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUXMyXUlwNZ94e58uFYQSAmKmKLQwwHwYDVR0j BBgwFoAU9Sgml25+vb+JuTpCoWguQrhCifswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NDc1MzM4ZC03YWNiLTRhYTctYmVkYy1kNjQ1OWZkMTM1MDQvMS9GNTI4MjY5NzZF N0VCREJGODlCOTNBNDJBMTY4MkU0MkI4NDI4OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjUyODI2OTc2RTdFQkRCRjg5QjkzQTQyQTE2ODJFNDJCODQy ODlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg0NzUzMzhkLTdhY2ItNGFhNy1i ZWRjLWQ2NDU5ZmQxMzUwNC8xLzMyMzQzMDMxM2E2MTM1NjUzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzUzMjM4MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBpeAwDQYJKoZI hvcNAQELBQADggEBABtUthmYmC90Jzx0lhsbjm+KGKZUakHcxXwAJORm8aXivF39 z6adQwA/XvAvp/LZj0KozzBY0F9y7uYB1WXn/YV+nonCXFw77EqJmp3zWm3qvwwW IptGIGz7FTgw7YRFMPDs+X8aS3Lgh6fZlsYbMi2k+dieNfWXq8OBZiOJzP9sUOpE ucK+L+lvIpmEsFaMHlcosvv5Ggw4qUpe3Csu7R9BZBd8fjqi/16eRBHSsKu4Fgjb xu9UowBTvqpJJwTDqvnibCltpTqRG21BYYE63WZ8hMaBMktn3f7+Ww3vBi9p9MuU p9BN/BU0p73ynStaG+8tajs7O8GHyfjt67f+Okg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org