$ rpki-client -vvf repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa File: 323430313a343230303a3a2f33322d3438203d3e203234313935.roa (raw, json) Hash identifier: 09pTyAPGkDhkuez65QhC+JUUx/+DkLuWQ1gGTLu7lyc= Subject key identifier: 7E:8B:F1:AF:0F:C0:63:64:28:14:01:98:38:07:6D:94:59:F7:2C:82 Certificate issuer: /CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Certificate serial: 10D0AC7118B7ACF890A57A12B6ED87E5D27B7FDD Authority key identifier: 1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa Signing time: Sat 10 Aug 2024 10:00:00 +0000 ROA not before: Sat 10 Aug 2024 09:55:00 +0000 ROA not after: Sat 09 Aug 2025 10:00:00 +0000 asID: 24195 IP address blocks: 2401:4200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d0:ac:71:18:b7:ac:f8:90:a5:7a:12:b6:ed:87:e5:d2:7b:7f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946 Validity Not Before: Aug 10 09:55:00 2024 GMT Not After : Aug 9 10:00:00 2025 GMT Subject: CN=7E8BF1AF0FC063642814019838076D9459F72C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:07:d4:80:cb:9e:da:f4:6e:26:72:77:ce:c0: d6:f3:64:50:b7:39:e2:78:4c:25:9c:64:c9:1a:5d: 1d:91:d7:2f:b4:e5:1a:f9:ef:79:45:47:fe:37:5b: c2:98:69:57:52:01:65:73:c3:b4:dc:69:70:96:27: 91:63:31:ca:bf:a5:71:b4:bc:87:a1:41:19:26:85: c9:97:21:b6:c6:9f:86:2a:2e:51:b3:0c:d7:5d:5b: cc:43:73:92:e8:c5:25:44:08:a0:4a:bf:01:9c:be: 36:08:9c:75:ba:f4:70:cd:cd:e2:3d:b6:4f:b3:98: da:33:a7:c9:eb:36:3f:48:73:5a:11:c0:b6:45:2e: 19:b8:ed:8c:c3:50:81:6c:28:f9:14:51:d3:b2:f3: b1:c5:eb:73:5b:74:de:2d:e2:10:60:65:63:81:4b: eb:32:91:cd:e9:52:c1:2e:9b:1f:60:20:b5:ad:01: 93:05:47:f1:be:d0:96:d6:35:12:40:7e:fe:04:79: 1d:a9:a2:2e:fe:60:11:8e:a7:41:1f:9a:7a:d6:71: 7c:4e:3f:2e:15:e2:f2:04:41:94:9d:d0:af:73:ba: 50:62:3f:3a:0a:95:96:18:ca:16:c8:ab:d3:1d:87: 14:ee:bd:88:f4:6d:f1:cb:d1:2c:7d:04:d3:96:4e: 76:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8B:F1:AF:0F:C0:63:64:28:14:01:98:38:07:6D:94:59:F7:2C:82 X509v3 Authority Key Identifier: keyid:1F:CD:47:FB:4B:D7:29:E2:2E:4F:EE:FC:E5:B6:1B:4E:1C:7F:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FCD47FB4BD729E22E4FEEFCE5B61B4E1C7FE946.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8792a4cd-dbac-43ac-8060-2e8d42eae655/0/323430313a343230303a3a2f33322d3438203d3e203234313935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4200::/32 Signature Algorithm: sha256WithRSAEncryption 56:4b:39:40:6f:0a:a7:bf:a0:f3:1e:6d:78:1d:df:b1:e1:24: b9:58:e1:bf:28:07:5c:d0:69:be:2a:75:48:a7:bf:eb:12:19: a8:94:f0:af:cf:dd:43:6b:79:ec:77:2d:2b:09:0b:1b:e2:ef: ab:84:68:7e:9b:a2:60:e6:c2:26:bd:4b:fd:a3:01:27:01:fc: 38:f7:99:69:75:28:57:16:db:ee:ac:bf:bb:d1:ce:b9:b7:f7: 69:ab:78:c7:d4:df:d6:b5:30:40:a7:22:41:1d:cc:04:63:82: 30:11:4a:2a:06:d2:b5:55:c9:ac:14:f9:d1:1e:7c:da:10:6b: 03:5d:03:42:26:68:78:2f:61:33:94:0e:12:49:38:6a:5f:b5: f8:b1:6d:c5:d6:66:af:0c:7a:b8:e0:79:c6:c3:eb:c7:e0:6c: 7d:5f:b9:fd:d4:3a:e6:b4:78:e8:8b:4d:a0:fd:24:b6:3d:3c: 8f:0e:91:6f:5f:8b:1d:44:c7:79:c6:5b:96:98:d7:d8:42:5c: bd:ae:a8:26:69:ef:b4:59:0f:3a:7e:96:0d:1f:62:50:6d:71: 70:e5:82:42:78:39:0c:e6:b1:1b:30:86:0c:84:32:8b:61:d5: 50:b0:8d:36:1f:38:19:84:0c:fc:0b:94:78:aa:48:44:57:a7: 00:a8:ec:80 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUENCscRi3rPiQpXoStu2H5dJ7f90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUx QzdGRTk0NjAeFw0yNDA4MTAwOTU1MDBaFw0yNTA4MDkxMDAwMDBaMDMxMTAvBgNV BAMTKDdFOEJGMUFGMEZDMDYzNjQyODE0MDE5ODM4MDc2RDk0NTlGNzJDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnB9SAy57a9G4mcnfOwNbzZFC3 OeJ4TCWcZMkaXR2R1y+05Rr573lFR/43W8KYaVdSAWVzw7TcaXCWJ5FjMcq/pXG0 vIehQRkmhcmXIbbGn4YqLlGzDNddW8xDc5LoxSVECKBKvwGcvjYInHW69HDNzeI9 tk+zmNozp8nrNj9Ic1oRwLZFLhm47YzDUIFsKPkUUdOy87HF63NbdN4t4hBgZWOB S+sykc3pUsEumx9gILWtAZMFR/G+0JbWNRJAfv4EeR2poi7+YBGOp0EfmnrWcXxO Py4V4vIEQZSd0K9zulBiPzoKlZYYyhbIq9MdhxTuvYj0bfHL0Sx9BNOWTnZhAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUfovxrw/AY2QoFAGYOAdtlFn3LIIwHwYDVR0j BBgwFoAUH81H+0vXKeIuT+785bYbThx/6UYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzkyYTRjZC1kYmFjLTQzYWMtODA2MC0yZThkNDJlYWU2NTUvMC8xRkNENDdGQjRC RDcyOUUyMkU0RkVFRkNFNUI2MUI0RTFDN0ZFOTQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZDRDQ3RkI0QkQ3MjlFMjJFNEZFRUZDRTVCNjFCNEUxQzdG RTk0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3OTJhNGNkLWRiYWMtNDNhYy04 MDYwLTJlOGQ0MmVhZTY1NS8wLzMyMzQzMDMxM2EzNDMyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzMTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAUIAMA0GCSqGSIb3 DQEBCwUAA4IBAQBWSzlAbwqnv6DzHm14Hd+x4SS5WOG/KAdc0Gm+KnVIp7/rEhmo lPCvz91Da3nsdy0rCQsb4u+rhGh+m6Jg5sImvUv9owEnAfw495lpdShXFtvurL+7 0c65t/dpq3jH1N/WtTBApyJBHcwEY4IwEUoqBtK1VcmsFPnRHnzaEGsDXQNCJmh4 L2EzlA4SSThqX7X4sW3F1mavDHq44HnGw+vH4Gx9X7n91DrmtHjoi02g/SS2PTyP DpFvX4sdRMd5xluWmNfYQly9rqgmae+0WQ86fpYNH2JQbXFw5YJCeDkM5rEbMIYM hDKLYdVQsI02HzgZhAz8C5R4qkhEV6cAqOyA -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:26 2024 by rpki-client on console-ams.rpki-client.org