$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa File: 323430343a313034303a3a2f33322d3332203d3e20313338313133.roa (raw, json) Hash identifier: euGW3qyiY1cvGkXvLfjMjljBNDqFA3m50maYeGElOOA= Subject key identifier: 49:B0:86:A6:08:89:B2:7C:EC:DA:D6:BB:20:5B:9C:0E:14:DA:39:A1 Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 44918912203762AD1E8A4B1317864EC2277E04DA Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa Signing time: Mon 01 Jul 2024 01:02:47 +0000 ROA not before: Mon 01 Jul 2024 00:57:47 +0000 ROA not after: Mon 30 Jun 2025 01:02:47 +0000 asID: 138113 IP address blocks: 2404:1040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 21:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:91:89:12:20:37:62:ad:1e:8a:4b:13:17:86:4e:c2:27:7e:04:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Jul 1 00:57:47 2024 GMT Not After : Jun 30 01:02:47 2025 GMT Subject: CN=49B086A60889B27CECDAD6BB205B9C0E14DA39A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b1:1f:f8:57:9a:29:e3:34:23:3d:50:cd:d0: 3f:ed:02:fd:ce:44:48:5e:3e:0b:cb:c6:ea:51:1c: be:8f:f4:75:b4:dc:f1:8f:de:d8:1a:f8:40:5f:3c: 25:4f:cb:2c:3d:e3:7d:b6:20:0a:a6:75:1b:77:80: 99:c2:e0:76:5d:47:da:7b:db:5e:ce:43:92:14:a1: c3:f8:00:90:db:af:1c:d3:38:0e:62:a1:af:be:42: 6d:49:4c:a8:ad:1a:02:f5:2b:f9:ab:6b:2c:0a:22: bb:9d:d1:13:36:ec:87:cc:88:3c:02:ed:74:76:95: 7c:43:ab:8c:ea:39:6a:71:94:66:6b:75:2a:ae:19: 93:c8:da:94:82:6f:ab:5a:5b:e2:ae:ea:9d:96:0d: 96:74:da:25:e3:ee:3a:43:36:07:ae:df:1f:ce:86: e3:1d:90:04:3a:b3:64:ad:8b:75:df:ed:85:02:eb: 70:a8:d0:eb:4b:25:65:96:51:c2:54:da:ec:74:a6: 4c:17:a5:5d:9a:a1:2b:ac:93:54:c1:f9:81:ee:37: 9c:85:23:38:98:13:ae:97:09:e0:28:68:18:e0:8f: db:38:b4:73:8e:3e:1d:c7:1a:d2:04:e5:85:ed:92: a2:9c:ee:5b:33:71:7d:ec:01:49:7f:a3:8f:ea:ba: 72:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B0:86:A6:08:89:B2:7C:EC:DA:D6:BB:20:5B:9C:0E:14:DA:39:A1 X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/323430343a313034303a3a2f33322d3332203d3e20313338313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1040::/32 Signature Algorithm: sha256WithRSAEncryption 3f:af:f5:7e:2e:fa:fd:f9:53:5b:41:56:87:7c:38:09:2e:bb: 2b:e1:8e:17:6a:d6:ea:48:e1:25:3f:5a:d5:f8:19:55:b7:c6: 64:3c:4f:75:5d:73:7e:4d:09:29:7d:4b:f3:8d:c9:f6:d3:30: 0d:16:ec:3a:fe:c9:46:93:02:50:83:73:ef:a8:24:c0:04:38: 20:37:e6:de:7c:27:78:d5:19:8a:3e:80:24:e7:ba:72:df:da: 7b:64:cd:f1:29:3e:8e:c3:2b:b4:60:bb:8f:63:d4:33:6e:16: 71:f9:c9:4a:88:8a:40:8e:b5:d8:9d:db:ee:1c:7e:26:25:e5: e8:5e:0d:0c:e2:a8:21:23:50:13:f8:d4:77:1a:8b:79:7b:1a: 11:c7:05:c8:a4:85:72:14:7f:81:c3:83:bc:fd:f0:8c:86:a3: d3:fc:82:5e:2c:ed:08:a0:dc:03:1a:7f:6c:80:b9:88:02:0c: 52:3a:05:5d:ed:7b:eb:83:48:9a:12:79:96:55:14:d2:6b:a2: d1:77:a9:6f:6b:bb:15:5a:eb:d0:6e:be:c9:c1:d4:09:b8:77: 45:14:24:a9:cf:54:9b:00:9e:86:e4:8a:34:4b:01:e7:a8:ed: 97:6b:ba:45:9b:00:82:3f:bd:87:ae:96:73:8b:00:3f:52:f9: 1b:85:c3:c9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURJGJEiA3Yq0eiksTF4ZOwid+BNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNDA3MDEwMDU3NDdaFw0yNTA2MzAwMTAyNDdaMDMxMTAvBgNV BAMTKDQ5QjA4NkE2MDg4OUIyN0NFQ0RBRDZCQjIwNUI5QzBFMTREQTM5QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDasR/4V5op4zQjPVDN0D/tAv3O REhePgvLxupRHL6P9HW03PGP3tga+EBfPCVPyyw94322IAqmdRt3gJnC4HZdR9p7 217OQ5IUocP4AJDbrxzTOA5ioa++Qm1JTKitGgL1K/mraywKIrud0RM27IfMiDwC 7XR2lXxDq4zqOWpxlGZrdSquGZPI2pSCb6taW+Ku6p2WDZZ02iXj7jpDNgeu3x/O huMdkAQ6s2Sti3Xf7YUC63Co0OtLJWWWUcJU2ux0pkwXpV2aoSusk1TB+YHuN5yF IziYE66XCeAoaBjgj9s4tHOOPh3HGtIE5YXtkqKc7lszcX3sAUl/o4/qunKfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUSbCGpgiJsnzs2ta7IFucDhTaOaEwHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhMmU1YjY5LWFkYmQtNGUyZC04 NDdkLTM3NDgxNTU4MWQ4Ni8wLzMyMzQzMDM0M2EzMTMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMxMzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEEEAwDQYJKoZI hvcNAQELBQADggEBAD+v9X4u+v35U1tBVod8OAkuuyvhjhdq1upI4SU/WtX4GVW3 xmQ8T3Vdc35NCSl9S/ONyfbTMA0W7Dr+yUaTAlCDc++oJMAEOCA35t58J3jVGYo+ gCTnunLf2ntkzfEpPo7DK7Rgu49j1DNuFnH5yUqIikCOtdid2+4cfiYl5eheDQzi qCEjUBP41Hcai3l7GhHHBcikhXIUf4HDg7z98IyGo9P8gl4s7Qig3AMaf2yAuYgC DFI6BV3te+uDSJoSeZZVFNJrotF3qW9ruxVa69BuvsnB1Am4d0UUJKnPVJsAnobk ijRLAeeo7ZdrukWbAII/vYeulnOLAD9S+RuFw8k= -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org