$ rpki-client -vvf repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/323430343a366434303a3a2f33322d3438203d3e20313338383130.roa File: 323430343a366434303a3a2f33322d3438203d3e20313338383130.roa (raw, json) Hash identifier: Oi+v4vSiTSM9zUjltxmu968dUNXdnYr8A7jzZ4z/bOI= Subject key identifier: BA:10:A7:F9:F7:B3:F8:D1:ED:E0:BD:72:91:B3:11:7E:09:C8:CE:1C Certificate issuer: /CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Certificate serial: 1510DEC5EDA2A9FBFBBBA761584455F0F7A12A42 Authority key identifier: B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/323430343a366434303a3a2f33322d3438203d3e20313338383130.roa Signing time: Thu 31 Oct 2024 01:35:28 +0000 ROA not before: Thu 31 Oct 2024 01:30:28 +0000 ROA not after: Thu 30 Oct 2025 01:35:28 +0000 asID: 138810 IP address blocks: 2404:6d40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:10:de:c5:ed:a2:a9:fb:fb:bb:a7:61:58:44:55:f0:f7:a1:2a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C Validity Not Before: Oct 31 01:30:28 2024 GMT Not After : Oct 30 01:35:28 2025 GMT Subject: CN=BA10A7F9F7B3F8D1EDE0BD7291B3117E09C8CE1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:08:a8:be:94:c6:4a:f4:de:c2:8d:b8:be: 2f:1d:a3:47:b5:ac:80:ee:1f:20:e9:dd:e9:2c:35: 85:c3:30:10:83:88:42:70:84:33:76:55:5a:d2:8b: ab:3a:1e:88:9c:ff:cc:d2:c2:c1:58:bb:b8:3e:6d: 5b:cd:50:f6:ac:d8:13:41:39:8e:c6:d1:51:4a:db: 62:51:91:40:73:74:3a:b0:3a:a1:01:8d:cb:f5:dc: c6:01:00:19:96:00:ae:b6:09:6d:b3:16:a4:47:8a: 1e:00:72:49:94:5d:0d:d9:f8:b9:e6:32:f8:23:a2: 4a:e9:47:1b:7b:5b:7a:66:1d:c1:c5:68:4f:59:1f: 77:01:76:df:4b:76:dc:16:d5:37:75:44:54:97:cf: 78:71:a2:47:fc:67:43:49:ad:b8:5c:f4:ae:4e:10: 91:b4:f4:65:23:b9:68:f5:5d:c8:60:a1:5b:39:fe: 69:16:ca:8a:3b:b9:c5:bb:58:db:f0:df:48:b2:50: d5:ff:f6:8c:70:ba:d0:f6:1b:fa:da:d8:7e:43:cf: 70:9c:a2:e3:c6:31:b5:99:66:be:2c:c2:04:b0:32: da:bf:f6:82:89:e0:16:b6:97:78:9f:d7:20:41:65: 6b:43:6c:78:a8:8a:a2:94:14:95:49:82:a8:ff:51: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:10:A7:F9:F7:B3:F8:D1:ED:E0:BD:72:91:B3:11:7E:09:C8:CE:1C X509v3 Authority Key Identifier: keyid:B3:26:3D:68:7D:5B:DF:B2:FB:4E:80:2A:B3:B0:03:FC:FD:26:6B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3263D687D5BDFB2FB4E802AB3B003FCFD266B5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b36e88d-d573-4cbb-b460-a0b969aa84d5/0/323430343a366434303a3a2f33322d3438203d3e20313338383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 65:59:2a:1c:8e:65:38:f1:56:fe:53:da:37:3a:b5:00:1c:85: 50:36:a0:1f:cc:2c:a3:aa:49:b8:80:2d:e1:a2:e8:9c:89:08: 1c:45:80:73:c1:cd:8e:f0:40:ef:ae:44:d6:5a:ee:b1:b7:f2: 5f:ab:ce:d5:0d:83:29:ac:2a:ff:25:a1:04:b0:a6:95:6d:2d: b4:c0:06:6c:de:34:91:cc:9c:f1:e4:a7:a0:05:c5:40:6e:58: d9:55:7c:df:ef:62:c1:79:6e:de:5a:d1:a3:d9:23:9b:c6:4e: 96:c7:50:de:0c:b7:8c:b3:cc:0f:00:30:a0:02:30:6a:06:80: c1:86:3a:ec:e5:fc:87:e9:ee:e9:15:c8:ed:01:ca:fe:f0:b7: 04:5e:85:5a:5a:ef:ba:e9:4e:96:1b:c4:68:d2:b5:f5:8c:c2: 87:56:23:0a:93:72:4c:d2:12:26:04:3f:70:61:85:2f:40:0d: d8:f3:f4:44:68:a1:31:59:bc:ad:2d:d2:03:d5:ad:18:cb:89: 7b:43:fb:16:02:2c:fb:70:fb:68:16:e9:6f:96:82:7c:cf:6c: 64:b3:e5:aa:ca:d3:e5:69:eb:3d:8f:ff:5e:7e:de:49:3a:6a: 34:dd:5a:57:98:d2:df:f0:7c:28:64:f9:48:c4:89:b3:d7:0a: 76:19:c2:7b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFRDexe2iqfv7u6dhWERV8PehKkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNG RDI2NkI1QzAeFw0yNDEwMzEwMTMwMjhaFw0yNTEwMzAwMTM1MjhaMDMxMTAvBgNV BAMTKEJBMTBBN0Y5RjdCM0Y4RDFFREUwQkQ3MjkxQjMxMTdFMDlDOENFMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/9QiovpTGSvTewo24vi8do0e1 rIDuHyDp3eksNYXDMBCDiEJwhDN2VVrSi6s6Hoic/8zSwsFYu7g+bVvNUPas2BNB OY7G0VFK22JRkUBzdDqwOqEBjcv13MYBABmWAK62CW2zFqRHih4AckmUXQ3Z+Lnm MvgjokrpRxt7W3pmHcHFaE9ZH3cBdt9LdtwW1Td1RFSXz3hxokf8Z0NJrbhc9K5O EJG09GUjuWj1XchgoVs5/mkWyoo7ucW7WNvw30iyUNX/9oxwutD2G/ra2H5Dz3Cc ouPGMbWZZr4swgSwMtq/9oKJ4Ba2l3if1yBBZWtDbHioiqKUFJVJgqj/Ud7zAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUuhCn+fez+NHt4L1ykbMRfgnIzhwwHwYDVR0j BBgwFoAUsyY9aH1b37L7ToAqs7AD/P0ma1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjM2ZTg4ZC1kNTczLTRjYmItYjQ2MC1hMGI5NjlhYTg0ZDUvMC9CMzI2M0Q2ODdE NUJERkIyRkI0RTgwMkFCM0IwMDNGQ0ZEMjY2QjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMyNjNENjg3RDVCREZCMkZCNEU4MDJBQjNCMDAzRkNGRDI2 NkI1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMzZlODhkLWQ1NzMtNGNiYi1i NDYwLWEwYjk2OWFhODRkNS8wLzMyMzQzMDM0M2EzNjY0MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEbUAwDQYJKoZI hvcNAQELBQADggEBAGVZKhyOZTjxVv5T2jc6tQAchVA2oB/MLKOqSbiALeGi6JyJ CBxFgHPBzY7wQO+uRNZa7rG38l+rztUNgymsKv8loQSwppVtLbTABmzeNJHMnPHk p6AFxUBuWNlVfN/vYsF5bt5a0aPZI5vGTpbHUN4Mt4yzzA8AMKACMGoGgMGGOuzl /Ifp7ukVyO0Byv7wtwRehVpa77rpTpYbxGjStfWMwodWIwqTckzSEiYEP3BhhS9A Ddjz9ERooTFZvK0t0gPVrRjLiXtD+xYCLPtw+2gW6W+WgnzPbGSz5arK0+Vp6z2P /15+3kk6ajTdWleY0t/wfChk+UjEibPXCnYZwns= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org