$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: v86rIL1J9aXi4VbgCIFAar9em5fnxZHq7TIwnysrq94= Subject key identifier: AF:31:25:A2:A7:32:B9:59:2D:D2:E6:DA:F7:78:1E:5C:0B:F2:DE:FF Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 5B52C0B1676AA494554874DD292FD678957D79E9 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:26:01 +0000 ROA not before: Tue 13 Aug 2024 01:21:01 +0000 ROA not after: Tue 12 Aug 2025 01:26:01 +0000 asID: 136079 IP address blocks: 2405:2cc0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:52:c0:b1:67:6a:a4:94:55:48:74:dd:29:2f:d6:78:95:7d:79:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:21:01 2024 GMT Not After : Aug 12 01:26:01 2025 GMT Subject: CN=AF3125A2A732B9592DD2E6DAF7781E5C0BF2DEFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:81:de:30:0f:b8:e7:03:19:d4:c2:66:c3: 8f:fe:30:a2:0b:f4:93:71:2c:d6:55:24:70:7c:3b: ce:aa:9f:ea:95:1a:4d:98:81:d3:66:fc:c0:d9:93: 4b:82:a4:33:f7:e1:21:5e:c0:15:a6:96:4a:30:99: 5c:ad:46:8f:70:78:40:c1:e8:b7:21:15:56:05:df: 54:72:6e:59:7f:60:73:14:a1:f9:c9:6a:f5:a0:92: 0a:67:fb:65:54:ce:ba:89:d8:ef:a2:36:24:f8:2d: 99:2b:56:19:a6:1d:86:26:56:ad:e1:3f:1a:3a:25: 70:8e:b8:f0:9d:ed:43:51:62:ef:74:cf:92:d8:c6: d3:b7:03:dc:8b:5b:2e:50:51:1f:0e:6f:a2:dd:fc: ec:59:2d:e1:e3:ba:f7:81:91:b2:a0:9e:ed:c0:0e: 59:15:12:50:43:76:99:bd:d6:28:1d:7d:a2:17:98: 3b:3e:e7:1f:96:74:23:9b:cc:67:c0:b8:55:9e:2a: 26:b2:22:bc:aa:2a:2f:85:22:c8:2e:ba:6f:42:a8: 53:b3:ee:b4:ec:e8:59:3a:57:48:f8:05:f1:40:e6: 22:08:dd:8f:aa:dc:08:37:8f:72:6a:97:8b:d1:28: 6a:a7:95:0f:78:29:41:65:fb:02:8c:ae:7b:a3:84: df:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:31:25:A2:A7:32:B9:59:2D:D2:E6:DA:F7:78:1E:5C:0B:F2:DE:FF X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a363a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:6::/48 Signature Algorithm: sha256WithRSAEncryption 46:62:e9:4b:db:f6:a9:0c:cf:2b:fa:70:7b:c2:fa:d2:35:46: 86:a8:52:27:e4:43:14:77:3e:d6:47:df:86:30:f5:8c:b5:6e: 1d:30:97:04:4d:6d:5b:90:06:ad:91:d1:d2:1e:ed:db:53:1b: fb:05:a6:cf:84:7e:d6:55:3e:67:24:cf:04:47:cc:f0:c1:a4: 8d:8e:aa:89:bc:90:25:2d:12:fc:79:67:ca:47:75:39:08:95: 14:ab:f8:85:83:47:5f:6c:bd:9d:bc:6f:e6:87:77:f2:fd:95: 3b:98:df:1f:dc:2a:31:8d:66:ce:f8:ad:dd:4c:c3:44:bc:de: ac:09:3e:7d:9c:3c:de:d0:fd:4c:6d:54:37:0a:d9:f0:80:00: 24:1b:99:cb:49:be:93:6c:b3:ff:c6:4b:3d:96:e1:6f:10:5c: 70:05:aa:49:dd:7d:ec:e0:cf:41:79:65:3e:d9:39:da:2b:8d: 7d:6a:c8:a8:6d:87:ac:8f:74:49:cc:84:2c:3e:11:71:41:b1: 0d:ee:71:82:f3:c1:f1:e6:2e:03:fd:0a:f8:8d:be:7d:69:96: ea:b3:aa:30:99:cd:9f:2d:5e:6b:87:15:33:5d:4e:26:60:17: 01:d8:df:72:b2:6b:82:d1:6e:5b:ec:3f:85:75:15:7a:9a:b5: fb:bd:ec:37 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUW1LAsWdqpJRVSHTdKS/WeJV9eekwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTIxMDFaFw0yNTA4MTIwMTI2MDFaMDMxMTAvBgNV BAMTKEFGMzEyNUEyQTczMkI5NTkyREQyRTZEQUY3NzgxRTVDMEJGMkRFRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVbIHeMA+45wMZ1MJmw4/+MKIL 9JNxLNZVJHB8O86qn+qVGk2YgdNm/MDZk0uCpDP34SFewBWmlkowmVytRo9weEDB 6LchFVYF31Rybll/YHMUofnJavWgkgpn+2VUzrqJ2O+iNiT4LZkrVhmmHYYmVq3h Pxo6JXCOuPCd7UNRYu90z5LYxtO3A9yLWy5QUR8Ob6Ld/OxZLeHjuveBkbKgnu3A DlkVElBDdpm91igdfaIXmDs+5x+WdCObzGfAuFWeKiayIryqKi+FIsguum9CqFOz 7rTs6Fk6V0j4BfFA5iII3Y+q3Ag3j3Jql4vRKGqnlQ94KUFl+wKMrnujhN9tAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrzEloqcyuVkt0uba93geXAvy3v8wHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAYw DQYJKoZIhvcNAQELBQADggEBAEZi6Uvb9qkMzyv6cHvC+tI1RoaoUifkQxR3PtZH 34Yw9Yy1bh0wlwRNbVuQBq2R0dIe7dtTG/sFps+EftZVPmckzwRHzPDBpI2Oqom8 kCUtEvx5Z8pHdTkIlRSr+IWDR19svZ28b+aHd/L9lTuY3x/cKjGNZs74rd1Mw0S8 3qwJPn2cPN7Q/UxtVDcK2fCAACQbmctJvpNss//GSz2W4W8QXHAFqkndfezgz0F5 ZT7ZOdorjX1qyKhth6yPdEnMhCw+EXFBsQ3ucYLzwfHmLgP9CviNvn1pluqzqjCZ zZ8tXmuHFTNdTiZgFwHY33Kya4LRblvsP4V1FXqatfu97Dc= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org