$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: 28JSxPbguduH6Zlkw/CTIrAclyP4oGfavsJuN7/c/LM= Subject key identifier: BD:5E:71:B3:48:D1:8F:0C:90:C7:8C:7B:D9:21:B8:9B:0B:C6:F1:9E Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 0808DBB8F8AB4B65E8B774B879FB74544C8C3254 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:26:24 +0000 ROA not before: Tue 13 Aug 2024 01:21:24 +0000 ROA not after: Tue 12 Aug 2025 01:26:24 +0000 asID: 136079 IP address blocks: 2405:2cc0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:08:db:b8:f8:ab:4b:65:e8:b7:74:b8:79:fb:74:54:4c:8c:32:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:21:24 2024 GMT Not After : Aug 12 01:26:24 2025 GMT Subject: CN=BD5E71B348D18F0C90C78C7BD921B89B0BC6F19E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:93:f1:4b:85:e8:3c:c2:37:12:3f:67:6c: db:27:37:44:c9:a8:21:76:57:ac:89:88:c9:f2:c2: 01:8a:13:5c:3e:7a:89:bd:28:8a:c9:ec:0b:c1:fe: bc:02:a5:b2:a5:07:b6:70:fd:90:24:77:b3:a2:d9: 24:96:41:e7:cb:99:ea:6c:45:47:67:97:b1:4b:48: 49:b0:49:32:dc:d3:ab:01:b2:93:71:4c:10:22:80: 74:8e:4a:cc:a3:7e:88:6a:f8:6e:4e:c3:57:91:f9: 65:81:89:f3:d0:a9:9f:29:c6:a6:e6:4f:d4:ce:72: 14:e2:76:c1:bf:4a:dc:c5:6e:73:90:d5:7c:9b:3b: 83:0b:27:19:bd:0c:56:1e:49:cd:20:2f:1f:bc:95: 44:b9:5a:9f:ce:95:23:ac:1d:b6:e1:af:a7:fd:5a: 7b:9e:37:16:b5:9b:30:de:81:d1:6a:ef:da:b3:18: fd:48:87:67:0f:7c:56:3f:47:24:87:b9:23:ad:f8: fe:51:55:9a:59:e7:e6:a3:6f:26:4e:35:5e:4a:9d: 97:f2:49:d6:13:64:15:8b:83:02:bf:c5:e9:8f:20: 88:9d:ee:ce:e6:8a:7d:66:81:ad:e3:78:1f:8a:ec: a6:a4:7c:5c:33:70:d2:67:4f:f7:45:a8:7e:56:d9: 8a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5E:71:B3:48:D1:8F:0C:90:C7:8C:7B:D9:21:B8:9B:0B:C6:F1:9E X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:7::/48 Signature Algorithm: sha256WithRSAEncryption 57:49:5c:2f:54:f8:44:b4:ad:52:57:8a:4d:80:10:6a:53:b8: 50:53:d0:da:2e:df:39:ce:9d:39:b3:88:24:97:0e:ba:cd:9f: 61:af:ac:e3:c6:05:f6:35:07:12:16:ef:2c:00:21:62:52:cd: 41:ad:76:f0:af:ae:c6:89:9d:c3:8c:d8:d5:66:c0:f2:60:ec: 07:77:d7:59:86:b9:e4:a4:2f:ea:19:3e:31:a1:11:0d:db:45: d6:83:d4:83:c5:06:8f:35:57:ef:86:89:d3:55:90:77:23:60: 2c:13:63:13:da:9e:64:13:a6:4b:34:fa:53:75:43:79:8a:5b: 0b:b7:46:d0:a1:36:e0:ed:5f:df:8c:0d:25:3f:24:0b:46:f4: ab:8c:16:ff:d2:ab:54:77:06:25:de:35:ca:db:04:a1:cb:c3: 27:d1:ee:98:1a:6a:0b:89:a3:b6:fc:e1:33:f8:b4:59:09:b5: 5c:59:e8:dc:c5:82:e7:ee:e6:65:89:12:a7:dd:6e:c8:80:46: df:ba:9c:3f:d7:84:90:0d:df:c8:ba:f1:b5:7d:de:e1:4d:e6: 62:f8:24:e6:b1:66:e1:1e:8a:3c:9d:90:00:91:1d:83:0f:00: b0:ec:c5:66:0a:d4:d2:05:d0:62:03:d6:a9:40:db:1a:2d:63: a6:19:00:f4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCAjbuPirS2Xot3S4eft0VEyMMlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTIxMjRaFw0yNTA4MTIwMTI2MjRaMDMxMTAvBgNV BAMTKEJENUU3MUIzNDhEMThGMEM5MEM3OEM3QkQ5MjFCODlCMEJDNkYxOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChPJPxS4XoPMI3Ej9nbNsnN0TJ qCF2V6yJiMnywgGKE1w+eom9KIrJ7AvB/rwCpbKlB7Zw/ZAkd7Oi2SSWQefLmeps RUdnl7FLSEmwSTLc06sBspNxTBAigHSOSsyjfohq+G5Ow1eR+WWBifPQqZ8pxqbm T9TOchTidsG/StzFbnOQ1XybO4MLJxm9DFYeSc0gLx+8lUS5Wp/OlSOsHbbhr6f9 WnueNxa1mzDegdFq79qzGP1Ih2cPfFY/RySHuSOt+P5RVZpZ5+ajbyZONV5KnZfy SdYTZBWLgwK/xemPIIid7s7min1mga3jeB+K7KakfFwzcNJnT/dFqH5W2YrBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvV5xs0jRjwyQx4x72SG4mwvG8Z4wHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAcw DQYJKoZIhvcNAQELBQADggEBAFdJXC9U+ES0rVJXik2AEGpTuFBT0Nou3znOnTmz iCSXDrrNn2GvrOPGBfY1BxIW7ywAIWJSzUGtdvCvrsaJncOM2NVmwPJg7Ad311mG ueSkL+oZPjGhEQ3bRdaD1IPFBo81V++GidNVkHcjYCwTYxPanmQTpks0+lN1Q3mK Wwu3RtChNuDtX9+MDSU/JAtG9KuMFv/Sq1R3BiXeNcrbBKHLwyfR7pgaaguJo7b8 4TP4tFkJtVxZ6NzFgufu5mWJEqfdbsiARt+6nD/XhJAN38i68bV93uFN5mL4JOax ZuEeijydkACRHYMPALDsxWYK1NIF0GID1qlA2xotY6YZAPQ= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org