$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: kj+jjliVyOq89SFtdsJZ6/jz1sCOSflfI1524JkUHIM= Subject key identifier: 5C:AE:6F:29:46:27:76:41:A8:FA:EE:52:82:00:EC:38:F9:EE:C8:BC Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 7EF56B9ADFFB866271A807EA20252F08C72273C1 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:26:59 +0000 ROA not before: Tue 13 Aug 2024 01:21:59 +0000 ROA not after: Tue 12 Aug 2025 01:26:59 +0000 asID: 136079 IP address blocks: 2405:2cc0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f5:6b:9a:df:fb:86:62:71:a8:07:ea:20:25:2f:08:c7:22:73:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:21:59 2024 GMT Not After : Aug 12 01:26:59 2025 GMT Subject: CN=5CAE6F2946277641A8FAEE528200EC38F9EEC8BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:52:7a:78:9f:a5:b6:9f:16:ab:bf:b6:d8:aa: 0e:d7:33:0c:37:08:df:26:16:dc:ac:7d:a8:55:df: 6b:dd:85:7f:14:0d:cd:da:06:cc:d2:3d:58:a2:22: 6b:33:0d:d1:8a:e1:f8:60:c9:21:23:a5:83:40:f9: fb:30:45:94:4b:f0:9c:25:8b:99:fa:20:a3:9d:29: e2:ef:bc:bd:dc:0f:49:7d:f5:31:61:41:c9:43:87: fb:97:62:44:37:f0:56:01:66:62:6a:76:3c:57:90: 63:60:e0:43:6b:80:5b:18:b5:9e:f5:27:e2:85:0c: e7:e7:dd:97:0a:ce:77:85:0c:71:6c:38:b5:d1:74: 0d:a8:cf:c8:46:22:32:7e:a5:28:86:2e:2c:94:76: 01:97:29:ab:35:81:c5:ed:07:94:d4:48:f4:6f:28: 38:a4:fb:10:89:88:e1:c7:be:e8:4c:d0:9d:cb:35: f9:eb:0a:b6:8a:42:42:24:3d:5b:24:29:56:63:1e: b5:29:d8:c5:da:f7:b8:1f:f2:a9:c9:e7:79:53:e7: 59:38:75:b5:11:00:ce:4c:58:1a:05:50:20:b3:17: 05:7d:29:88:26:51:c5:cf:e4:84:65:fb:ae:fd:2a: 89:99:1b:8d:13:84:c0:4b:1e:f3:2c:25:2e:ee:77: f9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AE:6F:29:46:27:76:41:A8:FA:EE:52:82:00:EC:38:F9:EE:C8:BC X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a393a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:9::/48 Signature Algorithm: sha256WithRSAEncryption 54:76:25:7c:58:1d:25:2b:df:25:46:1b:26:3c:cb:cd:50:d0: a1:5e:87:a5:7e:ed:8c:1c:39:76:09:7f:5e:59:0e:7f:e3:c9: 74:15:d8:bb:cf:76:54:04:2d:50:e0:aa:7d:0d:66:21:7b:a6: f4:3f:61:f0:9a:e0:df:2e:70:2a:9b:f6:c6:31:42:07:34:a4: 4e:4e:7c:8d:50:ca:47:8c:95:45:93:f0:53:6b:2c:b4:89:a2: d1:c3:48:53:ae:c1:01:51:73:e4:82:69:cb:92:76:e5:01:e3: 9f:8d:e5:5e:56:b1:bf:69:eb:82:13:2f:4d:f8:d4:cd:9e:13: 8b:e5:5e:38:d7:ac:a0:a6:43:53:52:e0:45:5d:de:2a:f7:dc: 65:e8:a4:73:e6:40:0b:0f:51:a8:78:0e:1a:7f:6c:fe:57:92: eb:b1:e3:49:1b:90:e7:d2:fb:16:ae:0f:88:22:9e:2e:d7:ba: 90:b7:2d:31:6a:10:fc:44:6e:44:5c:20:6c:52:62:d8:69:75: e0:cd:d0:80:f5:1a:b8:b0:ed:6c:e0:ef:e5:c1:81:8f:ee:7e: 6c:fc:0a:3f:f5:e6:64:c2:fb:fb:a7:7b:db:22:ad:95:09:12: 09:1f:29:f9:64:fa:19:26:8e:79:5a:df:9e:8f:3c:25:28:02: 55:8b:ca:d4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfvVrmt/7hmJxqAfqICUvCMcic8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTIxNTlaFw0yNTA4MTIwMTI2NTlaMDMxMTAvBgNV BAMTKDVDQUU2RjI5NDYyNzc2NDFBOEZBRUU1MjgyMDBFQzM4RjlFRUM4QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVUnp4n6W2nxarv7bYqg7XMww3 CN8mFtysfahV32vdhX8UDc3aBszSPViiImszDdGK4fhgySEjpYNA+fswRZRL8Jwl i5n6IKOdKeLvvL3cD0l99TFhQclDh/uXYkQ38FYBZmJqdjxXkGNg4ENrgFsYtZ71 J+KFDOfn3ZcKzneFDHFsOLXRdA2oz8hGIjJ+pSiGLiyUdgGXKas1gcXtB5TUSPRv KDik+xCJiOHHvuhM0J3LNfnrCraKQkIkPVskKVZjHrUp2MXa97gf8qnJ53lT51k4 dbURAM5MWBoFUCCzFwV9KYgmUcXP5IRl+679KomZG40ThMBLHvMsJS7ud/nxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXK5vKUYndkGo+u5SggDsOPnuyLwwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAkw DQYJKoZIhvcNAQELBQADggEBAFR2JXxYHSUr3yVGGyY8y81Q0KFeh6V+7YwcOXYJ f15ZDn/jyXQV2LvPdlQELVDgqn0NZiF7pvQ/YfCa4N8ucCqb9sYxQgc0pE5OfI1Q ykeMlUWT8FNrLLSJotHDSFOuwQFRc+SCacuSduUB45+N5V5Wsb9p64ITL0341M2e E4vlXjjXrKCmQ1NS4EVd3ir33GXopHPmQAsPUah4Dhp/bP5Xkuux40kbkOfS+xau D4gini7XupC3LTFqEPxEbkRcIGxSYthpdeDN0ID1Griw7Wzg7+XBgY/ufmz8Cj/1 5mTC+/une9sirZUJEgkfKflk+hkmjnla356PPCUoAlWLytQ= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org