$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a623135613a3a2f34382d3438203d3e20313338383138.roa File: 323430363a626534303a623135613a3a2f34382d3438203d3e20313338383138.roa (raw, json) Hash identifier: d3Ij2ys6pbpZUOmjSYzqtjVvTKu0iMlir5T6zjZ8WOw= Subject key identifier: 2F:CD:21:35:E1:8B:F4:90:04:21:E2:45:F0:D8:A9:43:D8:EA:3E:0D Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 32358EDE773DC26E343C3A92406157723BD8E5ED Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a623135613a3a2f34382d3438203d3e20313338383138.roa Signing time: Fri 14 Jun 2024 06:00:02 +0000 ROA not before: Fri 14 Jun 2024 05:55:02 +0000 ROA not after: Fri 13 Jun 2025 06:00:02 +0000 asID: 138818 IP address blocks: 2406:be40:b15a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:35:8e:de:77:3d:c2:6e:34:3c:3a:92:40:61:57:72:3b:d8:e5:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: Jun 14 05:55:02 2024 GMT Not After : Jun 13 06:00:02 2025 GMT Subject: CN=2FCD2135E18BF4900421E245F0D8A943D8EA3E0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:49:6f:3b:17:e5:ad:ed:52:91:2c:be:63:87: 48:57:25:31:3c:af:10:93:12:ac:ef:dd:67:14:de: e4:07:65:dc:e8:87:af:38:96:a8:42:20:bc:ba:68: 6b:4e:ba:8a:63:4a:b3:8f:d4:41:3c:5b:40:85:4d: 72:d2:2a:98:be:e9:11:98:59:b8:5f:3e:16:96:0b: 9f:14:c5:ec:cd:cd:76:2a:bd:c1:1d:d9:fc:ad:2b: d7:12:76:89:d3:de:eb:28:6a:c4:15:f9:d9:40:99: 45:fc:31:39:48:67:0a:26:c2:20:d9:27:e3:aa:62: 5c:28:6a:cf:2b:b8:4a:81:5c:88:ab:5f:85:86:d0: 76:33:c7:5e:04:1c:a8:af:75:83:5e:83:7f:bc:3b: c9:fc:04:4e:a1:5f:a9:a8:fc:76:c8:85:e0:44:44: bd:5a:0b:c3:33:5c:38:3a:c3:06:78:a1:07:26:42: b3:c1:33:e8:4f:d1:5e:d6:dd:7d:ed:03:fe:10:43: 1e:e2:00:0c:67:66:1c:5a:c3:c4:72:3b:fe:7f:8a: e6:93:7f:30:55:7c:f0:81:03:12:7b:60:78:c5:bc: ed:e7:c7:d1:a1:ab:e1:48:b7:bc:89:ed:89:f1:38: 74:e2:d1:09:2f:ba:ba:41:14:77:f8:28:d6:53:3b: 9e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CD:21:35:E1:8B:F4:90:04:21:E2:45:F0:D8:A9:43:D8:EA:3E:0D X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a623135613a3a2f34382d3438203d3e20313338383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:be40:b15a::/48 Signature Algorithm: sha256WithRSAEncryption 90:a1:f1:f3:3e:9d:36:85:77:46:fe:08:f0:37:fb:47:5b:f9: 3c:b7:d0:c3:7a:94:1f:d4:9f:47:59:9d:3d:c4:9a:41:e8:1e: cb:6c:4c:18:a7:96:43:90:e3:96:43:e6:27:4f:df:b2:bf:3e: f6:40:62:94:21:41:86:a4:a3:20:fd:20:7b:18:6b:f4:85:c9: aa:44:95:83:d3:da:c6:4d:1c:ed:4a:79:ac:22:59:68:36:01: 19:08:78:4e:98:18:8c:22:d9:10:87:27:07:09:1b:f5:e3:b6: 82:2c:31:aa:7f:eb:0b:6e:24:ce:cb:79:10:53:8f:12:a7:00: 4a:37:c5:a2:dd:46:96:6b:6b:19:23:01:87:2a:99:bd:ed:f8: c3:7c:d5:f9:ce:60:6f:a0:6e:53:43:eb:db:65:a1:08:26:7d: 68:95:f8:e2:c8:63:2b:ab:3c:42:a8:b2:e5:af:58:3b:44:1f: 3f:38:70:47:79:ae:70:6a:bb:1d:95:b7:43:e8:b5:06:a7:76: f6:e9:6c:f9:d4:a2:e7:ba:0a:c3:c8:8d:a1:0f:99:53:53:39: 8a:c4:5d:c8:dc:44:11:b6:ee:81:6b:f9:03:4b:c6:0d:56:ab: e5:00:94:66:e8:96:0b:9b:42:5a:73:a3:57:ba:e3:90:26:3f: 62:ad:08:77 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUMjWO3nc9wm40PDqSQGFXcjvY5e0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNDA2MTQwNTU1MDJaFw0yNTA2MTMwNjAwMDJaMDMxMTAvBgNV BAMTKDJGQ0QyMTM1RTE4QkY0OTAwNDIxRTI0NUYwRDhBOTQzRDhFQTNFMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgSW87F+Wt7VKRLL5jh0hXJTE8 rxCTEqzv3WcU3uQHZdzoh684lqhCILy6aGtOuopjSrOP1EE8W0CFTXLSKpi+6RGY WbhfPhaWC58UxezNzXYqvcEd2fytK9cSdonT3usoasQV+dlAmUX8MTlIZwomwiDZ J+OqYlwoas8ruEqBXIirX4WG0HYzx14EHKivdYNeg3+8O8n8BE6hX6mo/HbIheBE RL1aC8MzXDg6wwZ4oQcmQrPBM+hP0V7W3X3tA/4QQx7iAAxnZhxaw8RyO/5/iuaT fzBVfPCBAxJ7YHjFvO3nx9Ghq+FIt7yJ7YnxOHTi0QkvurpBFHf4KNZTO563AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUL80hNeGL9JAEIeJF8NipQ9jqPg0wHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMyMzQzMDM2M2E2MjY1MzQzMDNhNjIzMTM1NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Br5AsVowDQYJKoZIhvcNAQELBQADggEBAJCh8fM+nTaFd0b+CPA3+0db+Ty30MN6 lB/Un0dZnT3EmkHoHstsTBinlkOQ45ZD5idP37K/PvZAYpQhQYakoyD9IHsYa/SF yapElYPT2sZNHO1KeawiWWg2ARkIeE6YGIwi2RCHJwcJG/XjtoIsMap/6wtuJM7L eRBTjxKnAEo3xaLdRpZraxkjAYcqmb3t+MN81fnOYG+gblND69tloQgmfWiV+OLI YyurPEKosuWvWDtEHz84cEd5rnBqux2Vt0PotQandvbpbPnUoue6CsPIjaEPmVNT OYrEXcjcRBG27oFr+QNLxg1Wq+UAlGbolgubQlpzo1e645AmP2KtCHc= -----END CERTIFICATE-----Generated at Sat Nov 23 05:00:44 2024 by rpki-client on console-fra.rpki-client.org