$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa File: 323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa (raw, json) Hash identifier: Y94ACgKRW/B6r5u1l5R9++TiByrUg/dDZ6VyKO+Pxik= Subject key identifier: AE:CB:3D:3D:3F:FE:22:38:6C:6D:4D:0C:9A:D8:85:2C:8D:53:1A:E6 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 65850232342B535460E09E78504DC9EBB6D6E1BA Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa Signing time: Wed 03 Jul 2024 05:00:51 +0000 ROA not before: Wed 03 Jul 2024 04:55:51 +0000 ROA not after: Wed 02 Jul 2025 05:00:51 +0000 asID: 131736 IP address blocks: 2404:2cc0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:85:02:32:34:2b:53:54:60:e0:9e:78:50:4d:c9:eb:b6:d6:e1:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jul 3 04:55:51 2024 GMT Not After : Jul 2 05:00:51 2025 GMT Subject: CN=AECB3D3D3FFE22386C6D4D0C9AD8852C8D531AE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:05:a2:86:6e:8a:ec:e1:31:2e:18:52:db: 31:39:4e:9c:bb:ed:12:8c:6e:55:58:fd:b2:d1:73: 7f:7b:c1:b5:25:58:d2:95:f5:d2:0b:fe:a6:21:bf: b0:27:12:29:07:64:f6:07:ad:24:ef:ce:4a:17:72: bf:58:13:a0:e9:90:6a:0f:c7:8c:62:2f:98:a7:05: 7f:78:4c:1a:06:7f:47:47:9b:0d:4a:fe:90:85:f1: 40:48:f6:6c:54:6c:00:45:de:34:cf:b3:f6:90:b3: d8:6f:eb:2f:16:9c:dc:dd:c5:bf:8e:68:e1:01:3c: 2b:fb:7e:24:96:0f:40:52:0e:e0:30:4d:af:d2:dc: 1d:cd:10:28:0b:38:a1:5b:87:95:d6:d7:60:28:e8: 71:5a:3c:03:3b:a7:bc:7b:de:44:91:46:93:68:f3: fb:bd:b0:8c:48:1f:90:fb:75:f9:cd:50:80:4c:d9: ba:c2:03:70:bd:7b:ae:ae:32:a3:21:72:18:c8:42: 20:d5:08:45:a1:c6:ae:0e:8f:64:6e:30:53:5f:a6: 32:f8:1d:d6:93:ac:e1:34:3c:1b:7e:07:70:9c:2d: d3:f2:5d:13:da:7a:d3:0b:27:4d:ba:03:4b:61:aa: d8:00:60:1b:7f:b5:bd:58:83:ac:13:80:5f:8f:3f: 14:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CB:3D:3D:3F:FE:22:38:6C:6D:4D:0C:9A:D8:85:2C:8D:53:1A:E6 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:2::/48 Signature Algorithm: sha256WithRSAEncryption b8:73:a6:e5:7b:3d:cc:6e:ce:b4:17:3f:df:11:5e:20:2d:71: 48:e7:25:fe:f7:38:67:dc:7d:7d:3e:b1:bf:f0:b9:e5:fa:94: 15:89:6b:9c:1e:49:6e:eb:e9:35:a3:d8:42:12:98:7d:77:8f: 24:47:1e:e8:c0:ad:ab:c7:89:f2:27:ec:7a:c4:e7:fb:16:15: 09:ac:41:17:dd:b4:93:aa:94:66:93:b2:99:30:0b:5d:6c:88: 93:dc:e9:d3:c9:a6:b7:32:7c:ca:4a:21:44:b2:70:35:0b:39: 29:c1:6f:dc:24:b3:8b:66:92:ed:22:ed:3e:ab:22:19:70:ca: 10:82:5d:b2:7a:b7:49:16:2d:fd:e4:5c:35:6a:1c:c7:a1:a9: 3b:55:03:4f:9a:18:35:4e:a7:91:75:56:5e:f1:90:89:a7:e1: c5:24:c6:46:13:32:a5:6b:c9:27:90:c0:7a:db:cb:11:3c:e6: b2:08:98:40:d5:1f:64:b8:1c:b4:d0:9a:e0:0e:c0:ed:b9:48: 04:fd:f2:b5:68:6f:fe:75:27:3a:7d:b6:a4:8a:99:1c:68:76: c4:7e:e9:2d:86:1e:e9:bf:ed:80:9f:c4:50:3d:1a:07:5d:d8: ee:ce:4f:84:aa:0f:20:d3:b6:20:0b:f5:f2:7c:86:c9:ea:51: 0d:86:47:7c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZYUCMjQrU1Rg4J54UE3J67bW4bowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNDA3MDMwNDU1NTFaFw0yNTA3MDIwNTAwNTFaMDMxMTAvBgNV BAMTKEFFQ0IzRDNEM0ZGRTIyMzg2QzZENEQwQzlBRDg4NTJDOEQ1MzFBRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6QWihm6K7OExLhhS2zE5Tpy7 7RKMblVY/bLRc397wbUlWNKV9dIL/qYhv7AnEikHZPYHrSTvzkoXcr9YE6DpkGoP x4xiL5inBX94TBoGf0dHmw1K/pCF8UBI9mxUbABF3jTPs/aQs9hv6y8WnNzdxb+O aOEBPCv7fiSWD0BSDuAwTa/S3B3NECgLOKFbh5XW12Ao6HFaPAM7p7x73kSRRpNo 8/u9sIxIH5D7dfnNUIBM2brCA3C9e66uMqMhchjIQiDVCEWhxq4Oj2RuMFNfpjL4 HdaTrOE0PBt+B3CcLdPyXRPaetMLJ026A0thqtgAYBt/tb1Yg6wTgF+PPxQZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrss9PT/+IjhsbU0MmtiFLI1TGuYwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBCzAAAIw DQYJKoZIhvcNAQELBQADggEBALhzpuV7PcxuzrQXP98RXiAtcUjnJf73OGfcfX0+ sb/wueX6lBWJa5weSW7r6TWj2EISmH13jyRHHujAravHifIn7HrE5/sWFQmsQRfd tJOqlGaTspkwC11siJPc6dPJprcyfMpKIUSycDULOSnBb9wks4tmku0i7T6rIhlw yhCCXbJ6t0kWLf3kXDVqHMehqTtVA0+aGDVOp5F1Vl7xkImn4cUkxkYTMqVrySeQ wHrbyxE85rIImEDVH2S4HLTQmuAOwO25SAT98rVob/51Jzp9tqSKmRxodsR+6S2G Hum/7YCfxFA9Ggdd2O7OT4SqDyDTtiAL9fJ8hsnqUQ2GR3w= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org