$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa File: 323430343a343234303a3a2f33322d3438203d3e20313338313239.roa (raw, json) Hash identifier: SvIeLSLlhhpFSIgXipR6gaxlaD8nS6vjAYwqJyJZieU= Subject key identifier: 40:16:60:02:84:E3:92:28:06:9D:A1:E6:DB:A0:00:6D:7E:EA:A5:A3 Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 2E89A7726BEA310BCC057394833B456F5CB336C4 Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa Signing time: Wed 28 Aug 2024 06:00:01 +0000 ROA not before: Wed 28 Aug 2024 05:55:01 +0000 ROA not after: Wed 27 Aug 2025 06:00:01 +0000 asID: 138129 IP address blocks: 2404:4240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:89:a7:72:6b:ea:31:0b:cc:05:73:94:83:3b:45:6f:5c:b3:36:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Aug 28 05:55:01 2024 GMT Not After : Aug 27 06:00:01 2025 GMT Subject: CN=4016600284E39228069DA1E6DBA0006D7EEAA5A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0c:8f:05:61:a3:be:d7:97:d2:ff:e4:af:2e: 9c:53:3f:5c:4d:9f:b8:3c:c0:97:83:ed:80:1e:d5: d0:63:7a:4f:c6:ce:66:7c:5a:1b:9d:2b:a2:1d:6b: 13:f9:3b:6d:d0:bd:5e:c3:69:e8:aa:38:fa:62:0d: 96:09:31:cb:8c:d9:f1:91:07:5b:a3:4c:0e:7a:c5: 0a:9a:4a:ab:20:94:9a:16:b4:cc:f7:22:d2:03:f4: 30:97:63:d0:20:b3:ca:68:92:97:91:22:a1:7a:d5: b8:b1:9d:ee:f4:96:3a:9e:a6:40:38:67:3f:e0:7b: 39:d8:ad:7d:79:96:d9:69:86:b2:6e:6f:be:70:1b: 4f:49:95:07:bf:b1:e1:39:b0:4f:bf:3a:d0:60:2d: 26:9d:38:31:47:07:cc:46:75:95:ee:2e:85:1a:d6: 21:a3:7b:af:39:2d:c8:9e:ee:43:e9:68:31:9f:5d: de:06:28:e1:f4:bc:bf:d8:1a:d3:3b:c0:a1:b0:ec: 35:92:d3:31:89:1b:54:6c:7d:57:a5:82:0c:d9:c9: 2f:5d:34:a1:f0:68:59:af:38:48:61:90:cc:73:7f: 7e:9a:b1:91:1b:ff:6a:eb:1e:96:2d:1b:8c:22:b2: 57:a2:ff:64:5c:65:9b:27:5a:9a:d2:f2:f6:80:a6: c4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:16:60:02:84:E3:92:28:06:9D:A1:E6:DB:A0:00:6D:7E:EA:A5:A3 X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4240::/32 Signature Algorithm: sha256WithRSAEncryption 66:3a:96:fe:6d:5c:77:92:3b:64:86:50:07:b0:48:a4:40:4c: c4:84:c0:02:6d:20:63:a0:8e:ef:05:f8:6d:9f:99:2c:d3:d4: 4c:94:ed:2b:67:e4:7f:8b:1a:be:6a:50:52:5f:b7:7b:ef:49: 76:70:f3:ff:3a:84:16:04:f1:40:ff:34:d2:65:6d:a2:2f:50: e5:2f:b6:1a:4f:5c:c0:5f:98:41:3d:0b:be:7e:e1:36:5e:19: c3:fa:dc:79:db:4c:d4:de:1c:21:df:76:7a:22:ca:39:03:f2: f9:af:71:47:ff:c3:4a:62:b4:a1:64:85:e4:8b:54:9b:43:eb: 09:ac:1f:eb:1d:8c:4a:e0:c8:5f:f6:31:f8:0e:42:5f:4c:89: 03:87:3a:6b:a2:8c:0e:11:2d:a7:15:c6:25:e6:57:1a:73:e4: 42:ec:85:58:45:67:30:83:b2:d3:de:c9:61:62:c0:17:72:67: 1f:5e:db:5b:65:8b:36:b5:38:12:75:3e:88:a1:ad:d4:3a:c5: cc:0f:10:75:a2:55:59:50:8f:f6:e2:c4:55:4d:a6:4e:d7:8f: a1:84:3f:9f:a3:ec:db:3f:e1:36:8f:4e:e0:b0:c0:0c:d9:f2: b4:8e:7a:39:47:cd:22:a1:85:53:a1:5f:04:fc:d0:6d:22:b1: 18:59:5a:84 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULomncmvqMQvMBXOUgztFb1yzNsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNDA4MjgwNTU1MDFaFw0yNTA4MjcwNjAwMDFaMDMxMTAvBgNV BAMTKDQwMTY2MDAyODRFMzkyMjgwNjlEQTFFNkRCQTAwMDZEN0VFQUE1QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGDI8FYaO+15fS/+SvLpxTP1xN n7g8wJeD7YAe1dBjek/GzmZ8WhudK6IdaxP5O23QvV7DaeiqOPpiDZYJMcuM2fGR B1ujTA56xQqaSqsglJoWtMz3ItID9DCXY9Ags8pokpeRIqF61bixne70ljqepkA4 Zz/geznYrX15ltlphrJub75wG09JlQe/seE5sE+/OtBgLSadODFHB8xGdZXuLoUa 1iGje685Lcie7kPpaDGfXd4GKOH0vL/YGtM7wKGw7DWS0zGJG1RsfVelggzZyS9d NKHwaFmvOEhhkMxzf36asZEb/2rrHpYtG4wislei/2RcZZsnWprS8vaApsRpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUQBZgAoTjkigGnaHm26AAbX7qpaMwHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMyMzQzMDM0M2EzNDMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMxMzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEQkAwDQYJKoZI hvcNAQELBQADggEBAGY6lv5tXHeSO2SGUAewSKRATMSEwAJtIGOgju8F+G2fmSzT 1EyU7Stn5H+LGr5qUFJft3vvSXZw8/86hBYE8UD/NNJlbaIvUOUvthpPXMBfmEE9 C75+4TZeGcP63HnbTNTeHCHfdnoiyjkD8vmvcUf/w0pitKFkheSLVJtD6wmsH+sd jErgyF/2MfgOQl9MiQOHOmuijA4RLacVxiXmVxpz5ELshVhFZzCDstPeyWFiwBdy Zx9e21tliza1OBJ1PoihrdQ6xcwPEHWiVVlQj/bixFVNpk7Xj6GEP5+j7Ns/4TaP TuCwwAzZ8rSOejlHzSKhhVOhXwT80G0isRhZWoQ= -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:26 2024 by rpki-client on console-fra.rpki-client.org