$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: TGXfQuq1RmcYG5/rcQ5+kCiPWG3n75g2FUN2iHTafgE= Subject key identifier: 8E:D9:10:A4:FF:40:4B:B4:D7:1A:20:9E:C7:84:B6:2D:02:C1:F5:9D Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 48E9D8C0633D970EAB80C5EF46A72C1B66C5949F Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 12 Aug 2024 10:02:20 +0000 ROA not before: Mon 12 Aug 2024 09:57:20 +0000 ROA not after: Mon 11 Aug 2025 10:02:20 +0000 asID: 138598 IP address blocks: 2404:5d40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e9:d8:c0:63:3d:97:0e:ab:80:c5:ef:46:a7:2c:1b:66:c5:94:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 12 09:57:20 2024 GMT Not After : Aug 11 10:02:20 2025 GMT Subject: CN=8ED910A4FF404BB4D71A209EC784B62D02C1F59D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:05:58:5e:14:0c:82:18:44:15:2d:2b:28: 9c:6c:4e:ff:04:bc:1d:42:40:47:0a:79:da:13:50: a0:84:b2:85:d8:16:48:19:23:a3:1a:6c:98:f6:8e: a4:c0:0b:32:57:ce:4d:ae:05:da:49:0c:00:d0:f7: f7:5c:09:d9:73:64:ee:40:a3:c4:c3:78:19:75:9f: 4b:6c:de:88:df:10:4c:56:4f:15:80:bf:bd:bf:cc: b8:f1:9f:3f:a8:59:ce:ba:10:4a:f4:b3:04:d8:e5: d4:ce:12:b0:6e:d4:77:c6:d7:f1:ec:08:60:45:09: 1e:65:f9:fa:46:de:30:db:8a:5b:d6:ed:1a:4d:99: 48:e6:03:96:c6:65:d7:4d:9a:a4:c3:21:bc:eb:61: 50:f8:af:6e:0d:56:a4:eb:33:97:35:b7:79:10:66: aa:12:f0:d1:1e:11:7a:09:4f:4e:8f:1a:d4:d4:21: ec:d1:56:33:31:cb:6c:6d:2d:2f:9a:72:20:de:cf: 18:d3:ed:a8:45:4f:cd:d4:2e:ba:4b:a4:29:ea:f3: 6b:44:c6:d1:81:8d:71:04:58:66:f3:84:5a:85:fd: 03:84:d3:06:7a:a4:5d:55:6f:a3:46:ef:86:05:d0: ba:f4:f6:76:7b:70:f1:c9:6c:91:5f:ce:48:a3:ef: 8e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D9:10:A4:FF:40:4B:B4:D7:1A:20:9E:C7:84:B6:2D:02:C1:F5:9D X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:2::/48 Signature Algorithm: sha256WithRSAEncryption 41:b4:c2:19:75:16:87:c9:9e:0d:b5:40:6d:94:e2:ba:f0:da: 22:4b:11:ac:12:eb:e7:b1:d4:1d:20:20:dd:f2:9e:3d:e3:40: bd:69:02:0f:bb:68:93:6f:73:22:85:9c:58:b3:8c:e0:12:aa: 02:ab:dd:29:e2:44:9d:bf:c4:8f:d3:bd:92:f3:6a:d3:83:da: 2c:a3:0a:2b:01:cc:09:29:e6:ea:21:7e:82:45:50:56:25:b0: 7b:4f:db:93:87:aa:20:b7:2e:05:a7:c1:6a:fd:04:76:b7:b9: 20:c5:ce:c9:dd:34:e5:0e:14:b9:59:69:6d:09:a9:7f:33:82: 0d:a1:85:01:8a:92:13:52:94:ee:55:1f:a3:0d:20:67:bc:9d: 15:6d:7b:e4:09:b6:bf:51:2d:47:6b:a4:a7:55:bd:33:5c:db: 79:3a:6a:f1:2b:60:f5:40:ae:a1:f0:22:d7:d7:b4:ae:93:a1: 3d:3b:99:3f:07:5a:41:fc:7b:b3:ae:c9:c1:fc:bb:fa:6b:72: fe:c1:a1:49:b7:1c:cc:97:d8:60:f9:5c:5e:50:0d:18:d0:5b: 57:bf:74:21:bf:3a:65:de:06:a8:8b:ee:41:34:97:ed:87:be: 58:e8:9e:a7:11:66:b2:0c:1b:d1:b0:39:26:dc:c9:60:59:2d: 48:0e:7c:71 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSOnYwGM9lw6rgMXvRqcsG2bFlJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNDA4MTIwOTU3MjBaFw0yNTA4MTExMDAyMjBaMDMxMTAvBgNV BAMTKDhFRDkxMEE0RkY0MDRCQjRENzFBMjA5RUM3ODRCNjJEMDJDMUY1OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFqwVYXhQMghhEFS0rKJxsTv8E vB1CQEcKedoTUKCEsoXYFkgZI6MabJj2jqTACzJXzk2uBdpJDADQ9/dcCdlzZO5A o8TDeBl1n0ts3ojfEExWTxWAv72/zLjxnz+oWc66EEr0swTY5dTOErBu1HfG1/Hs CGBFCR5l+fpG3jDbilvW7RpNmUjmA5bGZddNmqTDIbzrYVD4r24NVqTrM5c1t3kQ ZqoS8NEeEXoJT06PGtTUIezRVjMxy2xtLS+aciDezxjT7ahFT83ULrpLpCnq82tE xtGBjXEEWGbzhFqF/QOE0wZ6pF1Vb6NG74YF0Lr09nZ7cPHJbJFfzkij744lAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUjtkQpP9AS7TXGiCex4S2LQLB9Z0wHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAIw DQYJKoZIhvcNAQELBQADggEBAEG0whl1FofJng21QG2U4rrw2iJLEawS6+ex1B0g IN3ynj3jQL1pAg+7aJNvcyKFnFizjOASqgKr3SniRJ2/xI/TvZLzatOD2iyjCisB zAkp5uohfoJFUFYlsHtP25OHqiC3LgWnwWr9BHa3uSDFzsndNOUOFLlZaW0JqX8z gg2hhQGKkhNSlO5VH6MNIGe8nRVte+QJtr9RLUdrpKdVvTNc23k6avErYPVArqHw ItfXtK6ToT07mT8HWkH8e7OuycH8u/prcv7BoUm3HMyX2GD5XF5QDRjQW1e/dCG/ OmXeBqiL7kE0l+2HvljonqcRZrIMG9GwOSbcyWBZLUgOfHE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org