$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: oldOLTzbZdnxuKb1GFFk/KT+RuyBaJzPj+vjKkTBhf4= Subject key identifier: 28:5B:81:66:9D:55:0D:CC:ED:6C:31:19:E2:F4:BC:F5:92:A2:53:21 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 6D9BB2964BD2240D92D73C26E4CBF1FEC676CF17 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 12 Aug 2024 10:02:21 +0000 ROA not before: Mon 12 Aug 2024 09:57:21 +0000 ROA not after: Mon 11 Aug 2025 10:02:21 +0000 asID: 138598 IP address blocks: 2404:5d40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:9b:b2:96:4b:d2:24:0d:92:d7:3c:26:e4:cb:f1:fe:c6:76:cf:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 12 09:57:21 2024 GMT Not After : Aug 11 10:02:21 2025 GMT Subject: CN=285B81669D550DCCED6C3119E2F4BCF592A25321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:58:c2:91:09:06:5b:9a:f7:c4:5f:b4:e7: 1e:79:2d:12:97:11:2f:66:4b:a0:81:c4:e6:c4:54: 8b:67:b2:5c:8a:24:ef:48:29:dc:ed:69:67:76:23: 21:20:6f:37:8d:01:36:18:d6:b2:fe:98:5d:a2:eb: 8a:c7:11:bf:24:a5:ca:e0:51:26:3f:0f:c0:09:e4: 7c:c0:e9:d3:0b:71:f3:41:30:13:cf:52:53:cc:f5: 78:cf:a0:08:2f:69:28:e5:fd:43:79:9b:cd:e2:e0: 07:8f:0b:df:08:62:6e:8f:fe:7e:2d:08:31:c7:9f: 0c:00:53:5f:93:34:27:08:be:d2:db:cc:4b:de:79: a6:92:20:87:77:b4:35:9f:3c:09:d8:22:9a:53:c4: d3:10:57:e9:27:2e:28:47:8b:94:95:1c:52:c2:c4: 18:53:55:21:21:60:04:64:8e:15:2e:27:50:f8:ee: 7a:aa:19:3f:0d:83:0b:62:ed:ac:a4:5c:e7:55:c4: d9:39:cf:8f:c6:53:26:d0:69:dc:d1:d8:4d:7c:cb: cb:29:59:1a:7a:b0:4c:f2:57:57:ae:56:e5:0b:8a: 36:b0:69:55:68:e7:a3:62:5f:ca:c3:76:34:c7:d3: b2:b2:9e:fc:ba:a5:3d:cb:c5:0b:79:a6:cb:2a:30: d9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5B:81:66:9D:55:0D:CC:ED:6C:31:19:E2:F4:BC:F5:92:A2:53:21 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:3::/48 Signature Algorithm: sha256WithRSAEncryption 45:71:75:24:28:96:6b:9a:9c:78:7e:5f:4c:cd:10:d1:ac:29: b5:7b:7b:f8:19:16:98:8e:1a:b0:10:7c:82:25:32:5b:1c:a1: 40:91:e5:78:30:95:74:e3:48:9b:48:3e:28:e7:f5:5b:ed:f9: 0f:f4:ca:87:3a:66:eb:b0:08:c1:1c:64:f8:cd:96:a0:83:bc: 14:53:58:4b:91:51:d4:78:22:c5:cb:cf:f6:10:b8:ec:5f:83: c8:c2:da:12:df:4f:69:72:11:8e:62:d8:f1:bd:ad:62:3a:66: 43:c9:e2:bb:70:1f:e2:ea:ce:87:fc:6f:e7:b6:03:a0:18:9d: ed:5f:60:5e:f6:8a:5f:91:60:3b:9a:61:b1:85:97:63:4b:93: d3:48:66:ab:41:b8:c4:04:69:d6:8a:1e:6a:52:94:86:fd:de: a0:2f:fe:c0:a4:0a:5f:5f:35:68:89:fe:40:6f:00:da:54:b1: f1:03:95:c4:9f:31:68:7e:0c:88:78:b0:1d:76:fb:16:6d:cd: 5b:6f:dd:84:99:cd:68:d7:4d:6e:e2:8b:20:84:2f:b8:e8:d7: 94:00:3c:20:e8:52:33:3a:f0:54:7f:8d:b3:19:d4:fd:04:99: 74:38:43:4a:8b:a2:9a:36:67:ac:c2:e7:f2:01:3a:57:61:6a: a4:6a:d8:9a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbZuylkvSJA2S1zwm5Mvx/sZ2zxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNDA4MTIwOTU3MjFaFw0yNTA4MTExMDAyMjFaMDMxMTAvBgNV BAMTKDI4NUI4MTY2OUQ1NTBEQ0NFRDZDMzExOUUyRjRCQ0Y1OTJBMjUzMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2VjCkQkGW5r3xF+05x55LRKX ES9mS6CBxObEVItnslyKJO9IKdztaWd2IyEgbzeNATYY1rL+mF2i64rHEb8kpcrg USY/D8AJ5HzA6dMLcfNBMBPPUlPM9XjPoAgvaSjl/UN5m83i4AePC98IYm6P/n4t CDHHnwwAU1+TNCcIvtLbzEveeaaSIId3tDWfPAnYIppTxNMQV+knLihHi5SVHFLC xBhTVSEhYARkjhUuJ1D47nqqGT8Ngwti7aykXOdVxNk5z4/GUybQadzR2E18y8sp WRp6sEzyV1euVuULijawaVVo56NiX8rDdjTH07Kynvy6pT3LxQt5pssqMNn7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKFuBZp1VDcztbDEZ4vS89ZKiUyEwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAMw DQYJKoZIhvcNAQELBQADggEBAEVxdSQolmuanHh+X0zNENGsKbV7e/gZFpiOGrAQ fIIlMlscoUCR5XgwlXTjSJtIPijn9Vvt+Q/0yoc6ZuuwCMEcZPjNlqCDvBRTWEuR UdR4IsXLz/YQuOxfg8jC2hLfT2lyEY5i2PG9rWI6ZkPJ4rtwH+Lqzof8b+e2A6AY ne1fYF72il+RYDuaYbGFl2NLk9NIZqtBuMQEadaKHmpSlIb93qAv/sCkCl9fNWiJ /kBvANpUsfEDlcSfMWh+DIh4sB12+xZtzVtv3YSZzWjXTW7iiyCEL7jo15QAPCDo UjM68FR/jbMZ1P0EmXQ4Q0qLopo2Z6zC5/IBOldhaqRq2Jo= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org