$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: GJY1uBn3hVszaq39dLLaSk2stRsKkoqme7WPjFA16js= Subject key identifier: 6E:68:23:55:F3:1F:19:3A:65:84:16:82:F2:4C:A7:53:E4:1E:D5:34 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 2FD9106A626088B21665AB87D3D498CAD329165F Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 12 Aug 2024 10:02:20 +0000 ROA not before: Mon 12 Aug 2024 09:57:20 +0000 ROA not after: Mon 11 Aug 2025 10:02:20 +0000 asID: 138598 IP address blocks: 2404:5d40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d9:10:6a:62:60:88:b2:16:65:ab:87:d3:d4:98:ca:d3:29:16:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 12 09:57:20 2024 GMT Not After : Aug 11 10:02:20 2025 GMT Subject: CN=6E682355F31F193A65841682F24CA753E41ED534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d9:2c:09:06:41:08:01:bc:e3:d3:c1:d8:54: 74:8d:72:b2:31:e5:7b:e3:5b:1b:ad:8d:e3:b1:fe: 30:ce:e0:00:14:19:f6:41:bb:f9:f0:f1:07:b6:77: e3:f4:e3:85:0e:7d:a0:4d:c0:0f:ba:88:47:38:83: 5e:22:00:51:02:82:06:aa:a8:3a:37:9c:12:ad:2c: 83:8b:46:49:dc:b1:27:4b:f9:36:36:d5:f1:43:e7: f1:9b:87:30:04:7a:fd:c4:fb:76:8f:79:24:b5:9f: 3e:4d:bd:2a:59:31:f1:2f:35:7a:0e:1a:6a:db:84: 1d:0d:ec:a3:0d:e7:53:e6:43:4b:bf:2f:ee:d6:8c: 60:c4:dc:95:3d:57:07:3c:3b:8c:c4:53:0f:20:b3: db:67:c4:7a:15:51:39:e3:8f:b0:41:20:7e:91:3c: 6e:36:ba:f8:94:ca:3e:d2:b6:0e:6d:c8:7d:0a:2a: 46:00:33:26:ea:a1:3c:40:f9:16:4a:8a:8f:ca:69: c1:f2:09:34:52:7d:24:c0:6e:2e:a8:8c:04:4c:c6: 99:fc:1b:3f:63:b1:d9:98:81:7e:eb:f8:90:37:e0: 7c:cb:60:ec:07:13:33:db:96:8d:4b:ab:33:36:be: 03:05:9f:27:9e:0c:18:b9:59:a7:54:9b:04:a3:53: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:68:23:55:F3:1F:19:3A:65:84:16:82:F2:4C:A7:53:E4:1E:D5:34 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:5::/48 Signature Algorithm: sha256WithRSAEncryption 23:4f:a7:e8:cc:79:97:7a:08:bd:d5:4e:53:6e:58:d0:88:6b: a4:32:25:83:36:d5:72:01:c2:96:6a:d4:c0:2c:d7:4b:31:97: f0:59:e8:d3:ee:47:39:b7:e5:cb:5c:55:a0:b5:22:6d:3f:8f: 7a:b1:8f:4e:c5:30:bf:5f:9f:f5:bf:48:09:d6:c6:50:a0:87: 05:e6:cc:53:89:72:a3:03:96:d0:4f:0a:34:42:06:f1:28:4a: e6:d8:e7:e5:2e:26:79:43:16:9c:9a:1b:a7:4a:d0:a4:c9:92: 7a:4d:38:36:ac:c9:4b:50:9e:8b:31:e2:31:9a:44:6b:a3:bc: 25:be:ef:5a:4a:74:71:32:0b:72:cf:ad:0a:25:8a:2c:1a:34: 06:9f:ee:61:fb:d5:fd:94:6d:a9:8f:9a:a1:37:44:ff:54:32: a1:1c:78:4e:2e:ed:5e:b4:b5:4b:92:4a:e1:2d:f8:b5:10:af: 54:f4:a4:e3:56:ef:c7:f0:f6:6d:6b:bc:98:f6:48:c4:09:5b: 8c:45:95:8f:6d:4a:45:5c:8f:6e:b9:2b:fd:18:93:2f:0d:72: 9d:66:a0:6c:89:26:0c:3f:9c:3a:dd:27:dc:fc:86:d9:d9:8a: a3:1f:da:23:3f:44:f9:cd:1c:52:87:c8:89:72:b0:c0:fd:29: 6f:03:d2:33 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUL9kQamJgiLIWZauH09SYytMpFl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNDA4MTIwOTU3MjBaFw0yNTA4MTExMDAyMjBaMDMxMTAvBgNV BAMTKDZFNjgyMzU1RjMxRjE5M0E2NTg0MTY4MkYyNENBNzUzRTQxRUQ1MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv2SwJBkEIAbzj08HYVHSNcrIx 5XvjWxutjeOx/jDO4AAUGfZBu/nw8Qe2d+P044UOfaBNwA+6iEc4g14iAFECggaq qDo3nBKtLIOLRkncsSdL+TY21fFD5/GbhzAEev3E+3aPeSS1nz5NvSpZMfEvNXoO GmrbhB0N7KMN51PmQ0u/L+7WjGDE3JU9Vwc8O4zEUw8gs9tnxHoVUTnjj7BBIH6R PG42uviUyj7Stg5tyH0KKkYAMybqoTxA+RZKio/KacHyCTRSfSTAbi6ojARMxpn8 Gz9jsdmYgX7r+JA34HzLYOwHEzPblo1LqzM2vgMFnyeeDBi5WadUmwSjU3dBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUbmgjVfMfGTplhBaC8kynU+Qe1TQwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAUw DQYJKoZIhvcNAQELBQADggEBACNPp+jMeZd6CL3VTlNuWNCIa6QyJYM21XIBwpZq 1MAs10sxl/BZ6NPuRzm35ctcVaC1Im0/j3qxj07FML9fn/W/SAnWxlCghwXmzFOJ cqMDltBPCjRCBvEoSubY5+UuJnlDFpyaG6dK0KTJknpNODasyUtQnosx4jGaRGuj vCW+71pKdHEyC3LPrQoliiwaNAaf7mH71f2UbamPmqE3RP9UMqEceE4u7V60tUuS SuEt+LUQr1T0pONW78fw9m1rvJj2SMQJW4xFlY9tSkVcj265K/0Yky8Ncp1moGyJ Jgw/nDrdJ9z8htnZiqMf2iM/RPnNHFKHyIlysMD9KW8D0jM= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org