$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: Y7lmNtoprlRJly9WgGsWn6qQ0ew2imeiy62+KuKF1lw= Subject key identifier: 52:44:08:B3:83:09:DE:3D:74:BA:2C:02:39:9B:88:2D:09:0D:63:94 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 40485D015BFF72BF42B300CC4DC4845CB3ADC989 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 12 Aug 2024 10:02:20 +0000 ROA not before: Mon 12 Aug 2024 09:57:20 +0000 ROA not after: Mon 11 Aug 2025 10:02:20 +0000 asID: 138598 IP address blocks: 2404:5d40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:48:5d:01:5b:ff:72:bf:42:b3:00:cc:4d:c4:84:5c:b3:ad:c9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 12 09:57:20 2024 GMT Not After : Aug 11 10:02:20 2025 GMT Subject: CN=524408B38309DE3D74BA2C02399B882D090D6394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:40:59:a5:93:b2:dd:25:b3:d4:da:42:d8:56: 53:63:60:0e:fd:75:77:9c:4c:e0:df:e3:d7:9a:23: 6e:c8:85:02:78:f0:d1:b2:7e:09:80:75:53:47:5b: b1:d5:d5:ee:09:f5:2f:4a:0f:a4:76:f2:5b:85:94: 2f:87:57:d8:fe:b4:6e:11:48:3c:9b:15:c0:2b:26: fd:d0:e3:c0:45:d5:43:e0:53:8d:7c:c4:8f:40:9b: de:03:1b:37:58:ee:0c:c6:eb:b3:fa:21:4b:4a:2a: fa:d3:bc:1e:61:ce:23:52:14:57:cc:f0:92:69:9d: e9:b9:30:fb:82:55:92:f8:7a:b9:85:31:85:20:20: 99:78:72:c2:68:f7:c0:ec:bf:d7:76:ea:56:fd:c4: 58:16:19:79:29:9d:67:08:71:f4:1d:02:c5:31:8f: c1:c7:fc:92:61:13:bb:39:b9:4b:8b:34:98:9d:b5: 9d:f4:3a:ec:3a:fc:d2:a5:f8:c7:c1:25:e9:96:df: e6:a1:ce:35:e0:4f:c2:76:40:2e:38:41:b1:78:59: f7:02:5d:d7:f3:a1:7c:21:ce:eb:46:79:1e:7c:71: 38:b3:b1:46:f2:d2:a7:e3:ee:c1:77:61:c4:13:90: b5:10:41:07:4a:f6:ab:d7:08:0b:81:07:4e:64:f6: c6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:44:08:B3:83:09:DE:3D:74:BA:2C:02:39:9B:88:2D:09:0D:63:94 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a393a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:9::/48 Signature Algorithm: sha256WithRSAEncryption 08:ca:2e:a0:3f:6e:e3:a7:8f:2f:29:5d:80:8f:44:a9:5b:f3: 6d:7c:be:34:ab:e6:f4:02:12:91:a9:38:cc:ba:e2:74:a5:28: 2c:be:b6:30:b8:28:a7:d3:e6:32:98:55:c5:cc:bf:76:65:e6: bc:f6:8b:d4:84:65:11:41:10:29:e8:e6:17:9a:34:84:f1:6e: 1e:de:7b:2f:fe:f8:81:d0:33:5b:35:83:ed:9d:34:c3:35:21: 33:08:f2:10:6f:80:16:0c:89:e4:3a:ad:64:bc:1b:f3:e7:f5: d8:b1:56:95:7f:17:c1:40:34:22:6b:0e:67:e0:ed:b4:e1:02: 7e:03:0e:0f:a3:19:f1:c8:87:62:21:19:03:b1:5c:da:9a:f5: bc:5b:c6:9f:44:4b:13:c2:7e:df:cc:e3:12:1b:6c:4d:e6:16: 1f:2f:7f:0e:12:41:6f:f3:c1:43:23:6a:df:67:6f:7f:5c:99: c0:f1:b1:5a:9a:43:02:51:c0:b3:6c:50:41:7c:ef:ec:49:1b: ce:c9:74:72:78:dc:1a:5b:6c:fe:c5:f5:b8:8d:39:40:90:1b: 9a:4b:b3:ba:13:55:f0:96:b2:90:22:d0:23:e3:63:18:cd:5f: 4a:26:46:fb:57:72:7b:16:1b:8a:6e:eb:f2:42:8c:a8:da:88: 9d:c8:95:04 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQEhdAVv/cr9CswDMTcSEXLOtyYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNDA4MTIwOTU3MjBaFw0yNTA4MTExMDAyMjBaMDMxMTAvBgNV BAMTKDUyNDQwOEIzODMwOURFM0Q3NEJBMkMwMjM5OUI4ODJEMDkwRDYzOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKQFmlk7LdJbPU2kLYVlNjYA79 dXecTODf49eaI27IhQJ48NGyfgmAdVNHW7HV1e4J9S9KD6R28luFlC+HV9j+tG4R SDybFcArJv3Q48BF1UPgU418xI9Am94DGzdY7gzG67P6IUtKKvrTvB5hziNSFFfM 8JJpnem5MPuCVZL4ermFMYUgIJl4csJo98Dsv9d26lb9xFgWGXkpnWcIcfQdAsUx j8HH/JJhE7s5uUuLNJidtZ30Ouw6/NKl+MfBJemW3+ahzjXgT8J2QC44QbF4WfcC XdfzoXwhzutGeR58cTizsUby0qfj7sF3YcQTkLUQQQdK9qvXCAuBB05k9sbDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUUkQIs4MJ3j10uiwCOZuILQkNY5QwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAkw DQYJKoZIhvcNAQELBQADggEBAAjKLqA/buOnjy8pXYCPRKlb8218vjSr5vQCEpGp OMy64nSlKCy+tjC4KKfT5jKYVcXMv3Zl5rz2i9SEZRFBECno5heaNITxbh7eey/+ +IHQM1s1g+2dNMM1ITMI8hBvgBYMieQ6rWS8G/Pn9dixVpV/F8FANCJrDmfg7bTh An4DDg+jGfHIh2IhGQOxXNqa9bxbxp9ESxPCft/M4xIbbE3mFh8vfw4SQW/zwUMj at9nb39cmcDxsVqaQwJRwLNsUEF87+xJG87JdHJ43BpbbP7F9biNOUCQG5pLs7oT VfCWspAi0CPjYxjNX0omRvtXcnsWG4pu6/JCjKjaiJ3IlQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org