$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: BWa1iYw8dIPzTwjW+sk/4F/cNZ9MN6qxSTgx04xWOWE= Subject key identifier: 80:5F:6A:77:9F:4A:04:B3:21:E0:ED:45:AE:EC:1A:75:90:B3:79:CB Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 28EF366C977B7AADE4C908BFC8F1959FCF80E183 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 11 Sep 2023 09:02:08 +0000 ROA not before: Mon 11 Sep 2023 08:57:08 +0000 ROA not after: Mon 09 Sep 2024 09:02:08 +0000 asID: 138598 IP address blocks: 2404:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ef:36:6c:97:7b:7a:ad:e4:c9:08:bf:c8:f1:95:9f:cf:80:e1:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Sep 11 08:57:08 2023 GMT Not After : Sep 9 09:02:08 2024 GMT Subject: CN=805F6A779F4A04B321E0ED45AEEC1A7590B379CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:ae:53:7c:61:50:10:27:09:dd:6f:e8:cc: 4d:dc:ee:1c:76:6a:c3:5e:9f:3d:a6:28:06:bf:e6: 01:cb:fe:5b:da:26:7d:60:59:ad:cd:11:1d:c3:21: 49:2d:c3:fc:9c:80:d8:ff:af:37:1d:46:b6:a6:58: 47:7e:47:63:f1:80:28:94:fb:7c:75:5b:f8:aa:3e: 92:2e:5c:97:74:43:ef:83:04:a2:ca:db:98:b6:3b: 12:84:1d:90:fb:eb:f4:fe:49:1e:a2:f2:21:68:d4: 98:83:f7:6c:b4:b5:ac:38:c1:b4:cc:da:79:61:6c: 87:b3:ac:b1:63:45:3a:64:31:11:f5:11:ee:41:0e: 49:c9:2d:b8:ef:09:13:91:ed:b2:68:50:2b:75:81: 5f:7f:8a:50:c3:56:f0:a0:08:08:62:d9:aa:d3:e1: e6:b4:81:0f:90:aa:87:5e:07:82:f7:88:a2:1d:c5: e8:84:4c:bd:dd:8f:bb:bc:b6:14:68:fa:bc:20:58: ea:ab:62:c8:66:8d:3f:a2:bf:d4:6b:c6:44:e7:21: 0c:d4:29:cd:af:79:a4:d2:2e:89:29:6f:ef:51:b2: 9c:fc:5e:44:10:00:a5:11:d1:5e:ad:94:2e:d1:eb: e1:cc:e2:60:98:82:52:cb:04:5c:57:3a:1b:0f:34: 8e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5F:6A:77:9F:4A:04:B3:21:E0:ED:45:AE:EC:1A:75:90:B3:79:CB X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 1c:38:11:50:13:48:82:80:8b:86:65:a6:3a:94:e1:94:d8:56: ca:58:62:45:7d:0f:8c:cf:7c:83:e9:1c:b5:37:bb:17:d6:7b: d4:12:07:49:a5:2a:d6:c7:0e:bc:f8:07:ba:d6:19:e2:77:30: 93:04:ea:49:29:d8:f0:4f:79:e3:ff:b7:0a:14:2e:a8:3d:d1: 18:a7:75:9e:48:07:61:b9:89:6d:ed:39:7d:36:10:89:56:e8: 46:8e:38:3c:d0:fd:5a:80:1a:25:86:b3:07:bc:f8:9c:56:49: 9f:fc:2c:a2:c0:00:41:c6:c4:23:cb:e5:5e:51:ae:df:df:ef: b4:b2:58:03:1c:84:30:8b:8b:67:76:a2:93:fc:39:16:97:1a: fc:54:16:90:85:0a:a4:c4:28:bb:81:33:38:16:86:74:9b:cb: d6:10:d5:ca:02:5d:cf:ea:ef:62:02:6e:7a:89:08:23:0c:13: d7:4e:1d:ea:74:52:32:38:17:5b:b2:83:5f:d5:82:b3:9b:67: bf:ad:b3:e3:e9:c6:1d:ba:d4:a3:53:a3:e0:41:f4:75:31:c5: 86:31:c1:a0:59:d6:44:95:55:9c:f3:1a:1d:e1:53:a8:70:59: cd:79:54:64:a6:59:28:e4:2b:b2:69:79:58:14:e7:31:c5:ce: 27:2c:ba:14 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUKO82bJd7eq3kyQi/yPGVn8+A4YMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yMzA5MTEwODU3MDhaFw0yNDA5MDkwOTAyMDhaMDMxMTAvBgNV BAMTKDgwNUY2QTc3OUY0QTA0QjMyMUUwRUQ0NUFFRUMxQTc1OTBCMzc5Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC68a5TfGFQECcJ3W/ozE3c7hx2 asNenz2mKAa/5gHL/lvaJn1gWa3NER3DIUktw/ycgNj/rzcdRramWEd+R2PxgCiU +3x1W/iqPpIuXJd0Q++DBKLK25i2OxKEHZD76/T+SR6i8iFo1JiD92y0taw4wbTM 2nlhbIezrLFjRTpkMRH1Ee5BDknJLbjvCROR7bJoUCt1gV9/ilDDVvCgCAhi2arT 4ea0gQ+QqodeB4L3iKIdxeiETL3dj7u8thRo+rwgWOqrYshmjT+iv9RrxkTnIQzU Kc2veaTSLokpb+9Rspz8XkQQAKUR0V6tlC7R6+HM4mCYglLLBFxXOhsPNI4HAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUgF9qd59KBLMh4O1FruwadZCzecswHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM1MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEXUAAADANBgkq hkiG9w0BAQsFAAOCAQEAHDgRUBNIgoCLhmWmOpThlNhWylhiRX0PjM98g+kctTe7 F9Z71BIHSaUq1scOvPgHutYZ4ncwkwTqSSnY8E954/+3ChQuqD3RGKd1nkgHYbmJ be05fTYQiVboRo44PND9WoAaJYazB7z4nFZJn/wsosAAQcbEI8vlXlGu39/vtLJY AxyEMIuLZ3aik/w5Fpca/FQWkIUKpMQou4EzOBaGdJvL1hDVygJdz+rvYgJueokI IwwT104d6nRSMjgXW7KDX9WCs5tnv62z4+nGHbrUo1Oj4EH0dTHFhjHBoFnWRJVV nPMaHeFTqHBZzXlUZKZZKOQrsml5WBTnMcXOJyy6FA== -----END CERTIFICATE-----Generated at Sun Jun 2 12:35:05 2024 by rpki-client on console-fra.rpki-client.org