$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: UK4y8U5FoaH31XYzSF1KACuxC0U7L5WzRWdPY69Zp1w= Subject key identifier: B3:DC:75:AD:B8:21:4B:6A:98:FD:BF:88:BA:B1:0A:C9:F9:7E:3A:B8 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 7C7612EE3472A8ED39B5460A2C61138E127A22C3 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 12 Aug 2024 10:02:20 +0000 ROA not before: Mon 12 Aug 2024 09:57:20 +0000 ROA not after: Mon 11 Aug 2025 10:02:20 +0000 asID: 138598 IP address blocks: 2404:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:76:12:ee:34:72:a8:ed:39:b5:46:0a:2c:61:13:8e:12:7a:22:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Aug 12 09:57:20 2024 GMT Not After : Aug 11 10:02:20 2025 GMT Subject: CN=B3DC75ADB8214B6A98FDBF88BAB10AC9F97E3AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:8b:a2:80:7d:7e:1f:ab:10:27:d6:c9:4a: 5a:52:8a:97:15:17:d2:c8:e4:3e:a8:c1:0b:a8:0c: 5e:a5:f3:92:ca:8f:98:44:a9:1a:fd:23:3b:b5:97: 00:f5:80:8c:ea:2c:e8:dd:4a:06:b7:47:40:f7:72: c9:54:97:92:d4:77:e8:eb:2c:40:b3:32:1a:c0:29: 7b:e1:d9:5e:c9:f7:fd:8f:08:a0:23:36:ab:b4:f6: fe:31:47:78:fe:8e:e1:44:ea:41:af:b0:59:ad:46: ce:9f:34:ad:ae:60:03:81:89:2a:88:58:80:70:68: ff:86:bb:77:6a:56:45:21:67:72:78:4b:c8:14:33: e1:01:ba:1f:9e:7d:e6:83:31:d3:12:7f:22:ad:ab: b8:54:63:06:93:1c:3e:8e:4d:85:a3:2d:96:40:58: 03:46:dc:25:14:4b:69:02:73:42:01:c7:d7:f9:2b: 10:1f:40:61:b8:de:41:47:33:12:39:10:96:a3:d9: 5b:3a:16:d3:45:95:1e:58:2d:bc:32:31:88:e7:aa: 08:55:d0:d7:c7:c1:75:8b:a5:44:50:51:1a:9e:69: 6b:3c:f1:30:14:2e:af:08:68:30:b8:9a:82:43:f0: 07:ac:cd:76:ad:3c:b3:c8:ec:96:c5:fc:59:3f:06: 2a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DC:75:AD:B8:21:4B:6A:98:FD:BF:88:BA:B1:0A:C9:F9:7E:3A:B8 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40::/48 Signature Algorithm: sha256WithRSAEncryption b0:61:e0:50:12:0d:45:c9:34:68:76:d7:28:3b:17:75:31:36: c1:0f:5a:26:09:3e:fb:8b:a2:68:1d:8b:c4:8e:d3:f9:9e:03: fa:1e:b0:7a:0e:21:6e:59:cd:da:f5:57:6b:9d:56:a5:24:2a: a8:a1:58:27:dd:ba:4e:31:30:46:13:31:cc:7f:90:d1:e2:b2: ff:00:2e:65:1d:8e:a5:c6:cc:c2:f9:f0:92:98:72:45:ef:1b: e8:ec:1c:37:5d:24:24:c9:bf:e9:27:5f:e4:79:bf:a3:2d:72: 2b:e0:ce:89:05:49:ee:2b:cf:1e:fd:05:f4:28:2c:72:11:81: 4c:e4:79:c9:93:31:99:03:f5:5d:0a:be:8c:74:27:75:07:7f: 90:2f:78:a7:6e:9c:83:d8:73:37:f5:57:73:f6:39:34:09:30: 80:46:45:cc:59:95:fc:41:6a:53:50:d2:4f:87:d8:97:0f:71: 2b:3a:6e:22:ef:72:6c:86:00:13:6d:b8:1a:74:29:8f:fe:83: db:8e:eb:13:c3:e3:35:9f:c5:d3:39:e3:48:3d:89:fc:14:3f: 0f:10:8f:d7:20:fb:cb:61:20:b0:c3:7e:11:de:a0:7a:34:32: 19:e2:9f:33:bf:2c:6a:cd:ff:2c:2d:c1:6e:31:0b:a4:8f:ce: 18:54:90:39 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUfHYS7jRyqO05tUYKLGETjhJ6IsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNDA4MTIwOTU3MjBaFw0yNTA4MTExMDAyMjBaMDMxMTAvBgNV BAMTKEIzREM3NUFEQjgyMTRCNkE5OEZEQkY4OEJBQjEwQUM5Rjk3RTNBQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/v4uigH1+H6sQJ9bJSlpSipcV F9LI5D6owQuoDF6l85LKj5hEqRr9Izu1lwD1gIzqLOjdSga3R0D3cslUl5LUd+jr LECzMhrAKXvh2V7J9/2PCKAjNqu09v4xR3j+juFE6kGvsFmtRs6fNK2uYAOBiSqI WIBwaP+Gu3dqVkUhZ3J4S8gUM+EBuh+efeaDMdMSfyKtq7hUYwaTHD6OTYWjLZZA WANG3CUUS2kCc0IBx9f5KxAfQGG43kFHMxI5EJaj2Vs6FtNFlR5YLbwyMYjnqghV 0NfHwXWLpURQURqeaWs88TAULq8IaDC4moJD8AeszXatPLPI7JbF/Fk/BirNAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUs9x1rbghS2qY/b+IurEKyfl+OrgwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM1MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEXUAAADANBgkq hkiG9w0BAQsFAAOCAQEAsGHgUBINRck0aHbXKDsXdTE2wQ9aJgk++4uiaB2LxI7T +Z4D+h6weg4hblnN2vVXa51WpSQqqKFYJ926TjEwRhMxzH+Q0eKy/wAuZR2OpcbM wvnwkphyRe8b6OwcN10kJMm/6Sdf5Hm/oy1yK+DOiQVJ7ivPHv0F9CgschGBTOR5 yZMxmQP1XQq+jHQndQd/kC94p26cg9hzN/VXc/Y5NAkwgEZFzFmV/EFqU1DST4fY lw9xKzpuIu9ybIYAE224GnQpj/6D247rE8PjNZ/F0znjSD2J/BQ/DxCP1yD7y2Eg sMN+Ed6gejQyGeKfM78sas3/LC3BbjELpI/OGFSQOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org