$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: DOdFKY0AKDWWASHji7tSUXe7R3segNmQOiI1sC5yXoA= Subject key identifier: E5:4B:C0:5B:1F:0A:E8:1C:39:0E:83:54:72:E2:F6:66:F3:35:6C:57 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 41F8FF8559BFB5EA14DB6192BA501E4DE181A388 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa Signing time: Wed 28 Feb 2024 03:00:01 +0000 ROA not before: Wed 28 Feb 2024 02:55:01 +0000 ROA not after: Wed 26 Feb 2025 03:00:01 +0000 asID: 38753 IP address blocks: 2401:ae00:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f8:ff:85:59:bf:b5:ea:14:db:61:92:ba:50:1e:4d:e1:81:a3:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Feb 28 02:55:01 2024 GMT Not After : Feb 26 03:00:01 2025 GMT Subject: CN=E54BC05B1F0AE81C390E835472E2F666F3356C57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ea:5b:35:69:f4:73:36:01:4f:fb:10:9d:99: 37:31:60:60:cb:a3:28:ac:93:f9:a1:7f:b7:0b:b8: d0:19:0e:d7:2f:4d:76:7f:c7:c6:0b:26:c5:3f:7f: 51:6b:00:e0:e7:d4:5b:0e:c3:77:3a:bd:20:47:4b: 08:85:f1:0b:ef:dd:26:1c:ca:33:b5:f4:5d:2f:b4: 5c:19:20:65:e1:0d:00:df:cc:c4:d1:3e:20:cd:b7: 27:75:2e:20:f2:57:34:21:2e:5a:30:5d:79:90:46: 06:71:14:76:84:43:98:a3:26:dd:e6:ed:71:b3:fb: 80:45:9b:1a:60:47:0b:d4:67:a2:4c:be:8b:03:fc: 80:df:65:aa:72:94:f8:f1:8d:db:11:51:59:57:63: 73:a5:5d:74:84:2a:47:cd:ad:88:06:e9:bf:44:73: c0:e0:a7:db:78:fc:6f:dc:8c:81:62:52:6e:2b:c1: d7:e5:dc:ab:41:9a:e1:6c:46:11:f1:93:2d:73:e9: 69:08:d7:6e:1b:2c:91:65:16:ef:81:c2:91:78:cd: 6b:c4:61:8c:c0:94:df:9c:5c:19:46:dd:a8:0a:8a: d0:9f:19:9e:11:a9:01:2d:72:d6:c7:63:86:e7:2a: 6d:99:2e:1f:92:6e:7f:d9:fc:bc:8a:21:da:59:ac: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4B:C0:5B:1F:0A:E8:1C:39:0E:83:54:72:E2:F6:66:F3:35:6C:57 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:100::/48 Signature Algorithm: sha256WithRSAEncryption 39:4f:ce:6b:65:29:8b:a9:48:b9:eb:6f:e7:a5:84:ec:32:fc: 48:9a:51:d3:3c:32:ba:27:60:20:d7:f7:da:1e:7d:09:b0:9e: f3:45:9f:5b:69:ee:f0:3f:88:90:72:21:99:fe:20:80:9c:6a: 7a:9a:91:86:bc:01:ef:41:61:40:41:70:b5:0a:84:9b:f4:20: 4e:e9:7e:cc:b4:e1:4d:bf:be:ff:1e:86:c8:0f:40:8c:27:29: e2:e0:f0:1a:23:50:6e:98:ac:d3:f0:cf:3c:a2:7f:be:08:9a: c3:88:7b:b1:4c:f1:07:f2:2a:8b:9b:60:0f:8f:59:49:e3:b0: 50:79:3c:ed:20:1c:bc:d9:a8:6a:75:b3:6f:6f:8e:eb:f1:bb: bb:8c:7b:13:fa:17:f9:7a:bf:4a:e0:c4:f2:8a:7c:74:af:a9: 53:64:38:c0:f3:ce:b3:27:c1:7d:b0:40:0e:28:76:bc:5e:8c: 3e:d1:b7:d6:ae:e4:8a:a3:f1:7b:a7:e9:a2:85:3d:cd:d4:0f: 91:57:d8:d3:bf:a8:3d:4a:7d:8b:9a:ea:ef:55:bb:b4:db:cb: 01:47:01:b1:e9:d6:27:b9:fc:76:d2:ab:fd:17:1d:e7:d2:73: 2d:8a:a1:a2:7e:7b:9b:0a:2b:79:3e:f7:42:a3:d0:53:a4:34: ec:fc:23:97 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQfj/hVm/teoU22GSulAeTeGBo4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDAyMjgwMjU1MDFaFw0yNTAyMjYwMzAwMDFaMDMxMTAvBgNV BAMTKEU1NEJDMDVCMUYwQUU4MUMzOTBFODM1NDcyRTJGNjY2RjMzNTZDNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/6ls1afRzNgFP+xCdmTcxYGDL oyisk/mhf7cLuNAZDtcvTXZ/x8YLJsU/f1FrAODn1FsOw3c6vSBHSwiF8Qvv3SYc yjO19F0vtFwZIGXhDQDfzMTRPiDNtyd1LiDyVzQhLlowXXmQRgZxFHaEQ5ijJt3m 7XGz+4BFmxpgRwvUZ6JMvosD/IDfZapylPjxjdsRUVlXY3OlXXSEKkfNrYgG6b9E c8Dgp9t4/G/cjIFiUm4rwdfl3KtBmuFsRhHxky1z6WkI124bLJFlFu+BwpF4zWvE YYzAlN+cXBlG3agKitCfGZ4RqQEtctbHY4bnKm2ZLh+Sbn/Z/LyKIdpZrExnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU5UvAWx8K6Bw5DoNUcuL2ZvM1bFcwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBrgAB ADANBgkqhkiG9w0BAQsFAAOCAQEAOU/Oa2Upi6lIuetv56WE7DL8SJpR0zwyuidg INf32h59CbCe80WfW2nu8D+IkHIhmf4ggJxqepqRhrwB70FhQEFwtQqEm/QgTul+ zLThTb++/x6GyA9AjCcp4uDwGiNQbpis0/DPPKJ/vgiaw4h7sUzxB/Iqi5tgD49Z SeOwUHk87SAcvNmoanWzb2+O6/G7u4x7E/oX+Xq/SuDE8op8dK+pU2Q4wPPOsyfB fbBADih2vF6MPtG31q7kiqPxe6fpooU9zdQPkVfY07+oPUp9i5rq71W7tNvLAUcB senWJ7n8dtKr/Rcd59JzLYqhon57mworeT73QqPQU6Q07Pwjlw== -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org