$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: QQnpy2bNIR0ePeJWDd7EFS676tRk88/QJu/kH0eBN68= Subject key identifier: 2B:44:1D:2E:53:A8:09:C1:97:6E:68:E1:24:31:C9:47:6A:2C:A2:E3 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 50A6B2B8534EC05FE50B9486A24AA7861D0F76D4 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa Signing time: Mon 15 Jul 2024 05:00:01 +0000 ROA not before: Mon 15 Jul 2024 04:55:01 +0000 ROA not after: Mon 14 Jul 2025 05:00:01 +0000 asID: 38753 IP address blocks: 2401:ae00:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a6:b2:b8:53:4e:c0:5f:e5:0b:94:86:a2:4a:a7:86:1d:0f:76:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jul 15 04:55:01 2024 GMT Not After : Jul 14 05:00:01 2025 GMT Subject: CN=2B441D2E53A809C1976E68E12431C9476A2CA2E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a5:08:cc:a9:66:39:c3:39:c5:34:49:47:6b: 1b:63:dc:78:45:27:8d:1a:e1:ab:03:58:55:74:e6: da:68:53:84:44:cf:50:df:3b:b8:8a:2f:b1:ff:61: 29:a0:f7:01:15:42:c0:d1:ee:5e:ab:11:8d:ca:a0: 74:96:d3:f1:3c:1a:1d:8a:3b:50:d2:ac:b8:d5:e0: 17:c1:92:f4:7d:c2:b3:62:cc:60:3d:12:9d:eb:81: 61:0c:9c:83:20:6e:44:53:0b:5c:19:26:08:47:e0: 4e:17:53:da:3a:ac:cb:9f:aa:6d:d6:5c:46:69:66: 74:77:9c:f2:c0:34:4b:cd:eb:bd:a7:b5:79:5e:bc: 51:12:4d:ab:b6:8e:f6:07:fd:08:df:15:14:50:51: 0a:a8:58:10:e6:fc:14:71:91:a9:00:89:71:31:42: 28:05:68:9c:d2:50:91:f5:75:8d:60:bf:fe:b2:c9: 2d:60:13:e9:5a:a1:ae:c5:e3:10:6d:58:02:7d:c5: e4:a1:b1:8d:59:a6:f1:0a:eb:84:12:79:e6:da:14: 75:01:47:8e:36:78:26:b3:82:ff:b3:bc:d0:d3:7e: 24:f6:e8:83:b4:58:12:b6:d6:d8:e3:e5:5a:a3:bc: 1d:8e:ce:64:2d:f7:ba:cd:f8:6b:52:f7:8d:34:a1: 08:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:44:1D:2E:53:A8:09:C1:97:6E:68:E1:24:31:C9:47:6A:2C:A2:E3 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a383a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:8::/48 Signature Algorithm: sha256WithRSAEncryption 3f:d4:61:00:a6:63:c1:a8:42:06:ef:a6:82:61:eb:c3:ab:df: 6f:fe:84:74:93:70:ed:ef:cc:b0:3c:f7:83:37:82:54:23:99: fe:24:c5:d0:a7:6a:43:b6:68:7a:73:b2:7f:87:d0:85:25:e2: e4:8c:c8:47:8f:a6:6d:97:bf:e3:94:26:64:18:74:f5:5e:6a: 7f:7f:a0:74:3c:b3:b5:7a:62:fe:c0:93:d2:33:1a:8e:9d:a7: e6:34:5e:d9:99:b6:c5:6d:63:8d:80:18:c8:90:f1:b3:59:9d: f3:85:e9:7a:1a:ed:c1:ac:a8:89:01:15:e4:3d:5f:d0:58:d0: 72:ae:ed:d4:83:93:22:3a:d4:59:9d:e6:b7:4c:2b:f8:93:e7: 5a:ff:3b:72:0e:16:ab:a3:b1:c0:69:f9:5a:ed:4d:29:60:1e: 5f:7c:7d:c3:b2:01:3b:71:10:5f:a0:c7:16:2f:c0:89:7c:ce: 33:c9:c5:5a:63:5e:c2:86:91:97:7a:a9:36:a1:4e:92:a3:c5: b1:54:a8:44:a9:67:45:55:3b:c4:8c:1f:e8:32:39:5f:ea:8d: c2:5f:bf:83:ae:d3:38:12:d2:be:78:bc:17:00:9e:a2:93:d5: 62:8f:8e:94:7c:45:26:ec:76:37:d8:29:3d:5e:26:b4:60:da: eb:7e:60:31 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUKayuFNOwF/lC5SGokqnhh0PdtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDA3MTUwNDU1MDFaFw0yNTA3MTQwNTAwMDFaMDMxMTAvBgNV BAMTKDJCNDQxRDJFNTNBODA5QzE5NzZFNjhFMTI0MzFDOTQ3NkEyQ0EyRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4pQjMqWY5wznFNElHaxtj3HhF J40a4asDWFV05tpoU4REz1DfO7iKL7H/YSmg9wEVQsDR7l6rEY3KoHSW0/E8Gh2K O1DSrLjV4BfBkvR9wrNizGA9Ep3rgWEMnIMgbkRTC1wZJghH4E4XU9o6rMufqm3W XEZpZnR3nPLANEvN672ntXlevFESTau2jvYH/QjfFRRQUQqoWBDm/BRxkakAiXEx QigFaJzSUJH1dY1gv/6yyS1gE+laoa7F4xBtWAJ9xeShsY1ZpvEK64QSeebaFHUB R442eCazgv+zvNDTfiT26IO0WBK21tjj5VqjvB2OzmQt97rN+GtS9400oQitAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUK0QdLlOoCcGXbmjhJDHJR2osouMwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzczNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAGuAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQA/1GEApmPBqEIG76aCYevDq99v/oR0k3Dt78ywPPeD N4JUI5n+JMXQp2pDtmh6c7J/h9CFJeLkjMhHj6Ztl7/jlCZkGHT1Xmp/f6B0PLO1 emL+wJPSMxqOnafmNF7ZmbbFbWONgBjIkPGzWZ3zhel6Gu3BrKiJARXkPV/QWNBy ru3Ug5MiOtRZnea3TCv4k+da/ztyDharo7HAafla7U0pYB5ffH3DsgE7cRBfoMcW L8CJfM4zycVaY17ChpGXeqk2oU6So8WxVKhEqWdFVTvEjB/oMjlf6o3CX7+DrtM4 EtK+eLwXAJ6ik9Vij46UfEUm7HY32Ck9Xia0YNrrfmAx -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org