$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa File: 323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa (raw, json) Hash identifier: 7Q+cHTJm7K0uQaI2wSiEnV0Vg5DaSAu/jLyZTDXTbP0= Subject key identifier: AE:70:C3:4C:3E:BA:E2:28:83:BA:43:30:BE:70:02:9C:03:E0:19:99 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 6C467ABE4E2E4837C11B5E908638329BC8D97C9B Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa Signing time: Mon 26 Feb 2024 06:24:57 +0000 ROA not before: Mon 26 Feb 2024 06:19:57 +0000 ROA not after: Mon 24 Feb 2025 06:24:57 +0000 asID: 38320 IP address blocks: 2404:3900:1992::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:46:7a:be:4e:2e:48:37:c1:1b:5e:90:86:38:32:9b:c8:d9:7c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Feb 26 06:19:57 2024 GMT Not After : Feb 24 06:24:57 2025 GMT Subject: CN=AE70C34C3EBAE22883BA4330BE70029C03E01999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2c:52:59:05:f9:36:98:c7:29:d6:56:19:b9: 8e:b8:ba:d8:d1:3f:58:12:bc:6c:c6:18:e3:a1:a8: 85:d7:ea:90:23:33:fe:f5:86:21:4a:f1:b0:04:7f: 90:c9:72:de:9d:60:57:f5:b9:2e:7c:8d:45:f7:98: 15:aa:bd:50:25:da:10:23:0b:85:0a:ed:35:91:54: 3b:bd:95:88:55:7c:c3:ae:d0:2e:76:eb:ac:37:cc: 74:31:61:97:3d:46:43:84:4e:62:3a:98:3c:f0:58: 1f:36:03:64:09:d8:02:18:c4:8f:f8:28:44:2d:5e: 2f:5a:c9:ff:80:87:d1:cd:40:22:82:75:cc:21:2e: 13:1e:0f:b5:6a:05:4f:9a:0f:56:1d:dc:38:75:8a: 46:8b:56:03:81:f1:c7:8e:4e:08:af:57:20:24:7e: 6d:b6:b6:c8:45:59:0b:f5:c4:38:f5:4a:80:fd:06: 30:e9:09:7a:c1:36:d8:08:1c:dc:69:ea:e0:ea:c4: b0:d4:a4:35:f9:57:14:b1:e5:43:a3:3e:8f:bd:a6: f7:aa:fa:8a:42:e2:65:9c:9e:29:4f:2f:d8:3e:4d: 99:ac:39:47:36:74:af:a5:7f:91:cd:c1:16:1d:dd: dd:2a:80:e2:cc:04:4a:06:88:46:02:aa:3a:ba:49: 33:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:70:C3:4C:3E:BA:E2:28:83:BA:43:30:BE:70:02:9C:03:E0:19:99 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a313939323a3a2f34382d3438203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3900:1992::/48 Signature Algorithm: sha256WithRSAEncryption 04:d6:b0:1f:70:8c:16:df:01:8f:84:9e:b3:08:52:fd:cc:8d: 57:d4:ec:ea:f8:1d:e8:43:b4:f9:de:b5:58:33:5a:b9:82:aa: 8d:e1:16:ab:9f:9f:e4:d9:3d:2a:72:66:47:b5:61:40:f8:b1: 14:45:d8:75:59:ba:63:93:15:99:78:5f:8b:f3:99:25:95:1d: 82:91:08:20:7e:b3:e3:90:5f:57:5a:78:df:35:4d:50:be:e7: 46:f4:f5:f4:51:a9:12:68:2c:c1:85:f3:7c:6e:7c:1d:73:a7: 0b:0f:ed:1e:f2:db:63:7e:dd:f8:ee:1e:89:a0:0c:90:e9:af: bb:06:ef:a4:9c:91:90:9a:c5:f2:dd:27:01:ff:ff:9c:ab:df: b1:17:22:bf:1a:9d:6b:f2:75:5b:17:39:ea:31:16:84:58:84: 51:0a:8a:07:a7:58:a4:52:77:9d:bf:ba:08:1a:f4:58:cd:17: c0:9a:67:a6:84:d2:0e:7e:61:36:90:15:30:6d:49:80:db:f7: e8:6d:40:a3:83:58:8e:32:8a:f7:3f:38:24:32:83:96:c9:51: 03:38:93:98:66:88:e0:02:8b:56:a1:26:7d:86:68:43:d1:88: 76:ce:86:87:72:e5:3c:98:97:14:cc:55:1e:1a:93:6b:ed:69: df:97:d5:dc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbEZ6vk4uSDfBG16Qhjgym8jZfJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDAyMjYwNjE5NTdaFw0yNTAyMjQwNjI0NTdaMDMxMTAvBgNV BAMTKEFFNzBDMzRDM0VCQUUyMjg4M0JBNDMzMEJFNzAwMjlDMDNFMDE5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+LFJZBfk2mMcp1lYZuY64utjR P1gSvGzGGOOhqIXX6pAjM/71hiFK8bAEf5DJct6dYFf1uS58jUX3mBWqvVAl2hAj C4UK7TWRVDu9lYhVfMOu0C5266w3zHQxYZc9RkOETmI6mDzwWB82A2QJ2AIYxI/4 KEQtXi9ayf+Ah9HNQCKCdcwhLhMeD7VqBU+aD1Yd3Dh1ikaLVgOB8ceOTgivVyAk fm22tshFWQv1xDj1SoD9BjDpCXrBNtgIHNxp6uDqxLDUpDX5VxSx5UOjPo+9pveq +opC4mWcnilPL9g+TZmsOUc2dK+lf5HNwRYd3d0qgOLMBEoGiEYCqjq6STPpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrnDDTD664iiDukMwvnACnAPgGZkwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzQzMDM0M2EzMzM5MzAzMDNhMzEzOTM5MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQ5 ABmSMA0GCSqGSIb3DQEBCwUAA4IBAQAE1rAfcIwW3wGPhJ6zCFL9zI1X1Ozq+B3o Q7T53rVYM1q5gqqN4Rarn5/k2T0qcmZHtWFA+LEURdh1WbpjkxWZeF+L85kllR2C kQggfrPjkF9XWnjfNU1QvudG9PX0UakSaCzBhfN8bnwdc6cLD+0e8ttjft347h6J oAyQ6a+7Bu+knJGQmsXy3ScB//+cq9+xFyK/Gp1r8nVbFznqMRaEWIRRCooHp1ik Unedv7oIGvRYzRfAmmemhNIOfmE2kBUwbUmA2/fobUCjg1iOMor3PzgkMoOWyVED OJOYZojgAotWoSZ9hmhD0Yh2zoaHcuU8mJcUzFUeGpNr7Wnfl9Xc -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org