$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa File: 323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa (raw, json) Hash identifier: HFWXtCKSxWffE29uWGGu3tkVosoB52veffoqv+vE7ek= Subject key identifier: FB:E7:B3:60:0E:19:88:D0:92:0F:EA:49:88:04:C4:25:95:0E:5B:37 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 06A9234C3EB9D595D36DEFAFABFA47B8101810C6 Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa Signing time: Mon 26 Feb 2024 06:24:41 +0000 ROA not before: Mon 26 Feb 2024 06:19:41 +0000 ROA not after: Mon 24 Feb 2025 06:24:41 +0000 asID: 38320 IP address blocks: 2404:3900:a92::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a9:23:4c:3e:b9:d5:95:d3:6d:ef:af:ab:fa:47:b8:10:18:10:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Feb 26 06:19:41 2024 GMT Not After : Feb 24 06:24:41 2025 GMT Subject: CN=FBE7B3600E1988D0920FEA498804C425950E5B37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:74:fa:b7:cf:3d:9a:41:7b:dd:8f:0a:5c:68: e9:0d:d9:07:89:40:65:81:b7:13:93:a6:62:08:24: 0e:65:bb:26:f3:c9:8d:93:86:b2:9d:72:f3:20:98: 8d:74:4c:22:c8:bb:29:d5:5f:80:4c:d8:3b:44:6f: f6:18:b1:c9:24:76:7b:2f:4a:0a:80:00:08:37:fd: d9:05:04:aa:54:4f:7c:6c:7a:51:4e:4e:50:c4:b7: fe:b7:6f:98:b0:07:8f:57:8c:97:ac:fd:a8:da:50: 78:6d:f9:76:5f:c2:6b:41:a3:8a:c0:f2:a0:d2:98: 3b:0e:85:e1:51:33:15:d3:89:10:38:70:bc:02:c1: 28:dd:72:f1:8a:be:5c:f7:7c:c3:4d:cd:1e:6b:b4: 42:42:a7:c4:90:ec:e0:e3:b9:2b:c4:51:1f:fd:ef: 97:7a:ce:37:5f:84:d0:75:12:cd:10:56:fc:9f:c6: ee:a4:b5:8e:fc:1a:b5:ea:b3:1a:e7:1a:8b:70:a9: 59:d7:8b:5a:1d:46:48:82:a1:cf:f7:41:38:66:ce: 69:97:78:24:45:a5:38:31:14:1b:eb:2b:22:16:57: 36:cc:43:1e:60:5d:a4:30:c9:c5:2a:45:7b:d6:a5: 5d:a5:f3:3f:72:ef:6d:a9:bd:3c:72:e5:be:84:7d: 5f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E7:B3:60:0E:19:88:D0:92:0F:EA:49:88:04:C4:25:95:0E:5B:37 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/323430343a333930303a6139323a3a2f34382d3438203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:3900:a92::/48 Signature Algorithm: sha256WithRSAEncryption 0b:29:ed:21:b3:aa:4a:2a:81:d1:93:92:3d:b4:75:4c:5b:aa: 92:e8:8c:15:31:0b:5c:d3:e7:ab:ca:16:0c:75:df:49:d1:b6: 83:64:20:41:a7:ab:2a:af:5b:41:85:92:4b:88:47:3f:cb:32: 48:f2:b5:53:77:97:76:ee:ef:ce:f9:11:2a:c3:de:b7:4a:af: f6:7b:79:c2:85:b5:76:c1:0d:eb:10:25:d2:6c:c6:6b:ac:54: 12:12:a8:db:cc:24:ae:2a:18:e7:b9:3a:7c:8a:38:f1:0b:ca: 34:8b:eb:4c:3b:ed:c2:be:0b:58:69:1c:d2:8b:37:b6:e2:d4: d0:dd:5f:dd:42:a4:3d:0f:78:62:9e:5e:8b:d1:80:29:f9:6a: 7a:bb:b5:b6:f3:b8:f2:93:75:c3:7c:f0:89:0a:ab:ae:52:83: ec:ae:56:fa:7b:fb:c0:cc:15:23:89:0f:44:ff:ef:f4:50:77: da:fb:f7:f3:b1:77:fa:20:aa:fc:42:4a:de:c2:b0:5c:86:a7: c3:a1:6e:07:82:b1:8a:5a:6b:0b:b1:01:34:c5:3c:6f:d4:77: fb:b4:96:4f:42:35:cc:eb:5d:7b:87:5a:ae:3e:1b:d2:c2:4a: 79:94:84:24:12:94:5e:7a:cc:c7:e5:1c:c2:26:0a:b6:76:ce: 6f:09:8b:b6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBqkjTD651ZXTbe+vq/pHuBAYEMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNDAyMjYwNjE5NDFaFw0yNTAyMjQwNjI0NDFaMDMxMTAvBgNV BAMTKEZCRTdCMzYwMEUxOTg4RDA5MjBGRUE0OTg4MDRDNDI1OTUwRTVCMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHdPq3zz2aQXvdjwpcaOkN2QeJ QGWBtxOTpmIIJA5luybzyY2ThrKdcvMgmI10TCLIuynVX4BM2DtEb/YYsckkdnsv SgqAAAg3/dkFBKpUT3xselFOTlDEt/63b5iwB49XjJes/ajaUHht+XZfwmtBo4rA 8qDSmDsOheFRMxXTiRA4cLwCwSjdcvGKvlz3fMNNzR5rtEJCp8SQ7ODjuSvEUR/9 75d6zjdfhNB1Es0QVvyfxu6ktY78GrXqsxrnGotwqVnXi1odRkiCoc/3QThmzmmX eCRFpTgxFBvrKyIWVzbMQx5gXaQwycUqRXvWpV2l8z9y722pvTxy5b6EfV+HAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU++ezYA4ZiNCSD+pJiATEJZUOWzcwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzMyMzQzMDM0M2EzMzM5MzAzMDNhNjEzOTMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEOQAK kjANBgkqhkiG9w0BAQsFAAOCAQEACyntIbOqSiqB0ZOSPbR1TFuqkuiMFTELXNPn q8oWDHXfSdG2g2QgQaerKq9bQYWSS4hHP8sySPK1U3eXdu7vzvkRKsPet0qv9nt5 woW1dsEN6xAl0mzGa6xUEhKo28wkrioY57k6fIo48QvKNIvrTDvtwr4LWGkc0os3 tuLU0N1f3UKkPQ94Yp5ei9GAKflqeru1tvO48pN1w3zwiQqrrlKD7K5W+nv7wMwV I4kPRP/v9FB32vv387F3+iCq/EJK3sKwXIanw6FuB4KxilprC7EBNMU8b9R3+7SW T0I1zOtde4darj4b0sJKeZSEJBKUXnrMx+UcwiYKtnbObwmLtg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org