$ rpki-client -vvf repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa File: 323430353a366463303a3a2f33322d3332203d3e20313339343237.roa (raw, json) Hash identifier: EJNiZ5CP4NViKAT2AQrbTMiN3p2wBvG9Nimx2GtcP7I= Subject key identifier: 03:35:6A:E7:AA:12:70:B0:4A:1B:07:77:13:95:3E:1A:9A:E1:C4:69 Certificate issuer: /CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Certificate serial: 70CF14183DD2A4138A4320FEE3A40DFC445F6EB8 Authority key identifier: 8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa Signing time: Fri 24 May 2024 18:00:00 +0000 ROA not before: Fri 24 May 2024 17:55:00 +0000 ROA not after: Fri 23 May 2025 18:00:00 +0000 asID: 139427 IP address blocks: 2405:6dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:cf:14:18:3d:d2:a4:13:8a:43:20:fe:e3:a4:0d:fc:44:5f:6e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3F7441403B9CDF2FD603CCBAF13D1671202D2D Validity Not Before: May 24 17:55:00 2024 GMT Not After : May 23 18:00:00 2025 GMT Subject: CN=03356AE7AA1270B04A1B077713953E1A9AE1C469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1b:65:8a:93:1f:1c:25:0a:e7:0d:52:f1:c1: 93:07:26:48:87:92:31:31:81:f7:7c:ba:e8:be:0c: 96:d0:19:ab:86:3e:26:53:82:db:ee:f1:a7:28:86: ff:de:98:8e:1b:09:6c:c4:10:52:e0:1c:66:a3:34: fe:14:11:c0:73:71:d7:aa:37:70:e1:d2:2b:24:15: 7b:36:cf:d1:b1:71:f0:87:d9:a1:81:9b:68:3a:88: d6:de:80:70:97:bf:21:21:85:88:e0:47:1f:79:43: 23:a7:bb:91:ff:45:ff:38:19:62:a4:16:4d:28:8d: d0:ea:08:06:8d:18:3b:c5:90:8e:05:c5:fd:9b:c1: e5:5d:88:4c:b1:e4:0d:8a:e9:da:38:49:e0:99:0b: 1e:88:ac:a3:87:90:b1:c5:7b:4d:54:11:23:33:92: 55:be:47:28:cd:38:5b:9f:fb:63:f6:35:a4:f3:d7: 23:d0:57:8f:e2:92:3b:5a:e5:de:dc:7b:00:26:6b: e9:5e:2e:71:4c:07:c5:ec:13:53:ee:6c:a2:08:49: ed:36:d4:6d:57:d5:6f:60:14:93:04:0f:f1:5c:b5: da:99:8d:ff:56:20:19:49:51:cc:e1:41:d1:0f:18: fb:c5:cb:18:3a:1e:1f:ee:ac:ae:af:da:b0:3d:d1: de:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:35:6A:E7:AA:12:70:B0:4A:1B:07:77:13:95:3E:1A:9A:E1:C4:69 X509v3 Authority Key Identifier: keyid:8E:3F:74:41:40:3B:9C:DF:2F:D6:03:CC:BA:F1:3D:16:71:20:2D:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E3F7441403B9CDF2FD603CCBAF13D1671202D2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa914ada-a9aa-4d7f-9e47-594bcb7a70ab/0/323430353a366463303a3a2f33322d3332203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6dc0::/32 Signature Algorithm: sha256WithRSAEncryption 72:96:8f:54:4c:e0:94:f7:71:57:e3:8b:8d:a0:b8:51:d4:33: c8:56:db:1c:ff:c2:e6:33:c0:b0:4b:54:12:1c:b7:d4:14:51: 30:67:89:5d:4f:be:c8:58:bd:32:d9:0f:95:45:af:22:7b:ea: 45:46:c1:27:7e:db:a4:3c:68:a8:62:a8:15:18:3f:08:30:22: 7b:50:ad:db:2e:0f:9d:3b:8f:91:a2:f4:1e:2d:c0:9a:1a:b1: 52:a4:e5:7a:3c:a1:eb:d2:26:92:0e:53:66:b8:bc:23:a6:8b: 8f:bd:74:81:ec:2a:f5:a4:67:0c:e7:77:db:48:84:bf:bf:ac: 08:47:b0:ad:ab:38:c7:32:83:d4:b4:4f:d6:40:ea:c2:4b:19: 29:1f:91:67:71:60:b0:03:ff:e0:9a:63:34:05:74:50:41:0a: 7e:ff:62:a2:cd:ba:ce:11:85:f9:f2:bc:c4:7d:18:4d:d1:f6: 13:0d:45:eb:a4:fc:2e:a1:37:2e:61:57:2f:63:de:ca:09:16: 47:1f:a8:a8:d6:c0:4f:a2:86:8d:8d:b9:06:f8:a3:63:93:6e: 21:e8:ea:61:7b:a5:e6:66:b7:a8:eb:04:83:11:ba:22:c9:98: 53:3c:b3:94:fe:7c:68:d5:56:3b:d9:c5:20:54:bf:e7:77:8e: b9:96:31:88 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUcM8UGD3SpBOKQyD+46QN/ERfbrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3 MTIwMkQyRDAeFw0yNDA1MjQxNzU1MDBaFw0yNTA1MjMxODAwMDBaMDMxMTAvBgNV BAMTKDAzMzU2QUU3QUExMjcwQjA0QTFCMDc3NzEzOTUzRTFBOUFFMUM0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbG2WKkx8cJQrnDVLxwZMHJkiH kjExgfd8uui+DJbQGauGPiZTgtvu8acohv/emI4bCWzEEFLgHGajNP4UEcBzcdeq N3Dh0iskFXs2z9GxcfCH2aGBm2g6iNbegHCXvyEhhYjgRx95QyOnu5H/Rf84GWKk Fk0ojdDqCAaNGDvFkI4Fxf2bweVdiEyx5A2K6do4SeCZCx6IrKOHkLHFe01UESMz klW+RyjNOFuf+2P2NaTz1yPQV4/ikjta5d7cewAma+leLnFMB8XsE1PubKIISe02 1G1X1W9gFJMED/FctdqZjf9WIBlJUczhQdEPGPvFyxg6Hh/urK6v2rA90d53AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUAzVq56oScLBKGwd3E5U+GprhxGkwHwYDVR0j BBgwFoAUjj90QUA7nN8v1gPMuvE9FnEgLS0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTkxNGFkYS1hOWFhLTRkN2YtOWU0Ny01OTRiY2I3YTcwYWIvMC84RTNGNzQ0MTQw M0I5Q0RGMkZENjAzQ0NCQUYxM0QxNjcxMjAyRDJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEUzRjc0NDE0MDNCOUNERjJGRDYwM0NDQkFGMTNEMTY3MTIw MkQyRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhOTE0YWRhLWE5YWEtNGQ3Zi05 ZTQ3LTU5NGJjYjdhNzBhYi8wLzMyMzQzMDM1M2EzNjY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFbcAwDQYJKoZI hvcNAQELBQADggEBAHKWj1RM4JT3cVfji42guFHUM8hW2xz/wuYzwLBLVBIct9QU UTBniV1PvshYvTLZD5VFryJ76kVGwSd+26Q8aKhiqBUYPwgwIntQrdsuD507j5Gi 9B4twJoasVKk5Xo8oevSJpIOU2a4vCOmi4+9dIHsKvWkZwznd9tIhL+/rAhHsK2r OMcyg9S0T9ZA6sJLGSkfkWdxYLAD/+CaYzQFdFBBCn7/YqLNus4RhfnyvMR9GE3R 9hMNReuk/C6hNy5hVy9j3soJFkcfqKjWwE+iho2NuQb4o2OTbiHo6mF7peZmt6jr BIMRuiLJmFM8s5T+fGjVVjvZxSBUv+d3jrmWMYg= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org