$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: C+T8dBvggaTCEh5/1ll1reorawVQeZDheWzvM6XklTw= Subject key identifier: 8F:D0:64:92:A0:9D:F4:2E:15:76:CA:AC:EA:2C:14:7E:5B:1E:83:72 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 6160F483B5504A02DEA7AE664D645CC99A858E4D Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 14 Sep 2024 18:00:01 +0000 ROA not before: Sat 14 Sep 2024 17:55:01 +0000 ROA not after: Sat 13 Sep 2025 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:60:f4:83:b5:50:4a:02:de:a7:ae:66:4d:64:5c:c9:9a:85:8e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Sep 14 17:55:01 2024 GMT Not After : Sep 13 18:00:01 2025 GMT Subject: CN=8FD06492A09DF42E1576CAACEA2C147E5B1E8372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:d0:53:a8:fc:94:48:84:07:3b:ca:89:ae: 48:f1:a9:63:4b:e8:42:4a:ca:54:15:d0:02:90:ef: ca:4f:e2:82:4d:f1:7e:4d:ff:d6:73:3f:9a:94:d7: 0d:15:15:66:1d:3d:be:73:fb:98:d3:ff:61:61:a0: ad:12:81:28:52:4c:45:cb:ff:e3:1b:32:4d:be:6f: 57:b7:51:5f:53:1e:42:67:e0:36:47:08:ae:6c:54: ba:10:50:92:22:21:28:1e:29:1f:8e:52:aa:d5:d2: c0:7e:e9:22:ae:1a:e6:d6:10:76:b1:08:81:ff:11: 4b:cb:d4:e4:5c:3f:62:05:cb:7e:c8:13:f3:c1:5d: e4:b0:5e:52:88:3c:0f:0d:e8:40:1a:8e:ab:41:99: e7:2c:bc:2f:c5:1d:cf:aa:8c:63:92:da:39:b4:4d: d1:ae:4c:97:96:64:bb:2e:4b:a1:39:38:9c:f7:2f: 83:9f:43:9f:a7:65:39:73:32:01:92:29:f7:ee:fb: fa:1c:01:b8:04:23:24:7a:4f:10:2c:85:28:77:4d: 30:34:7d:98:d0:89:9c:fb:0f:8c:a4:46:f0:51:5c: 12:3e:f7:c5:d0:97:38:dc:47:5a:fc:b6:34:f9:c9: 02:dd:bc:6b:b9:18:97:c2:5d:48:84:72:4d:7d:6c: 8b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D0:64:92:A0:9D:F4:2E:15:76:CA:AC:EA:2C:14:7E:5B:1E:83:72 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a323a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:2::/48 Signature Algorithm: sha256WithRSAEncryption 6c:a3:1d:8f:fe:74:c6:c8:80:b7:2f:46:2b:cb:bb:32:fb:6c: ec:93:6c:3b:48:b5:b4:0c:af:f5:9f:ff:36:c2:98:ce:f6:6d: 7e:d0:d5:40:c8:6c:31:14:a0:54:3c:fd:d4:dd:e0:a8:7e:e0: 1f:f1:e9:99:a1:ed:b2:a0:af:ca:a9:be:cb:f4:26:ef:e2:c6: 22:71:0a:0c:0b:8e:99:1b:07:12:06:0e:11:01:27:b5:9f:69: 2b:dd:4f:43:5d:44:c1:60:70:b2:ef:bc:0a:20:4e:44:53:c0: 45:64:9e:f5:fd:8e:ca:80:49:f4:dd:4a:88:77:af:81:3c:3a: fa:1b:e8:2e:34:04:a0:95:67:81:b9:c8:c5:b6:09:62:bf:75: f8:76:ad:18:04:6b:92:18:fc:97:05:30:f1:da:68:3b:06:bc: c7:8d:b7:be:5b:eb:b9:5f:f9:99:0d:3f:98:dc:33:f8:c5:45: a7:24:95:a9:42:98:e7:b6:6d:68:a8:c8:ab:0f:44:c2:1c:71: c9:35:2d:3a:f3:23:c4:af:41:e7:ce:f3:a0:90:6e:ab:b7:06: 97:ce:fa:51:42:ea:51:4b:71:a1:75:ae:e4:e2:72:e6:d5:45: 62:0f:48:40:a9:12:ec:a5:f3:b5:08:58:19:dd:9f:cf:68:49: 46:cc:12:9e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYWD0g7VQSgLep65mTWRcyZqFjk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNDA5MTQxNzU1MDFaFw0yNTA5MTMxODAwMDFaMDMxMTAvBgNV BAMTKDhGRDA2NDkyQTA5REY0MkUxNTc2Q0FBQ0VBMkMxNDdFNUIxRTgzNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN/9BTqPyUSIQHO8qJrkjxqWNL 6EJKylQV0AKQ78pP4oJN8X5N/9ZzP5qU1w0VFWYdPb5z+5jT/2FhoK0SgShSTEXL /+MbMk2+b1e3UV9THkJn4DZHCK5sVLoQUJIiISgeKR+OUqrV0sB+6SKuGubWEHax CIH/EUvL1ORcP2IFy37IE/PBXeSwXlKIPA8N6EAajqtBmecsvC/FHc+qjGOS2jm0 TdGuTJeWZLsuS6E5OJz3L4OfQ5+nZTlzMgGSKffu+/ocAbgEIyR6TxAshSh3TTA0 fZjQiZz7D4ykRvBRXBI+98XQlzjcR1r8tjT5yQLdvGu5GJfCXUiEck19bItPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUj9BkkqCd9C4Vdsqs6iwUflseg3IwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAIw DQYJKoZIhvcNAQELBQADggEBAGyjHY/+dMbIgLcvRivLuzL7bOyTbDtItbQMr/Wf /zbCmM72bX7Q1UDIbDEUoFQ8/dTd4Kh+4B/x6Zmh7bKgr8qpvsv0Ju/ixiJxCgwL jpkbBxIGDhEBJ7WfaSvdT0NdRMFgcLLvvAogTkRTwEVknvX9jsqASfTdSoh3r4E8 Ovob6C40BKCVZ4G5yMW2CWK/dfh2rRgEa5IY/JcFMPHaaDsGvMeNt75b67lf+ZkN P5jcM/jFRacklalCmOe2bWioyKsPRMIccck1LTrzI8SvQefO86CQbqu3BpfO+lFC 6lFLcaF1ruTicubVRWIPSECpEuyl87UIWBndn89oSUbMEp4= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org