$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: Em18K+MRLc18yaX14YQfb1826gcDLLiSRdz/WlnRnnE= Subject key identifier: 3F:AF:B0:44:90:25:75:09:68:3F:C1:DF:6A:89:05:12:9B:20:81:DA Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 39DBB6A24E3F3AA3F3D3A29ACDF6F328C1BCAEEE Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 14 Sep 2024 18:00:01 +0000 ROA not before: Sat 14 Sep 2024 17:55:01 +0000 ROA not after: Sat 13 Sep 2025 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:db:b6:a2:4e:3f:3a:a3:f3:d3:a2:9a:cd:f6:f3:28:c1:bc:ae:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Sep 14 17:55:01 2024 GMT Not After : Sep 13 18:00:01 2025 GMT Subject: CN=3FAFB04490257509683FC1DF6A8905129B2081DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:83:f6:d4:fe:86:7a:ec:36:61:08:15:d0:3d: 03:7c:68:11:9b:9a:66:29:ef:31:5e:3b:6d:53:4b: 79:f6:51:2a:f5:ce:ea:4b:bb:16:bb:23:39:3b:cc: 93:db:29:57:dc:44:45:9c:94:3e:da:0b:22:65:f6: 1d:5d:80:af:54:d5:4f:28:ab:29:fd:91:c5:64:92: 2b:6b:24:dc:c1:9f:00:5f:42:7a:16:c4:3d:22:11: 68:1e:bc:cb:6b:82:cc:1c:14:55:4a:73:f5:78:02: 16:f5:44:51:0a:30:58:7e:9b:0c:5a:7f:bf:07:51: 70:56:c4:9f:03:54:7a:dd:8f:fa:a4:b0:cc:bc:22: 6b:e6:63:12:61:32:32:70:c1:93:da:02:af:60:a1: 7d:13:36:23:06:23:c3:29:af:ca:01:7d:d6:13:cd: 71:cd:04:a1:25:d2:7b:01:b2:c2:f2:a3:2d:95:1c: 55:35:1e:ab:81:52:f3:9e:28:80:30:38:ef:ed:2a: a3:9c:44:bd:0e:00:8a:df:f7:aa:ec:bf:de:93:83: db:5e:44:3c:fe:8b:d8:37:61:4d:b9:a8:ba:86:dd: 11:ab:ce:e0:20:f4:82:7b:19:59:1a:3d:fa:6e:20: d2:fb:2a:cb:ca:dc:a4:43:bf:08:81:77:97:92:e1: 28:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AF:B0:44:90:25:75:09:68:3F:C1:DF:6A:89:05:12:9B:20:81:DA X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a333a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40:3::/48 Signature Algorithm: sha256WithRSAEncryption 60:3e:da:b3:8b:96:b5:21:4d:31:5b:d5:e9:ef:b9:85:9c:ca: c7:08:83:50:6e:cf:75:67:19:a9:c7:e5:d4:3f:e1:2b:77:ef: 49:06:ca:dc:02:4d:3c:fd:1d:c1:dc:01:b9:e9:a6:7b:11:c4: 0b:c9:40:ae:86:1d:27:b8:76:21:3d:58:47:5e:c9:96:55:50: 22:f0:68:77:25:36:61:c5:f2:83:d3:b8:a5:94:50:32:8a:29: 10:0d:f6:ab:05:c4:1f:14:5c:b4:dd:1f:01:90:c5:d5:1b:09: a0:e4:cb:d1:d8:98:fb:bc:c4:17:5b:8e:96:2d:34:ac:e4:55: f2:7a:57:cc:a3:90:f8:ab:ac:d2:80:d3:80:d7:23:f9:0b:77: ef:25:de:6a:fa:f2:d9:ab:30:54:fc:ab:21:a5:7a:1f:32:7a: 65:92:9e:57:c5:98:b0:71:17:be:79:eb:41:98:00:72:90:68: 96:e9:1f:d7:1f:73:b4:c0:63:44:be:95:15:b3:eb:b7:93:51: 92:2f:1c:a0:dc:fc:c2:8a:7a:1f:76:c4:1c:9e:74:27:be:6d: c8:28:a6:cc:dd:b7:0e:6e:a3:a5:72:f3:30:87:22:e7:f5:00: a9:11:b4:c7:13:d4:20:0e:41:f2:5d:66:d9:d0:a3:fb:a3:06: b5:20:51:a3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOdu2ok4/OqPz06KazfbzKMG8ru4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNDA5MTQxNzU1MDFaFw0yNTA5MTMxODAwMDFaMDMxMTAvBgNV BAMTKDNGQUZCMDQ0OTAyNTc1MDk2ODNGQzFERjZBODkwNTEyOUIyMDgxREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmg/bU/oZ67DZhCBXQPQN8aBGb mmYp7zFeO21TS3n2USr1zupLuxa7Izk7zJPbKVfcREWclD7aCyJl9h1dgK9U1U8o qyn9kcVkkitrJNzBnwBfQnoWxD0iEWgevMtrgswcFFVKc/V4Ahb1RFEKMFh+mwxa f78HUXBWxJ8DVHrdj/qksMy8ImvmYxJhMjJwwZPaAq9goX0TNiMGI8Mpr8oBfdYT zXHNBKEl0nsBssLyoy2VHFU1HquBUvOeKIAwOO/tKqOcRL0OAIrf96rsv96Tg9te RDz+i9g3YU25qLqG3RGrzuAg9IJ7GVkaPfpuINL7KsvK3KRDvwiBd5eS4Si7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUP6+wRJAldQloP8HfaokFEpsggdowHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBM5AAAMw DQYJKoZIhvcNAQELBQADggEBAGA+2rOLlrUhTTFb1envuYWcyscIg1Buz3VnGanH 5dQ/4St370kGytwCTTz9HcHcAbnppnsRxAvJQK6GHSe4diE9WEdeyZZVUCLwaHcl NmHF8oPTuKWUUDKKKRAN9qsFxB8UXLTdHwGQxdUbCaDky9HYmPu8xBdbjpYtNKzk VfJ6V8yjkPirrNKA04DXI/kLd+8l3mr68tmrMFT8qyGleh8yemWSnlfFmLBxF755 60GYAHKQaJbpH9cfc7TAY0S+lRWz67eTUZIvHKDc/MKKeh92xByedCe+bcgopszd tw5uo6Vy8zCHIuf1AKkRtMcT1CAOQfJdZtnQo/ujBrUgUaM= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org