$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa File: 323430343a636534303a3a2f34382d3438203d3e20313338383834.roa (raw, json) Hash identifier: 18b0Gg5/45qsHWWMKCPhmvKnsrcZsZ/fmda1ZKbjIBk= Subject key identifier: DC:E6:B2:22:B6:97:83:FF:0D:64:82:65:D7:4E:66:8C:04:21:AA:B6 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 518AF0A313CAAB5D77223D443BA6F0A8A76C7A9C Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa Signing time: Sat 14 Sep 2024 18:00:01 +0000 ROA not before: Sat 14 Sep 2024 17:55:01 +0000 ROA not after: Sat 13 Sep 2025 18:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8a:f0:a3:13:ca:ab:5d:77:22:3d:44:3b:a6:f0:a8:a7:6c:7a:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Sep 14 17:55:01 2024 GMT Not After : Sep 13 18:00:01 2025 GMT Subject: CN=DCE6B222B69783FF0D648265D74E668C0421AAB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:46:b5:12:f5:23:bc:e3:25:a1:a6:9a:3c: 22:e7:11:e4:5f:c5:a7:dc:c4:e1:dd:ca:b7:0b:40: ec:8d:20:32:4e:ba:4b:b0:6d:6d:2e:bf:b8:fc:49: 3a:92:fe:79:a6:67:6d:19:b1:15:46:d3:84:4f:e4: 8f:5c:bd:03:c9:a9:fb:f4:5e:6e:1e:13:e8:c3:b5: dc:c1:0a:b3:82:a3:42:cb:1a:25:70:64:3c:2e:cb: 6e:8c:c0:2f:fd:c5:bf:90:57:2c:ab:09:54:35:5b: f8:e6:9a:ec:08:d0:a4:10:5a:19:9e:95:d6:1d:47: 3a:63:00:04:ff:fe:1d:63:b1:eb:01:27:3f:fb:0c: d1:d2:a7:e4:6c:4e:c7:75:4c:c5:eb:9a:3e:a2:d8: 31:a6:05:93:87:84:7d:06:a6:c3:e8:e7:ed:eb:14: ed:f0:a3:d3:5b:32:75:6f:1b:50:e2:ea:80:cd:84: ea:75:4b:96:13:de:cb:1a:bf:b8:22:f2:59:74:49: 00:63:d0:c9:4b:be:47:2a:79:da:a0:4d:dd:cc:7f: 1b:d5:36:f1:86:8d:99:3e:81:96:92:0f:41:d1:7c: e1:e8:45:f3:6f:55:17:0f:20:2a:9c:d3:71:de:df: c1:78:53:1e:fd:22:c3:07:ab:2d:aa:c0:c4:92:8a: de:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E6:B2:22:B6:97:83:FF:0D:64:82:65:D7:4E:66:8C:04:21:AA:B6 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f34382d3438203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/48 Signature Algorithm: sha256WithRSAEncryption 37:a0:51:96:84:9c:9f:ba:dc:63:88:c0:8f:b7:ce:79:62:7f: d2:65:a6:11:f4:af:73:a3:90:ad:74:8b:87:06:97:c6:19:53: ea:3f:06:e0:f1:22:9f:71:48:6c:8c:83:46:66:0f:62:0a:83: 81:39:9f:2e:fc:29:f1:ad:6c:f9:44:17:78:79:ef:ba:dd:dc: 3f:74:8e:51:a4:54:4a:d8:be:f6:58:5e:08:bb:16:9d:2b:42: 53:c9:04:c0:ea:fd:26:9c:ca:e7:47:e1:f3:e8:ad:3b:89:28: da:38:6c:7a:d8:66:b4:df:04:0f:3e:da:f3:ba:a1:83:98:f0: 74:a9:45:e7:29:3d:93:38:a7:c3:77:0b:bd:19:a9:f5:3c:24: 13:9a:b6:b8:9a:02:ba:e2:91:82:34:73:2c:af:27:e5:e1:98: 01:02:b5:75:bb:89:e7:58:0e:69:6d:97:3f:32:72:46:ea:e1: eb:06:4d:f2:f0:6a:f8:bf:93:63:c4:d4:a5:28:d9:b6:0f:60: 35:38:8b:55:d4:12:8e:aa:65:e9:1c:6d:ee:ca:6a:e4:9c:07: 3a:69:62:b8:a8:af:70:2c:de:44:cd:14:b2:d0:18:9a:79:51: 71:ca:ce:08:ab:3b:f7:84:70:5c:fd:16:5b:90:2e:f6:0f:0d: 2b:74:b1:af -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUUYrwoxPKq113Ij1EO6bwqKdsepwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNDA5MTQxNzU1MDFaFw0yNTA5MTMxODAwMDFaMDMxMTAvBgNV BAMTKERDRTZCMjIyQjY5NzgzRkYwRDY0ODI2NUQ3NEU2NjhDMDQyMUFBQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6bEa1EvUjvOMloaaaPCLnEeRf xafcxOHdyrcLQOyNIDJOukuwbW0uv7j8STqS/nmmZ20ZsRVG04RP5I9cvQPJqfv0 Xm4eE+jDtdzBCrOCo0LLGiVwZDwuy26MwC/9xb+QVyyrCVQ1W/jmmuwI0KQQWhme ldYdRzpjAAT//h1jsesBJz/7DNHSp+RsTsd1TMXrmj6i2DGmBZOHhH0GpsPo5+3r FO3wo9NbMnVvG1Di6oDNhOp1S5YT3ssav7gi8ll0SQBj0MlLvkcqedqgTd3MfxvV NvGGjZk+gZaSD0HRfOHoRfNvVRcPICqc03He38F4Ux79IsMHqy2qwMSSit7dAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU3OayIraXg/8NZIJl105mjAQhqrYwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEzkAAADANBgkq hkiG9w0BAQsFAAOCAQEAN6BRloScn7rcY4jAj7fOeWJ/0mWmEfSvc6OQrXSLhwaX xhlT6j8G4PEin3FIbIyDRmYPYgqDgTmfLvwp8a1s+UQXeHnvut3cP3SOUaRUSti+ 9lheCLsWnStCU8kEwOr9JpzK50fh8+itO4ko2jhsethmtN8EDz7a87qhg5jwdKlF 5yk9kzinw3cLvRmp9TwkE5q2uJoCuuKRgjRzLK8n5eGYAQK1dbuJ51gOaW2XPzJy Rurh6wZN8vBq+L+TY8TUpSjZtg9gNTiLVdQSjqpl6Rxt7spq5JwHOmliuKivcCze RM0UstAYmnlRccrOCKs794RwXP0WW5Au9g8NK3Sxrw== -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:02 2024 by rpki-client on console-fra.rpki-client.org