$ rpki-client -vvf repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa File: 323430333a636238303a3a2f33322d3438203d3e203633353038.roa (raw, json) Hash identifier: 3WAGUxj/2EOgWdD0bDTjy0LX/1wg5ITtf4y2dTfVS/s= Subject key identifier: 0A:78:58:AC:58:76:E0:A9:B5:E7:A8:30:FB:4B:CC:B8:4C:5B:17:DB Certificate issuer: /CN=35526D55C5F4431129EA7CE9304705CE395693D9 Certificate serial: 675BEEB9C08CE9BB3D267E085B489A820AB66AC6 Authority key identifier: 35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa Signing time: Tue 20 Feb 2024 14:01:58 +0000 ROA not before: Tue 20 Feb 2024 13:56:58 +0000 ROA not after: Tue 18 Feb 2025 14:01:58 +0000 asID: 63508 IP address blocks: 2403:cb80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5b:ee:b9:c0:8c:e9:bb:3d:26:7e:08:5b:48:9a:82:0a:b6:6a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35526D55C5F4431129EA7CE9304705CE395693D9 Validity Not Before: Feb 20 13:56:58 2024 GMT Not After : Feb 18 14:01:58 2025 GMT Subject: CN=0A7858AC5876E0A9B5E7A830FB4BCCB84C5B17DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:7d:ac:e0:2f:64:00:9e:7e:96:c4:a6:85: e7:14:eb:ac:68:2d:72:fc:27:4f:6b:21:92:6b:bc: fd:d9:ff:38:dc:b9:dc:7c:1a:44:1b:41:b9:52:a7: 2b:12:c4:b1:75:c8:d9:ea:da:ff:64:3a:38:9b:cf: 8d:ce:db:20:d4:49:75:ac:dc:7f:1f:c1:a2:3a:7b: 17:4a:43:ae:20:f6:db:96:e0:20:40:a7:43:1a:75: 43:6a:f8:7f:ed:5c:78:53:1c:cb:8a:8f:92:4f:37: 71:19:d3:d0:05:e7:b0:38:06:3d:9c:36:97:a4:cd: 4e:2a:fc:1a:14:05:91:11:c1:51:a3:1c:dc:21:5f: 4f:fb:63:7c:f8:b1:44:a5:23:b2:d8:ef:17:22:58: 8c:a5:6d:18:39:22:1f:4f:6e:a0:be:03:69:0e:fd: 15:85:1d:b3:7f:31:29:da:bf:08:a3:ee:02:01:44: 4d:58:9a:56:20:2d:c0:77:1c:a8:f5:0e:14:41:a0: 1f:3d:8f:be:78:1b:db:e0:09:e3:4c:07:05:d7:60: 85:e7:7c:ed:a7:a7:cd:12:86:25:44:11:d3:ba:e9: 68:30:72:1f:b0:db:b0:fb:ea:86:05:4c:a9:4e:1b: eb:9c:33:b1:07:dc:9c:c4:9e:6c:6d:5e:ef:f9:54: 7a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:78:58:AC:58:76:E0:A9:B5:E7:A8:30:FB:4B:CC:B8:4C:5B:17:DB X509v3 Authority Key Identifier: keyid:35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/323430333a636238303a3a2f33322d3438203d3e203633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:cb80::/32 Signature Algorithm: sha256WithRSAEncryption 27:41:3e:9f:68:73:68:02:04:15:fc:1b:c5:5e:0a:76:40:d1: 09:8b:25:7b:92:2c:87:56:a1:be:60:cf:7f:e1:72:08:7a:e8: c6:eb:2f:31:95:bf:60:42:e2:f5:2c:bf:9e:7f:f7:0f:4e:08: 3e:c0:f7:46:f2:c4:8b:f2:04:3f:10:43:ad:31:a5:68:3b:10: 0c:ff:6e:29:1a:72:82:83:cf:20:64:60:43:96:7a:5d:03:37: 9e:81:76:c3:10:b8:f6:3a:d2:b0:18:6b:ff:c9:20:06:67:3b: 01:48:50:21:04:a1:7b:7a:e1:5c:a2:0d:bf:69:45:97:64:1e: 21:77:53:8f:26:6e:9e:09:f6:ca:ba:2b:cd:80:e0:9a:8c:7a: 51:99:0d:e6:dd:53:c6:43:5c:99:ff:45:1f:af:98:59:f2:0d: 25:73:4d:47:94:5c:c3:ff:42:ad:01:cc:7c:1e:6d:72:49:e1: 0a:43:2e:36:b1:5d:2b:52:9d:ee:de:6a:88:e5:c4:b5:db:87: 40:96:bc:58:0e:ed:ec:20:88:8c:42:45:d0:b5:8b:d1:4f:2a: 3e:9b:9a:cd:64:6d:f9:19:38:19:c1:1e:af:38:ae:0f:8a:7d: bc:12:7f:92:b9:2d:30:83:f2:6a:38:5d:24:88:ed:e4:3a:ad: 37:da:1e:d2 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZ1vuucCM6bs9Jn4IW0iaggq2asYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0Uz OTU2OTNEOTAeFw0yNDAyMjAxMzU2NThaFw0yNTAyMTgxNDAxNThaMDMxMTAvBgNV BAMTKDBBNzg1OEFDNTg3NkUwQTlCNUU3QTgzMEZCNEJDQ0I4NEM1QjE3REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Fn2s4C9kAJ5+lsSmhecU66xo LXL8J09rIZJrvP3Z/zjcudx8GkQbQblSpysSxLF1yNnq2v9kOjibz43O2yDUSXWs 3H8fwaI6exdKQ64g9tuW4CBAp0MadUNq+H/tXHhTHMuKj5JPN3EZ09AF57A4Bj2c NpekzU4q/BoUBZERwVGjHNwhX0/7Y3z4sUSlI7LY7xciWIylbRg5Ih9PbqC+A2kO /RWFHbN/MSnavwij7gIBRE1YmlYgLcB3HKj1DhRBoB89j754G9vgCeNMBwXXYIXn fO2np80ShiVEEdO66Wgwch+w27D76oYFTKlOG+ucM7EH3JzEnmxtXu/5VHrPAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUCnhYrFh24Km156gw+0vMuExbF9swHwYDVR0j BBgwFoAUNVJtVcX0QxEp6nzpMEcFzjlWk9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGIwYmY1Yi00NTZkLTRlNjItOWY0OC02MTkyMTQ5ZDUyYzIvMC8zNTUyNkQ1NUM1 RjQ0MzExMjlFQTdDRTkzMDQ3MDVDRTM5NTY5M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0UzOTU2 OTNEOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YjBiZjViLTQ1NmQtNGU2Mi05 ZjQ4LTYxOTIxNDlkNTJjMi8wLzMyMzQzMDMzM2E2MzYyMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM2MzMzNTMwMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA8uAMA0GCSqGSIb3 DQEBCwUAA4IBAQAnQT6faHNoAgQV/BvFXgp2QNEJiyV7kiyHVqG+YM9/4XIIeujG 6y8xlb9gQuL1LL+ef/cPTgg+wPdG8sSL8gQ/EEOtMaVoOxAM/24pGnKCg88gZGBD lnpdAzeegXbDELj2OtKwGGv/ySAGZzsBSFAhBKF7euFcog2/aUWXZB4hd1OPJm6e CfbKuivNgOCajHpRmQ3m3VPGQ1yZ/0Ufr5hZ8g0lc01HlFzD/0KtAcx8Hm1ySeEK Qy42sV0rUp3u3mqI5cS124dAlrxYDu3sIIiMQkXQtYvRTyo+m5rNZG35GTgZwR6v OK4Pin28En+SuS0wg/JqOF0kiO3kOq032h7S -----END CERTIFICATE-----Generated at Sun Nov 24 00:14:31 2024 by rpki-client on console-ams.rpki-client.org