$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa File: 323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa (raw, json) Hash identifier: 8mxCgLVTTXr9uMhOXDuMPKDKiJwHLUA2DMdve6SEZ9A= Subject key identifier: 3F:EF:C8:37:65:B3:78:DA:C1:A1:35:69:6D:84:88:0A:CA:12:C8:F4 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 429E70AF4F8F79EC55B7C9FF5BB1C1258BDA8BB0 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa Signing time: Tue 28 May 2024 02:00:00 +0000 ROA not before: Tue 28 May 2024 01:55:00 +0000 ROA not after: Tue 27 May 2025 02:00:00 +0000 asID: 45296 IP address blocks: 2400:b080:4529::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:9e:70:af:4f:8f:79:ec:55:b7:c9:ff:5b:b1:c1:25:8b:da:8b:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: May 28 01:55:00 2024 GMT Not After : May 27 02:00:00 2025 GMT Subject: CN=3FEFC83765B378DAC1A135696D84880ACA12C8F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:56:07:08:6b:21:e3:7f:c0:6e:1e:d2:d4: f6:55:2a:74:67:e0:b1:ce:0d:06:08:62:ed:fd:7a: 70:ec:19:b0:09:32:7c:1d:bf:5b:f1:05:34:c1:5f: c9:7b:8c:38:5a:17:dd:1c:f2:3c:a4:07:8d:12:52: 96:44:ce:0f:05:d0:75:a9:cb:c6:f8:fe:f8:52:fe: 5e:a7:df:94:6a:e7:54:62:14:90:fe:16:84:3c:34: c0:5d:e5:af:8a:87:12:bb:68:32:f7:c8:7d:c5:1f: 24:f9:d9:c1:28:81:d2:de:8c:ec:ae:0b:ba:7e:99: bf:01:ed:1d:d1:62:d5:e4:b0:27:17:3d:fb:4a:2d: 3d:0d:eb:98:d5:4d:5f:a6:c6:94:b3:81:e5:d8:20: 74:ef:cf:8d:98:fc:a5:4e:7a:a8:b7:65:0c:d5:7a: 62:44:74:9d:fb:b7:91:3f:32:eb:59:09:2c:61:8c: 1a:7b:22:76:79:83:5a:29:13:bf:52:91:7e:3d:ae: c6:34:65:b5:f2:41:6c:e8:85:41:f9:01:f0:39:bc: 9e:41:16:90:f6:04:26:a6:aa:8e:e7:8c:72:d3:57: 85:4e:a4:d5:d2:58:4e:ac:9b:17:1f:f9:b2:a7:24: 1f:6d:ed:8f:83:2a:ae:e4:e2:3c:34:3e:fa:e8:3a: da:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EF:C8:37:65:B3:78:DA:C1:A1:35:69:6D:84:88:0A:CA:12:C8:F4 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b080:4529::/48 Signature Algorithm: sha256WithRSAEncryption b3:fa:45:22:79:6c:2d:73:4b:aa:d9:1d:1d:8a:3a:28:59:c1: b1:0a:f6:6d:ff:ca:df:73:44:68:78:d9:45:a7:38:f0:30:50: 13:f1:12:bf:f3:a1:9f:97:cb:a0:00:72:6e:40:76:e9:6f:5d: b7:84:34:01:2f:f5:91:50:85:e6:39:9c:6c:e8:34:31:68:fc: f9:c7:7c:4f:63:c4:ab:65:9b:63:68:52:3f:c6:ea:ee:11:c6: 9d:88:ca:03:7e:50:d0:4e:1f:d9:9a:c8:77:58:95:63:f1:e7: d3:63:7b:51:6d:e3:56:f6:a3:d4:38:c0:c2:7a:f5:3d:c8:81: f4:ac:20:34:c6:37:eb:49:69:cf:56:95:17:32:f5:bc:c7:a5: aa:38:28:c3:de:3e:a0:e4:b7:f6:b0:cd:c6:ed:20:77:97:88: f6:39:a3:d9:99:59:d5:f3:3a:86:d8:ed:22:7b:a2:25:36:1d: 43:79:da:e0:16:31:a6:3b:0d:f5:46:3e:13:18:07:c5:6e:48: d6:9c:2a:f3:f3:c1:00:7b:bb:e7:f4:3b:82:7d:8e:9c:e9:70: ba:33:8b:7d:f6:03:be:44:21:43:9a:e1:48:1d:81:b4:33:a2: a8:28:eb:c2:05:c2:cf:aa:24:78:cc:c4:03:85:55:6c:32:dc: 04:30:d7:51 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQp5wr0+PeexVt8n/W7HBJYvai7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNDA1MjgwMTU1MDBaFw0yNTA1MjcwMjAwMDBaMDMxMTAvBgNV BAMTKDNGRUZDODM3NjVCMzc4REFDMUExMzU2OTZEODQ4ODBBQ0ExMkM4RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQFYHCGsh43/Abh7S1PZVKnRn 4LHODQYIYu39enDsGbAJMnwdv1vxBTTBX8l7jDhaF90c8jykB40SUpZEzg8F0HWp y8b4/vhS/l6n35Rq51RiFJD+FoQ8NMBd5a+KhxK7aDL3yH3FHyT52cEogdLejOyu C7p+mb8B7R3RYtXksCcXPftKLT0N65jVTV+mxpSzgeXYIHTvz42Y/KVOeqi3ZQzV emJEdJ37t5E/MutZCSxhjBp7InZ5g1opE79SkX49rsY0ZbXyQWzohUH5AfA5vJ5B FpD2BCamqo7njHLTV4VOpNXSWE6smxcf+bKnJB9t7Y+DKq7k4jw0PvroOtqbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUP+/IN2WzeNrBoTVpbYSICsoSyPQwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhMzQzNTMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM1MzIzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACw gEUpMA0GCSqGSIb3DQEBCwUAA4IBAQCz+kUieWwtc0uq2R0dijooWcGxCvZt/8rf c0RoeNlFpzjwMFAT8RK/86Gfl8ugAHJuQHbpb123hDQBL/WRUIXmOZxs6DQxaPz5 x3xPY8SrZZtjaFI/xuruEcadiMoDflDQTh/Zmsh3WJVj8efTY3tRbeNW9qPUOMDC evU9yIH0rCA0xjfrSWnPVpUXMvW8x6WqOCjD3j6g5Lf2sM3G7SB3l4j2OaPZmVnV 8zqG2O0ie6IlNh1DedrgFjGmOw31Rj4TGAfFbkjWnCrz88EAe7vn9DuCfY6c6XC6 M4t99gO+RCFDmuFIHYG0M6KoKOvCBcLPqiR4zMQDhVVsMtwEMNdR -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org