$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa File: 323430353a633763303a3a2f33322d3332203d3e20313339393738.roa (raw, json) Hash identifier: w1U60qcdJqGqgGejfw5qqfHMeYCjchzAjGjkoYQhMH8= Subject key identifier: C4:26:07:07:B9:FE:5D:5F:1F:82:3D:92:FF:0F:6C:95:E0:30:2C:43 Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 4DF2E02BA9657B8AEE63B6652C0936EA1FCAD880 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa Signing time: Mon 19 Aug 2024 07:37:12 +0000 ROA not before: Mon 19 Aug 2024 07:32:12 +0000 ROA not after: Mon 18 Aug 2025 07:37:12 +0000 asID: 139978 IP address blocks: 2405:c7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:f2:e0:2b:a9:65:7b:8a:ee:63:b6:65:2c:09:36:ea:1f:ca:d8:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Aug 19 07:32:12 2024 GMT Not After : Aug 18 07:37:12 2025 GMT Subject: CN=C4260707B9FE5D5F1F823D92FF0F6C95E0302C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:16:75:dc:5e:1d:2b:50:04:fb:c9:0c:da:e0: d0:4a:c1:ad:34:db:b1:7a:17:78:a2:f4:3b:86:63: c8:08:39:d9:55:8d:84:93:93:1e:da:5a:d8:3e:ef: 50:35:bd:5f:42:a0:71:95:f3:3a:61:37:56:a7:cd: 5a:f1:7d:27:e1:00:63:9c:a3:19:d1:d1:4d:04:70: f0:57:c8:c2:48:02:a1:ba:14:ab:09:b6:cb:73:dd: 40:96:a5:d5:a3:37:0c:86:b7:c3:2e:9e:23:a4:58: 86:54:20:a2:d3:05:d6:ba:78:ce:43:d4:de:77:8c: b6:35:3a:d0:90:bc:a7:52:0d:4e:b6:5e:f0:7b:ad: bf:96:bb:97:de:80:02:0c:6e:4d:51:7b:e3:a4:4d: 78:a3:a5:5d:78:2f:47:91:17:51:56:73:e2:80:78: a5:9e:64:bb:70:0c:3c:46:7a:d1:71:14:2a:2b:7d: 42:25:11:80:3b:4f:17:27:cf:3a:d7:60:08:6c:40: f2:46:2e:c0:0d:50:79:22:80:38:68:2b:01:bc:ea: 40:e4:10:2b:fc:fd:2e:3e:d1:2b:f3:7e:47:cd:0e: af:e3:27:bc:9d:7b:0a:1f:bc:98:56:4e:66:5c:f9: 61:85:b5:02:70:fd:b2:2b:00:9f:b1:96:4a:87:20: 06:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:26:07:07:B9:FE:5D:5F:1F:82:3D:92:FF:0F:6C:95:E0:30:2C:43 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c7c0::/32 Signature Algorithm: sha256WithRSAEncryption 08:5b:13:61:02:fd:a7:01:88:f3:e0:cd:a0:dd:b2:19:e7:b0: 8a:a8:7e:9e:22:19:63:60:c1:62:5f:92:20:f5:98:6f:77:13: 11:ef:e8:42:1a:42:99:ff:01:b2:66:fc:f7:aa:60:81:e1:25: fc:1e:18:8f:20:8f:41:43:9d:f1:d8:49:23:b6:ed:7a:d8:4a: 9e:af:4b:d9:38:96:27:1c:eb:3c:76:18:4d:1f:70:ff:1c:4e: 68:16:ea:a8:85:0f:2d:ea:5b:eb:bb:30:c3:bf:3e:88:a9:65: 43:93:63:aa:3b:f1:47:f7:e5:58:ef:db:15:54:87:76:2a:2e: a0:37:d9:19:24:1b:3b:b2:09:2a:da:1c:53:c6:ab:3a:16:6e: 82:43:8d:15:17:01:e0:50:e6:d4:c2:1d:ec:92:8c:1c:11:92: 0f:fc:8b:44:78:40:f7:1f:8b:08:c6:12:03:0c:4e:20:7d:18: 0b:c5:b8:b1:3b:1f:d7:55:a5:d4:ee:5e:2a:a8:8f:4b:4c:cf: c2:eb:4f:2c:7b:30:bc:16:9e:65:f5:56:a4:30:e9:3d:4e:68: c0:88:ec:bf:f7:cb:5e:b8:94:87:51:62:28:78:47:e1:78:00: 12:42:5a:b8:0b:85:72:88:ee:9e:37:43:83:1b:0f:fa:cc:1e: 80:8a:6e:e3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTfLgK6lle4ruY7ZlLAk26h/K2IAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNDA4MTkwNzMyMTJaFw0yNTA4MTgwNzM3MTJaMDMxMTAvBgNV BAMTKEM0MjYwNzA3QjlGRTVENUYxRjgyM0Q5MkZGMEY2Qzk1RTAzMDJDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8FnXcXh0rUAT7yQza4NBKwa00 27F6F3ii9DuGY8gIOdlVjYSTkx7aWtg+71A1vV9CoHGV8zphN1anzVrxfSfhAGOc oxnR0U0EcPBXyMJIAqG6FKsJtstz3UCWpdWjNwyGt8MuniOkWIZUIKLTBda6eM5D 1N53jLY1OtCQvKdSDU62XvB7rb+Wu5fegAIMbk1Re+OkTXijpV14L0eRF1FWc+KA eKWeZLtwDDxGetFxFCorfUIlEYA7TxcnzzrXYAhsQPJGLsANUHkigDhoKwG86kDk ECv8/S4+0SvzfkfNDq/jJ7ydewofvJhWTmZc+WGFtQJw/bIrAJ+xlkqHIAYRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxCYHB7n+XV8fgj2S/w9sleAwLEMwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMyMzQzMDM1M2E2MzM3NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFx8AwDQYJKoZI hvcNAQELBQADggEBAAhbE2EC/acBiPPgzaDdshnnsIqofp4iGWNgwWJfkiD1mG93 ExHv6EIaQpn/AbJm/PeqYIHhJfweGI8gj0FDnfHYSSO27XrYSp6vS9k4licc6zx2 GE0fcP8cTmgW6qiFDy3qW+u7MMO/PoipZUOTY6o78Uf35Vjv2xVUh3YqLqA32Rkk GzuyCSraHFPGqzoWboJDjRUXAeBQ5tTCHeySjBwRkg/8i0R4QPcfiwjGEgMMTiB9 GAvFuLE7H9dVpdTuXiqoj0tMz8LrTyx7MLwWnmX1VqQw6T1OaMCI7L/3y164lIdR Yih4R+F4ABJCWrgLhXKI7p43Q4MbD/rMHoCKbuM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org