$ rpki-client -vvf repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa File: 323430343a636263303a3a2f33322d3332203d3e20313338383433.roa (raw, json) Hash identifier: ryyrwoSxZO+ur+1fplw8YPBOzY9qCJMouUIbs68NFCk= Subject key identifier: EE:B8:49:A4:E2:FC:EC:F9:8B:83:9A:6C:1A:74:DF:CF:48:8E:BF:F1 Certificate issuer: /CN=E0D54A271CD04583E0304613C7075C15FA03E497 Certificate serial: 34C55D969E9A46C844888F43732EBB5FE615CB00 Authority key identifier: E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa Signing time: Wed 28 Feb 2024 12:00:02 +0000 ROA not before: Wed 28 Feb 2024 11:55:02 +0000 ROA not after: Wed 26 Feb 2025 12:00:02 +0000 asID: 138843 IP address blocks: 2404:cbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.crl rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c5:5d:96:9e:9a:46:c8:44:88:8f:43:73:2e:bb:5f:e6:15:cb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0D54A271CD04583E0304613C7075C15FA03E497 Validity Not Before: Feb 28 11:55:02 2024 GMT Not After : Feb 26 12:00:02 2025 GMT Subject: CN=EEB849A4E2FCECF98B839A6C1A74DFCF488EBFF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:54:fa:8f:87:e6:02:dd:e7:ee:19:6d:c5: 6f:92:37:9b:44:43:ac:b8:d2:1f:e3:42:52:69:31: 12:30:58:63:31:bd:ed:41:4d:02:91:3e:40:06:8a: db:a0:91:6d:4d:38:35:2b:b1:a9:d6:a9:ec:3d:59: 79:03:b2:15:57:23:16:34:b8:fc:fb:f0:b5:8c:35: 0f:c8:d7:6b:97:28:a4:0d:e1:6e:69:bc:5b:24:68: 02:ac:bf:ec:6a:65:8f:9c:87:c4:f0:74:b5:5c:a1: 0e:ed:92:2d:61:17:8a:4c:c6:d0:45:3d:49:6f:9a: 3e:b3:e7:bb:aa:a1:d7:0c:d1:4b:32:e3:8f:1b:9d: 13:17:84:f5:c0:da:91:3e:4a:63:27:5b:fa:ff:c4: 8c:e5:96:da:00:c3:ac:a6:0e:05:cd:41:e4:17:70: 47:da:5f:a1:39:5a:b2:27:8b:71:e5:90:ca:b3:ed: 93:60:74:4b:1a:14:20:b0:0c:c5:b7:2a:37:61:1e: f1:af:c2:71:e2:d4:5c:48:89:3e:6b:64:b2:1d:38: da:78:a8:35:98:35:26:0c:61:5f:ca:14:e8:ef:d7: c2:44:37:40:8e:ee:46:08:5a:35:45:68:fb:0c:80: 2e:d3:4f:9d:78:99:c8:d9:4e:6c:52:b6:ff:ff:de: 72:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B8:49:A4:E2:FC:EC:F9:8B:83:9A:6C:1A:74:DF:CF:48:8E:BF:F1 X509v3 Authority Key Identifier: keyid:E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption 5c:4f:9c:7a:b6:18:ae:94:de:9e:9e:36:8e:b9:69:b8:61:77: 27:1e:eb:82:cf:e6:9c:96:f5:62:e9:b2:11:06:f0:bc:10:da: 2f:aa:e6:d5:29:9c:16:0f:bc:51:3c:40:51:57:5a:09:8f:9d: be:f2:7e:64:41:62:54:49:b3:fa:c0:01:a2:54:69:f2:6c:ce: ad:d3:df:a4:3c:b1:34:91:81:bc:01:c6:0a:b9:47:e5:d2:c4: 18:03:f3:8f:e6:95:5e:ea:7e:70:8b:73:e4:de:07:ba:d1:b1: 14:b4:39:90:98:ae:ad:9b:81:d2:f4:fe:03:98:9b:4b:3c:f2: b2:3d:19:a1:87:c9:6f:44:3e:63:44:4f:b6:b8:28:1e:80:67: dc:8d:0c:66:b0:1e:4c:18:77:bb:30:68:9a:d1:c3:d2:c0:95: c4:09:68:c3:27:05:7d:7b:b8:92:2b:80:68:88:82:b9:db:8e: 31:6e:51:7a:14:23:85:0b:3b:31:20:82:51:e2:55:76:25:33: f2:27:96:e3:88:7a:3a:33:1a:d0:ff:c0:41:75:66:36:1f:fb: 9e:7e:4e:8f:82:19:cf:50:42:68:98:45:79:e6:9b:a6:c4:46: 47:e6:c2:ea:35:11:21:d5:5b:cc:bf:d2:3e:99:20:08:fa:ec: 13:34:73:15 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNMVdlp6aRshEiI9Dcy67X+YVywAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVG QTAzRTQ5NzAeFw0yNDAyMjgxMTU1MDJaFw0yNTAyMjYxMjAwMDJaMDMxMTAvBgNV BAMTKEVFQjg0OUE0RTJGQ0VDRjk4QjgzOUE2QzFBNzRERkNGNDg4RUJGRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LFT6j4fmAt3n7hltxW+SN5tE Q6y40h/jQlJpMRIwWGMxve1BTQKRPkAGitugkW1NODUrsanWqew9WXkDshVXIxY0 uPz78LWMNQ/I12uXKKQN4W5pvFskaAKsv+xqZY+ch8TwdLVcoQ7tki1hF4pMxtBF PUlvmj6z57uqodcM0Usy448bnRMXhPXA2pE+SmMnW/r/xIzlltoAw6ymDgXNQeQX cEfaX6E5WrIni3HlkMqz7ZNgdEsaFCCwDMW3KjdhHvGvwnHi1FxIiT5rZLIdONp4 qDWYNSYMYV/KFOjv18JEN0CO7kYIWjVFaPsMgC7TT514mcjZTmxStv//3nJPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU7rhJpOL87PmLg5psGnTfz0iOv/EwHwYDVR0j BBgwFoAU4NVKJxzQRYPgMEYTxwdcFfoD5JcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzU4NjdkOC0zZDZmLTQ4MTYtYjg0Zi1mZGQ1YzUwMmI2MzQvMC9FMEQ1NEEyNzFD RDA0NTgzRTAzMDQ2MTNDNzA3NUMxNUZBMDNFNDk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVGQTAz RTQ5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNTg2N2Q4LTNkNmYtNDgxNi1i ODRmLWZkZDVjNTAyYjYzNC8wLzMyMzQzMDM0M2E2MzYyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEy8AwDQYJKoZI hvcNAQELBQADggEBAFxPnHq2GK6U3p6eNo65abhhdyce64LP5pyW9WLpshEG8LwQ 2i+q5tUpnBYPvFE8QFFXWgmPnb7yfmRBYlRJs/rAAaJUafJszq3T36Q8sTSRgbwB xgq5R+XSxBgD84/mlV7qfnCLc+TeB7rRsRS0OZCYrq2bgdL0/gOYm0s88rI9GaGH yW9EPmNET7a4KB6AZ9yNDGawHkwYd7swaJrRw9LAlcQJaMMnBX17uJIrgGiIgrnb jjFuUXoUI4ULOzEgglHiVXYlM/InluOIejozGtD/wEF1ZjYf+55+To+CGc9QQmiY RXnmm6bERkfmwuo1ESHVW8y/0j6ZIAj67BM0cxU= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:20 2024 by rpki-client on console-ams.rpki-client.org