$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa File: 323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa (raw, json) Hash identifier: 7GMOJfMCjK3x7L+F0ZcvlEfBXyltLZxwnqlMOmezaQI= Subject key identifier: ED:AA:0A:E7:8B:45:19:F0:90:1C:85:AF:F8:26:E7:AF:DB:97:6E:E9 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 7CDE9DEE56552D2E6753B41FB99172B627B524CF Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa Signing time: Sat 12 Oct 2024 12:00:02 +0000 ROA not before: Sat 12 Oct 2024 11:55:02 +0000 ROA not after: Sat 11 Oct 2025 12:00:02 +0000 asID: 58401 IP address blocks: 2400:9c80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:de:9d:ee:56:55:2d:2e:67:53:b4:1f:b9:91:72:b6:27:b5:24:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Oct 12 11:55:02 2024 GMT Not After : Oct 11 12:00:02 2025 GMT Subject: CN=EDAA0AE78B4519F0901C85AFF826E7AFDB976EE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:c1:68:81:e2:5a:0c:9d:32:26:21:4e:38: 29:43:41:49:f3:49:f0:5a:b3:5d:f4:48:d8:6e:e9: 84:eb:da:e9:c6:97:b0:d0:8a:c7:57:60:ed:1a:4f: da:77:cb:02:e8:09:66:0d:c1:bb:c7:a1:74:5b:f6: 35:de:99:35:59:fc:2c:ea:eb:6c:c3:46:26:f1:34: 51:50:4e:70:33:54:93:16:07:cc:94:08:6c:f9:e5: a0:51:97:57:7a:30:6f:66:e7:33:a2:91:bd:d3:9e: de:dd:5e:ac:33:7a:2d:6b:7f:fb:ba:89:8e:d9:96: 42:f4:43:85:02:a4:8b:fc:d5:53:52:d3:64:bd:78: a3:41:28:9e:3f:19:40:6c:c9:12:65:66:4d:b5:4b: be:82:00:44:8b:52:28:3c:97:9d:ab:8f:ae:2e:de: fb:a0:c6:71:df:69:ff:39:9f:30:79:32:b1:75:f4: cb:6c:d9:b5:1d:27:25:83:d7:09:10:ed:42:a7:c6: 19:34:01:4d:5c:fe:3b:8f:34:50:37:b5:7d:2e:4e: a4:f0:43:b7:b2:3b:98:10:c5:d3:08:1f:d7:38:ff: 31:99:00:3b:2e:67:00:a1:f1:42:4f:95:5a:49:48: a2:c9:2f:c8:84:f5:02:0c:8c:be:4b:0d:38:4b:8d: ba:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AA:0A:E7:8B:45:19:F0:90:1C:85:AF:F8:26:E7:AF:DB:97:6E:E9 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a313a3a2f34382d3438203d3e203538343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:1::/48 Signature Algorithm: sha256WithRSAEncryption 49:04:c1:27:e2:27:d4:5c:ab:91:41:1b:97:77:b6:51:df:eb: 2f:05:e1:33:43:5c:39:c9:8e:32:94:d9:66:b7:88:f2:87:2b: 47:31:7e:ba:58:f5:ce:29:49:e1:2b:95:5b:49:e5:38:85:76: a8:41:45:ec:c4:9e:ab:9d:d1:2a:cb:7a:20:4c:48:06:bc:f3: 43:e4:42:4a:cc:41:3f:27:d8:6e:b8:10:9e:97:11:43:8a:60: eb:76:7b:38:08:e9:d8:7f:9a:05:d1:92:8a:a1:76:50:2d:9f: 4e:51:e6:d0:f4:f5:ac:dd:57:84:d6:7a:53:62:da:71:e5:be: d4:ef:88:21:22:87:d0:22:d6:14:36:4f:55:4c:93:6b:2f:81: 6c:45:e5:bb:34:02:89:25:7b:60:42:25:44:14:b2:64:94:f1: 74:37:5d:a8:6c:a6:c2:a1:d5:54:0a:b7:9f:4d:40:52:bd:ae: 62:23:ed:0d:14:06:21:92:14:f6:7e:3b:a5:d2:b1:6a:f2:0b: c9:ca:73:34:28:67:26:7e:c5:2e:ed:9e:fc:96:73:f1:19:e1: 9a:e3:4d:89:67:c9:43:45:49:44:0d:14:81:c9:ba:04:62:a6: c7:a0:60:57:1d:f6:da:7a:f7:a1:83:ea:30:52:4c:8a:9d:24: a8:ee:83:7f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfN6d7lZVLS5nU7QfuZFytie1JM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNDEwMTIxMTU1MDJaFw0yNTEwMTExMjAwMDJaMDMxMTAvBgNV BAMTKEVEQUEwQUU3OEI0NTE5RjA5MDFDODVBRkY4MjZFN0FGREI5NzZFRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg7MFogeJaDJ0yJiFOOClDQUnz SfBas130SNhu6YTr2unGl7DQisdXYO0aT9p3ywLoCWYNwbvHoXRb9jXemTVZ/Czq 62zDRibxNFFQTnAzVJMWB8yUCGz55aBRl1d6MG9m5zOikb3Tnt7dXqwzei1rf/u6 iY7ZlkL0Q4UCpIv81VNS02S9eKNBKJ4/GUBsyRJlZk21S76CAESLUig8l52rj64u 3vugxnHfaf85nzB5MrF19Mts2bUdJyWD1wkQ7UKnxhk0AU1c/juPNFA3tX0uTqTw Q7eyO5gQxdMIH9c4/zGZADsuZwCh8UJPlVpJSKLJL8iE9QIMjL5LDThLjbphAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU7aoK54tFGfCQHIWv+Cbnr9uXbukwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACcgAABMA0G CSqGSIb3DQEBCwUAA4IBAQBJBMEn4ifUXKuRQRuXd7ZR3+svBeEzQ1w5yY4ylNlm t4jyhytHMX66WPXOKUnhK5VbSeU4hXaoQUXsxJ6rndEqy3ogTEgGvPND5EJKzEE/ J9huuBCelxFDimDrdns4COnYf5oF0ZKKoXZQLZ9OUebQ9PWs3VeE1npTYtpx5b7U 74ghIofQItYUNk9VTJNrL4FsReW7NAKJJXtgQiVEFLJklPF0N12obKbCodVUCref TUBSva5iI+0NFAYhkhT2fjul0rFq8gvJynM0KGcmfsUu7Z78lnPxGeGa402JZ8lD RUlEDRSByboEYqbHoGBXHfbaevehg+owUkyKnSSo7oN/ -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org