$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: RDdv80VgY9+2ZxKYw+yEVFle0blEosZRBmoxVdE+MSg= Subject key identifier: CF:08:BF:76:83:D5:9E:F9:61:20:24:36:63:3D:AE:AA:E3:0A:96:74 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 26D360C5D5B7DA6A6F366F5DDD2C355EB96A365F Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa Signing time: Tue 22 Oct 2024 13:45:39 +0000 ROA not before: Tue 22 Oct 2024 13:40:39 +0000 ROA not after: Tue 21 Oct 2025 13:45:39 +0000 asID: 58396 IP address blocks: 2400:9c80:200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d3:60:c5:d5:b7:da:6a:6f:36:6f:5d:dd:2c:35:5e:b9:6a:36:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Oct 22 13:40:39 2024 GMT Not After : Oct 21 13:45:39 2025 GMT Subject: CN=CF08BF7683D59EF961202436633DAEAAE30A9674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fb:e6:69:52:62:64:23:e8:ae:93:9c:d1:56: 77:03:82:dd:2a:20:8d:af:cd:22:0e:a3:f0:65:c0: cf:16:63:db:e3:55:cd:3f:cd:e7:8c:5e:45:57:83: da:b5:9b:85:f9:13:7d:42:4b:af:5f:f2:69:27:0d: 1a:54:c5:f0:1a:a5:53:ee:04:13:ff:53:cd:80:da: c2:1b:32:07:4f:89:0a:18:98:60:fa:00:8d:f1:19: e2:f0:39:2e:b7:e6:45:65:af:c4:41:bb:6d:5d:cd: 4a:a9:7c:05:cd:55:30:2d:f7:b1:c9:6f:b5:67:56: ee:8c:f0:0d:38:ce:6a:c8:47:e4:de:ed:5c:ab:ec: d0:ba:1c:3c:f4:2a:2d:92:84:67:2b:da:31:cf:a0: 57:dd:6d:d1:64:c1:3c:fd:2d:5b:40:fc:30:99:b0: f4:29:4a:07:ca:83:f2:8c:6a:7e:24:01:e7:87:56: 37:d9:f8:e5:87:d8:be:9d:d4:18:cb:86:84:f5:d7: 88:de:27:f0:08:a0:61:9e:4a:b7:54:1e:2d:d7:6d: 0f:65:a4:75:45:07:12:0c:e7:50:9c:93:73:bd:ca: 51:14:24:f4:08:eb:55:20:61:a4:31:1a:60:91:28: 91:ad:b4:a6:9b:5d:fa:33:37:09:d0:20:33:1f:b0: 91:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:08:BF:76:83:D5:9E:F9:61:20:24:36:63:3D:AE:AA:E3:0A:96:74 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a3230303a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:200::/48 Signature Algorithm: sha256WithRSAEncryption 01:ac:d1:eb:03:d6:23:d8:1e:c2:70:13:6c:12:9e:1d:e5:4b: 11:b5:a9:da:b5:9f:e3:b3:73:0e:54:4b:bb:6b:0c:a0:b0:c1: 98:8c:9d:ae:ad:c2:75:d4:82:9e:e8:d5:ab:16:61:1d:71:e2: 0e:65:7e:fb:5d:9f:80:3d:71:6d:b8:07:f3:25:f5:85:de:29: d1:cc:40:55:db:67:fc:48:e7:8b:7c:c0:12:8c:24:c0:62:41: 8e:82:4a:c8:fc:6b:d3:8a:42:05:7f:b6:60:51:68:ed:f4:49: 68:ca:56:ed:51:d5:04:14:5a:13:c3:84:1c:ed:15:a1:45:db: e3:fb:2f:55:39:44:e9:3b:38:1d:35:16:16:07:0f:34:1a:5d: fc:5b:89:4b:ed:14:62:02:02:e7:29:d4:6b:02:44:c0:29:32: 47:dc:96:71:ca:be:cf:17:4d:4f:80:0c:e1:2b:f7:ee:26:c4: 3f:e7:36:f3:65:3a:15:8a:0f:8b:31:ab:48:e9:8c:9a:84:4d: 01:b1:af:44:2f:ea:21:72:35:f4:54:f0:df:6d:2b:79:27:6a: 7d:4b:37:73:9c:4a:ee:d4:75:37:69:1d:5a:ad:51:1e:df:9d: c0:5e:a9:a2:a6:52:a5:e9:16:b1:d8:46:64:0a:08:01:87:e6: 8e:0f:4a:9c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJtNgxdW32mpvNm9d3Sw1XrlqNl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNDEwMjIxMzQwMzlaFw0yNTEwMjExMzQ1MzlaMDMxMTAvBgNV BAMTKENGMDhCRjc2ODNENTlFRjk2MTIwMjQzNjYzM0RBRUFBRTMwQTk2NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE++ZpUmJkI+iuk5zRVncDgt0q II2vzSIOo/BlwM8WY9vjVc0/zeeMXkVXg9q1m4X5E31CS69f8mknDRpUxfAapVPu BBP/U82A2sIbMgdPiQoYmGD6AI3xGeLwOS635kVlr8RBu21dzUqpfAXNVTAt97HJ b7VnVu6M8A04zmrIR+Te7Vyr7NC6HDz0Ki2ShGcr2jHPoFfdbdFkwTz9LVtA/DCZ sPQpSgfKg/KMan4kAeeHVjfZ+OWH2L6d1BjLhoT114jeJ/AIoGGeSrdUHi3XbQ9l pHVFBxIM51Cck3O9ylEUJPQI61UgYaQxGmCRKJGttKabXfozNwnQIDMfsJGVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUzwi/doPVnvlhICQ2Yz2uquMKlnQwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAnIAC ADANBgkqhkiG9w0BAQsFAAOCAQEAAazR6wPWI9gewnATbBKeHeVLEbWp2rWf47Nz DlRLu2sMoLDBmIydrq3CddSCnujVqxZhHXHiDmV++12fgD1xbbgH8yX1hd4p0cxA Vdtn/Ejni3zAEowkwGJBjoJKyPxr04pCBX+2YFFo7fRJaMpW7VHVBBRaE8OEHO0V oUXb4/svVTlE6Ts4HTUWFgcPNBpd/FuJS+0UYgIC5ynUawJEwCkyR9yWccq+zxdN T4AM4Sv37ibEP+c282U6FYoPizGrSOmMmoRNAbGvRC/qIXI19FTw320reSdqfUs3 c5xK7tR1N2kdWq1RHt+dwF6poqZSpekWsdhGZAoIAYfmjg9KnA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org