$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa File: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (raw, json) Hash identifier: Smb7HmzUf0UyLsjEJtoRvm3jALFW5SuffGaYfUAtD2s= Subject key identifier: 66:32:E4:49:1A:00:14:7A:8C:6D:E5:29:ED:C1:39:F4:B3:DD:95:49 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 363358E059EAA2DCC6595BA5ADAB4DAA7F4E71EA Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa Signing time: Sun 18 Aug 2024 07:00:01 +0000 ROA not before: Sun 18 Aug 2024 06:55:01 +0000 ROA not after: Sun 17 Aug 2025 07:00:01 +0000 asID: 136119 IP address blocks: 2401:48c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 06:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:33:58:e0:59:ea:a2:dc:c6:59:5b:a5:ad:ab:4d:aa:7f:4e:71:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 18 06:55:01 2024 GMT Not After : Aug 17 07:00:01 2025 GMT Subject: CN=6632E4491A00147A8C6DE529EDC139F4B3DD9549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0b:a1:cd:a5:e7:cd:5c:8d:b2:df:82:70:f9: 15:a1:1d:21:c7:ab:d9:3d:9c:6f:38:70:8c:4b:ed: 3a:f8:c3:f8:c3:3b:b7:a2:fa:95:80:25:69:17:75: 6f:83:9f:8e:42:53:9a:29:d7:80:99:ad:12:64:c7: 5c:20:6f:e7:dc:5e:f9:59:97:88:50:98:95:e9:07: 6c:bc:be:0e:1d:b3:a6:84:8f:f5:8b:24:10:e3:13: de:3e:e7:bf:86:7a:9c:1a:36:29:f6:a9:a6:70:3c: 8a:34:68:19:2e:6c:90:2d:81:98:d4:ad:89:d6:b5: 34:1f:f2:1e:26:a0:e2:ea:39:80:9b:fe:7c:4b:d6: 9e:cd:84:88:e1:3c:b7:bf:b9:20:0a:c3:96:39:37: 8f:8f:9d:c4:36:23:76:3f:78:64:68:f9:da:1f:6a: 6c:10:50:29:5a:51:99:3d:42:37:9f:5a:6b:7c:b0: 83:3e:83:e9:b3:7a:2b:50:d4:4b:3a:27:bc:91:a7: f7:a5:4f:3c:0a:68:37:8b:f6:4a:1e:52:e7:b6:11: 80:33:d8:79:89:c2:10:ea:cb:86:16:2a:e6:8a:90: 9c:cc:3c:72:b7:cd:93:6b:ab:cb:0c:4c:f2:75:ef: 80:6d:ab:31:19:cb:b1:b4:00:7b:8c:ea:03:bb:08: dd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:32:E4:49:1A:00:14:7A:8C:6D:E5:29:ED:C1:39:F4:B3:DD:95:49 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 51:f3:f1:9e:bc:41:ff:92:1f:86:4e:7d:cd:65:a7:12:50:21: 6a:2b:47:5e:63:c3:51:70:96:07:67:db:07:69:23:18:ae:90: a3:86:b9:d9:23:0c:6f:c1:4a:eb:9b:8f:3e:78:06:63:3f:e6: f9:4d:04:ef:5d:7b:b0:41:72:87:97:8a:eb:a2:9a:45:55:73: 8f:50:c7:f5:1d:2a:d0:cb:03:5b:c9:b2:ac:ab:85:58:8c:ba: d5:09:65:66:87:5b:27:64:a6:a6:72:40:5c:17:ec:32:65:72: 9b:d1:39:01:43:b2:16:0e:3c:80:01:aa:0c:55:87:37:db:e9: 51:72:3d:7a:a4:30:13:be:7e:84:72:02:7f:20:42:b7:db:23: 84:64:e6:ef:13:d1:49:0c:8a:c9:b4:ef:a9:1f:b4:a7:d1:20: b5:37:c5:3f:98:b3:25:92:8c:d4:18:21:76:b5:2b:4a:97:a3: cc:1e:d3:2f:3c:aa:8c:b4:7f:a7:34:21:a7:64:8d:ab:00:e2: dc:87:06:57:1b:d1:b4:79:f6:19:9d:62:49:26:cf:09:a4:9a: ca:67:e0:b4:47:e5:66:03:da:19:e2:14:77:1f:cf:bc:82:38: 39:8c:97:01:63:96:a4:1b:3d:25:1e:ff:b1:33:ea:8d:e4:48: f7:96:95:33 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNjNY4FnqotzGWVulratNqn9OceowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNDA4MTgwNjU1MDFaFw0yNTA4MTcwNzAwMDFaMDMxMTAvBgNV BAMTKDY2MzJFNDQ5MUEwMDE0N0E4QzZERTUyOUVEQzEzOUY0QjNERDk1NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMC6HNpefNXI2y34Jw+RWhHSHH q9k9nG84cIxL7Tr4w/jDO7ei+pWAJWkXdW+Dn45CU5op14CZrRJkx1wgb+fcXvlZ l4hQmJXpB2y8vg4ds6aEj/WLJBDjE94+57+GepwaNin2qaZwPIo0aBkubJAtgZjU rYnWtTQf8h4moOLqOYCb/nxL1p7NhIjhPLe/uSAKw5Y5N4+PncQ2I3Y/eGRo+dof amwQUClaUZk9QjefWmt8sIM+g+mzeitQ1Es6J7yRp/elTzwKaDeL9koeUue2EYAz 2HmJwhDqy4YWKuaKkJzMPHK3zZNrq8sMTPJ174BtqzEZy7G0AHuM6gO7CN1nAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUZjLkSRoAFHqMbeUp7cE59LPdlUkwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzQzMDMxM2EzNDM4NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBSMAwDQYJKoZI hvcNAQELBQADggEBAFHz8Z68Qf+SH4ZOfc1lpxJQIWorR15jw1Fwlgdn2wdpIxiu kKOGudkjDG/BSuubjz54BmM/5vlNBO9de7BBcoeXiuuimkVVc49Qx/UdKtDLA1vJ sqyrhViMutUJZWaHWydkpqZyQFwX7DJlcpvROQFDshYOPIABqgxVhzfb6VFyPXqk MBO+foRyAn8gQrfbI4Rk5u8T0UkMism076kftKfRILU3xT+YsyWSjNQYIXa1K0qX o8we0y88qoy0f6c0IadkjasA4tyHBlcb0bR59hmdYkkmzwmkmspn4LRH5WYD2hni FHcfz7yCODmMlwFjlqQbPSUe/7Ez6o3kSPeWlTM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:18 2024 by rpki-client on console-ams.rpki-client.org