$ rpki-client -vvf repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa File: 323430353a353130303a3a2f33322d3438203d3e203137383236.roa (raw, json) Hash identifier: GSIpN3A/UVfQ4BxfQnmEQMW+C2fjV3PHe2aGLKovfhk= Subject key identifier: 4E:4D:E3:FC:DC:A0:80:BC:2C:5A:89:8C:E9:0C:83:34:EA:9E:AC:CE Certificate issuer: /CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Certificate serial: 135123646ABE14C9B38DA99841CEB2EC720BA097 Authority key identifier: 0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa Signing time: Fri 16 Feb 2024 07:45:39 +0000 ROA not before: Fri 16 Feb 2024 07:40:39 +0000 ROA not after: Fri 14 Feb 2025 07:45:39 +0000 asID: 17826 IP address blocks: 2405:5100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:51:23:64:6a:be:14:c9:b3:8d:a9:98:41:ce:b2:ec:72:0b:a0:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Validity Not Before: Feb 16 07:40:39 2024 GMT Not After : Feb 14 07:45:39 2025 GMT Subject: CN=4E4DE3FCDCA080BC2C5A898CE90C8334EA9EACCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:61:7b:8e:71:a1:50:80:a5:94:b0:59:72:ab: a3:af:d7:c8:ad:2d:a6:c5:d9:c9:96:9b:a1:e7:84: 39:9e:46:53:ab:d3:d8:92:c4:17:eb:d5:cb:29:1e: 1b:c7:9e:73:c2:e9:e7:42:72:b3:77:e3:29:5c:0f: de:72:a3:c4:bc:68:f7:ab:bf:c5:69:38:a9:4a:9c: 37:b5:89:0b:83:df:fd:26:91:bb:cf:f7:c9:f8:28: 48:2a:aa:bd:eb:e3:2b:58:42:26:af:4f:78:65:ab: 5d:95:ee:d5:b0:4d:d3:48:7a:a6:87:35:c4:9b:7b: 1f:3d:3d:c1:cc:bf:03:55:66:78:e8:7e:10:a9:14: 02:f6:9b:13:8e:c9:48:4e:64:1d:b1:f1:73:06:61: 63:8e:d8:65:85:78:78:be:ab:38:59:7b:75:aa:29: 25:b4:5e:05:06:e4:6a:55:09:df:bf:e9:74:07:63: 63:e4:d1:99:2b:c1:0a:1d:d7:5d:55:fa:f6:61:63: 8a:64:cc:66:4d:c6:af:cf:ea:c6:b8:32:43:a4:65: f7:2f:09:ed:0e:30:1d:43:8f:35:9b:23:18:fe:dc: 77:53:73:d1:6d:67:79:12:15:50:d1:08:b2:8f:18: fa:00:6a:f9:ba:e8:4b:db:5f:bb:8d:0a:73:6d:98: cc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:4D:E3:FC:DC:A0:80:BC:2C:5A:89:8C:E9:0C:83:34:EA:9E:AC:CE X509v3 Authority Key Identifier: keyid:0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:5100::/32 Signature Algorithm: sha256WithRSAEncryption 49:64:de:9c:d1:a0:31:2e:1c:c7:05:0c:bb:ba:c5:b8:1c:de: 09:97:99:06:d5:5f:29:b6:94:69:5e:e1:21:ea:e6:62:36:69: 66:e3:b6:83:ae:c5:bc:77:5c:08:95:7e:d1:93:b4:2a:e0:62: 1d:b6:c1:b8:79:0a:6a:d4:4e:da:08:ca:b2:33:f7:5a:a3:4c: 9a:19:57:a6:26:ce:f5:8b:62:cc:76:ef:84:85:06:55:ef:24: aa:4d:57:4f:32:8c:7c:2c:1b:c3:96:f9:52:d3:67:93:cb:58: 51:a0:52:b1:07:63:bb:ce:fa:b5:3c:59:ba:41:c7:a4:6a:3a: ab:a7:d6:10:36:8a:72:ff:39:2e:e2:25:1f:3d:df:29:1e:51: 5b:bd:03:5f:1c:1b:36:03:5f:5a:ee:41:0b:25:d1:e8:0a:ae: 32:3f:89:5b:b1:68:bb:db:ca:32:d0:15:98:a8:40:21:c1:7b: eb:dd:6f:17:7e:dc:8a:7e:ec:eb:46:24:95:19:f9:b4:c4:04: 50:66:7c:b0:63:2d:46:15:45:31:2d:ab:3c:4c:e4:1e:9b:ef: 96:69:4e:5f:20:65:76:e3:93:18:25:e2:df:f1:b8:25:d8:77: 8e:c9:93:ec:12:d3:05:51:e9:41:08:c6:01:1b:b5:c6:2d:12: f1:66:6f:9d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUE1EjZGq+FMmzjamYQc6y7HILoJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVG ODU2QUYyMTAeFw0yNDAyMTYwNzQwMzlaFw0yNTAyMTQwNzQ1MzlaMDMxMTAvBgNV BAMTKDRFNERFM0ZDRENBMDgwQkMyQzVBODk4Q0U5MEM4MzM0RUE5RUFDQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYXuOcaFQgKWUsFlyq6Ov18it LabF2cmWm6HnhDmeRlOr09iSxBfr1cspHhvHnnPC6edCcrN34ylcD95yo8S8aPer v8VpOKlKnDe1iQuD3/0mkbvP98n4KEgqqr3r4ytYQiavT3hlq12V7tWwTdNIeqaH NcSbex89PcHMvwNVZnjofhCpFAL2mxOOyUhOZB2x8XMGYWOO2GWFeHi+qzhZe3Wq KSW0XgUG5GpVCd+/6XQHY2Pk0ZkrwQod111V+vZhY4pkzGZNxq/P6sa4MkOkZfcv Ce0OMB1DjzWbIxj+3HdTc9FtZ3kSFVDRCLKPGPoAavm66EvbX7uNCnNtmMw1AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUTk3j/NyggLwsWomM6QyDNOqerM4wHwYDVR0j BBgwFoAUDabUM3ECdr97gAbCHCau9fhWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGQxZWFjZC1hMDY3LTQ5MjQtOTI4NC1iYzZmMTBkOGQ1YTgvMC8wREE2RDQzMzcx MDI3NkJGN0I4MDA2QzIxQzI2QUVGNUY4NTZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVGODU2 QUYyMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkZDFlYWNkLWEwNjctNDkyNC05 Mjg0LWJjNmYxMGQ4ZDVhOC8wLzMyMzQzMDM1M2EzNTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczODMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBVEAMA0GCSqGSIb3 DQEBCwUAA4IBAQBJZN6c0aAxLhzHBQy7usW4HN4Jl5kG1V8ptpRpXuEh6uZiNmlm 47aDrsW8d1wIlX7Rk7Qq4GIdtsG4eQpq1E7aCMqyM/dao0yaGVemJs71i2LMdu+E hQZV7ySqTVdPMox8LBvDlvlS02eTy1hRoFKxB2O7zvq1PFm6Qcekajqrp9YQNopy /zku4iUfPd8pHlFbvQNfHBs2A19a7kELJdHoCq4yP4lbsWi728oy0BWYqEAhwXvr 3W8XftyKfuzrRiSVGfm0xARQZnywYy1GFUUxLas8TOQem++WaU5fIGV245MYJeLf 8bgl2HeOyZPsEtMFUelBCMYBG7XGLRLxZm+d -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org