$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa File: 323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa (raw, json) Hash identifier: lhB3pO2JkMAJtQ5Oday4j/dSwCn2fIqeR0/VOPmin9U= Subject key identifier: CF:BF:B0:7E:E2:70:80:56:FC:B2:5C:58:30:82:48:4E:87:B3:B0:76 Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 308B15C26160BD7424013C0DDBD2AB95D3C59750 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa Signing time: Tue 05 Nov 2024 02:39:56 +0000 ROA not before: Tue 05 Nov 2024 02:34:56 +0000 ROA not after: Tue 04 Nov 2025 02:39:56 +0000 asID: 149736 IP address blocks: 2401:48e0:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8b:15:c2:61:60:bd:74:24:01:3c:0d:db:d2:ab:95:d3:c5:97:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Nov 5 02:34:56 2024 GMT Not After : Nov 4 02:39:56 2025 GMT Subject: CN=CFBFB07EE2708056FCB25C583082484E87B3B076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:51:fa:d2:e2:59:ca:17:43:a4:9a:d4:a9: 40:62:10:70:fe:ab:1d:d4:f7:49:92:1e:d4:9b:fa: 3a:7b:19:dc:7a:09:77:a2:34:c7:96:94:72:de:4c: c1:4b:80:0b:5e:30:ff:fd:e1:c4:f1:c4:bb:7c:2b: 0d:54:04:57:70:c8:c2:7c:c0:27:09:df:b9:ce:a8: 57:f1:b4:e4:07:ad:50:ab:21:24:11:24:11:18:92: ae:23:28:b5:dc:9c:cf:ab:46:0a:ab:36:1b:1e:ec: 62:e4:0c:8f:66:c1:78:e8:62:f2:e9:91:f5:d1:98: 60:1b:2c:02:34:eb:e9:d3:9a:f3:c5:25:7d:ae:b6: c7:ae:d2:fd:4e:7b:d6:7f:9c:89:47:3c:f5:5b:3c: 0e:75:04:6f:12:75:72:ab:4a:2f:8c:ca:f2:78:2c: 20:16:66:80:fb:c3:ea:71:86:74:ab:56:68:04:96: 00:15:51:92:49:94:40:f2:d6:95:5a:c8:bc:ff:e7: 95:5a:5f:c5:08:e8:87:f3:ac:65:c9:9b:e8:62:c6: 65:fa:bd:ff:2f:80:0f:f4:a8:9e:44:8f:23:12:2a: a3:34:8d:ff:f9:f6:90:4e:17:fa:5f:62:90:e8:00: 95:e4:b2:23:d4:8d:2d:50:f6:25:e4:02:ac:1f:cf: 45:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BF:B0:7E:E2:70:80:56:FC:B2:5C:58:30:82:48:4E:87:B3:B0:76 X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a333030313a3a2f34382d3438203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48e0:3001::/48 Signature Algorithm: sha256WithRSAEncryption 70:20:b8:21:f9:66:2a:2c:f6:85:4e:0a:86:d3:83:c2:62:c0: e8:09:3d:f8:b6:85:e4:95:6a:81:e1:06:fd:96:b2:19:60:44: 21:e1:f3:61:ea:cd:94:49:a4:4e:0d:c8:94:a2:96:10:47:a2: 87:3e:1c:51:45:f4:0b:7e:3b:50:53:3d:c8:6f:4d:5b:5c:cd: 61:c9:c4:a6:fd:57:af:2b:69:f3:88:1b:ed:ae:be:40:c1:8c: 42:dd:13:8c:12:2f:d2:96:e3:e7:44:7a:cf:d2:54:e2:2b:45: ad:62:c3:d9:74:96:c2:e4:22:3c:5d:42:f5:88:68:61:22:c9: e6:e1:e7:0b:50:21:b8:bf:1d:99:1e:ca:69:6e:82:46:4a:c6: b1:b0:90:f4:1c:d2:89:40:0a:15:48:10:a3:1e:87:59:e4:1c: 47:90:da:2b:24:11:a9:29:b9:04:f8:1f:e9:85:8d:e0:e1:36: cb:75:55:12:b1:88:78:d0:c1:f0:52:00:f8:42:73:8d:99:da: 17:34:59:75:d6:c9:47:73:4a:88:54:b3:a2:13:cf:17:ed:80: 30:96:5f:68:d1:b6:4a:72:02:54:ed:97:d1:fe:f7:e1:fa:e8: 85:b9:23:f7:17:3a:8c:55:e3:d1:fb:b7:6a:7b:3e:4e:b0:b8: c5:e6:88:3b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUMIsVwmFgvXQkATwN29KrldPFl1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNDExMDUwMjM0NTZaFw0yNTExMDQwMjM5NTZaMDMxMTAvBgNV BAMTKENGQkZCMDdFRTI3MDgwNTZGQ0IyNUM1ODMwODI0ODRFODdCM0IwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPY1H60uJZyhdDpJrUqUBiEHD+ qx3U90mSHtSb+jp7Gdx6CXeiNMeWlHLeTMFLgAteMP/94cTxxLt8Kw1UBFdwyMJ8 wCcJ37nOqFfxtOQHrVCrISQRJBEYkq4jKLXcnM+rRgqrNhse7GLkDI9mwXjoYvLp kfXRmGAbLAI06+nTmvPFJX2utseu0v1Oe9Z/nIlHPPVbPA51BG8SdXKrSi+MyvJ4 LCAWZoD7w+pxhnSrVmgElgAVUZJJlEDy1pVayLz/55VaX8UI6IfzrGXJm+hixmX6 vf8vgA/0qJ5EjyMSKqM0jf/59pBOF/pfYpDoAJXksiPUjS1Q9iXkAqwfz0VBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUz7+wfuJwgFb8slxYMIJIToezsHYwHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMyMzQzMDMxM2EzNDM4NjUzMDNhMzMzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AUjgMAEwDQYJKoZIhvcNAQELBQADggEBAHAguCH5Zios9oVOCobTg8JiwOgJPfi2 heSVaoHhBv2WshlgRCHh82HqzZRJpE4NyJSilhBHooc+HFFF9At+O1BTPchvTVtc zWHJxKb9V68rafOIG+2uvkDBjELdE4wSL9KW4+dEes/SVOIrRa1iw9l0lsLkIjxd QvWIaGEiyebh5wtQIbi/HZkeymlugkZKxrGwkPQc0olAChVIEKMeh1nkHEeQ2isk EakpuQT4H+mFjeDhNst1VRKxiHjQwfBSAPhCc42Z2hc0WXXWyUdzSohUs6ITzxft gDCWX2jRtkpyAlTtl9H+9+H66IW5I/cXOoxV49H7t2p7Pk6wuMXmiDs= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org