$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa File: 323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa (raw, json) Hash identifier: tGDYZbZFfyUoLXzylO+/DvmkP5V0ufi3ajLXIvohhx8= Subject key identifier: 84:5C:D7:3F:B2:3B:52:3E:54:90:FB:0B:74:D9:E6:1B:01:F3:8E:8E Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 5C1F00D644CFC5A23DA18C9441566C6101BEA546 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa Signing time: Thu 17 Oct 2024 07:16:56 +0000 ROA not before: Thu 17 Oct 2024 07:11:56 +0000 ROA not after: Thu 16 Oct 2025 07:16:56 +0000 asID: 149736 IP address blocks: 2401:48e0:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:1f:00:d6:44:cf:c5:a2:3d:a1:8c:94:41:56:6c:61:01:be:a5:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Oct 17 07:11:56 2024 GMT Not After : Oct 16 07:16:56 2025 GMT Subject: CN=845CD73FB23B523E5490FB0B74D9E61B01F38E8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:98:07:b3:eb:3c:7c:e6:a7:58:81:c1:4e: 70:c4:1e:54:5c:40:f1:f4:58:d9:5a:42:64:3a:c9: 9e:5f:1d:d3:04:cb:bc:80:6c:36:e0:5a:9c:81:29: 13:1a:d4:ab:cf:34:84:33:7b:d1:ee:ec:70:c1:26: fe:7e:5c:19:8c:76:41:8f:de:e3:dd:7f:16:7c:d6: b1:f4:8a:e2:ba:b9:b1:03:7d:f0:e1:ee:f7:e5:fe: 24:99:ee:a0:9a:63:e4:ed:25:c6:c0:09:19:5a:c6: f5:40:18:1b:92:7d:63:cc:c0:17:84:54:c6:a2:42: eb:c6:bb:bf:d7:72:21:2f:3c:52:a9:ee:75:64:68: 11:3d:16:a4:93:91:a1:3b:b7:dc:ae:02:06:2d:84: 72:bd:e5:0d:af:e9:24:d9:ad:2a:db:7a:2c:4c:dd: 0b:e1:45:40:39:f3:fc:b0:f0:d3:e8:36:5d:34:a2: c0:04:d0:01:20:78:eb:3e:c4:ac:36:a1:f5:fc:89: ec:7a:f4:9a:1f:cc:47:d0:58:e0:bb:99:86:b1:31: 51:b6:c0:2c:0a:d0:54:4e:d0:1e:77:50:da:ad:a4: 12:d0:28:5e:7f:49:70:73:04:f5:c1:99:51:27:c3: 91:de:d9:37:fc:0b:f1:bc:75:93:20:87:35:75:31: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5C:D7:3F:B2:3B:52:3E:54:90:FB:0B:74:D9:E6:1B:01:F3:8E:8E X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/323430313a343865303a343030313a3a2f34382d3438203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48e0:4001::/48 Signature Algorithm: sha256WithRSAEncryption af:20:f8:66:1e:d6:02:69:f9:8a:34:ef:28:35:9f:05:af:59: de:67:b7:13:ad:04:40:1b:df:df:b5:2c:d4:3b:a1:11:50:48: 84:0f:11:81:97:32:38:51:03:ed:32:e7:1a:be:71:46:f1:5b: d2:fa:71:95:c7:77:9a:18:7b:41:df:b9:9b:1c:f0:a2:3f:f3: cc:58:6a:1c:4d:43:b7:5d:ef:1a:17:72:6f:92:d1:e0:65:5c: 40:a5:28:33:12:e5:dc:4c:ab:c5:bc:a6:99:da:d9:7d:55:ff: bc:4a:fa:f9:44:35:b4:04:ee:d2:93:81:50:7a:59:9c:34:d4: 06:f5:a7:22:49:43:eb:b7:95:68:94:37:26:5e:69:28:0b:0f: 19:66:19:25:08:6c:c8:44:ce:8e:5c:d3:2f:c6:85:2e:e5:d9: 17:7b:e3:af:ce:bf:58:68:d7:c4:c1:3e:3b:c2:61:3c:85:c5: 21:00:51:8d:78:b3:84:a6:a5:12:06:95:51:63:9f:99:0f:c1: 06:43:f1:a2:5a:1f:94:86:91:b7:b5:7a:50:e4:9b:69:da:35: 90:00:a6:fb:b0:73:7d:ea:83:e3:b2:ef:fe:25:3d:7e:e3:65: 32:c5:f8:7c:99:94:84:12:a1:cf:ef:17:f4:e9:68:61:fb:e5: a6:c1:a6:13 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXB8A1kTPxaI9oYyUQVZsYQG+pUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNDEwMTcwNzExNTZaFw0yNTEwMTYwNzE2NTZaMDMxMTAvBgNV BAMTKDg0NUNENzNGQjIzQjUyM0U1NDkwRkIwQjc0RDlFNjFCMDFGMzhFOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUUZgHs+s8fOanWIHBTnDEHlRc QPH0WNlaQmQ6yZ5fHdMEy7yAbDbgWpyBKRMa1KvPNIQze9Hu7HDBJv5+XBmMdkGP 3uPdfxZ81rH0iuK6ubEDffDh7vfl/iSZ7qCaY+TtJcbACRlaxvVAGBuSfWPMwBeE VMaiQuvGu7/XciEvPFKp7nVkaBE9FqSTkaE7t9yuAgYthHK95Q2v6STZrSrbeixM 3QvhRUA58/yw8NPoNl00osAE0AEgeOs+xKw2ofX8iex69JofzEfQWOC7mYaxMVG2 wCwK0FRO0B53UNqtpBLQKF5/SXBzBPXBmVEnw5He2Tf8C/G8dZMghzV1Mb8HAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUhFzXP7I7Uj5UkPsLdNnmGwHzjo4wHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMyMzQzMDMxM2EzNDM4NjUzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AUjgQAEwDQYJKoZIhvcNAQELBQADggEBAK8g+GYe1gJp+Yo07yg1nwWvWd5ntxOt BEAb39+1LNQ7oRFQSIQPEYGXMjhRA+0y5xq+cUbxW9L6cZXHd5oYe0HfuZsc8KI/ 88xYahxNQ7dd7xoXcm+S0eBlXEClKDMS5dxMq8W8ppna2X1V/7xK+vlENbQE7tKT gVB6WZw01Ab1pyJJQ+u3lWiUNyZeaSgLDxlmGSUIbMhEzo5c0y/GhS7l2Rd746/O v1ho18TBPjvCYTyFxSEAUY14s4SmpRIGlVFjn5kPwQZD8aJaH5SGkbe1elDkm2na NZAApvuwc33qg+Oy7/4lPX7jZTLF+HyZlIQSoc/vF/TpaGH75abBphM= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org