$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa File: 323430353a386363303a3a2f33322d3332203d3e20313339343530.roa (raw, json) Hash identifier: jAjDsxNi5OMMfPiq/hCZB/NfJ1N3Xkx3pSv87LiOuZM= Subject key identifier: 16:8B:28:2C:7B:D5:71:A2:2A:4F:48:B7:15:8D:15:03:71:81:FE:01 Certificate issuer: /CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Certificate serial: 670D55AC0EDA87D1349D066211854B7DA1F52DDB Authority key identifier: 78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa Signing time: Thu 21 Mar 2024 06:00:01 +0000 ROA not before: Thu 21 Mar 2024 05:55:01 +0000 ROA not after: Thu 20 Mar 2025 06:00:01 +0000 asID: 139450 IP address blocks: 2405:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:0d:55:ac:0e:da:87:d1:34:9d:06:62:11:85:4b:7d:a1:f5:2d:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Validity Not Before: Mar 21 05:55:01 2024 GMT Not After : Mar 20 06:00:01 2025 GMT Subject: CN=168B282C7BD571A22A4F48B7158D15037181FE01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7d:ed:f5:76:5d:23:74:2f:2c:87:24:36:6f: 9e:11:7d:89:39:45:ff:49:7d:71:50:59:11:6f:36: 15:31:43:40:ce:b0:7a:e4:29:15:38:4f:39:73:28: f3:ac:55:d2:04:9d:80:89:8f:b0:26:78:60:39:0d: e0:d8:e9:ee:39:56:b3:c3:37:df:49:2b:c8:b9:f9: 0a:c4:05:e8:f0:13:e5:cf:bf:d7:0f:cd:5b:eb:f8: f7:fe:c4:86:1b:96:34:ee:cc:f4:27:9f:13:aa:ef: 83:d9:4a:ff:92:67:40:85:69:7d:ea:68:08:56:19: 02:82:94:51:54:66:a0:eb:4d:6f:ad:b7:a1:71:99: a0:8b:e4:73:52:9f:3d:0b:41:11:b1:82:9e:bf:b6: 77:11:76:6f:fb:e2:6d:54:10:23:35:25:e7:8f:49: d5:9d:6c:6f:6c:41:f1:60:da:69:f8:fb:78:11:de: 9a:4f:99:37:0b:14:a1:39:62:2b:e2:0a:c2:44:48: 1c:3a:0f:11:40:e5:ce:1d:60:ee:13:d6:b1:51:bc: 60:eb:9a:5c:4f:36:b7:99:bf:72:c8:72:47:00:b7: 06:a5:49:29:2f:fc:e5:2f:44:85:61:b6:f8:dd:24: 78:41:61:31:7d:4f:a0:20:ee:06:1f:1b:9a:76:29: 69:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8B:28:2C:7B:D5:71:A2:2A:4F:48:B7:15:8D:15:03:71:81:FE:01 X509v3 Authority Key Identifier: keyid:78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/323430353a386363303a3a2f33322d3332203d3e20313339343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption c7:74:0c:a2:30:53:fe:e4:46:30:99:ce:74:c9:49:44:cf:54: a3:7d:cc:98:ef:d2:31:77:19:5e:0d:ce:7a:34:c4:a5:41:a1: 63:e7:bd:c5:91:33:58:8a:26:44:c2:6d:3b:31:63:28:bb:0e: 1b:d1:f0:59:58:af:86:87:23:1e:dc:0a:25:05:84:28:40:b3: ec:7a:a0:2d:80:51:f1:f2:9a:5e:b9:ec:b0:8c:1d:65:75:c0: a4:e8:64:d5:14:82:8e:5a:61:dd:0f:8e:72:25:98:68:15:5e: 6a:4a:2e:2f:11:92:bb:fe:e3:b1:0d:91:a9:12:a9:6e:91:84: af:16:85:40:ca:19:9f:b7:16:ca:b7:45:fb:1c:e5:37:ad:27: ee:43:1f:ac:06:79:bf:8f:89:e5:6f:ca:78:6d:2e:74:84:39: 69:43:c4:6c:73:36:0e:9a:a0:ae:df:69:87:36:90:b1:49:6c: db:78:9f:db:6a:6b:ef:85:bd:66:72:6e:b8:d9:84:71:ba:90: 9d:56:cc:76:e3:dd:3e:bd:6e:76:87:c7:90:56:c3:57:49:19: bb:13:85:4e:84:c7:c0:4e:d1:e1:76:43:dc:81:35:f1:71:62: e3:2d:65:11:20:55:bc:5e:ba:a2:42:1e:cb:9d:a0:7b:a4:85: 6f:54:d9:a3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZw1VrA7ah9E0nQZiEYVLfaH1LdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0Iz MjY0RkY1QzAeFw0yNDAzMjEwNTU1MDFaFw0yNTAzMjAwNjAwMDFaMDMxMTAvBgNV BAMTKDE2OEIyODJDN0JENTcxQTIyQTRGNDhCNzE1OEQxNTAzNzE4MUZFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyfe31dl0jdC8shyQ2b54RfYk5 Rf9JfXFQWRFvNhUxQ0DOsHrkKRU4TzlzKPOsVdIEnYCJj7AmeGA5DeDY6e45VrPD N99JK8i5+QrEBejwE+XPv9cPzVvr+Pf+xIYbljTuzPQnnxOq74PZSv+SZ0CFaX3q aAhWGQKClFFUZqDrTW+tt6FxmaCL5HNSnz0LQRGxgp6/tncRdm/74m1UECM1JeeP SdWdbG9sQfFg2mn4+3gR3ppPmTcLFKE5YiviCsJESBw6DxFA5c4dYO4T1rFRvGDr mlxPNreZv3LIckcAtwalSSkv/OUvRIVhtvjdJHhBYTF9T6Ag7gYfG5p2KWmHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUFosoLHvVcaIqT0i3FY0VA3GB/gEwHwYDVR0j BBgwFoAUeJxB+P9y1OAPNhlK8kpUOzJk/1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2YxNzA2Yi02YzE3LTQ3ODYtYWJkOS00N2EzODQ0ZGE4ZjgvMC83ODlDNDFGOEZG NzJENEUwMEYzNjE5NEFGMjRBNTQzQjMyNjRGRjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0IzMjY0 RkY1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjE3MDZiLTZjMTctNDc4Ni1h YmQ5LTQ3YTM4NDRkYThmOC8wLzMyMzQzMDM1M2EzODYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFjMAwDQYJKoZI hvcNAQELBQADggEBAMd0DKIwU/7kRjCZznTJSUTPVKN9zJjv0jF3GV4Nzno0xKVB oWPnvcWRM1iKJkTCbTsxYyi7DhvR8FlYr4aHIx7cCiUFhChAs+x6oC2AUfHyml65 7LCMHWV1wKToZNUUgo5aYd0PjnIlmGgVXmpKLi8Rkrv+47ENkakSqW6RhK8WhUDK GZ+3Fsq3Rfsc5TetJ+5DH6wGeb+PieVvynhtLnSEOWlDxGxzNg6aoK7faYc2kLFJ bNt4n9tqa++FvWZybrjZhHG6kJ1WzHbj3T69bnaHx5BWw1dJGbsThU6Ex8BO0eF2 Q9yBNfFxYuMtZREgVbxeuqJCHsudoHukhW9U2aM= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org