$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa File: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (raw, json) Hash identifier: iiMZJOJE0I/AUErV1vyRCE+uPLpfCmgdzT+r6epJErs= Subject key identifier: E4:08:EF:59:FC:66:A5:D2:88:55:47:02:B0:35:EB:3E:3C:F0:BC:19 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 4F688A79EFB83EBF898066926379A2F9F1D8B972 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa Signing time: Wed 11 Sep 2024 13:54:55 +0000 ROA not before: Wed 11 Sep 2024 13:49:55 +0000 ROA not after: Wed 10 Sep 2025 13:54:55 +0000 asID: 139408 IP address blocks: 2405:5e40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:68:8a:79:ef:b8:3e:bf:89:80:66:92:63:79:a2:f9:f1:d8:b9:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Sep 11 13:49:55 2024 GMT Not After : Sep 10 13:54:55 2025 GMT Subject: CN=E408EF59FC66A5D288554702B035EB3E3CF0BC19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:a9:89:60:f7:d9:69:11:0f:c5:3e:b9:62: ee:34:8d:14:aa:9a:39:4e:98:72:b0:b9:ed:d5:09: be:cf:61:14:b1:c0:f0:1e:d9:69:87:f0:34:b6:fe: cd:38:fe:d5:1d:72:10:7d:91:dd:5c:ff:4b:d8:68: ee:74:1b:3c:d1:2c:67:db:b5:19:68:2c:09:4f:da: cf:02:83:f8:b0:48:25:eb:b6:2a:51:56:97:09:96: 1c:2c:59:b6:a5:63:dd:10:7e:5b:bb:3e:1e:fa:09: 7e:8a:bb:19:22:36:25:d9:df:09:63:dd:47:6f:24: 28:7b:80:81:97:be:e0:f6:bd:44:21:b2:b0:56:87: 07:86:a9:44:8b:3a:f3:86:bb:f4:4a:3b:65:a9:50: e6:42:07:4f:81:5f:cd:b1:f0:a0:16:1a:ed:ad:55: f4:13:ec:03:a5:f6:1a:e4:07:f8:d8:ab:58:0e:c7: 72:c5:a2:1f:2c:f9:da:c9:de:2d:96:16:38:6b:fc: 37:6f:04:1b:d2:7d:b4:e5:22:9e:97:62:56:02:ae: 7b:22:93:e9:72:ac:bd:e9:80:07:76:7c:69:31:bf: 3d:7c:2c:18:c8:8e:72:c2:70:23:ef:ad:91:0e:d2: f8:ea:0e:35:60:7b:0b:d5:d6:bd:70:89:7a:1b:43: 45:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:08:EF:59:FC:66:A5:D2:88:55:47:02:B0:35:EB:3E:3C:F0:BC:19 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/323430353a356534303a3a2f33322d3332203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:5e40::/32 Signature Algorithm: sha256WithRSAEncryption 91:2e:5b:6b:83:a7:d4:c2:c6:3f:6a:a2:ea:5a:c7:b2:73:57: 0a:9e:29:c1:a1:63:c6:4e:55:be:ca:4e:be:c3:26:7b:ee:e2: 8e:6a:0c:7b:ac:f5:ee:c8:12:62:ff:b4:f3:9d:d6:ff:4a:0b: 03:9b:f8:fe:c8:36:76:b8:c1:66:61:88:f3:a2:a8:5f:b4:93: 74:d7:af:e7:3d:0e:31:8e:2e:7e:98:64:7d:26:df:cb:67:7c: 72:18:9e:f5:75:86:a9:d9:b3:66:41:52:7e:14:fd:1b:e7:73: ce:3e:db:28:ae:2e:98:74:c1:01:02:18:01:bf:51:75:47:f4: 73:20:9a:7d:a0:ce:f2:89:55:d1:fc:5c:35:17:90:90:25:bc: 6c:d7:7e:e0:e7:9c:b2:cb:25:f3:41:45:05:35:8c:62:e8:f7: 10:68:87:05:e8:7a:41:64:c9:8f:97:82:81:f0:5e:c3:1f:db: f1:aa:b4:e2:a3:77:3e:12:04:66:52:72:7c:2d:a6:76:0d:68: 62:97:4d:0f:4f:97:c8:a5:df:a4:54:c7:f3:90:e8:d7:46:28: 1c:02:33:15:74:c9:49:0c:ef:74:cb:a3:18:67:0b:aa:9a:5a: c9:bf:8a:ea:1f:a4:f0:70:a0:99:1c:5b:72:ac:44:f7:2b:be: fd:d0:0f:b6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUT2iKee+4Pr+JgGaSY3mi+fHYuXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNDA5MTExMzQ5NTVaFw0yNTA5MTAxMzU0NTVaMDMxMTAvBgNV BAMTKEU0MDhFRjU5RkM2NkE1RDI4ODU1NDcwMkIwMzVFQjNFM0NGMEJDMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWE6mJYPfZaREPxT65Yu40jRSq mjlOmHKwue3VCb7PYRSxwPAe2WmH8DS2/s04/tUdchB9kd1c/0vYaO50GzzRLGfb tRloLAlP2s8Cg/iwSCXrtipRVpcJlhwsWbalY90Qflu7Ph76CX6KuxkiNiXZ3wlj 3UdvJCh7gIGXvuD2vUQhsrBWhweGqUSLOvOGu/RKO2WpUOZCB0+BX82x8KAWGu2t VfQT7AOl9hrkB/jYq1gOx3LFoh8s+drJ3i2WFjhr/DdvBBvSfbTlIp6XYlYCrnsi k+lyrL3pgAd2fGkxvz18LBjIjnLCcCPvrZEO0vjqDjVgewvV1r1wiXobQ0WDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU5AjvWfxmpdKIVUcCsDXrPjzwvBkwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMyMzQzMDM1M2EzNTY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFXkAwDQYJKoZI hvcNAQELBQADggEBAJEuW2uDp9TCxj9qoupax7JzVwqeKcGhY8ZOVb7KTr7DJnvu 4o5qDHus9e7IEmL/tPOd1v9KCwOb+P7INna4wWZhiPOiqF+0k3TXr+c9DjGOLn6Y ZH0m38tnfHIYnvV1hqnZs2ZBUn4U/Rvnc84+2yiuLph0wQECGAG/UXVH9HMgmn2g zvKJVdH8XDUXkJAlvGzXfuDnnLLLJfNBRQU1jGLo9xBohwXoekFkyY+XgoHwXsMf 2/GqtOKjdz4SBGZScnwtpnYNaGKXTQ9Pl8il36RUx/OQ6NdGKBwCMxV0yUkM73TL oxhnC6qaWsm/iuofpPBwoJkcW3KsRPcrvv3QD7Y= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org