$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa File: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (raw, json) Hash identifier: n4bJQNejJBHjDVuUhZu9aU0IFm6+oNi9AXZ4asH/Zs0= Subject key identifier: BD:97:42:20:E7:57:6D:1B:E1:07:02:63:7F:30:E9:0F:77:33:81:16 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 3DCAB9BBBC752DCE7841F8C4EED8363E6E689B5F Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa Signing time: Tue 26 Dec 2023 10:00:01 +0000 ROA not before: Tue 26 Dec 2023 09:55:01 +0000 ROA not after: Tue 24 Dec 2024 10:00:01 +0000 asID: 138822 IP address blocks: 2404:a4c0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ca:b9:bb:bc:75:2d:ce:78:41:f8:c4:ee:d8:36:3e:6e:68:9b:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Dec 26 09:55:01 2023 GMT Not After : Dec 24 10:00:01 2024 GMT Subject: CN=BD974220E7576D1BE10702637F30E90F77338116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:27:36:57:4a:0f:92:2f:08:f0:ea:54:98: 5a:be:62:8a:07:d9:7c:86:b2:a3:fc:6f:ce:55:b9: 51:b4:57:1a:8b:96:04:23:af:3c:ab:e2:eb:24:a3: 4f:ac:5e:e6:f7:42:14:2c:f8:8b:54:23:47:c2:2e: 56:62:8b:53:ae:a1:46:76:a0:6d:93:3a:b7:85:18: cc:87:ed:06:d9:b1:af:91:4d:59:ec:5d:c2:f0:19: 99:35:d8:77:c2:49:c4:12:48:b1:5a:b1:c2:61:86: 1a:1b:05:53:73:4b:3d:87:ee:3d:b0:2b:c3:d4:8f: 15:0f:0f:60:48:fe:ef:6a:a2:82:6b:e1:75:7c:35: c3:91:37:4f:70:98:23:38:f2:02:06:2f:40:e0:c3: 2d:50:6c:17:58:25:08:b0:65:62:e6:c5:76:83:20: dd:12:1c:27:62:ad:83:46:99:27:b4:d6:7a:e8:14: 7e:35:65:da:34:74:22:67:01:d5:1f:23:20:e7:e8: 42:21:d2:3f:c0:ab:77:b8:00:61:b0:59:48:b0:ac: b3:cc:df:8d:ab:22:63:e0:93:79:b5:51:a0:78:e0: 1b:43:0d:93:3f:09:46:10:41:64:83:82:95:9b:07: b1:a4:43:a3:c8:48:30:09:ca:ca:d7:59:70:2e:84: 39:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:97:42:20:E7:57:6D:1B:E1:07:02:63:7F:30:E9:0F:77:33:81:16 X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a4c0:face::/48 Signature Algorithm: sha256WithRSAEncryption c8:1a:00:08:c3:9e:1e:68:f7:f6:f8:c6:6b:0f:3c:e0:4e:16: 45:45:bc:5d:25:b9:3f:69:80:7e:28:36:59:33:ed:87:13:e2: 14:80:66:b9:80:14:32:f0:d5:5f:04:c6:21:9c:c0:db:9c:20: 55:00:ae:a3:c2:4d:8d:b6:0a:bc:95:ef:20:be:2a:b8:2b:53: cd:22:50:51:a8:b9:b4:d1:cf:5a:61:b7:55:70:b5:f9:90:10: 94:e4:99:9f:47:b8:65:9d:9b:d3:de:04:57:fc:40:6b:6d:e5: 64:29:2f:19:e3:54:e2:32:f9:d5:b8:e7:8f:ca:7e:23:27:d8: 59:49:76:69:b1:0d:af:63:b4:03:0e:40:d6:6a:76:ed:ea:b8: ce:e7:1f:28:4b:da:96:a7:12:05:2c:ad:2b:0f:57:66:61:09: c9:6b:1e:e2:61:7e:64:9d:80:5d:5e:f9:b6:f6:f8:b8:85:d5: 96:52:cf:87:e5:2f:7a:a3:1f:de:1c:c0:b1:2c:d2:3c:6d:b3: 6a:c5:e8:83:3d:4a:1c:f3:26:78:06:75:1f:41:de:f9:80:9a: 51:fa:cc:4f:77:23:e9:7b:ab:6e:27:84:99:4d:bf:df:d4:8d: bb:fe:9b:fb:2e:4b:36:19:8c:24:06:05:ee:58:ac:5e:8d:8f: ef:6c:d1:fa -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPcq5u7x1Lc54QfjE7tg2Pm5om18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yMzEyMjYwOTU1MDFaFw0yNDEyMjQxMDAwMDFaMDMxMTAvBgNV BAMTKEJEOTc0MjIwRTc1NzZEMUJFMTA3MDI2MzdGMzBFOTBGNzczMzgxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPnSc2V0oPki8I8OpUmFq+YooH 2XyGsqP8b85VuVG0VxqLlgQjrzyr4usko0+sXub3QhQs+ItUI0fCLlZii1OuoUZ2 oG2TOreFGMyH7QbZsa+RTVnsXcLwGZk12HfCScQSSLFascJhhhobBVNzSz2H7j2w K8PUjxUPD2BI/u9qooJr4XV8NcORN09wmCM48gIGL0Dgwy1QbBdYJQiwZWLmxXaD IN0SHCdirYNGmSe01nroFH41Zdo0dCJnAdUfIyDn6EIh0j/Aq3e4AGGwWUiwrLPM 342rImPgk3m1UaB44BtDDZM/CUYQQWSDgpWbB7GkQ6PISDAJysrXWXAuhDkpAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvZdCIOdXbRvhBwJjfzDpD3czgRYwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMyMzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BKTA+s4wDQYJKoZIhvcNAQELBQADggEBAMgaAAjDnh5o9/b4xmsPPOBOFkVFvF0l uT9pgH4oNlkz7YcT4hSAZrmAFDLw1V8ExiGcwNucIFUArqPCTY22CryV7yC+Krgr U80iUFGoubTRz1pht1VwtfmQEJTkmZ9HuGWdm9PeBFf8QGtt5WQpLxnjVOIy+dW4 54/KfiMn2FlJdmmxDa9jtAMOQNZqdu3quM7nHyhL2panEgUsrSsPV2ZhCclrHuJh fmSdgF1e+bb2+LiF1ZZSz4flL3qjH94cwLEs0jxts2rF6IM9ShzzJngGdR9B3vmA mlH6zE93I+l7q24nhJlNv9/Ujbv+m/suSzYZjCQGBe5YrF6Nj+9s0fo= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org