$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: eFAFLxG2P6sh3xRhOaxNiK3fg0uRLkFTAo5ZpeLumCE= Subject key identifier: FB:C2:63:0F:8E:A4:97:1C:32:6B:2B:C0:9F:A4:72:50:5E:19:30:0E Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 7B3AB574A9ECD926EBF670BA780157F3AE6F8F60 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa Signing time: Mon 26 Feb 2024 16:00:01 +0000 ROA not before: Mon 26 Feb 2024 15:55:01 +0000 ROA not after: Mon 24 Feb 2025 16:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0:1a5b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3a:b5:74:a9:ec:d9:26:eb:f6:70:ba:78:01:57:f3:ae:6f:8f:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Feb 26 15:55:01 2024 GMT Not After : Feb 24 16:00:01 2025 GMT Subject: CN=FBC2630F8EA4971C326B2BC09FA472505E19300E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:87:82:7d:be:b1:9a:c1:6b:a6:33:ac:97:69: 3b:b1:9f:4f:a2:b1:19:bd:95:38:ba:58:51:71:d5: 94:d3:64:86:1b:e3:ca:12:7a:de:32:9e:ac:ba:95: ba:da:e7:2a:ec:89:a4:7c:b7:a9:8c:5f:88:ae:08: a1:df:8e:dd:8e:c5:26:b8:4a:e9:21:b4:f5:b6:99: 70:ad:65:00:e9:f6:ce:db:e0:ae:69:21:fe:d9:33: a4:bb:26:05:d0:b9:53:bb:c1:0e:51:43:00:2c:fb: ce:9c:09:8a:a4:58:0d:6d:0d:4a:d9:db:b1:4f:5d: 65:80:ce:95:29:4e:d6:be:ec:39:c2:c1:21:70:9c: 52:46:2c:90:6b:2f:9f:d9:08:3b:4d:3b:26:51:a8: cd:5b:bc:08:10:5c:f3:1f:da:f6:a8:73:eb:f7:77: f7:16:f4:6c:d7:d7:50:18:14:9b:1e:d3:85:36:4b: 2b:59:0e:0c:a9:cb:27:fc:33:22:6b:ce:1f:13:23: 04:55:c1:55:a9:12:91:54:9e:ba:22:42:34:a0:30: d2:ce:94:62:96:69:a9:ff:83:3b:98:6e:e9:ea:3e: 2b:1a:26:c7:a9:f9:90:65:e2:4f:5c:55:55:16:ab: e1:01:53:90:40:f2:03:11:ad:26:4f:22:7e:d4:b5: 88:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C2:63:0F:8E:A4:97:1C:32:6B:2B:C0:9F:A4:72:50:5E:19:30:0E X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a316135623a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:1a5b::/48 Signature Algorithm: sha256WithRSAEncryption 57:6e:98:fe:44:45:4d:8d:7c:e0:0c:6f:8d:05:66:0d:0a:3b: 92:11:74:6e:9e:cc:b1:d8:fe:ec:d3:4e:b6:a3:2e:32:6a:3d: 1f:83:3d:2e:76:f3:5e:5d:7e:e0:62:d7:27:19:02:48:af:92: b8:5b:ae:f7:e5:83:a8:67:6c:88:14:e1:fc:64:c5:f3:9e:71: 5e:1a:98:70:ac:8f:82:92:b1:e1:20:14:46:8b:92:3d:9d:5e: 11:18:8e:01:ed:52:20:43:4d:72:7a:82:46:ad:cb:b1:b1:01: 58:a7:07:0c:61:47:2c:b3:76:5f:8e:80:75:d7:23:16:0c:ec: 1a:4f:1a:91:f3:17:94:ab:64:01:18:af:05:02:99:03:1d:79: b1:13:75:57:22:be:34:70:02:51:08:4f:1a:32:a4:52:43:36: 4a:c5:98:94:0f:cc:a5:4a:26:95:86:8b:bb:c5:71:7a:79:2f: 76:ed:fd:95:78:31:66:53:d7:40:7c:38:cc:8c:b2:ee:d7:06: 19:dc:37:d3:90:48:6c:e1:81:7d:c1:ba:fd:c5:ff:37:5b:20: ad:27:94:65:82:f5:a2:90:80:dc:c1:f4:7e:df:9e:d7:75:6d: 8f:e9:48:87:30:d6:b8:87:80:eb:43:b7:80:a2:0b:22:10:85: 24:70:67:28 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUezq1dKns2Sbr9nC6eAFX865vj2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDAyMjYxNTU1MDFaFw0yNTAyMjQxNjAwMDFaMDMxMTAvBgNV BAMTKEZCQzI2MzBGOEVBNDk3MUMzMjZCMkJDMDlGQTQ3MjUwNUUxOTMwMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDph4J9vrGawWumM6yXaTuxn0+i sRm9lTi6WFFx1ZTTZIYb48oSet4ynqy6lbra5yrsiaR8t6mMX4iuCKHfjt2OxSa4 SukhtPW2mXCtZQDp9s7b4K5pIf7ZM6S7JgXQuVO7wQ5RQwAs+86cCYqkWA1tDUrZ 27FPXWWAzpUpTta+7DnCwSFwnFJGLJBrL5/ZCDtNOyZRqM1bvAgQXPMf2vaoc+v3 d/cW9GzX11AYFJse04U2SytZDgypyyf8MyJrzh8TIwRVwVWpEpFUnroiQjSgMNLO lGKWaan/gzuYbunqPisaJsep+ZBl4k9cVVUWq+EBU5BA8gMRrSZPIn7UtYhvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+8JjD46klxwyayvAn6RyUF4ZMA4wHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhMzE2MTM1NjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAGlswDQYJKoZIhvcNAQELBQADggEBAFdumP5ERU2NfOAMb40FZg0KO5IRdG6e zLHY/uzTTrajLjJqPR+DPS52815dfuBi1ycZAkivkrhbrvflg6hnbIgU4fxkxfOe cV4amHCsj4KSseEgFEaLkj2dXhEYjgHtUiBDTXJ6gkaty7GxAVinBwxhRyyzdl+O gHXXIxYM7BpPGpHzF5SrZAEYrwUCmQMdebETdVcivjRwAlEITxoypFJDNkrFmJQP zKVKJpWGi7vFcXp5L3bt/ZV4MWZT10B8OMyMsu7XBhncN9OQSGzhgX3Buv3F/zdb IK0nlGWC9aKQgNzB9H7fntd1bY/pSIcw1riHgOtDt4CiCyIQhSRwZyg= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org