$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: +hMN7Q8kJ6deuziDU5ZDdBuI5FgVybo8OPzohEKlSTM= Subject key identifier: 3D:F1:37:1C:62:02:A6:BD:2A:EA:2C:4F:53:13:22:A6:00:CA:63:15 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 2CE136632DC025F58D5FC111BE1A1C5209FD6BA8 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa Signing time: Tue 27 Feb 2024 05:00:01 +0000 ROA not before: Tue 27 Feb 2024 04:55:01 +0000 ROA not after: Tue 25 Feb 2025 05:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0:1d5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e1:36:63:2d:c0:25:f5:8d:5f:c1:11:be:1a:1c:52:09:fd:6b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Feb 27 04:55:01 2024 GMT Not After : Feb 25 05:00:01 2025 GMT Subject: CN=3DF1371C6202A6BD2AEA2C4F531322A600CA6315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:45:db:b7:9f:e1:4f:d9:69:09:82:fb:c7: 04:34:0e:cc:5d:53:34:1b:17:fc:e7:21:14:8d:ff: f0:d7:fc:59:8f:57:5a:18:90:bb:75:4f:42:2f:d3: 61:a6:00:fb:8b:c1:41:b5:8b:c5:fc:59:0d:a6:83: a1:76:a1:a3:ea:1e:ed:28:80:80:90:72:06:79:91: 50:e9:a5:c5:35:f9:86:2c:28:f2:44:23:22:3e:ce: 50:e7:86:31:d2:dc:17:8e:a5:0e:20:4c:25:cf:a9: 44:be:d6:ef:9e:24:27:0a:80:17:36:aa:a6:dc:0a: 8e:8d:50:26:86:df:49:35:12:53:a7:c7:4b:5b:03: e5:e0:aa:38:69:09:c8:34:48:fb:6b:a8:f9:66:07: 40:b2:2c:40:e3:6c:60:ce:bb:65:c9:bf:55:d5:4f: 62:b4:ee:43:52:f8:c8:0c:32:d6:2d:37:77:ae:a8: 3c:57:7e:98:2a:7c:f6:e0:a6:95:86:bf:c3:39:e2: 4e:c4:3a:3f:93:92:8d:aa:55:9a:10:4f:c6:3f:24: 73:67:fd:b6:e8:8d:ed:bb:f0:13:70:4b:49:92:eb: d7:d3:8b:58:19:56:91:58:ea:b0:e2:d4:aa:61:48: ef:2a:82:ab:ec:bb:c4:36:7f:2a:0b:13:2e:42:86: f8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F1:37:1C:62:02:A6:BD:2A:EA:2C:4F:53:13:22:A6:00:CA:63:15 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3164353a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:1d5::/48 Signature Algorithm: sha256WithRSAEncryption 7c:80:09:fc:f3:05:e6:bd:f7:fe:ef:35:c0:18:4b:ed:40:d9: e9:a9:c8:da:14:de:e1:1f:86:ec:b0:79:56:f4:f4:fb:90:5a: e8:49:07:f9:b2:2d:a0:29:aa:43:1c:38:42:eb:2f:52:e2:bd: 84:57:e5:0e:82:cc:c9:0d:53:2a:b3:f0:95:79:21:19:b6:da: 04:68:55:e2:6a:35:1a:a1:28:1c:e2:10:f8:69:5f:be:30:e4: a6:2a:6c:9b:09:72:42:25:f2:44:e4:e9:cf:74:83:d7:82:fe: f2:5d:f2:f1:35:55:11:60:0d:f6:71:db:48:fe:5b:4c:a4:a9: 5a:e1:db:ec:f2:0c:2a:62:a1:de:f1:92:79:9a:a9:e8:03:95: b1:11:3b:05:00:af:f7:dc:ac:00:75:79:99:88:e5:fe:e0:96: ae:da:52:de:dc:14:ce:ac:16:df:20:cd:9a:6f:0d:a3:50:ee: 60:3b:aa:37:f4:82:3a:c2:66:c2:e7:77:a6:78:53:b4:cf:8a: 82:d6:28:cc:cc:ad:fc:d9:71:99:6f:8b:56:a9:9c:5f:2e:91: aa:4a:dd:ce:a6:c0:ea:a5:68:ec:8c:ce:fe:88:c4:63:01:c9: 40:5d:70:31:0b:11:37:7f:bd:e8:19:30:f1:01:ba:31:e5:a0: f0:83:c3:30 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULOE2Yy3AJfWNX8ERvhocUgn9a6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDAyMjcwNDU1MDFaFw0yNTAyMjUwNTAwMDFaMDMxMTAvBgNV BAMTKDNERjEzNzFDNjIwMkE2QkQyQUVBMkM0RjUzMTMyMkE2MDBDQTYzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjEXbt5/hT9lpCYL7xwQ0Dsxd UzQbF/znIRSN//DX/FmPV1oYkLt1T0Iv02GmAPuLwUG1i8X8WQ2mg6F2oaPqHu0o gICQcgZ5kVDppcU1+YYsKPJEIyI+zlDnhjHS3BeOpQ4gTCXPqUS+1u+eJCcKgBc2 qqbcCo6NUCaG30k1ElOnx0tbA+XgqjhpCcg0SPtrqPlmB0CyLEDjbGDOu2XJv1XV T2K07kNS+MgMMtYtN3euqDxXfpgqfPbgppWGv8M54k7EOj+Tko2qVZoQT8Y/JHNn /bboje278BNwS0mS69fTi1gZVpFY6rDi1KphSO8qgqvsu8Q2fyoLEy5Chvj5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPfE3HGICpr0q6ixPUxMipgDKYxUwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhMzE2NDM1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzQzMTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATK wAHVMA0GCSqGSIb3DQEBCwUAA4IBAQB8gAn88wXmvff+7zXAGEvtQNnpqcjaFN7h H4bssHlW9PT7kFroSQf5si2gKapDHDhC6y9S4r2EV+UOgszJDVMqs/CVeSEZttoE aFXiajUaoSgc4hD4aV++MOSmKmybCXJCJfJE5OnPdIPXgv7yXfLxNVURYA32cdtI /ltMpKla4dvs8gwqYqHe8ZJ5mqnoA5WxETsFAK/33KwAdXmZiOX+4Jau2lLe3BTO rBbfIM2abw2jUO5gO6o39II6wmbC53emeFO0z4qC1ijMzK382XGZb4tWqZxfLpGq St3OpsDqpWjsjM7+iMRjAclAXXAxCxE3f73oGTDxAbox5aDwg8Mw -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org