$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa File: 323430343a636163303a3a2f33322d3332203d3e20313339343137.roa (raw, json) Hash identifier: +Fv1TUiy+eqf9n3iWa0wdVVseNSJmjI4YB7akkVh6mY= Subject key identifier: AF:97:25:C9:AA:E9:BF:36:FF:36:E8:30:84:78:F4:6C:D3:3A:EA:57 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 4983FB7BDC214F1EBEE3277FC30CF1C0447DC2DE Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa Signing time: Sat 20 Jan 2024 11:00:01 +0000 ROA not before: Sat 20 Jan 2024 10:55:01 +0000 ROA not after: Sat 18 Jan 2025 11:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:83:fb:7b:dc:21:4f:1e:be:e3:27:7f:c3:0c:f1:c0:44:7d:c2:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Jan 20 10:55:01 2024 GMT Not After : Jan 18 11:00:01 2025 GMT Subject: CN=AF9725C9AAE9BF36FF36E8308478F46CD33AEA57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:1c:bd:32:7d:47:5d:ec:7a:65:d6:83:19: b0:83:0c:62:da:31:97:91:5d:66:0b:8b:5a:07:a1: 10:17:e3:ca:9c:7c:b9:b6:b3:0a:89:db:ce:19:2e: 34:2f:7a:65:e3:91:ae:0f:50:f3:ed:e5:52:3f:07: 0c:29:d5:85:59:21:99:23:77:01:b1:b7:64:77:f0: 2f:73:60:ec:12:b6:69:41:c7:48:76:93:e8:73:9e: f9:ee:5f:61:0c:de:d8:66:7d:3e:e1:65:f9:0f:62: 06:41:7f:e1:f7:91:0e:ef:ec:01:0f:6f:7e:cb:2e: bf:61:b7:ae:2a:69:04:86:4e:67:ee:9b:03:7a:9e: dc:ea:cb:c8:13:49:b7:b5:5d:01:32:23:ad:28:f3: 10:60:ba:d0:f2:e7:b2:aa:20:f4:7a:6b:80:8b:9d: 63:8d:97:04:5d:2e:62:c6:61:27:a9:cd:02:c6:95: 03:e6:63:32:e9:7d:5d:8d:d8:7e:3a:91:68:44:cf: a9:64:34:f3:59:b8:e4:c1:3f:08:37:cd:dc:0b:f0: 30:67:4f:82:38:d2:4f:9b:f4:31:0d:5e:45:79:54: ef:d8:27:c8:95:82:dd:92:38:9f:8a:04:dc:89:2a: b6:7f:b8:db:44:81:4b:3a:ae:7f:49:5c:23:5e:5e: ca:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:97:25:C9:AA:E9:BF:36:FF:36:E8:30:84:78:F4:6C:D3:3A:EA:57 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:15:04:1a:93:c6:62:4f:a3:95:60:40:57:77:a9:99:4f:1b: 56:c3:93:ad:31:74:56:d5:fe:b3:18:d4:dc:24:56:34:62:01: 47:ca:a1:b1:41:4b:b3:cd:8e:90:84:9f:d8:de:0c:70:7f:53: e2:6f:2f:a9:fa:b2:53:33:b7:d7:57:40:fb:3b:d2:f5:1d:a0: 88:05:e0:79:f6:11:ae:68:bb:09:96:c9:bb:b6:ad:6d:90:1e: b0:8f:eb:51:61:ab:84:c9:97:01:7b:c6:52:77:36:f7:de:7d: 61:60:2d:fc:47:78:8e:f0:cf:b7:c6:29:2d:75:ba:21:b6:c6: 31:96:fb:6a:a8:2f:7e:72:cf:bd:54:4c:24:f7:fd:a0:99:5f: 13:5e:09:ae:6b:b6:29:d7:bb:4f:98:c6:04:de:9c:dc:84:c9: 9f:97:fb:db:2a:e3:2e:44:69:aa:21:95:53:11:a4:a1:1e:24: ce:76:65:9c:12:74:db:c0:6a:d8:ee:c4:02:c7:59:14:67:32: e7:39:db:26:90:26:f4:bb:32:0d:3b:b7:a1:59:39:3c:5c:19: 69:38:4a:d7:12:a1:90:ca:5c:6b:00:eb:f0:a4:77:2a:d8:0a: 80:84:2e:19:a7:28:d5:5d:86:bd:23:5e:d0:e6:da:ec:87:98: 1f:1f:ce:b2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSYP7e9whTx6+4yd/wwzxwER9wt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDAxMjAxMDU1MDFaFw0yNTAxMTgxMTAwMDFaMDMxMTAvBgNV BAMTKEFGOTcyNUM5QUFFOUJGMzZGRjM2RTgzMDg0NzhGNDZDRDMzQUVBNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiLRy9Mn1HXex6ZdaDGbCDDGLa MZeRXWYLi1oHoRAX48qcfLm2swqJ284ZLjQvemXjka4PUPPt5VI/Bwwp1YVZIZkj dwGxt2R38C9zYOwStmlBx0h2k+hznvnuX2EM3thmfT7hZfkPYgZBf+H3kQ7v7AEP b37LLr9ht64qaQSGTmfumwN6ntzqy8gTSbe1XQEyI60o8xBgutDy57KqIPR6a4CL nWONlwRdLmLGYSepzQLGlQPmYzLpfV2N2H46kWhEz6lkNPNZuOTBPwg3zdwL8DBn T4I40k+b9DENXkV5VO/YJ8iVgt2SOJ+KBNyJKrZ/uNtEgUs6rn9JXCNeXso9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUr5clyarpvzb/NugwhHj0bNM66lcwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEysAwDQYJKoZI hvcNAQELBQADggEBAC4VBBqTxmJPo5VgQFd3qZlPG1bDk60xdFbV/rMY1NwkVjRi AUfKobFBS7PNjpCEn9jeDHB/U+JvL6n6slMzt9dXQPs70vUdoIgF4Hn2Ea5ouwmW ybu2rW2QHrCP61Fhq4TJlwF7xlJ3NvfefWFgLfxHeI7wz7fGKS11uiG2xjGW+2qo L35yz71UTCT3/aCZXxNeCa5rtinXu0+YxgTenNyEyZ+X+9sq4y5EaaohlVMRpKEe JM52ZZwSdNvAatjuxALHWRRnMuc52yaQJvS7Mg07t6FZOTxcGWk4StcSoZDKXGsA 6/CkdyrYCoCELhmnKNVdhr0jXtDm2uyHmB8fzrI= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org