$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: uZbhPmuZtG5Md74mhofu8RolET7EoiAnsaXNVE7s4XM= Subject key identifier: F6:F8:2A:07:42:7B:69:58:7A:EB:01:81:A7:06:46:F8:1B:C3:2C:AF Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 56DD6E4559277D28082B6C6B330133FF82D174EB Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa Signing time: Fri 11 Oct 2024 03:53:18 +0000 ROA not before: Fri 11 Oct 2024 03:48:18 +0000 ROA not after: Fri 10 Oct 2025 03:53:18 +0000 asID: 139417 IP address blocks: 2404:cac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:dd:6e:45:59:27:7d:28:08:2b:6c:6b:33:01:33:ff:82:d1:74:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Oct 11 03:48:18 2024 GMT Not After : Oct 10 03:53:18 2025 GMT Subject: CN=F6F82A07427B69587AEB0181A70646F81BC32CAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:6f:53:e8:da:ab:b6:c6:5f:7b:f0:f3:8a: 08:19:f1:a8:a9:96:c0:e7:52:2b:48:fc:65:64:57: 91:f7:35:7b:f7:fa:26:d4:a1:ff:cb:e8:25:15:0d: 9d:a7:93:6e:77:90:b4:fb:4c:82:a3:ff:8e:83:c0: 63:e8:dc:18:7e:52:09:3d:68:9f:8b:5e:56:c2:54: 17:8c:12:67:4c:fa:94:d2:5b:40:c6:31:99:cb:6f: 34:7a:b4:bf:5a:50:a0:6a:02:5e:53:f9:08:d2:3c: 21:d4:c9:c2:f2:bc:c3:90:c9:84:66:4d:8a:54:aa: 32:d2:e0:97:29:21:14:ff:0d:b9:8f:78:9b:e5:4e: ff:e9:1e:a4:a6:03:41:7d:1f:60:cc:db:24:ab:97: 59:fb:95:e3:30:a7:9c:bf:14:06:8c:1c:34:e9:7e: 95:45:93:88:b4:6b:56:35:19:34:be:64:aa:d1:6b: af:ba:50:00:bb:a3:7d:9c:6a:b1:7c:b1:4a:68:ed: 44:8b:cc:4d:53:80:da:cd:43:5b:b7:9b:00:0c:47: f9:b2:69:12:ba:73:0f:ee:12:f3:c1:d1:4a:13:26: 61:e3:21:ed:7d:9d:ad:1e:36:f6:ad:21:0c:5e:e1: 73:76:70:5b:a1:a8:29:f5:ea:ed:c0:7f:ee:6d:82: ea:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F8:2A:07:42:7B:69:58:7A:EB:01:81:A7:06:46:F8:1B:C3:2C:AF X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0::/48 Signature Algorithm: sha256WithRSAEncryption 22:2e:28:70:e2:40:99:8a:3f:d1:d8:c5:07:e0:fc:af:bb:06: 82:56:3f:f6:5b:fb:7d:d4:71:be:18:95:74:e0:b0:b3:f4:6e: e6:98:23:86:8b:b9:46:63:07:49:49:d9:14:74:4d:33:af:45: 0b:ca:dd:a3:36:2d:ff:7a:3a:9f:6f:88:8b:72:0a:17:4f:86: ff:4d:50:d4:ea:67:a7:73:08:a0:98:c0:b0:88:34:0c:f3:f8: d7:1a:2e:2e:79:74:53:f2:82:cb:aa:95:80:9c:ef:b8:42:63: c4:a5:46:de:c6:a8:73:b2:5b:08:9c:27:29:11:60:98:74:a8: 54:e7:95:f7:67:c5:bd:7d:7f:be:e3:79:30:0b:ea:94:df:9d: 75:c9:f8:79:d0:6d:25:cf:d6:ed:2d:83:f9:02:b8:fc:c3:4b: fe:57:a2:57:0b:f8:81:19:69:3a:94:e0:e4:b7:2e:ed:95:60: 8e:31:23:8c:49:30:c8:87:a8:9f:a2:f9:a0:38:08:be:55:13: 1d:8a:84:4e:b3:0b:20:ed:db:89:85:c2:0f:a4:d7:78:af:60: 60:f8:d1:27:4a:6d:da:51:ff:6c:f8:0d:09:d4:89:61:ca:ef: 29:ba:a9:17:7c:a3:f3:74:0b:8f:49:42:1d:33:83:6b:75:09: 93:09:db:bc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUVt1uRVknfSgIK2xrMwEz/4LRdOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDEwMTEwMzQ4MThaFw0yNTEwMTAwMzUzMThaMDMxMTAvBgNV BAMTKEY2RjgyQTA3NDI3QjY5NTg3QUVCMDE4MUE3MDY0NkY4MUJDMzJDQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCySG9T6NqrtsZfe/DziggZ8aip lsDnUitI/GVkV5H3NXv3+ibUof/L6CUVDZ2nk253kLT7TIKj/46DwGPo3Bh+Ugk9 aJ+LXlbCVBeMEmdM+pTSW0DGMZnLbzR6tL9aUKBqAl5T+QjSPCHUycLyvMOQyYRm TYpUqjLS4JcpIRT/DbmPeJvlTv/pHqSmA0F9H2DM2ySrl1n7leMwp5y/FAaMHDTp fpVFk4i0a1Y1GTS+ZKrRa6+6UAC7o32carF8sUpo7USLzE1TgNrNQ1u3mwAMR/my aRK6cw/uEvPB0UoTJmHjIe19na0eNvatIQxe4XN2cFuhqCn16u3Af+5tguqtAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU9vgqB0J7aVh66wGBpwZG+BvDLK8wHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzOTM0MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEysAAADANBgkq hkiG9w0BAQsFAAOCAQEAIi4ocOJAmYo/0djFB+D8r7sGglY/9lv7fdRxvhiVdOCw s/Ru5pgjhou5RmMHSUnZFHRNM69FC8rdozYt/3o6n2+Ii3IKF0+G/01Q1Opnp3MI oJjAsIg0DPP41xouLnl0U/KCy6qVgJzvuEJjxKVG3saoc7JbCJwnKRFgmHSoVOeV 92fFvX1/vuN5MAvqlN+ddcn4edBtJc/W7S2D+QK4/MNL/leiVwv4gRlpOpTg5Lcu 7ZVgjjEjjEkwyIeon6L5oDgIvlUTHYqETrMLIO3biYXCD6TXeK9gYPjRJ0pt2lH/ bPgNCdSJYcrvKbqpF3yj83QLj0lCHTODa3UJkwnbvA== -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org