$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: kecTFoic7r1wTr3NJ9A3b39hJiSlgzYyqWz3ChKgWu8= Subject key identifier: 8F:E7:D2:78:2D:ED:12:CC:20:01:6D:3D:38:BB:3D:71:3A:17:01:05 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 1BD273BCE9DAAB1DB58E78E1145B02B928466D2A Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa Signing time: Fri 11 Oct 2024 03:54:18 +0000 ROA not before: Fri 11 Oct 2024 03:49:18 +0000 ROA not after: Fri 10 Oct 2025 03:54:18 +0000 asID: 139417 IP address blocks: 2404:cac0:babe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d2:73:bc:e9:da:ab:1d:b5:8e:78:e1:14:5b:02:b9:28:46:6d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Oct 11 03:49:18 2024 GMT Not After : Oct 10 03:54:18 2025 GMT Subject: CN=8FE7D2782DED12CC20016D3D38BB3D713A170105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b8:f9:c6:c7:f4:83:9a:46:3a:d0:90:6e:60: 86:44:51:58:35:d2:28:3e:28:64:2f:cc:c2:c9:81: 8b:9a:f9:4f:59:ba:80:7a:d3:2e:2f:2a:95:2f:d6: 7a:00:88:35:ab:48:c7:5d:98:69:ec:3a:7b:e0:61: 56:16:3f:0f:91:12:80:d1:31:2c:2f:c7:8a:b3:2b: 64:c3:29:a4:2a:c8:c5:73:40:52:46:54:bb:ab:d1: 99:3b:9e:5b:fc:1a:4a:91:ab:7d:fd:5b:97:0e:52: 12:e9:32:71:62:47:aa:cc:a7:b9:ff:e7:cc:2c:d5: 1e:8e:56:16:74:62:60:79:ed:89:d8:27:72:4a:be: c4:68:12:9c:49:61:e7:f9:9d:f9:c4:53:15:d2:a9: 29:aa:82:23:e8:4f:a1:84:de:aa:41:a9:92:7b:d0: 04:36:91:5a:75:5f:c3:56:78:ff:d8:ba:74:18:73: 43:62:2b:06:b1:97:01:2b:aa:b2:44:a6:f1:35:29: 07:df:8d:9b:bd:5e:47:a7:b0:e9:88:a0:fe:1a:c0: 6a:8c:d7:3d:34:55:75:4f:50:cb:fd:89:5b:05:18: ae:e4:af:9b:56:19:65:14:49:bf:62:4d:c6:cb:47: 00:61:fc:83:5b:d3:d8:75:88:72:f2:85:9c:5e:d9: 3d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E7:D2:78:2D:ED:12:CC:20:01:6D:3D:38:BB:3D:71:3A:17:01:05 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a626162653a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:babe::/48 Signature Algorithm: sha256WithRSAEncryption 7c:86:f4:e2:c9:cd:a0:45:c3:38:e9:3f:e0:f8:70:78:ef:ed: 56:01:af:56:a4:00:a9:c7:35:f7:73:36:50:01:b1:9f:39:21: 73:81:e6:e9:d9:bb:8d:f1:67:b0:7d:7d:1d:87:f3:48:e6:c0: 0b:c2:d2:b6:24:0a:66:1a:51:cc:7f:b1:44:4a:c3:4d:3d:24: 9e:d9:e3:d5:21:90:86:61:23:05:c7:ef:2b:bf:a9:6d:09:30: 3a:b5:88:76:12:17:4e:44:22:0c:91:e5:95:3e:83:25:77:36: 11:84:65:13:d2:88:fb:47:0c:82:a1:86:9c:df:9f:1f:4b:85: 7d:16:96:a3:3c:b5:8d:9d:06:44:40:b4:46:91:51:c9:7d:43: b7:3a:d4:63:27:2b:da:a0:6e:fe:94:fc:30:41:0f:8a:95:1b: a4:e9:1e:65:cc:1c:21:09:13:3a:0f:c6:98:e3:9e:93:66:f1: d6:de:99:54:a6:c6:29:71:0f:75:50:80:4a:f5:9b:c2:08:f5: dd:cc:9e:81:b4:14:98:bb:76:08:91:a9:e5:43:ad:a6:e4:a0: bd:f2:51:e6:70:0c:9c:79:c9:0f:4c:d2:c2:63:2e:c2:cb:2f: cf:f0:94:c4:9e:84:e1:0e:4b:56:9b:0a:c5:43:6e:1f:ca:0a: 8e:1a:c6:02 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUG9JzvOnaqx21jnjhFFsCuShGbSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDEwMTEwMzQ5MThaFw0yNTEwMTAwMzU0MThaMDMxMTAvBgNV BAMTKDhGRTdEMjc4MkRFRDEyQ0MyMDAxNkQzRDM4QkIzRDcxM0ExNzAxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsuPnGx/SDmkY60JBuYIZEUVg1 0ig+KGQvzMLJgYua+U9ZuoB60y4vKpUv1noAiDWrSMddmGnsOnvgYVYWPw+REoDR MSwvx4qzK2TDKaQqyMVzQFJGVLur0Zk7nlv8GkqRq339W5cOUhLpMnFiR6rMp7n/ 58ws1R6OVhZ0YmB57YnYJ3JKvsRoEpxJYef5nfnEUxXSqSmqgiPoT6GE3qpBqZJ7 0AQ2kVp1X8NWeP/YunQYc0NiKwaxlwErqrJEpvE1KQffjZu9XkensOmIoP4awGqM 1z00VXVPUMv9iVsFGK7kr5tWGWUUSb9iTcbLRwBh/INb09h1iHLyhZxe2T2pAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUj+fSeC3tEswgAW09OLs9cToXAQUwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjI2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAur4wDQYJKoZIhvcNAQELBQADggEBAHyG9OLJzaBFwzjpP+D4cHjv7VYBr1ak AKnHNfdzNlABsZ85IXOB5unZu43xZ7B9fR2H80jmwAvC0rYkCmYaUcx/sURKw009 JJ7Z49UhkIZhIwXH7yu/qW0JMDq1iHYSF05EIgyR5ZU+gyV3NhGEZRPSiPtHDIKh hpzfnx9LhX0WlqM8tY2dBkRAtEaRUcl9Q7c61GMnK9qgbv6U/DBBD4qVG6TpHmXM HCEJEzoPxpjjnpNm8dbemVSmxilxD3VQgEr1m8II9d3MnoG0FJi7dgiRqeVDrabk oL3yUeZwDJx5yQ9M0sJjLsLLL8/wlMSehOEOS1abCsVDbh/KCo4axgI= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org