$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: /ipEpvxAxMNFMGkmyQkvLOJHP/gNCq+5XDe4sK/nkoY= Subject key identifier: 21:88:6E:53:EA:8F:BF:73:94:BC:FF:23:4D:31:FF:67:E1:FC:EE:4A Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 7CAE27F0F785A4CD5E95DBA880A6EBAB4AED6F2B Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa Signing time: Mon 21 Oct 2024 03:52:20 +0000 ROA not before: Mon 21 Oct 2024 03:47:20 +0000 ROA not after: Mon 20 Oct 2025 03:52:20 +0000 asID: 139417 IP address blocks: 2404:cac0:c02e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ae:27:f0:f7:85:a4:cd:5e:95:db:a8:80:a6:eb:ab:4a:ed:6f:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Oct 21 03:47:20 2024 GMT Not After : Oct 20 03:52:20 2025 GMT Subject: CN=21886E53EA8FBF7394BCFF234D31FF67E1FCEE4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:51:4f:f7:e9:46:be:8e:62:26:8d:f1:0b:c2: a6:b8:36:6e:21:18:e4:fd:95:28:f0:0b:b6:01:7e: 76:e6:54:bb:11:80:d8:38:cf:ab:5f:d1:f4:ce:a7: d7:d9:2e:df:64:23:1f:35:24:08:4c:7f:55:8d:37: 7f:8a:74:27:61:9f:75:09:a2:54:bf:06:ba:da:06: b3:4d:03:37:b6:83:23:57:e1:f9:30:98:ea:8c:84: d6:c1:6c:cc:39:45:c8:c0:d2:4c:4d:40:f8:c7:23: bb:c7:05:5d:9a:e8:22:94:f6:c9:57:33:91:7a:6f: bb:fc:b0:0d:47:9a:90:23:03:46:0a:db:bc:98:42: ae:77:e4:53:69:3a:91:a5:d1:5e:90:00:50:93:4a: 4a:6c:2c:9a:a8:a0:56:5d:3e:5d:84:77:ad:a4:f3: 9e:5d:c4:0e:73:b5:20:78:80:6d:7f:45:42:bb:5b: 0c:f3:a1:4e:1e:50:47:40:9d:9c:ab:c4:71:be:7a: a7:df:db:14:05:9f:34:aa:10:6a:28:ea:88:14:36: 78:13:cc:8e:e3:c5:03:95:54:f0:8e:3e:6c:74:c4: 2d:fa:f9:2f:f1:d6:c3:b6:a1:5c:8f:99:51:ff:79: 96:9f:e0:51:41:b9:8e:81:3e:30:f6:36:f2:42:c9: 94:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:88:6E:53:EA:8F:BF:73:94:BC:FF:23:4D:31:FF:67:E1:FC:EE:4A X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a633032653a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:c02e::/48 Signature Algorithm: sha256WithRSAEncryption 43:c9:4c:ce:5f:dc:32:77:0c:e6:78:3e:7a:f2:9d:da:b4:bd: e8:c2:57:63:c4:2b:14:d6:fc:12:bb:2f:24:dd:6b:f5:8e:cc: d9:0b:7b:6c:33:c1:14:b3:d8:35:0d:36:14:fc:4a:92:67:f1: dc:a4:c0:59:93:21:d5:29:23:7e:3b:0a:b2:7c:60:e6:fe:50: 64:92:8f:d3:8d:e9:7a:a7:25:91:56:86:f1:32:c6:9c:98:2f: ca:93:6f:20:2c:a1:17:aa:af:1f:25:d5:8b:b9:0c:83:b9:93: e8:e3:51:40:96:98:9d:50:5e:b7:0f:ec:d9:66:f7:c8:fe:8a: 18:45:15:ae:f3:82:d6:f1:16:cb:1d:50:76:a8:11:02:2c:7d: 85:6d:32:28:f8:57:94:8c:02:3c:45:66:b7:f2:45:d1:38:dc: 29:b0:6d:09:e1:5e:87:8d:af:ef:31:7e:e2:0d:df:39:de:94: d4:ca:19:53:27:08:ba:7e:32:96:14:d4:44:5a:a9:11:a1:dd: 23:bc:c9:b2:a2:c2:68:35:67:53:44:d5:6d:bb:ec:08:7f:f9: e2:8b:91:62:6d:b9:3f:5b:a1:dd:d9:9a:b0:32:9e:40:cc:21: 63:04:59:e1:b7:a8:98:0e:9f:cd:e5:13:92:be:84:30:57:be: ec:a0:86:24 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfK4n8PeFpM1elduogKbrq0rtbyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDEwMjEwMzQ3MjBaFw0yNTEwMjAwMzUyMjBaMDMxMTAvBgNV BAMTKDIxODg2RTUzRUE4RkJGNzM5NEJDRkYyMzREMzFGRjY3RTFGQ0VFNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2UU/36Ua+jmImjfELwqa4Nm4h GOT9lSjwC7YBfnbmVLsRgNg4z6tf0fTOp9fZLt9kIx81JAhMf1WNN3+KdCdhn3UJ olS/BrraBrNNAze2gyNX4fkwmOqMhNbBbMw5RcjA0kxNQPjHI7vHBV2a6CKU9slX M5F6b7v8sA1HmpAjA0YK27yYQq535FNpOpGl0V6QAFCTSkpsLJqooFZdPl2Ed62k 855dxA5ztSB4gG1/RUK7WwzzoU4eUEdAnZyrxHG+eqff2xQFnzSqEGoo6ogUNngT zI7jxQOVVPCOPmx0xC36+S/x1sO2oVyPmVH/eZaf4FFBuY6BPjD2NvJCyZSZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIYhuU+qPv3OUvP8jTTH/Z+H87kowHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjMzMDMyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAwC4wDQYJKoZIhvcNAQELBQADggEBAEPJTM5f3DJ3DOZ4Pnryndq0vejCV2PE KxTW/BK7LyTda/WOzNkLe2wzwRSz2DUNNhT8SpJn8dykwFmTIdUpI347CrJ8YOb+ UGSSj9ON6XqnJZFWhvEyxpyYL8qTbyAsoReqrx8l1Yu5DIO5k+jjUUCWmJ1QXrcP 7Nlm98j+ihhFFa7zgtbxFssdUHaoEQIsfYVtMij4V5SMAjxFZrfyRdE43CmwbQnh XoeNr+8xfuIN3znelNTKGVMnCLp+MpYU1ERaqRGh3SO8ybKiwmg1Z1NE1W277Ah/ +eKLkWJtuT9bod3ZmrAynkDMIWMEWeG3qJgOn83lE5K+hDBXvuyghiQ= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org