$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa File: 323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa (raw, json) Hash identifier: KSjkQ8QwpppJxiJX2WOeGB6CdtpxTCvIwn/6JwQhtW0= Subject key identifier: EC:F0:46:14:71:9E:9F:D8:F8:20:89:03:D1:81:A7:BE:0D:28:51:09 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 30BA3FB89068FFEB669584C083A6A829A767AE85 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa Signing time: Wed 09 Oct 2024 10:07:53 +0000 ROA not before: Wed 09 Oct 2024 10:02:53 +0000 ROA not after: Wed 08 Oct 2025 10:07:53 +0000 asID: 139417 IP address blocks: 2404:cac0:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ba:3f:b8:90:68:ff:eb:66:95:84:c0:83:a6:a8:29:a7:67:ae:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Oct 9 10:02:53 2024 GMT Not After : Oct 8 10:07:53 2025 GMT Subject: CN=ECF04614719E9FD8F8208903D181A7BE0D285109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:20:0b:f9:e6:8b:fc:17:ed:b3:3d:04:37: 9a:a1:c8:65:0e:46:2e:09:24:ec:a9:a1:7e:a0:18: aa:51:0e:f7:1e:d4:e5:99:7c:a3:6e:3a:62:aa:87: df:68:3b:86:e2:ab:a2:7f:d0:05:93:08:ea:c6:0e: e5:5f:03:05:e0:06:1a:14:31:49:b5:3c:f3:8b:5b: 27:87:63:48:63:c6:ab:b0:14:b8:07:2e:ea:c3:93: f1:b1:44:6e:3c:fb:c9:0e:32:43:55:5d:10:09:b8: ed:68:1c:32:a8:da:58:af:99:f7:9c:06:29:97:05: da:e7:eb:e7:09:44:61:05:a2:ba:d6:06:b5:6f:52: ba:1a:a0:e8:69:8d:73:93:5f:98:2b:21:d1:42:ab: bd:60:92:7e:8d:ca:13:ee:76:8c:2d:75:2f:a7:e0: 1b:d1:b1:d1:47:cd:90:af:a1:73:f5:0e:f7:59:48: f6:59:a3:9d:18:69:82:e3:73:61:77:b9:bc:2d:d3: db:52:40:5e:45:5e:41:0d:07:86:42:d0:96:29:6a: aa:37:30:92:50:c9:e2:f2:42:9d:ca:6d:d2:64:d9: 17:60:c7:de:53:7d:a6:10:20:c4:20:64:c5:8f:5f: 3c:eb:7e:13:66:26:bc:0d:7a:03:7b:43:63:15:86: 89:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F0:46:14:71:9E:9F:D8:F8:20:89:03:D1:81:A7:BE:0D:28:51:09 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a666630303a3a2f34302d3430203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 8a:be:da:34:24:22:cc:d7:1b:f5:75:11:b6:80:1f:96:0b:ad: 0e:a9:2e:38:22:5a:9a:74:c4:08:fb:c7:36:74:3c:d2:42:88: d4:2d:87:9e:b3:16:f1:da:26:a6:04:2d:c8:57:de:a0:c2:9c: 64:d6:1a:df:e6:a4:ec:8b:56:eb:d5:54:09:55:d7:2f:0a:85: 69:9c:4b:42:9e:f7:4a:79:d0:d4:0b:30:23:64:85:15:75:6c: 2b:0e:eb:91:c9:68:99:b1:27:15:2e:67:f2:3d:e3:21:b9:4c: d7:a0:0b:98:86:13:6b:f8:45:6a:bd:bd:6e:20:43:f0:e7:36: 67:6f:b1:23:c6:6f:c4:a8:e3:18:b2:18:40:eb:87:51:09:c5: 15:4e:89:70:e9:04:dd:d7:37:f9:c6:ff:1c:94:a6:1a:ae:61: ee:72:da:a4:f4:ab:a4:86:89:4f:8b:ac:d4:0b:85:10:26:0d: cf:08:29:33:e2:4a:31:43:a3:28:99:95:c9:aa:89:bf:6c:d7: 43:f9:f2:d9:1c:88:90:de:dd:ba:a8:e4:41:52:22:57:51:a4: b1:85:8c:9d:fe:6e:99:80:53:fb:00:f0:99:e7:5e:0e:a8:45: 59:39:12:a9:cc:e6:d9:81:3d:95:35:ef:df:25:a3:e4:02:c1: 5e:3d:1a:ef -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUMLo/uJBo/+tmlYTAg6aoKadnroUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDEwMDkxMDAyNTNaFw0yNTEwMDgxMDA3NTNaMDMxMTAvBgNV BAMTKEVDRjA0NjE0NzE5RTlGRDhGODIwODkwM0QxODFBN0JFMEQyODUxMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6nyAL+eaL/Bftsz0EN5qhyGUO Ri4JJOypoX6gGKpRDvce1OWZfKNuOmKqh99oO4biq6J/0AWTCOrGDuVfAwXgBhoU MUm1PPOLWyeHY0hjxquwFLgHLurDk/GxRG48+8kOMkNVXRAJuO1oHDKo2livmfec BimXBdrn6+cJRGEForrWBrVvUroaoOhpjXOTX5grIdFCq71gkn6NyhPudowtdS+n 4BvRsdFHzZCvoXP1DvdZSPZZo50YaYLjc2F3ubwt09tSQF5FXkENB4ZC0JYpaqo3 MJJQyeLyQp3KbdJk2Rdgx95TfaYQIMQgZMWPXzzrfhNmJrwNegN7Q2MVhokrAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU7PBGFHGen9j4IIkD0YGnvg0oUQkwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhNjY2NjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BMrA/zANBgkqhkiG9w0BAQsFAAOCAQEAir7aNCQizNcb9XURtoAflgutDqkuOCJa mnTECPvHNnQ80kKI1C2HnrMW8dompgQtyFfeoMKcZNYa3+ak7ItW69VUCVXXLwqF aZxLQp73SnnQ1AswI2SFFXVsKw7rkclombEnFS5n8j3jIblM16ALmIYTa/hFar29 biBD8Oc2Z2+xI8ZvxKjjGLIYQOuHUQnFFU6JcOkE3dc3+cb/HJSmGq5h7nLapPSr pIaJT4us1AuFECYNzwgpM+JKMUOjKJmVyaqJv2zXQ/ny2RyIkN7duqjkQVIiV1Gk sYWMnf5umYBT+wDwmedeDqhFWTkSqczm2YE9lTXv3yWj5ALBXj0a7w== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org