$ rpki-client -vvf repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa File: 323430343a3530303a3a2f33322d3438203d3e203234323031.roa (raw, json) Hash identifier: CEe/lUrIe70tQDzArdXzSYO1jBJnoa7c6elbu7S511E= Subject key identifier: 69:6A:DF:5A:63:9A:F9:62:F4:AE:C9:87:3C:14:AC:43:99:6F:F4:4D Certificate issuer: /CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Certificate serial: 72029701C6851E9C49F2BBF93D1A263351C6DB48 Authority key identifier: 8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa Signing time: Tue 23 Jul 2024 05:00:25 +0000 ROA not before: Tue 23 Jul 2024 04:55:25 +0000 ROA not after: Tue 22 Jul 2025 05:00:25 +0000 asID: 24201 IP address blocks: 2404:500::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:02:97:01:c6:85:1e:9c:49:f2:bb:f9:3d:1a:26:33:51:c6:db:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Validity Not Before: Jul 23 04:55:25 2024 GMT Not After : Jul 22 05:00:25 2025 GMT Subject: CN=696ADF5A639AF962F4AEC9873C14AC43996FF44D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:27:88:2b:89:bb:10:a8:f9:9f:94:a2:3a: c8:0c:9e:3e:89:ae:38:c1:42:69:fa:e7:e3:12:b0: 1b:96:e8:dd:ed:80:4e:0b:25:9c:b9:99:d5:67:d9: 0d:1c:8b:5b:5f:67:26:8c:bc:8b:8d:44:eb:89:93: 4f:60:03:76:11:2c:55:6e:8a:a9:68:1b:35:d7:e9: 96:90:18:ce:cd:19:85:3b:b7:53:d1:99:34:1f:45: fd:d8:7a:bb:f8:1a:94:df:b5:fa:6b:ea:3f:c0:9c: 65:41:5f:60:57:f4:f4:b1:30:a9:67:97:d2:84:02: f4:d0:75:37:f4:d1:d0:2c:a2:2b:dd:f3:5a:49:99: ce:37:70:77:01:43:7f:4e:4f:46:0d:76:11:a0:72: 6d:f1:88:12:36:54:e9:6b:d1:b5:12:61:10:c5:b5: 07:15:63:46:53:79:3d:90:3c:73:1a:e5:61:2e:c4: 74:bf:76:89:aa:b5:c6:30:37:01:2f:36:00:1f:43: e1:76:8c:02:31:66:b4:a8:d1:7d:d1:e5:1d:74:22: 77:4d:6e:e8:89:1c:53:e6:b0:84:b4:4f:6a:2b:1b: 14:49:b4:4e:c1:3f:34:af:18:41:36:4b:f0:19:67: 7f:f0:49:8e:5e:8d:63:c3:e3:fc:5c:f1:09:06:52: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6A:DF:5A:63:9A:F9:62:F4:AE:C9:87:3C:14:AC:43:99:6F:F4:4D X509v3 Authority Key Identifier: keyid:8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:500::/32 Signature Algorithm: sha256WithRSAEncryption 50:f3:50:9e:25:05:34:ec:bd:38:c8:69:48:0e:8e:d5:72:97: 7b:4b:21:5c:00:70:63:aa:7e:1e:8f:6c:e0:f1:4a:4e:78:e5: 4d:e6:a6:0e:fd:f4:90:db:87:26:65:79:32:eb:14:24:f1:4e: 99:6a:15:61:5f:57:c1:5b:5c:5f:86:6f:dc:b7:b3:42:87:dd: 12:50:8d:ce:22:ee:6b:14:d2:b0:5e:05:de:b7:03:ac:38:3a: 11:45:85:17:a4:c5:55:58:83:87:a9:22:f7:24:7c:9b:93:d5: 9e:34:6f:46:2a:15:e3:d6:be:61:70:c2:04:d5:67:70:63:a3: f0:86:fa:be:40:c4:a5:9c:a3:10:de:2f:45:0a:ac:35:2a:ed: b0:b1:08:69:a6:03:1a:cb:9e:a8:ac:ba:01:73:e0:fc:9b:7b: cf:ae:01:4a:a7:d7:c8:30:2f:93:00:e0:4e:f4:5d:8e:1f:df: b6:27:09:ad:64:32:41:2b:d1:ec:b4:2a:9c:3e:de:c2:94:50: 78:25:37:9f:16:ef:4d:3a:a4:ca:f1:7e:5f:5f:f4:dc:cf:f6: 6b:89:a3:25:4b:fb:a8:73:80:6b:9e:9f:ae:fe:6d:90:00:6a: ba:8f:53:53:4a:0e:58:22:20:12:6e:6d:c0:93:de:75:ce:93: 97:2a:fc:27 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUcgKXAcaFHpxJ8rv5PRomM1HG20gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1 Q0Y0OEY5RjAeFw0yNDA3MjMwNDU1MjVaFw0yNTA3MjIwNTAwMjVaMDMxMTAvBgNV BAMTKDY5NkFERjVBNjM5QUY5NjJGNEFFQzk4NzNDMTRBQzQzOTk2RkY0NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/TCeIK4m7EKj5n5SiOsgMnj6J rjjBQmn65+MSsBuW6N3tgE4LJZy5mdVn2Q0ci1tfZyaMvIuNROuJk09gA3YRLFVu iqloGzXX6ZaQGM7NGYU7t1PRmTQfRf3Yerv4GpTftfpr6j/AnGVBX2BX9PSxMKln l9KEAvTQdTf00dAsoivd81pJmc43cHcBQ39OT0YNdhGgcm3xiBI2VOlr0bUSYRDF tQcVY0ZTeT2QPHMa5WEuxHS/domqtcYwNwEvNgAfQ+F2jAIxZrSo0X3R5R10IndN buiJHFPmsIS0T2orGxRJtE7BPzSvGEE2S/AZZ3/wSY5ejWPD4/xc8QkGUmEbAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUaWrfWmOa+WL0rsmHPBSsQ5lv9E0wHwYDVR0j BBgwFoAUig92Wb5skWcCmU8bZTymM1z0j58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGE5MjljNi0xZTI1LTQ5NGEtYjBmOS01NWZjNGZjOTRmYmMvMC84QTBGNzY1OUJF NkM5MTY3MDI5OTRGMUI2NTNDQTYzMzVDRjQ4RjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1Q0Y0 OEY5Ri5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjBhOTI5YzYtMWUyNS00OTRhLWIw ZjktNTVmYzRmYzk0ZmJjLzAvMzIzNDMwMzQzYTM1MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMyMzQzMjMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBAUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ81CeJQU07L04yGlIDo7Vcpd7SyFcAHBjqn4ej2zg8UpOeOVN5qYO /fSQ24cmZXky6xQk8U6ZahVhX1fBW1xfhm/ct7NCh90SUI3OIu5rFNKwXgXetwOs ODoRRYUXpMVVWIOHqSL3JHybk9WeNG9GKhXj1r5hcMIE1WdwY6Pwhvq+QMSlnKMQ 3i9FCqw1Ku2wsQhppgMay56orLoBc+D8m3vPrgFKp9fIMC+TAOBO9F2OH9+2Jwmt ZDJBK9HstCqcPt7ClFB4JTefFu9NOqTK8X5fX/Tcz/ZriaMlS/uoc4Brnp+u/m2Q AGq6j1NTSg5YIiASbm3Ak951zpOXKvwn -----END CERTIFICATE-----Generated at Sat Nov 23 17:31:42 2024 by rpki-client on console-fra.rpki-client.org