$ rpki-client -vvf repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa File: 323430343a326338303a3a2f33322d3438203d3e20313334363433.roa (raw, json) Hash identifier: O56SMLcwSxt310b3umR9a0Kkyq+OmSp0Np8l8glo4O8= Subject key identifier: 3B:A2:D5:C7:B9:B7:58:CF:D6:9D:FF:F3:6C:CA:6A:70:C4:65:4F:35 Certificate issuer: /CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Certificate serial: 5AB80A7BDC32B32C1F119638C089287E43C3183C Authority key identifier: 3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa Signing time: Sat 24 Feb 2024 11:00:00 +0000 ROA not before: Sat 24 Feb 2024 10:55:00 +0000 ROA not after: Sat 22 Feb 2025 11:00:00 +0000 asID: 134643 IP address blocks: 2404:2c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b8:0a:7b:dc:32:b3:2c:1f:11:96:38:c0:89:28:7e:43:c3:18:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Validity Not Before: Feb 24 10:55:00 2024 GMT Not After : Feb 22 11:00:00 2025 GMT Subject: CN=3BA2D5C7B9B758CFD69DFFF36CCA6A70C4654F35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f0:ad:3e:51:f8:37:04:f1:09:1b:5f:c0:26: 78:d7:81:b7:e8:6f:d7:16:8b:7b:aa:31:a3:f3:02: e4:e3:89:7e:62:a3:6d:58:69:87:0c:11:9d:a8:61: 00:20:3c:27:f5:5c:6f:63:27:48:8c:0d:5f:12:7f: 58:1a:67:ea:5c:80:c9:48:64:80:ec:ad:bf:26:f9: ae:9c:16:f7:3c:64:46:e6:52:36:c8:e0:35:68:76: 88:e7:e6:78:49:7a:25:7a:88:d8:1a:4c:f2:ac:eb: 05:f9:d9:df:8a:f9:02:7b:75:2e:17:17:7f:c0:11: 22:69:24:10:4c:10:20:71:f1:b6:0a:f9:0d:c1:1a: f3:ad:bb:81:ef:31:d6:56:f6:4e:ee:4c:c7:c2:fb: 8c:d0:54:a3:5c:f0:d7:68:bd:59:00:9b:31:31:fb: a1:c9:6b:96:c9:33:5e:5c:d8:51:32:23:55:ad:a6: 40:be:96:a3:41:2c:e7:fc:9d:fe:9d:fd:dc:1b:66: c9:19:60:d6:3e:4b:89:6c:27:c9:a8:49:a5:ea:45: 39:e7:1e:bb:3a:12:23:26:b3:76:8e:14:3f:e1:d6: 0a:62:4d:86:1a:65:75:f4:5b:47:1c:98:18:9f:b1: 14:1e:c1:47:c5:eb:ee:c8:0e:44:62:23:d3:1c:07: 47:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A2:D5:C7:B9:B7:58:CF:D6:9D:FF:F3:6C:CA:6A:70:C4:65:4F:35 X509v3 Authority Key Identifier: keyid:3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/323430343a326338303a3a2f33322d3438203d3e20313334363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2c80::/32 Signature Algorithm: sha256WithRSAEncryption ba:cf:f3:a2:5a:04:7c:ff:77:66:82:62:97:7d:1d:e7:9a:54: 44:59:4f:02:b7:47:29:9f:0c:1e:1a:1a:22:c2:f1:33:dc:74: 57:dd:b5:82:4e:4f:3f:8e:77:4f:cb:79:31:75:69:9a:4e:5f: df:2f:a1:92:e9:8f:af:7e:bb:d1:7d:fa:14:12:8f:71:99:ba: 44:99:0e:c8:79:8a:9e:ed:03:9e:85:a7:82:05:ec:79:30:60: 81:8c:b3:1e:59:d4:fc:9d:63:7b:1f:15:dc:f0:4c:ac:da:9e: 0c:14:a0:f3:5c:f6:55:f7:52:18:d8:e8:ab:ed:56:fa:90:e2: 86:76:21:39:05:f3:8b:bf:a3:5c:4f:02:d2:44:94:64:62:bf: 5a:63:d1:71:db:68:42:25:3f:b9:70:33:9a:7d:cf:2b:ec:cd: 98:94:53:ff:62:2d:a7:51:08:cc:6c:fb:b3:d9:bf:24:4f:e0: 35:b4:1c:2a:40:c1:de:4b:67:fc:8c:23:22:df:25:fc:83:ee: 2a:f9:61:8b:eb:72:51:12:1a:13:b9:a1:cf:5e:ee:a0:ee:5e: 8e:1e:46:78:83:40:34:cf:44:24:bc:bb:1d:46:75:7a:25:46: 33:ba:4e:17:26:e4:0b:22:76:44:05:0e:72:24:68:7c:bc:b2: 06:4b:e8:e5 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWrgKe9wysywfEZY4wIkofkPDGDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUz QjAxNzcwNDAeFw0yNDAyMjQxMDU1MDBaFw0yNTAyMjIxMTAwMDBaMDMxMTAvBgNV BAMTKDNCQTJENUM3QjlCNzU4Q0ZENjlERkZGMzZDQ0E2QTcwQzQ2NTRGMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw8K0+Ufg3BPEJG1/AJnjXgbfo b9cWi3uqMaPzAuTjiX5io21YaYcMEZ2oYQAgPCf1XG9jJ0iMDV8Sf1gaZ+pcgMlI ZIDsrb8m+a6cFvc8ZEbmUjbI4DVodojn5nhJeiV6iNgaTPKs6wX52d+K+QJ7dS4X F3/AESJpJBBMECBx8bYK+Q3BGvOtu4HvMdZW9k7uTMfC+4zQVKNc8NdovVkAmzEx +6HJa5bJM15c2FEyI1WtpkC+lqNBLOf8nf6d/dwbZskZYNY+S4lsJ8moSaXqRTnn Hrs6EiMms3aOFD/h1gpiTYYaZXX0W0ccmBifsRQewUfF6+7IDkRiI9McB0fVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUO6LVx7m3WM/Wnf/zbMpqcMRlTzUwHwYDVR0j BBgwFoAUO7c0bJkbaJIjutxvgt0ZvjsBdwQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MjZlNDU2NC00OGYyLTQzYjUtODUwNS05M2I0OThlN2Q4YWIvMC8zQkI3MzQ2Qzk5 MUI2ODkyMjNCQURDNkY4MkREMTlCRTNCMDE3NzA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUzQjAx NzcwNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNmU0NTY0LTQ4ZjItNDNiNS04 NTA1LTkzYjQ5OGU3ZDhhYi8wLzMyMzQzMDM0M2EzMjYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQELIAwDQYJKoZI hvcNAQELBQADggEBALrP86JaBHz/d2aCYpd9HeeaVERZTwK3RymfDB4aGiLC8TPc dFfdtYJOTz+Od0/LeTF1aZpOX98voZLpj69+u9F9+hQSj3GZukSZDsh5ip7tA56F p4IF7HkwYIGMsx5Z1PydY3sfFdzwTKzangwUoPNc9lX3UhjY6KvtVvqQ4oZ2ITkF 84u/o1xPAtJElGRiv1pj0XHbaEIlP7lwM5p9zyvszZiUU/9iLadRCMxs+7PZvyRP 4DW0HCpAwd5LZ/yMIyLfJfyD7ir5YYvrclESGhO5oc9e7qDuXo4eRniDQDTPRCS8 ux1GdXolRjO6Thcm5AsidkQFDnIkaHy8sgZL6OU= -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:03 2024 by rpki-client on console-fra.rpki-client.org