$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa File: 323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa (raw, json) Hash identifier: jjx89++iEUGmmvQ6lDOHqv11bIZCpW9MjZhgRFa1+QQ= Subject key identifier: 3D:65:D9:2A:03:1B:4E:6C:60:4D:E7:DE:78:D4:BB:8F:8C:F3:0D:AB Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 6791CCC8D41CFA863C702244650A9BED7766A88D Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa Signing time: Fri 15 Sep 2023 01:00:02 +0000 ROA not before: Fri 15 Sep 2023 00:55:02 +0000 ROA not after: Fri 13 Sep 2024 01:00:02 +0000 asID: 38508 IP address blocks: 2402:9800:4003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 14:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:91:cc:c8:d4:1c:fa:86:3c:70:22:44:65:0a:9b:ed:77:66:a8:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Sep 15 00:55:02 2023 GMT Not After : Sep 13 01:00:02 2024 GMT Subject: CN=3D65D92A031B4E6C604DE7DE78D4BB8F8CF30DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:70:f6:d1:53:af:d9:2d:86:fe:24:31:02: 73:35:3b:86:59:48:2d:d9:7c:98:19:72:c4:bf:a0: ea:fc:a2:2d:0f:31:2d:30:ef:23:4f:51:ff:ea:a0: 67:b7:64:71:92:2f:23:87:96:af:df:f5:59:a0:b8: 86:ee:04:1a:2c:ec:d4:c2:c8:af:17:4f:6a:0a:54: 60:7e:5e:83:54:b9:91:cb:c7:67:fc:c1:24:d7:1a: fc:9f:f7:81:cb:c7:34:d6:a0:da:d4:9c:b3:00:25: f1:6a:b4:3c:9d:00:5b:73:ed:f6:38:18:91:7f:69: f4:19:bb:1d:82:72:36:20:5b:c1:22:48:bf:4b:7b: 4c:55:fe:ce:e6:ad:63:8a:bd:af:d5:a3:cc:14:8d: 48:32:cf:9a:15:e0:6e:48:ac:b3:c6:85:4f:08:8a: 8b:39:5f:8b:25:f4:b5:2e:d3:f7:5d:f1:87:dd:0f: 64:38:ff:39:0a:9f:e8:bd:a7:5b:1d:d8:3e:21:20: af:52:f0:e1:ca:e5:d2:47:89:95:f0:e0:40:e5:b9: 09:47:2b:a9:c4:be:d0:87:33:29:8e:d2:9b:e5:29: d8:cc:5f:30:bf:7d:b4:c5:80:d7:f9:9a:d5:52:fd: 96:f8:62:16:84:46:9a:76:71:9e:cd:0e:c3:f9:d1: 4c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:65:D9:2A:03:1B:4E:6C:60:4D:E7:DE:78:D4:BB:8F:8C:F3:0D:AB X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4003::/48 Signature Algorithm: sha256WithRSAEncryption a3:0a:12:e7:c0:6d:8f:f2:d4:9e:f0:de:fa:b2:98:e3:4a:f9: 1a:a9:b2:5c:d2:cf:ee:d4:28:7f:8f:63:db:fa:55:2a:95:55: 9b:4a:05:d9:09:7c:5d:d1:79:b3:f9:53:21:8f:e2:7d:1c:17: 5d:9c:12:c8:ef:ff:27:41:e8:bf:d9:e9:05:5f:e4:8f:68:d2: 74:f5:ef:10:dc:c5:0d:83:76:85:fd:7b:48:03:f4:67:b7:15: 34:0f:46:94:6c:bb:07:26:4b:f5:a3:94:28:df:f6:65:ec:a1: 2d:b2:e9:2d:df:e1:81:03:42:25:4d:7b:ad:e8:5e:d6:68:72: 64:f5:84:ed:54:ce:c1:05:c9:88:28:21:46:65:ab:8f:fa:f4: fd:bc:0b:c8:3f:de:57:c0:3c:3c:30:9a:9c:72:a4:40:a6:e0: b9:61:98:b0:00:81:64:4e:44:7e:33:98:f8:69:96:6c:4f:88: c4:a9:d5:13:b2:b8:dd:7d:51:80:eb:d5:79:4b:e4:bd:4f:b9: 74:17:83:8a:a8:29:e4:19:aa:6a:14:ab:f1:0b:53:91:83:9f: 9d:74:15:28:af:5d:c1:c6:50:43:41:3c:89:02:e1:fd:3d:94: 24:64:37:68:a5:5a:70:ec:30:59:9a:0d:ef:3e:13:37:c2:6e: 4c:05:42:10 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ5HMyNQc+oY8cCJEZQqb7XdmqI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA5MTUwMDU1MDJaFw0yNDA5MTMwMTAwMDJaMDMxMTAvBgNV BAMTKDNENjVEOTJBMDMxQjRFNkM2MDRERTdERTc4RDRCQjhGOENGMzBEQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4HD20VOv2S2G/iQxAnM1O4ZZ SC3ZfJgZcsS/oOr8oi0PMS0w7yNPUf/qoGe3ZHGSLyOHlq/f9VmguIbuBBos7NTC yK8XT2oKVGB+XoNUuZHLx2f8wSTXGvyf94HLxzTWoNrUnLMAJfFqtDydAFtz7fY4 GJF/afQZux2CcjYgW8EiSL9Le0xV/s7mrWOKva/Vo8wUjUgyz5oV4G5IrLPGhU8I ios5X4sl9LUu0/dd8YfdD2Q4/zkKn+i9p1sd2D4hIK9S8OHK5dJHiZXw4EDluQlH K6nEvtCHMymO0pvlKdjMXzC/fbTFgNf5mtVS/Zb4YhaERpp2cZ7NDsP50UyFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPWXZKgMbTmxgTefeeNS7j4zzDaswHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEADMA0GCSqGSIb3DQEBCwUAA4IBAQCjChLnwG2P8tSe8N76spjjSvkaqbJc0s/u 1Ch/j2Pb+lUqlVWbSgXZCXxd0Xmz+VMhj+J9HBddnBLI7/8nQei/2ekFX+SPaNJ0 9e8Q3MUNg3aF/XtIA/RntxU0D0aUbLsHJkv1o5Qo3/Zl7KEtsukt3+GBA0IlTXut 6F7WaHJk9YTtVM7BBcmIKCFGZauP+vT9vAvIP95XwDw8MJqccqRApuC5YZiwAIFk TkR+M5j4aZZsT4jEqdUTsrjdfVGA69V5S+S9T7l0F4OKqCnkGapqFKvxC1ORg5+d dBUor13BxlBDQTyJAuH9PZQkZDdopVpw7DBZmg3vPhM3wm5MBUIQ -----END CERTIFICATE-----Generated at Fri May 17 12:05:51 2024 by rpki-client on console-fra.rpki-client.org