$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa File: 323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa (raw, json) Hash identifier: Cpr5xYTkNb6GEJUfrbLB6Ih2u86v1ZHFmVVPR6riK70= Subject key identifier: C7:76:9B:B6:AB:9F:D8:37:A4:D4:DD:A3:E6:99:7A:59:A3:A2:E7:A8 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 24859C8376054BFE23A67A2501212D1313F196A6 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa Signing time: Mon 04 Nov 2024 03:45:15 +0000 ROA not before: Mon 04 Nov 2024 03:40:15 +0000 ROA not after: Mon 03 Nov 2025 03:45:15 +0000 asID: 24521 IP address blocks: 2403:ba00:600::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:85:9c:83:76:05:4b:fe:23:a6:7a:25:01:21:2d:13:13:f1:96:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Nov 4 03:40:15 2024 GMT Not After : Nov 3 03:45:15 2025 GMT Subject: CN=C7769BB6AB9FD837A4D4DDA3E6997A59A3A2E7A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:19:bb:9b:a0:94:15:f4:fc:21:47:0c:fd: 32:11:3b:21:c8:bf:13:04:1c:02:32:f0:c1:0c:29: 91:a3:f1:bd:70:f6:ce:10:e3:46:9a:9b:15:81:9a: 18:9d:bc:10:d7:ac:6b:50:27:ac:ac:be:9e:db:9b: 0f:a3:87:a3:82:14:ec:95:87:7a:7c:74:27:6c:36: 2c:dc:97:d1:43:9d:36:61:69:fc:d8:4d:95:c4:a2: 30:ba:40:6e:07:84:0a:87:80:2b:d6:53:06:fc:a1: 76:1a:c2:85:f1:55:91:2b:35:45:90:b5:32:df:ee: 46:95:b0:07:67:33:35:03:16:9d:7a:40:0f:47:ea: 55:51:cd:ea:a8:13:bb:cd:4d:8c:0e:0c:54:de:c8: b7:07:3b:ec:59:e2:eb:63:43:f7:3a:19:0f:8c:db: 5c:80:43:51:c8:a7:48:87:e6:03:d6:97:81:6a:7f: ee:f5:65:50:f4:22:7a:81:92:85:6d:c8:60:6e:8b: dd:97:f0:25:a1:a3:0f:6e:86:6d:86:47:d5:a3:29: 09:fd:9d:a0:55:a3:c6:08:06:e1:1d:58:bb:9b:6e: c7:3d:2a:f5:dc:d7:3d:58:d9:04:24:32:0b:bf:91: ec:ef:b8:56:13:87:db:43:58:26:dd:33:31:7a:ba: cd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:76:9B:B6:AB:9F:D8:37:A4:D4:DD:A3:E6:99:7A:59:A3:A2:E7:A8 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3630303a3a2f34302d3438203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ba00:600::/40 Signature Algorithm: sha256WithRSAEncryption 46:a9:f5:f3:09:7d:e4:78:6d:6a:c4:9b:06:c3:46:f1:31:9a: c9:2f:5b:34:38:4e:46:5f:c2:4a:30:fd:7b:fa:4c:ec:04:9e: 3f:df:c4:73:73:2e:1f:f5:df:c8:9c:20:d0:7b:2d:0b:84:67: 28:2c:ce:3e:b7:fc:99:06:8f:25:b3:c7:a4:73:9f:0d:44:83: 36:0f:1d:cc:46:f0:0f:52:83:94:f6:86:74:68:0d:8a:25:63: da:12:7b:dd:c6:7d:44:aa:75:cf:73:84:21:bd:1a:18:67:96: 4c:63:95:02:5e:a8:16:1c:83:18:41:2e:00:fd:76:ee:70:bc: a5:a2:35:76:6e:55:5d:1a:64:80:28:75:1d:0e:01:63:71:50: 3f:18:78:0a:fa:96:89:c8:e7:f0:23:28:70:6c:34:7b:36:c2: e1:1c:f1:72:5e:5d:1c:1d:5e:dd:8a:2c:e8:ab:6a:55:7d:08: 5b:e7:66:06:ae:fd:e1:6c:1d:37:17:c1:9e:d1:eb:ee:1f:1a: 09:3b:df:87:09:a4:2a:a9:73:5d:04:7d:85:91:1d:4d:f8:3c: 90:6f:af:50:e9:fc:77:ea:9a:37:f7:81:8c:1e:fb:0f:11:47: 75:23:7c:5e:e1:ef:d8:44:e9:96:9d:84:76:cd:a8:81:62:f8: 87:b4:59:77 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUJIWcg3YFS/4jpnolASEtExPxlqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDExMDQwMzQwMTVaFw0yNTExMDMwMzQ1MTVaMDMxMTAvBgNV BAMTKEM3NzY5QkI2QUI5RkQ4MzdBNEQ0RERBM0U2OTk3QTU5QTNBMkU3QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DRm7m6CUFfT8IUcM/TIROyHI vxMEHAIy8MEMKZGj8b1w9s4Q40aamxWBmhidvBDXrGtQJ6ysvp7bmw+jh6OCFOyV h3p8dCdsNizcl9FDnTZhafzYTZXEojC6QG4HhAqHgCvWUwb8oXYawoXxVZErNUWQ tTLf7kaVsAdnMzUDFp16QA9H6lVRzeqoE7vNTYwODFTeyLcHO+xZ4utjQ/c6GQ+M 21yAQ1HIp0iH5gPWl4Fqf+71ZVD0InqBkoVtyGBui92X8CWhow9uhm2GR9WjKQn9 naBVo8YIBuEdWLubbsc9KvXc1z1Y2QQkMgu/kezvuFYTh9tDWCbdMzF6us2lAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUx3abtquf2Dek1N2j5pl6WaOi56gwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzQzMDMzM2E2MjYxMzAzMDNhMzYzMDMwM2Ez YTJmMzQzMDJkMzQzODIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQDugAG MA0GCSqGSIb3DQEBCwUAA4IBAQBGqfXzCX3keG1qxJsGw0bxMZrJL1s0OE5GX8JK MP17+kzsBJ4/38Rzcy4f9d/InCDQey0LhGcoLM4+t/yZBo8ls8ekc58NRIM2Dx3M RvAPUoOU9oZ0aA2KJWPaEnvdxn1EqnXPc4QhvRoYZ5ZMY5UCXqgWHIMYQS4A/Xbu cLylojV2blVdGmSAKHUdDgFjcVA/GHgK+paJyOfwIyhwbDR7NsLhHPFyXl0cHV7d iizoq2pVfQhb52YGrv3hbB03F8Ge0evuHxoJO9+HCaQqqXNdBH2FkR1N+DyQb69Q 6fx36po394GMHvsPEUd1I3xe4e/YROmWnYR2zaiBYviHtFl3 -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:25 2024 by rpki-client on console-ams.rpki-client.org