$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3730303a3a2f34302d3438203d3e203234353231.roa File: 323430333a626130303a3730303a3a2f34302d3438203d3e203234353231.roa (raw, json) Hash identifier: oediRSUfrbiKHZ+4lfJc75ZOQTevxDBy4CNqy2qW3Ec= Subject key identifier: F5:BE:45:15:5A:58:E4:4B:11:0C:13:A2:C2:C8:33:2E:AC:1C:B7:6B Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 643918EB4C641C5A0ED94E112FAE38F26F459C51 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3730303a3a2f34302d3438203d3e203234353231.roa Signing time: Mon 04 Nov 2024 03:45:33 +0000 ROA not before: Mon 04 Nov 2024 03:40:33 +0000 ROA not after: Mon 03 Nov 2025 03:45:33 +0000 asID: 24521 IP address blocks: 2403:ba00:700::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:39:18:eb:4c:64:1c:5a:0e:d9:4e:11:2f:ae:38:f2:6f:45:9c:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Nov 4 03:40:33 2024 GMT Not After : Nov 3 03:45:33 2025 GMT Subject: CN=F5BE45155A58E44B110C13A2C2C8332EAC1CB76B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cc:3e:6f:12:39:e9:39:58:26:e4:bd:23:15: 43:de:34:66:da:55:fe:df:b3:36:ed:19:a0:1b:df: b4:39:7f:a5:5c:93:09:a9:8a:5c:85:0f:06:5e:d9: 2e:b4:72:07:92:96:5b:46:41:1c:8a:2b:a1:15:41: cc:72:57:54:fc:a9:f3:f9:b7:5b:3c:1e:fa:12:23: 33:91:d7:31:e9:58:97:a5:3c:30:23:13:f8:32:b0: 79:9a:fa:f6:3e:be:6e:3d:14:19:75:7a:d9:44:40: d4:d6:26:b2:5a:0a:08:31:dd:9c:06:56:95:66:5c: 92:94:a0:c5:fa:74:74:f8:90:7d:73:90:8e:c3:5d: 65:83:41:ba:33:01:72:01:31:23:1f:00:bb:47:00: 85:aa:c7:eb:c1:e8:93:35:5e:52:d5:7b:05:36:8f: d6:81:13:8f:cf:84:60:13:40:c5:78:38:0f:80:e0: 40:e3:62:34:07:0d:5a:b4:b8:33:0f:05:e9:12:d0: af:f2:35:ec:e6:e7:4e:37:60:8e:5c:be:46:df:e4: 86:32:e3:19:3c:5b:e7:92:9a:76:f5:9b:12:91:81: ae:16:b7:e1:8c:dd:a3:e4:f8:fb:78:06:1b:53:0c: 65:2d:51:d6:e5:e2:02:df:c6:6d:f8:e3:cf:f6:b0: 0a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BE:45:15:5A:58:E4:4B:11:0C:13:A2:C2:C8:33:2E:AC:1C:B7:6B X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3730303a3a2f34302d3438203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ba00:700::/40 Signature Algorithm: sha256WithRSAEncryption 44:be:d5:99:27:1e:40:86:cb:93:6b:17:1f:94:3a:96:89:0f: 4b:7a:1d:90:f5:49:43:a6:0a:af:e2:b1:05:84:ec:bd:2c:97: dd:b6:10:c8:27:2c:c7:7d:e7:e4:ff:fc:c4:93:0f:97:59:35: 7c:b0:ae:f6:62:78:f5:5e:e9:27:e5:ed:10:ce:2d:6a:fc:21: 40:57:94:a7:ea:d6:52:f1:b3:0b:15:42:89:62:b5:2e:db:4f: 52:d6:15:51:c7:0b:ab:78:96:e2:40:8b:34:42:14:44:0f:94: cd:87:8c:d6:22:30:57:e6:30:f1:1c:ac:d5:0a:f2:2d:cc:05: 6f:33:d0:29:5d:31:c3:d3:bb:45:52:80:74:49:82:3d:40:10: 65:7a:30:56:a5:d0:e2:70:d4:86:88:26:00:5a:28:c0:42:33: a3:f2:02:cd:7f:43:82:6a:1a:35:dd:bd:fa:fa:f2:a3:7f:97: d9:85:ab:97:bb:c4:72:93:1b:01:1f:ec:0a:1f:c5:60:c5:82: 0b:7c:61:65:8a:47:3c:6b:36:4a:82:75:1d:aa:86:dd:4e:a7: 96:66:63:7e:31:29:83:7c:fc:3a:a8:18:29:41:9b:84:d3:21: 7d:93:f6:54:b7:1f:e4:9a:bb:f4:29:70:c0:02:51:db:aa:c0: 18:d3:45:7f -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUZDkY60xkHFoO2U4RL6448m9FnFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDExMDQwMzQwMzNaFw0yNTExMDMwMzQ1MzNaMDMxMTAvBgNV BAMTKEY1QkU0NTE1NUE1OEU0NEIxMTBDMTNBMkMyQzgzMzJFQUMxQ0I3NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/zD5vEjnpOVgm5L0jFUPeNGba Vf7fszbtGaAb37Q5f6VckwmpilyFDwZe2S60cgeSlltGQRyKK6EVQcxyV1T8qfP5 t1s8HvoSIzOR1zHpWJelPDAjE/gysHma+vY+vm49FBl1etlEQNTWJrJaCggx3ZwG VpVmXJKUoMX6dHT4kH1zkI7DXWWDQbozAXIBMSMfALtHAIWqx+vB6JM1XlLVewU2 j9aBE4/PhGATQMV4OA+A4EDjYjQHDVq0uDMPBekS0K/yNezm5043YI5cvkbf5IYy 4xk8W+eSmnb1mxKRga4Wt+GM3aPk+Pt4BhtTDGUtUdbl4gLfxm3448/2sApvAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU9b5FFVpY5EsRDBOiwsgzLqwct2swHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzQzMDMzM2E2MjYxMzAzMDNhMzczMDMwM2Ez YTJmMzQzMDJkMzQzODIwM2QzZTIwMzIzNDM1MzIzMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQDugAH MA0GCSqGSIb3DQEBCwUAA4IBAQBEvtWZJx5AhsuTaxcflDqWiQ9Leh2Q9UlDpgqv 4rEFhOy9LJfdthDIJyzHfefk//zEkw+XWTV8sK72Ynj1Xukn5e0Qzi1q/CFAV5Sn 6tZS8bMLFUKJYrUu209S1hVRxwureJbiQIs0QhRED5TNh4zWIjBX5jDxHKzVCvIt zAVvM9ApXTHD07tFUoB0SYI9QBBlejBWpdDicNSGiCYAWijAQjOj8gLNf0OCaho1 3b36+vKjf5fZhauXu8RykxsBH+wKH8VgxYILfGFlikc8azZKgnUdqobdTqeWZmN+ MSmDfPw6qBgpQZuE0yF9k/ZUtx/kmrv0KXDAAlHbqsAY00V/ -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:25 2024 by rpki-client on console-ams.rpki-client.org