$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa File: 323430333a626130303a3a2f33322d3438203d3e203234353231.roa (raw, json) Hash identifier: uTl9aVzwoRIRN4r9ODabclqpD8VAIQOXJEwFukw6AVk= Subject key identifier: FE:6C:D7:76:59:30:A4:8B:6C:E8:AC:05:43:2A:5D:CF:5E:94:22:76 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 347C576515C984F1C2970866E811C84E1E288EE7 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa Signing time: Mon 01 Jul 2024 01:03:52 +0000 ROA not before: Mon 01 Jul 2024 00:58:52 +0000 ROA not after: Mon 30 Jun 2025 01:03:52 +0000 asID: 24521 IP address blocks: 2403:ba00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:7c:57:65:15:c9:84:f1:c2:97:08:66:e8:11:c8:4e:1e:28:8e:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jul 1 00:58:52 2024 GMT Not After : Jun 30 01:03:52 2025 GMT Subject: CN=FE6CD7765930A48B6CE8AC05432A5DCF5E942276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:6c:67:e3:15:c7:90:09:8d:22:1e:3d:88: 65:ce:58:cb:7f:80:c4:23:c2:55:ce:d4:d0:68:35: 0e:96:fb:5b:cd:8f:c6:b4:d3:2d:74:eb:5a:88:e5: 90:d5:d7:51:cc:b6:39:06:c2:ee:e6:06:cf:fd:c1: 51:e1:0a:d0:6f:b6:6c:5f:f7:90:5c:3a:63:e0:51: c4:76:a3:12:17:bc:d3:11:86:84:c0:78:29:89:52: c1:f5:3d:a9:9d:a9:5f:bd:74:4d:38:50:bb:23:1e: 74:b9:cf:17:2b:35:5a:d8:71:bf:26:65:af:1d:56: 46:29:85:e4:10:c7:e2:5f:9e:a6:10:5c:0e:39:da: e7:e7:c3:8c:1c:af:df:e6:14:48:24:40:33:80:ec: b4:92:d6:68:3e:56:5a:f9:be:7c:d6:cf:c7:36:51: 70:77:4b:0f:9f:48:cf:43:43:dd:bf:92:89:60:5e: ed:f5:7a:cf:27:16:f0:94:40:e3:dd:ed:d4:1f:84: 77:ea:18:ab:41:7a:0b:4f:fb:19:0a:58:7b:fa:13: b6:60:72:06:39:a5:27:06:85:19:ed:6e:4b:08:d2: 45:c8:cf:30:38:9d:88:2f:94:e4:26:42:5f:54:61: 40:29:95:ec:f4:86:5c:dd:34:52:28:b0:a0:be:9a: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6C:D7:76:59:30:A4:8B:6C:E8:AC:05:43:2A:5D:CF:5E:94:22:76 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ba00::/32 Signature Algorithm: sha256WithRSAEncryption 58:15:ba:b6:10:92:ac:6b:6f:b1:9a:02:5f:96:81:e9:eb:7d: 8c:58:87:c6:65:31:39:3c:2f:f5:a7:e6:79:a3:ac:3b:30:32: e9:86:2b:d0:90:e7:cc:ff:e8:d3:a8:ae:31:6c:ad:bf:e8:98: a9:bc:f1:15:4d:80:43:e2:d5:99:ea:e8:98:84:bb:a8:cf:35: ed:79:5e:0a:ee:25:b8:db:f3:fa:c0:d2:89:d4:b4:53:b6:33: a7:11:66:80:be:31:34:b6:f7:eb:33:1b:cf:aa:03:ef:6c:6a: 6d:d3:cf:4a:14:b1:33:15:9e:aa:47:98:35:c5:5b:ed:fd:1f: 4f:91:12:7b:aa:f1:62:b4:a4:4d:1d:f1:26:12:cc:ae:2c:70: ad:1c:01:5e:48:40:2b:49:8d:c6:29:17:f3:0c:18:b7:6b:d3: 5d:41:6b:c3:52:61:b9:81:fa:01:f5:21:10:da:d8:ad:98:d3: 8f:e3:f7:9d:91:81:9d:8b:93:5a:78:22:b7:38:37:6f:79:ff: d7:48:cf:32:77:66:b4:3a:b4:3a:cd:f2:0e:25:eb:7a:4e:a4: 3e:f4:75:9d:0f:45:80:b9:21:63:4b:50:52:5b:a4:42:e8:40: 60:5c:c6:e3:cf:ff:3e:18:45:70:73:1a:14:ff:31:b3:21:e9: 6d:ec:91:5b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUNHxXZRXJhPHClwhm6BHITh4ojucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNDA3MDEwMDU4NTJaFw0yNTA2MzAwMTAzNTJaMDMxMTAvBgNV BAMTKEZFNkNENzc2NTkzMEE0OEI2Q0U4QUMwNTQzMkE1RENGNUU5NDIyNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9E2xn4xXHkAmNIh49iGXOWMt/ gMQjwlXO1NBoNQ6W+1vNj8a00y1061qI5ZDV11HMtjkGwu7mBs/9wVHhCtBvtmxf 95BcOmPgUcR2oxIXvNMRhoTAeCmJUsH1PamdqV+9dE04ULsjHnS5zxcrNVrYcb8m Za8dVkYpheQQx+JfnqYQXA452ufnw4wcr9/mFEgkQDOA7LSS1mg+Vlr5vnzWz8c2 UXB3Sw+fSM9DQ92/kolgXu31es8nFvCUQOPd7dQfhHfqGKtBegtP+xkKWHv6E7Zg cgY5pScGhRntbksI0kXIzzA4nYgvlOQmQl9UYUAplez0hlzdNFIosKC+mglfAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU/mzXdlkwpIts6KwFQypdz16UInYwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzQzMDMzM2E2MjYxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7oAMA0GCSqGSIb3 DQEBCwUAA4IBAQBYFbq2EJKsa2+xmgJfloHp632MWIfGZTE5PC/1p+Z5o6w7MDLp hivQkOfM/+jTqK4xbK2/6JipvPEVTYBD4tWZ6uiYhLuozzXteV4K7iW42/P6wNKJ 1LRTtjOnEWaAvjE0tvfrMxvPqgPvbGpt089KFLEzFZ6qR5g1xVvt/R9PkRJ7qvFi tKRNHfEmEsyuLHCtHAFeSEArSY3GKRfzDBi3a9NdQWvDUmG5gfoB9SEQ2titmNOP 4/edkYGdi5NaeCK3ODdvef/XSM8yd2a0OrQ6zfIOJet6TqQ+9HWdD0WAuSFjS1BS W6RC6EBgXMbjz/8+GEVwcxoU/zGzIelt7JFb -----END CERTIFICATE-----Generated at Sun Nov 24 08:01:25 2024 by rpki-client on console-fra.rpki-client.org