$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: 86LEq8VXDYdpyuZGjiApApkS8W4DXo5k1//8mltFNGU= Subject key identifier: C5:B9:10:C4:DB:7C:4D:C7:82:C4:86:61:96:F6:54:57:37:0E:2F:23 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 7BB8FE90F0BB48C9322A008D849678C2571A0205 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 2402:f080:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b8:fe:90:f0:bb:48:c9:32:2a:00:8d:84:96:78:c2:57:1a:02:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=C5B910C4DB7C4DC782C4866196F65457370E2F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e8:20:7b:3e:15:be:21:b9:13:75:ac:6c:f5: 50:eb:fd:2b:0c:5d:6b:c2:80:f6:87:b5:be:f1:54: a7:85:15:9d:b9:ee:ab:96:b3:78:1a:31:21:b3:8e: 55:e0:0e:71:42:8a:fa:78:bd:30:f4:de:9c:58:25: c7:03:15:51:da:91:2b:14:eb:12:46:e8:24:3d:40: 60:1f:12:3f:53:05:a1:f5:ca:6a:f6:c9:17:e9:80: a6:66:a7:c4:de:0e:56:ee:25:07:0a:36:c6:b5:d2: f6:97:94:b2:64:19:79:80:00:cc:41:ed:c0:48:94: 37:16:e7:8f:7e:b4:29:ac:82:47:48:77:d2:54:bc: 5a:4c:ca:94:ef:a9:ea:f5:12:1d:c2:88:cd:f4:68: 61:c7:b5:85:0e:31:a8:fa:7e:13:4b:56:8e:15:78: 38:42:ce:da:32:a1:e3:7e:a0:6e:75:9e:07:5a:ca: 8f:b3:cc:7c:44:b8:8c:0e:1c:b0:ce:2f:09:76:95: ab:83:cc:54:42:6b:98:e1:84:d9:22:08:f3:ff:fd: 47:ba:8c:52:f4:ee:d8:34:7c:97:be:d0:79:e1:6d: 58:57:c6:cb:07:27:e4:c8:57:34:87:a2:5d:76:2b: d2:ae:dc:0c:e3:c4:a5:46:ce:f7:4f:9e:c0:a8:3b: b1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B9:10:C4:DB:7C:4D:C7:82:C4:86:61:96:F6:54:57:37:0E:2F:23 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:1::/48 Signature Algorithm: sha256WithRSAEncryption 5d:48:af:a1:99:71:df:ed:25:e1:d1:a2:31:6c:6a:75:f0:79: 08:b0:65:54:ac:fb:91:81:22:7f:9e:4b:6f:e3:67:7f:90:d5: 17:5f:b8:e1:5b:b7:99:a1:48:4f:a6:75:e3:9f:0d:ba:b1:52: 5b:21:0e:1a:52:d2:dc:c0:4b:c3:56:df:af:ff:4e:3e:3e:e1: e7:f7:94:b0:ec:b2:76:b9:dd:99:4e:85:51:bc:99:19:c3:d2: 71:c3:5e:ba:c3:06:d3:6f:56:29:b4:b3:74:35:f8:cf:4f:68: 14:b7:e2:2d:e7:ad:df:b6:7a:a5:42:dd:b3:20:d9:44:49:68: 65:0a:7b:cd:13:6c:91:41:03:4a:52:67:5a:7a:f8:c4:0f:44: 02:d5:1f:1b:a2:38:8b:b0:ac:31:e3:6d:19:75:7a:dc:c7:03: 0c:74:bc:46:a8:81:19:87:70:29:10:bc:2a:c2:c9:c3:11:52: c3:3f:fc:8e:88:5b:90:95:44:96:40:e9:14:a9:60:4c:a5:2c: 12:ce:a5:1e:3b:ad:de:4b:c3:e9:0e:f1:8b:cb:c1:b0:6f:59: c3:b2:97:c6:63:4b:c5:1f:e1:de:41:58:9e:b3:75:93:02:48: 78:41:51:3e:a4:6f:5e:89:cb:f8:09:03:79:17:59:58:8f:57: 85:98:f2:48 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUe7j+kPC7SMkyKgCNhJZ4wlcaAgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKEM1QjkxMEM0REI3QzREQzc4MkM0ODY2MTk2RjY1NDU3MzcwRTJGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx6CB7PhW+IbkTdaxs9VDr/SsM XWvCgPaHtb7xVKeFFZ257quWs3gaMSGzjlXgDnFCivp4vTD03pxYJccDFVHakSsU 6xJG6CQ9QGAfEj9TBaH1ymr2yRfpgKZmp8TeDlbuJQcKNsa10vaXlLJkGXmAAMxB 7cBIlDcW549+tCmsgkdId9JUvFpMypTvqer1Eh3CiM30aGHHtYUOMaj6fhNLVo4V eDhCztoyoeN+oG51ngdayo+zzHxEuIwOHLDOLwl2lauDzFRCa5jhhNkiCPP//Ue6 jFL07tg0fJe+0HnhbVhXxssHJ+TIVzSHol12K9Ku3AzjxKVGzvdPnsCoO7GtAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUxbkQxNt8TceCxIZhlvZUVzcOLyMwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAABMA0G CSqGSIb3DQEBCwUAA4IBAQBdSK+hmXHf7SXh0aIxbGp18HkIsGVUrPuRgSJ/nktv 42d/kNUXX7jhW7eZoUhPpnXjnw26sVJbIQ4aUtLcwEvDVt+v/04+PuHn95Sw7LJ2 ud2ZToVRvJkZw9Jxw166wwbTb1YptLN0NfjPT2gUt+It563ftnqlQt2zINlESWhl CnvNE2yRQQNKUmdaevjED0QC1R8bojiLsKwx420ZdXrcxwMMdLxGqIEZh3ApELwq wsnDEVLDP/yOiFuQlUSWQOkUqWBMpSwSzqUeO63eS8PpDvGLy8Gwb1nDspfGY0vF H+HeQVies3WTAkh4QVE+pG9eicv4CQN5F1lYj1eFmPJI -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org