$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: MNsCflRoTlLLKOy1y3qU2xpl0KIGEKY8wK60n9pU+7g= Subject key identifier: 6E:B4:38:15:69:D8:80:53:FC:18:94:56:A2:AE:DB:E8:70:CC:2F:75 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 15506FE0290BA4254D77974E7949852EFB0FE4C8 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 09 Sep 2024 03:26:10 +0000 ROA not before: Mon 09 Sep 2024 03:21:10 +0000 ROA not after: Mon 08 Sep 2025 03:26:10 +0000 asID: 38150 IP address blocks: 2402:f080:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:50:6f:e0:29:0b:a4:25:4d:77:97:4e:79:49:85:2e:fb:0f:e4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Sep 9 03:21:10 2024 GMT Not After : Sep 8 03:26:10 2025 GMT Subject: CN=6EB4381569D88053FC189456A2AEDBE870CC2F75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:54:c4:78:33:24:34:06:c8:9e:92:82:af: 61:f0:af:9e:c8:d5:c0:46:a9:9d:80:71:da:95:53: aa:ba:81:6a:41:86:e4:2c:f7:77:9e:88:1b:f0:09: 04:ab:ae:26:a1:3a:7a:78:15:b2:4d:49:34:2a:a7: fe:fa:9e:65:71:49:8e:92:75:23:60:e6:6e:2c:87: 14:f4:a9:2e:1a:45:3c:9f:97:cd:69:28:72:a1:5e: 33:6d:e2:4a:9b:72:5a:1a:dc:d9:18:f7:fb:7f:d4: fc:be:c3:b9:65:41:5f:a3:17:42:c7:66:f9:39:eb: 83:9f:3c:36:85:26:3c:f0:ec:54:d0:7a:bb:f9:02: 49:ef:d1:b6:c9:0b:6f:92:af:b0:df:ba:9e:95:9f: c3:fb:65:2f:42:c1:1a:f3:16:41:2d:e5:4d:9e:5d: ad:92:39:bc:2c:80:09:f6:bd:84:33:2e:1c:f5:76: 5e:d7:da:ef:e6:33:29:bc:82:22:ca:01:33:c3:4e: 36:02:20:57:95:cc:61:3c:b4:c8:2d:bf:39:08:e9: f8:4f:e4:1d:fe:41:30:d4:fc:27:6c:27:7c:cd:fc: 58:24:f5:5e:d2:eb:d4:47:00:0a:5c:30:38:ca:07: 13:af:17:7c:a3:57:47:f6:18:c6:f8:d7:fe:8e:b0: 49:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B4:38:15:69:D8:80:53:FC:18:94:56:A2:AE:DB:E8:70:CC:2F:75 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a333a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:3::/48 Signature Algorithm: sha256WithRSAEncryption 71:2c:86:15:f2:91:f1:ac:72:49:2d:62:d8:45:24:ef:4e:9c: fd:54:d5:24:f0:69:1e:dc:73:d5:dd:87:7e:38:31:3e:b5:c4: 0d:2a:90:15:97:39:ec:9b:2b:fd:d5:4b:45:29:2b:18:ec:4c: 0a:be:da:e2:55:b3:dc:7c:d6:37:fc:ac:c4:a6:e0:d8:5e:d6: 54:47:00:0f:e3:84:1f:cc:29:1e:89:d0:7d:bd:34:2e:da:15: fc:c1:e1:e7:66:3b:10:b8:be:32:7e:f1:0a:92:d7:b3:a5:03: 05:74:2c:68:d2:37:45:2f:96:70:00:8b:a1:bc:d7:41:07:ea: 19:45:b8:b3:a1:b8:ef:cd:31:60:a6:08:87:3a:55:ba:b3:ec: b3:3f:5a:bd:75:9e:53:c7:e0:f8:c8:81:e7:48:39:21:a4:e2: aa:b1:49:eb:d9:c6:1c:90:1a:eb:f0:75:af:42:f4:13:86:0b: 73:f1:9a:26:aa:eb:98:74:2c:92:18:ea:04:43:ce:5e:c6:7f: 6d:49:51:c0:27:31:aa:2b:95:8a:c2:35:6d:af:54:01:a0:0a: 13:83:dd:20:cc:00:33:7f:f7:14:5e:4f:dd:8d:2f:5c:90:86: c5:b8:c0:ab:67:56:75:05:3b:85:3e:66:4b:27:67:e0:b6:64: 37:de:3c:02 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUFVBv4CkLpCVNd5dOeUmFLvsP5MgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA5MDkwMzIxMTBaFw0yNTA5MDgwMzI2MTBaMDMxMTAvBgNV BAMTKDZFQjQzODE1NjlEODgwNTNGQzE4OTQ1NkEyQUVEQkU4NzBDQzJGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjFTEeDMkNAbInpKCr2Hwr57I 1cBGqZ2AcdqVU6q6gWpBhuQs93eeiBvwCQSrriahOnp4FbJNSTQqp/76nmVxSY6S dSNg5m4shxT0qS4aRTyfl81pKHKhXjNt4kqbcloa3NkY9/t/1Py+w7llQV+jF0LH Zvk564OfPDaFJjzw7FTQerv5Aknv0bbJC2+Sr7Dfup6Vn8P7ZS9CwRrzFkEt5U2e Xa2SObwsgAn2vYQzLhz1dl7X2u/mMym8giLKATPDTjYCIFeVzGE8tMgtvzkI6fhP 5B3+QTDU/CdsJ3zN/Fgk9V7S69RHAApcMDjKBxOvF3yjV0f2GMb41/6OsEn3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUbrQ4FWnYgFP8GJRWoq7b6HDML3UwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAADMA0G CSqGSIb3DQEBCwUAA4IBAQBxLIYV8pHxrHJJLWLYRSTvTpz9VNUk8Gke3HPV3Yd+ ODE+tcQNKpAVlznsmyv91UtFKSsY7EwKvtriVbPcfNY3/KzEpuDYXtZURwAP44Qf zCkeidB9vTQu2hX8weHnZjsQuL4yfvEKktezpQMFdCxo0jdFL5ZwAIuhvNdBB+oZ RbizobjvzTFgpgiHOlW6s+yzP1q9dZ5Tx+D4yIHnSDkhpOKqsUnr2cYckBrr8HWv QvQThgtz8ZomquuYdCySGOoEQ85exn9tSVHAJzGqK5WKwjVtr1QBoAoTg90gzAAz f/cUXk/djS9ckIbFuMCrZ1Z1BTuFPmZLJ2fgtmQ33jwC -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org