$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: kTFbI48ADj1NCd9+X2nm988kpUAUJ4nuOUWfrmLXPzY= Subject key identifier: 17:64:CD:55:7A:9A:00:40:DA:5B:E1:C9:6C:86:0C:E6:63:54:7F:B3 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 1C839C219B2E447F846839EB05A74C8BDD0B8FA1 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:32 +0000 ROA not before: Mon 01 Jul 2024 00:58:32 +0000 ROA not after: Mon 30 Jun 2025 01:03:32 +0000 asID: 38150 IP address blocks: 2402:f080:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:83:9c:21:9b:2e:44:7f:84:68:39:eb:05:a7:4c:8b:dd:0b:8f:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:32 2024 GMT Not After : Jun 30 01:03:32 2025 GMT Subject: CN=1764CD557A9A0040DA5BE1C96C860CE663547FB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8e:34:7f:d4:74:90:e7:72:ea:40:aa:23:03: 5d:2c:d8:2b:f2:71:de:57:f9:51:39:f0:02:26:5b: 69:f8:47:5f:a4:a6:84:53:70:92:c0:ac:32:7d:00: 38:43:95:4c:28:2f:86:0c:84:f8:6e:c2:7f:ed:58: 6a:7b:e0:5f:89:a0:ab:07:35:5e:80:b6:e0:e8:d5: c7:14:02:0f:ba:97:3d:a8:b9:a0:99:48:6b:6c:4e: 41:eb:79:fa:bc:e1:fb:9d:16:bc:ea:e7:c4:c4:d5: 3f:69:0a:8c:6a:56:b6:0a:8c:7b:f4:32:f0:89:ed: b4:1d:fa:47:f8:2b:05:79:61:73:73:f8:f1:7e:da: 13:11:01:31:23:25:06:5f:6e:f9:a0:9a:fe:0a:67: 37:46:4f:ab:9e:52:82:c1:66:e4:41:74:9f:80:ba: 9e:b0:28:00:e0:ed:1a:21:8d:4c:c9:42:17:53:6d: b4:16:42:22:f8:cc:2f:31:95:09:de:c4:62:40:16: f8:2e:ba:a0:19:34:6e:3e:59:7f:70:a2:e5:1a:41: e5:5a:50:78:1f:3f:1a:c5:da:29:c6:54:9a:6e:50: c6:ab:7a:70:8d:9a:69:db:38:1f:93:f7:b9:b5:17: d4:ed:e1:c9:35:46:89:40:b8:f6:3a:06:66:c5:85: b9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:64:CD:55:7A:9A:00:40:DA:5B:E1:C9:6C:86:0C:E6:63:54:7F:B3 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:a::/48 Signature Algorithm: sha256WithRSAEncryption 01:13:68:4f:23:7e:99:bf:6c:d7:bf:e6:fa:f3:1f:58:50:6b: 01:4d:9f:8c:f2:3d:df:40:89:18:cf:12:e8:43:c2:91:54:ed: 1e:49:51:b6:55:f7:8e:7e:c8:29:71:ea:f6:93:6d:93:79:20: cf:40:75:90:e6:7e:79:23:59:ff:78:88:e1:74:00:26:66:eb: 72:8b:a6:c7:b5:8e:0c:38:7f:55:a2:38:27:e7:02:31:e3:6c: 48:39:61:c2:9e:f2:cf:80:9c:ae:6c:d5:bd:5a:fa:97:cc:cd: 06:eb:96:b3:a4:e6:ef:01:64:09:0c:9d:cc:cd:4f:44:25:50: b2:3e:ed:77:9d:ff:4c:0d:4a:2f:d6:47:15:ec:28:ab:11:76: 9d:2e:e7:47:a6:af:33:dd:50:b3:9f:dd:e3:6b:35:18:fd:98: 37:21:15:26:84:0d:11:9f:c1:9b:25:3b:02:b0:d6:b8:dc:9f: 76:ec:f9:ac:10:9c:ff:cc:2b:c8:8d:20:ea:60:46:21:87:fe: 00:25:a8:c6:78:38:aa:d6:3f:55:7e:fc:01:4e:0a:33:1d:e1: 58:ac:87:12:0d:48:4d:7b:d3:ba:84:8f:dc:ca:08:5d:59:32: bf:ec:00:d7:49:81:6a:cb:7d:ef:5e:6b:69:1e:31:7e:64:d4: cb:6c:95:ac -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHIOcIZsuRH+EaDnrBadMi90Lj6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzJaFw0yNTA2MzAwMTAzMzJaMDMxMTAvBgNV BAMTKDE3NjRDRDU1N0E5QTAwNDBEQTVCRTFDOTZDODYwQ0U2NjM1NDdGQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0jjR/1HSQ53LqQKojA10s2Cvy cd5X+VE58AImW2n4R1+kpoRTcJLArDJ9ADhDlUwoL4YMhPhuwn/tWGp74F+JoKsH NV6AtuDo1ccUAg+6lz2ouaCZSGtsTkHrefq84fudFrzq58TE1T9pCoxqVrYKjHv0 MvCJ7bQd+kf4KwV5YXNz+PF+2hMRATEjJQZfbvmgmv4KZzdGT6ueUoLBZuRBdJ+A up6wKADg7RohjUzJQhdTbbQWQiL4zC8xlQnexGJAFvguuqAZNG4+WX9wouUaQeVa UHgfPxrF2inGVJpuUMarenCNmmnbOB+T97m1F9Tt4ck1RolAuPY6BmbFhbnpAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUF2TNVXqaAEDaW+HJbIYM5mNUf7MwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAAKMA0G CSqGSIb3DQEBCwUAA4IBAQABE2hPI36Zv2zXv+b68x9YUGsBTZ+M8j3fQIkYzxLo Q8KRVO0eSVG2VfeOfsgpcer2k22TeSDPQHWQ5n55I1n/eIjhdAAmZutyi6bHtY4M OH9Vojgn5wIx42xIOWHCnvLPgJyubNW9WvqXzM0G65azpObvAWQJDJ3MzU9EJVCy Pu13nf9MDUov1kcV7CirEXadLudHpq8z3VCzn93jazUY/Zg3IRUmhA0Rn8GbJTsC sNa43J927PmsEJz/zCvIjSDqYEYhh/4AJajGeDiq1j9VfvwBTgozHeFYrIcSDUhN e9O6hI/cyghdWTK/7ADXSYFqy33vXmtpHjF+ZNTLbJWs -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org