$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: qL0wIERL/FZVPFJyexaf4LbHX3ijAAg3bydjjAMgQFk= Subject key identifier: D2:E1:DB:59:FF:78:C3:FF:82:80:98:FC:CC:26:E3:53:21:07:FC:9B Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 53B5C01550ECB39472CB19893042211EDBC4DFC2 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:29 +0000 ROA not before: Mon 01 Jul 2024 00:58:29 +0000 ROA not after: Mon 30 Jun 2025 01:03:29 +0000 asID: 38150 IP address blocks: 2402:f080:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b5:c0:15:50:ec:b3:94:72:cb:19:89:30:42:21:1e:db:c4:df:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:29 2024 GMT Not After : Jun 30 01:03:29 2025 GMT Subject: CN=D2E1DB59FF78C3FF828098FCCC26E3532107FC9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:b1:e7:ab:f0:3b:17:44:a9:cd:dc:9d:05: 85:8a:89:40:a7:2e:b5:c0:fa:9c:6e:36:d2:9d:4f: be:4e:d5:52:a9:2a:da:3e:c9:8c:12:a5:2f:06:a3: 5c:df:f4:6a:18:cc:b7:10:ba:3c:fd:da:0b:0e:21: 1c:b2:bd:95:68:6f:9b:91:af:77:24:fe:e9:3b:32: 87:31:bd:91:d5:39:56:09:92:44:b3:ba:3a:0a:4a: 84:e3:e2:24:d8:a4:f6:f6:08:9f:c1:ab:82:55:5d: 47:62:d1:a4:6d:7e:be:66:b9:81:c8:cf:4e:d8:0c: eb:0b:4c:78:1c:5e:5c:8b:a8:b0:9b:bf:ff:ff:64: 0f:83:f1:b3:b1:08:fd:53:89:94:73:92:36:69:6c: 96:f8:e6:66:6c:8e:df:2f:70:f6:c8:a9:77:1e:6f: 95:22:01:03:10:3d:8f:40:76:25:b0:9a:37:55:e0: 4d:ac:eb:8a:e1:f8:42:41:39:e3:12:92:12:5a:b7: 2b:17:80:d5:1a:c6:c7:26:9b:4a:5e:0e:99:67:f5: 87:03:37:4d:ae:b7:e0:fc:36:db:83:f1:8a:7f:ea: d1:7b:ee:2a:77:c4:79:5d:29:2d:63:c3:4c:79:38: 70:7c:c5:a1:63:c0:45:08:41:37:16:57:20:26:4f: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E1:DB:59:FF:78:C3:FF:82:80:98:FC:CC:26:E3:53:21:07:FC:9B X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:b::/48 Signature Algorithm: sha256WithRSAEncryption 33:5e:82:79:48:32:b2:e1:d7:14:b4:7c:47:47:ff:07:39:bd: 90:84:9d:ab:74:f2:7a:74:a5:ed:83:34:57:3f:19:4f:16:bd: 3a:68:b7:be:37:20:58:74:e0:36:11:66:01:e3:22:97:4d:c0: 1d:56:7b:4a:8c:ec:86:91:f8:d3:2d:4e:19:09:22:29:5a:13: d2:6d:8f:87:23:8e:27:61:5d:9d:02:74:7a:72:0c:50:3d:e9: a0:fe:ae:0c:85:98:14:d3:b9:17:79:03:e0:0c:bf:b4:77:64: c7:ad:e0:e6:00:c9:3f:06:71:50:25:de:85:64:97:ed:d4:59: f2:17:8e:80:8a:2d:51:92:c5:6c:7b:6d:16:0f:36:dd:1c:26: 05:c8:c1:72:ba:a8:b6:95:fb:6f:79:b4:a5:91:1b:cd:96:4d: d3:a1:e9:38:17:1d:e6:23:bc:25:98:41:f4:cc:70:ae:f2:b9: b1:44:6c:4c:ae:d8:5d:ea:60:f9:4c:4c:b7:d8:c8:9e:14:ac: b0:e3:1f:4b:89:7b:1c:bb:4e:47:fb:fb:da:2a:07:82:1b:db: 32:da:c9:d7:79:3a:e6:5f:10:a0:a3:12:65:39:16:da:38:a2: 81:1c:84:1b:8e:c3:07:cb:21:b2:6b:9c:21:b2:bf:36:78:08: f8:78:57:3d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUU7XAFVDss5RyyxmJMEIhHtvE38IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MjlaFw0yNTA2MzAwMTAzMjlaMDMxMTAvBgNV BAMTKEQyRTFEQjU5RkY3OEMzRkY4MjgwOThGQ0NDMjZFMzUzMjEwN0ZDOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrwbHnq/A7F0SpzdydBYWKiUCn LrXA+pxuNtKdT75O1VKpKto+yYwSpS8Go1zf9GoYzLcQujz92gsOIRyyvZVob5uR r3ck/uk7MocxvZHVOVYJkkSzujoKSoTj4iTYpPb2CJ/Bq4JVXUdi0aRtfr5muYHI z07YDOsLTHgcXlyLqLCbv///ZA+D8bOxCP1TiZRzkjZpbJb45mZsjt8vcPbIqXce b5UiAQMQPY9AdiWwmjdV4E2s64rh+EJBOeMSkhJatysXgNUaxscmm0peDpln9YcD N02ut+D8NtuD8Yp/6tF77ip3xHldKS1jw0x5OHB8xaFjwEUIQTcWVyAmT/a3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU0uHbWf94w/+CgJj8zCbjUyEH/JswHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAALMA0G CSqGSIb3DQEBCwUAA4IBAQAzXoJ5SDKy4dcUtHxHR/8HOb2QhJ2rdPJ6dKXtgzRX PxlPFr06aLe+NyBYdOA2EWYB4yKXTcAdVntKjOyGkfjTLU4ZCSIpWhPSbY+HI44n YV2dAnR6cgxQPemg/q4MhZgU07kXeQPgDL+0d2THreDmAMk/BnFQJd6FZJft1Fny F46Aii1RksVse20WDzbdHCYFyMFyuqi2lftvebSlkRvNlk3Toek4Fx3mI7wlmEH0 zHCu8rmxRGxMrthd6mD5TEy32MieFKyw4x9LiXscu05H+/vaKgeCG9sy2snXeTrm XxCgoxJlORbaOKKBHIQbjsMHyyGya5whsr82eAj4eFc9 -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org