$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: AaYY+4X7oz0aflYSKjFBAuNR5h1WiPnSw/fVuiThbtI= Subject key identifier: 8D:2D:BD:D1:B4:4B:AC:78:B2:DD:11:6C:FA:53:6E:16:9D:FD:B3:0D Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 408309E96C653F75C91BD4D2AB4C4A902BE8711B Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 01 Jul 2024 01:03:30 +0000 ROA not before: Mon 01 Jul 2024 00:58:30 +0000 ROA not after: Mon 30 Jun 2025 01:03:30 +0000 asID: 38150 IP address blocks: 2402:f080:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:83:09:e9:6c:65:3f:75:c9:1b:d4:d2:ab:4c:4a:90:2b:e8:71:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 1 00:58:30 2024 GMT Not After : Jun 30 01:03:30 2025 GMT Subject: CN=8D2DBDD1B44BAC78B2DD116CFA536E169DFDB30D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:84:78:86:88:b3:eb:ed:4b:46:03:27:fe:1a: c6:a0:74:6e:68:5b:6f:dc:cb:88:14:fd:f3:86:c4: f4:ee:21:1f:ab:78:63:4b:a5:5c:a3:8d:b3:cc:f1: 85:70:20:52:34:0f:ba:43:0b:9e:95:1d:72:52:58: 0e:40:00:c3:6a:21:f5:2e:78:ec:a9:f7:bc:4a:54: a6:75:83:c3:75:ef:59:47:03:71:68:2d:c0:27:e6: ae:22:90:c0:27:13:be:b2:1d:33:4e:9e:d8:94:98: 38:d1:67:50:67:7c:8f:16:d5:57:b9:96:70:c8:da: f3:3a:4f:32:57:9f:9f:55:24:e1:cf:88:3b:2f:1d: 05:a5:36:fe:5a:2e:b6:a5:8c:f8:59:d7:72:b3:18: 82:56:c7:08:0f:df:4a:fa:91:47:5d:eb:ef:1d:02: 6c:ff:cb:0c:90:7d:55:e1:d1:4d:18:40:43:31:d6: 18:be:c1:0c:40:59:9b:28:96:68:b8:74:e6:3a:b1: f9:ef:5a:4e:4d:2f:a4:9d:c9:ab:e5:a4:54:52:43: f1:ad:ce:2f:a0:b0:51:da:51:4a:d9:f7:42:d2:6b: bf:56:a4:4b:1d:77:5c:5a:be:14:0b:85:36:3c:f5: 27:72:43:6a:02:4b:55:ae:e6:48:ff:a0:21:2f:8e: 97:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2D:BD:D1:B4:4B:AC:78:B2:DD:11:6C:FA:53:6E:16:9D:FD:B3:0D X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:c::/48 Signature Algorithm: sha256WithRSAEncryption 15:10:14:6f:a8:9e:66:6d:88:34:8c:48:e9:7e:4b:5e:f5:9a: bd:8d:68:9f:2d:23:9c:46:00:b0:9b:bb:78:34:72:ea:aa:41: 2b:04:76:3c:dd:74:c2:89:4e:69:79:26:c0:23:2d:90:91:43: 50:a2:77:1f:63:cd:fa:93:fb:47:6e:f9:84:53:bc:4d:a8:be: ed:4f:dd:48:3f:13:cd:10:e1:be:ae:91:05:c9:64:e9:e2:1e: b7:64:22:9e:56:4b:ab:0d:a2:17:e8:9f:2d:77:d4:70:de:7b: 3d:e2:92:55:5e:da:0a:6b:0a:37:76:d4:5e:5b:e5:95:6a:7a: b0:c6:75:63:8d:fb:2c:fe:87:70:62:a1:92:2e:77:4a:66:18: 0d:33:e6:dd:71:e2:b3:20:81:3a:48:e5:96:c8:50:61:ac:fd: ba:1f:f4:7f:82:36:5f:f0:d5:d4:e1:52:e9:93:a8:f0:85:24: 44:dc:e0:cb:64:0f:e0:dc:d5:c9:df:9b:43:9c:b7:b2:a4:0f: ee:d3:7e:2d:ed:0d:d4:e5:13:e2:17:a2:0b:e6:2d:ec:ce:ad: 7d:31:cb:0b:ad:5f:e3:d0:ac:48:de:c2:e6:38:30:68:19:d2: 76:a8:0c:ba:ee:f2:4c:36:6d:90:b3:ad:05:05:10:78:32:9e: 24:73:c0:6e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQIMJ6WxlP3XJG9TSq0xKkCvocRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNDA3MDEwMDU4MzBaFw0yNTA2MzAwMTAzMzBaMDMxMTAvBgNV BAMTKDhEMkRCREQxQjQ0QkFDNzhCMkREMTE2Q0ZBNTM2RTE2OURGREIzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyhHiGiLPr7UtGAyf+GsagdG5o W2/cy4gU/fOGxPTuIR+reGNLpVyjjbPM8YVwIFI0D7pDC56VHXJSWA5AAMNqIfUu eOyp97xKVKZ1g8N171lHA3FoLcAn5q4ikMAnE76yHTNOntiUmDjRZ1BnfI8W1Ve5 lnDI2vM6TzJXn59VJOHPiDsvHQWlNv5aLraljPhZ13KzGIJWxwgP30r6kUdd6+8d Amz/ywyQfVXh0U0YQEMx1hi+wQxAWZsolmi4dOY6sfnvWk5NL6SdyavlpFRSQ/Gt zi+gsFHaUUrZ90LSa79WpEsdd1xavhQLhTY89SdyQ2oCS1Wu5kj/oCEvjpdPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUjS290bRLrHiy3RFs+lNuFp39sw0wHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAAMMA0G CSqGSIb3DQEBCwUAA4IBAQAVEBRvqJ5mbYg0jEjpfkte9Zq9jWifLSOcRgCwm7t4 NHLqqkErBHY83XTCiU5peSbAIy2QkUNQoncfY836k/tHbvmEU7xNqL7tT91IPxPN EOG+rpEFyWTp4h63ZCKeVkurDaIX6J8td9Rw3ns94pJVXtoKawo3dtReW+WVanqw xnVjjfss/odwYqGSLndKZhgNM+bdceKzIIE6SOWWyFBhrP26H/R/gjZf8NXU4VLp k6jwhSRE3ODLZA/g3NXJ35tDnLeypA/u034t7Q3U5RPiF6IL5i3szq19McsLrV/j 0KxI3sLmODBoGdJ2qAy67vJMNm2Qs60FBRB4Mp4kc8Bu -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org