$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: uwduCvzKqm6swEghv3Zot5Za1ysLZxOy6ByFYlQKNCs= Subject key identifier: 4B:FA:57:17:15:74:50:EF:F1:50:E2:4C:52:37:2A:EE:A2:12:84:D4 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 635181D117115408A10C166568A4D6EF4935B6F9 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa Signing time: Mon 01 Jul 2024 01:02:46 +0000 ROA not before: Mon 01 Jul 2024 00:57:46 +0000 ROA not after: Mon 30 Jun 2025 01:02:46 +0000 asID: 133815 IP address blocks: 2403:57c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:51:81:d1:17:11:54:08:a1:0c:16:65:68:a4:d6:ef:49:35:b6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jul 1 00:57:46 2024 GMT Not After : Jun 30 01:02:46 2025 GMT Subject: CN=4BFA5717157450EFF150E24C52372AEEA21284D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:49:25:29:58:82:d6:9f:16:aa:6c:96:33:2f: 0b:bf:98:07:0e:65:74:29:2b:54:fd:f8:26:c8:37: f3:59:c5:d5:45:5e:e5:71:f0:03:5b:c2:4c:70:f9: d8:9f:9d:c5:6c:00:da:a6:96:e5:52:da:b2:12:98: 60:4c:a8:9b:04:82:65:29:fa:9c:b8:84:21:2c:6b: 72:49:4c:fd:64:32:5c:08:01:5e:5a:7d:f1:57:eb: d0:90:82:74:69:74:a8:e0:98:c8:ed:a2:01:e8:84: ac:53:7c:54:f3:eb:59:0f:40:a9:22:1b:44:af:1d: 6d:26:fa:a1:c9:f6:f7:dc:a7:84:e9:c8:11:a0:6b: 22:f7:9e:5b:17:51:0b:f2:12:67:54:29:55:7e:21: f5:31:ba:5e:49:79:80:2e:83:3d:63:20:ab:85:56: 88:82:da:9f:32:9f:d8:7e:5a:e4:c2:51:91:91:32: 38:4a:94:27:f0:be:2d:48:03:30:43:2e:7a:8b:b0: ee:4b:c9:ca:24:fd:16:43:77:6c:2d:0c:89:5b:6a: 23:7b:26:fd:7d:4a:38:29:25:78:c7:52:4f:62:e7: cf:e5:d0:5d:3e:c9:4d:e5:45:17:b4:71:ef:f7:6b: 3f:1a:aa:f7:f6:3c:0a:38:bb:c0:2a:57:00:5b:9a: e9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FA:57:17:15:74:50:EF:F1:50:E2:4C:52:37:2A:EE:A2:12:84:D4 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:63:29:e4:e7:94:10:97:15:58:37:f4:38:92:c2:92:97:1b: 22:7a:09:35:fd:54:42:0a:d7:c3:e7:80:30:58:53:8f:d1:4e: 26:b2:79:14:a6:1a:b6:50:42:f7:7d:17:d5:57:81:08:1f:54: 91:c7:e4:59:68:74:7a:d3:f7:9e:63:b8:27:ac:60:ae:9c:e2: db:01:66:7a:6e:e1:f1:45:80:4a:1e:08:53:65:a8:31:05:be: 40:df:64:74:be:c7:41:82:ab:da:13:e1:3b:65:48:44:c4:05: 2b:04:3e:9b:21:01:28:14:06:f9:13:60:8d:dc:ae:99:6f:fc: 1e:b3:a3:89:16:d9:71:14:c6:13:d4:ab:f0:ab:5c:2d:84:e6: 62:db:90:48:cc:57:e7:87:79:69:14:da:ac:fe:0d:8e:05:51: 32:2c:48:6a:eb:70:e7:ee:8f:20:90:9e:60:3b:b7:51:e2:e1: be:7f:cb:e5:e0:86:5c:73:62:f7:73:d7:91:fc:6b:f5:db:3d: f2:21:94:ca:be:d5:76:0e:ae:81:ce:2b:15:7a:ab:d2:02:72: 8e:55:34:fc:73:1e:47:8d:1d:54:68:4a:5a:aa:58:df:83:98: 5e:a1:03:69:0e:15:c0:dc:9f:d9:67:82:aa:9d:c6:7b:2a:6f: 83:7b:38:bc -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUY1GB0RcRVAihDBZlaKTW70k1tvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNDA3MDEwMDU3NDZaFw0yNTA2MzAwMTAyNDZaMDMxMTAvBgNV BAMTKDRCRkE1NzE3MTU3NDUwRUZGMTUwRTI0QzUyMzcyQUVFQTIxMjg0RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSSUpWILWnxaqbJYzLwu/mAcO ZXQpK1T9+CbIN/NZxdVFXuVx8ANbwkxw+difncVsANqmluVS2rISmGBMqJsEgmUp +py4hCEsa3JJTP1kMlwIAV5affFX69CQgnRpdKjgmMjtogHohKxTfFTz61kPQKki G0SvHW0m+qHJ9vfcp4TpyBGgayL3nlsXUQvyEmdUKVV+IfUxul5JeYAugz1jIKuF VoiC2p8yn9h+WuTCUZGRMjhKlCfwvi1IAzBDLnqLsO5Lycok/RZDd2wtDIlbaiN7 Jv19SjgpJXjHUk9i58/l0F0+yU3lRRe0ce/3az8aqvf2PAo4u8AqVwBbmulFAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUS/pXFxV0UO/xUOJMUjcq7qIShNQwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2EzNTM3NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDV8AwDQYJKoZI hvcNAQELBQADggEBAJxjKeTnlBCXFVg39DiSwpKXGyJ6CTX9VEIK18PngDBYU4/R TiayeRSmGrZQQvd9F9VXgQgfVJHH5FlodHrT955juCesYK6c4tsBZnpu4fFFgEoe CFNlqDEFvkDfZHS+x0GCq9oT4TtlSETEBSsEPpshASgUBvkTYI3crplv/B6zo4kW 2XEUxhPUq/CrXC2E5mLbkEjMV+eHeWkU2qz+DY4FUTIsSGrrcOfujyCQnmA7t1Hi 4b5/y+XghlxzYvdz15H8a/XbPfIhlMq+1XYOroHOKxV6q9ICco5VNPxzHkeNHVRo SlqqWN+DmF6hA2kOFcDcn9lngqqdxnsqb4N7OLw= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org