$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a323030303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a323030303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: 50O5uNlbOkY1l/rUhqCb/dq0Q5p/vt2WkECQ0oSMMmU= Subject key identifier: 9B:9E:10:B0:EF:A9:28:E3:62:2B:5B:88:FD:B8:0D:D1:4A:79:DC:76 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 1E87526861D04E085183CBEB2BF0DCA2707D1D89 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a323030303a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 14 Nov 2024 17:23:50 +0000 ROA not before: Thu 14 Nov 2024 17:18:50 +0000 ROA not after: Thu 13 Nov 2025 17:23:50 +0000 asID: 58485 IP address blocks: 2402:e100:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:87:52:68:61:d0:4e:08:51:83:cb:eb:2b:f0:dc:a2:70:7d:1d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 14 17:18:50 2024 GMT Not After : Nov 13 17:23:50 2025 GMT Subject: CN=9B9E10B0EFA928E3622B5B88FDB80DD14A79DC76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ea:58:31:54:fb:d3:b9:27:4b:78:2c:23:cf: 3d:59:67:84:6c:85:cc:ab:4a:52:1b:e0:82:65:98: 8b:bb:91:40:60:99:9f:29:e6:22:e7:80:69:bc:7e: 65:6d:78:55:10:2f:47:0d:b8:58:77:1b:3f:b3:d2: c2:aa:ec:a2:ec:79:1c:87:8e:36:15:81:8a:8a:68: b5:19:79:2d:70:95:3c:a6:32:e7:ab:12:e5:88:0c: 50:b2:f9:c1:90:9d:0e:c8:8c:c6:64:cb:9f:0e:b2: 4e:31:e2:94:57:0d:13:93:f8:41:c0:5a:37:b7:99: 07:00:5c:35:a6:b4:3d:40:80:ba:a3:8b:81:5f:16: 4a:ee:53:52:78:98:27:7d:ac:12:3b:af:64:3e:d4: 68:93:04:e7:0d:84:c7:c3:a6:dd:8b:c9:bc:77:b1: 67:e8:89:6f:36:31:33:09:c9:72:53:84:28:64:b1: c7:e3:07:2c:fa:be:3f:9d:c3:47:4e:57:e1:f5:10: 26:18:a2:ed:bb:a3:c5:e3:20:58:d1:60:05:43:95: 56:08:f9:35:3e:89:ad:4f:05:08:97:04:50:16:50: f8:d7:65:72:8d:aa:43:0d:1a:06:2b:fe:12:ce:42: a5:9b:29:64:2e:53:30:46:87:74:06:ec:a9:7e:5c: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9E:10:B0:EF:A9:28:E3:62:2B:5B:88:FD:B8:0D:D1:4A:79:DC:76 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a323030303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:2000::/48 Signature Algorithm: sha256WithRSAEncryption 8e:46:a0:97:85:d4:6b:6b:01:0d:9c:44:86:7e:6e:7d:d8:52: f1:cf:a8:e0:93:88:88:7e:b1:b0:af:8e:81:b3:99:61:fb:d5: dd:7e:80:00:af:b9:92:0b:26:da:57:a8:1f:a0:b3:e5:c6:37: ec:5e:fd:85:7c:02:02:49:cd:b6:8b:3d:98:a2:4c:42:e5:54: 17:4c:ac:4f:ee:22:83:6e:c0:d1:dc:2c:c2:8b:04:94:63:50: 99:58:10:0d:fd:fa:16:f6:13:53:17:f4:30:3d:e3:9a:3a:6b: 01:a6:eb:2d:db:52:6a:13:ae:ab:64:fd:ba:29:9e:f8:81:3b: 2a:e5:5d:e2:48:4f:2f:2f:22:53:30:04:ac:c1:30:7b:e8:28: 82:9a:83:7f:92:65:0c:14:14:e4:67:cf:cb:b4:3e:ab:db:67: 0d:69:7e:d7:3d:96:04:d0:2e:53:5d:1c:cd:3c:9e:ba:ac:ef: cf:9d:fd:e3:93:3b:d0:e2:91:23:94:7b:c5:93:02:84:e8:fe: 41:e3:65:16:25:d9:fa:cb:0b:dc:70:de:f5:13:fd:16:79:c9: 21:6e:07:d8:82:7f:4e:8a:22:60:2c:6e:6d:4d:85:93:7b:d3: 06:7c:01:1d:de:65:85:04:29:73:b5:58:3a:9e:33:80:4b:60: a9:3e:55:5a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHodSaGHQTghRg8vrK/DconB9HYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMTQxNzE4NTBaFw0yNTExMTMxNzIzNTBaMDMxMTAvBgNV BAMTKDlCOUUxMEIwRUZBOTI4RTM2MjJCNUI4OEZEQjgwREQxNEE3OURDNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj6lgxVPvTuSdLeCwjzz1ZZ4Rs hcyrSlIb4IJlmIu7kUBgmZ8p5iLngGm8fmVteFUQL0cNuFh3Gz+z0sKq7KLseRyH jjYVgYqKaLUZeS1wlTymMuerEuWIDFCy+cGQnQ7IjMZky58Osk4x4pRXDROT+EHA Wje3mQcAXDWmtD1AgLqji4FfFkruU1J4mCd9rBI7r2Q+1GiTBOcNhMfDpt2Lybx3 sWfoiW82MTMJyXJThChkscfjByz6vj+dw0dOV+H1ECYYou27o8XjIFjRYAVDlVYI +TU+ia1PBQiXBFAWUPjXZXKNqkMNGgYr/hLOQqWbKWQuUzBGh3QG7Kl+XBAtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm54QsO+pKONiK1uI/bgN0Up53HYwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzIzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALh ACAAMA0GCSqGSIb3DQEBCwUAA4IBAQCORqCXhdRrawENnESGfm592FLxz6jgk4iI frGwr46Bs5lh+9XdfoAAr7mSCybaV6gfoLPlxjfsXv2FfAICSc22iz2YokxC5VQX TKxP7iKDbsDR3CzCiwSUY1CZWBAN/foW9hNTF/QwPeOaOmsBpust21JqE66rZP26 KZ74gTsq5V3iSE8vLyJTMASswTB76CiCmoN/kmUMFBTkZ8/LtD6r22cNaX7XPZYE 0C5TXRzNPJ66rO/Pnf3jkzvQ4pEjlHvFkwKE6P5B42UWJdn6ywvccN71E/0Weckh bgfYgn9OiiJgLG5tTYWTe9MGfAEd3mWFBClztVg6njOAS2CpPlVa -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org