$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: ZZpQllrHWfXo8o8D2sCJ3pB5jUWAf/wTgvoQBwbAr+E= Subject key identifier: 11:C1:68:5F:EC:40:D7:0D:1D:AC:E3:21:E2:8A:BD:93:67:75:3E:E9 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 48ABCA6A7036B734F868C51A22179B669EA5906F Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:01 +0000 ROA not before: Thu 21 Nov 2024 11:55:01 +0000 ROA not after: Thu 20 Nov 2025 12:00:01 +0000 asID: 58485 IP address blocks: 2402:e100:305::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ab:ca:6a:70:36:b7:34:f8:68:c5:1a:22:17:9b:66:9e:a5:90:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:01 2024 GMT Not After : Nov 20 12:00:01 2025 GMT Subject: CN=11C1685FEC40D70D1DACE321E28ABD9367753EE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:40:20:7e:08:ea:85:78:42:7c:a6:ad:92: 85:7b:78:db:80:5a:c6:aa:26:cf:34:70:c4:6c:bc: f5:03:27:02:7e:a3:cc:38:b1:e5:d5:4a:b7:d7:fd: 14:fb:0a:d9:35:3d:ae:f1:bd:63:09:b8:6e:a4:9a: 5c:65:97:87:09:c8:c6:b9:78:41:b9:a3:0f:d4:fa: 62:ed:60:b2:43:5e:18:96:66:9b:29:13:dd:b9:53: 7c:3a:ff:9f:79:23:7e:93:94:38:e6:a5:0f:f0:19: f2:e9:c8:68:14:5c:9a:ef:f3:ab:ee:1d:d4:cd:a1: 06:31:c0:bc:fc:7b:fe:94:c1:5a:d0:d2:5a:29:9f: 74:11:df:b3:34:c5:be:e7:fb:ad:ad:46:dd:dc:a1: 9e:8c:0e:6a:ca:51:78:a8:c7:da:1b:53:92:9c:97: 2e:79:8c:af:74:49:5a:b2:f2:85:00:af:d9:98:d9: b1:fb:80:09:c8:35:d3:e3:39:3c:93:74:97:cd:0a: 05:98:e0:59:91:a7:62:f2:b4:1f:b0:78:9d:7a:90: 4f:22:af:b9:76:33:d1:cb:f6:b0:05:53:94:d9:2a: fa:07:c4:eb:fc:9c:e4:59:f5:bc:ef:73:9a:a3:75: 17:1e:d3:32:79:a5:9a:51:31:59:41:54:d5:f2:78: 74:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C1:68:5F:EC:40:D7:0D:1D:AC:E3:21:E2:8A:BD:93:67:75:3E:E9 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3330353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:305::/48 Signature Algorithm: sha256WithRSAEncryption 42:d4:43:ea:bf:bf:a8:d1:c3:a6:d5:5a:c7:a2:f0:9c:b4:29: 2a:46:51:32:62:4d:7a:c2:9a:82:48:37:cd:97:b5:3e:b0:79: 1f:48:57:77:fc:18:f5:9c:c7:56:c0:f1:a2:a6:16:2a:e4:bd: ad:64:00:8a:87:f3:bf:d6:c4:74:b1:42:79:06:91:c4:12:82: 42:55:9e:f5:01:87:dc:de:1a:f0:af:6c:16:79:d1:ae:09:b0: ee:2d:0f:49:ad:77:44:a8:f4:e2:5b:c8:10:73:f8:75:b7:2d: 73:32:71:ac:a3:db:59:32:6f:e0:2c:73:84:66:bd:39:6d:23: 70:d9:83:20:89:e3:30:9f:e9:e6:6e:5e:54:12:cf:23:de:d8: ea:6d:2e:f0:22:4b:f0:73:61:b2:33:91:d4:c8:c3:3f:46:fd: 98:8f:ce:a4:57:5d:01:82:b1:2d:13:7e:35:fd:a0:3f:60:58: ef:85:77:37:59:b6:74:e7:cc:43:d2:a2:4b:a2:b0:dd:b7:23: ee:77:21:2b:ac:57:7c:10:fc:22:92:60:f8:06:13:2f:f7:a5: 44:37:e1:15:6f:6a:09:84:fb:be:13:7b:f2:b4:d1:ea:55:47: d9:cf:be:40:06:3f:c9:55:64:b3:2d:6c:00:23:6d:8c:73:cb: 09:b1:85:80 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSKvKanA2tzT4aMUaIhebZp6lkG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDFaFw0yNTExMjAxMjAwMDFaMDMxMTAvBgNV BAMTKDExQzE2ODVGRUM0MEQ3MEQxREFDRTMyMUUyOEFCRDkzNjc3NTNFRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClEUAgfgjqhXhCfKatkoV7eNuA WsaqJs80cMRsvPUDJwJ+o8w4seXVSrfX/RT7Ctk1Pa7xvWMJuG6kmlxll4cJyMa5 eEG5ow/U+mLtYLJDXhiWZpspE925U3w6/595I36TlDjmpQ/wGfLpyGgUXJrv86vu HdTNoQYxwLz8e/6UwVrQ0lopn3QR37M0xb7n+62tRt3coZ6MDmrKUXiox9obU5Kc ly55jK90SVqy8oUAr9mY2bH7gAnINdPjOTyTdJfNCgWY4FmRp2LytB+weJ16kE8i r7l2M9HL9rAFU5TZKvoHxOv8nORZ9bzvc5qjdRce0zJ5pZpRMVlBVNXyeHQnAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUEcFoX+xA1w0drOMh4oq9k2d1PukwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzMDM1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQC4QAD BTANBgkqhkiG9w0BAQsFAAOCAQEAQtRD6r+/qNHDptVax6LwnLQpKkZRMmJNesKa gkg3zZe1PrB5H0hXd/wY9ZzHVsDxoqYWKuS9rWQAiofzv9bEdLFCeQaRxBKCQlWe 9QGH3N4a8K9sFnnRrgmw7i0PSa13RKj04lvIEHP4dbctczJxrKPbWTJv4CxzhGa9 OW0jcNmDIInjMJ/p5m5eVBLPI97Y6m0u8CJL8HNhsjOR1MjDP0b9mI/OpFddAYKx LRN+Nf2gP2BY74V3N1m2dOfMQ9KiS6Kw3bcj7nchK6xXfBD8IpJg+AYTL/elRDfh FW9qCYT7vhN78rTR6lVH2c++QAY/yVVksy1sACNtjHPLCbGFgA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org