$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: GLMxcB/ExssUbJvSTBLjio/2Qlt6ntHCdDgXS9/Mcy8= Subject key identifier: 79:AB:8A:FD:B2:70:47:9E:C4:FB:E9:2F:8A:D2:CF:65:70:36:AB:B0 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 3BCC600324F39800CC1BFF93DEFAA6D3DA7BDADF Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:54:47 +0000 ROA not before: Thu 21 Dec 2023 11:49:47 +0000 ROA not after: Thu 19 Dec 2024 11:54:47 +0000 asID: 58485 IP address blocks: 2402:e100:38::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cc:60:03:24:f3:98:00:cc:1b:ff:93:de:fa:a6:d3:da:7b:da:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:49:47 2023 GMT Not After : Dec 19 11:54:47 2024 GMT Subject: CN=79AB8AFDB270479EC4FBE92F8AD2CF657036ABB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b5:8e:b3:fd:20:73:f5:d9:67:a6:44:1d:6b: 4f:f7:f2:75:52:ae:1d:c8:13:0b:56:57:f5:00:8e: 29:e7:dd:26:55:fd:e4:81:31:bb:7f:46:ad:b9:4c: a6:3f:0e:32:39:d3:d6:44:66:c0:a7:60:c0:b0:c0: eb:e2:df:07:e5:66:c4:3b:1a:1c:38:5b:4a:c1:f0: dc:c6:df:f2:f8:60:cd:d1:43:23:d2:57:77:c1:1d: 56:be:3a:d6:ce:4c:e6:7b:0e:80:de:df:e8:c0:38: 7f:12:b3:b6:4b:ac:4f:1f:31:8e:da:1f:ab:a2:68: 8f:f8:9a:99:ef:b5:8b:bd:6f:ed:6b:78:8a:d9:30: 7d:6c:fb:a5:02:49:0b:58:96:b4:ae:c9:f2:68:38: 3c:5c:83:b6:1c:bd:7e:59:53:a4:b5:99:fc:fc:9d: 1e:aa:50:28:b6:67:27:91:f3:9e:a2:95:9b:fe:8b: a7:ec:b0:19:96:3d:6a:58:17:7f:75:09:e2:ea:6e: 5e:ec:94:7c:09:b9:fd:04:60:54:ab:45:44:17:a6: bc:fb:18:7a:e9:53:4e:df:13:45:c3:55:34:4e:b8: 06:aa:b7:1b:88:65:85:82:81:df:97:3f:7e:94:f0: 06:f3:6c:af:7b:4f:1e:a3:83:52:77:41:e7:40:d1: ae:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:AB:8A:FD:B2:70:47:9E:C4:FB:E9:2F:8A:D2:CF:65:70:36:AB:B0 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:38::/48 Signature Algorithm: sha256WithRSAEncryption 1a:83:38:94:80:91:85:c3:18:ab:89:32:27:f0:db:ed:c9:1a: 77:8e:85:b1:d5:48:5a:00:09:38:36:c2:0e:9d:89:1f:2b:cd: 69:a9:92:f3:e5:34:8d:2a:f4:c1:5f:4d:15:ce:5e:45:81:09: 33:4c:02:44:85:90:c2:87:79:1c:ac:b5:d6:3a:14:60:43:1c: 43:7e:c5:b9:e6:94:44:d7:23:f4:da:37:c5:55:c5:58:4e:db: 9e:a8:18:5e:d5:bd:39:ad:11:b3:ba:b9:96:e1:c2:10:a2:78: 42:e8:6b:ca:54:d1:28:8e:00:ba:df:95:bd:6a:90:9c:3a:6b: 5e:ff:fd:03:54:a6:fa:ae:bc:13:a1:8e:46:8b:b6:8c:12:d2: b4:24:64:e3:8b:18:29:92:31:a5:a0:f8:1f:d5:bc:e1:d3:b9: 26:b9:1f:de:1d:8c:93:19:ae:61:aa:82:8c:99:4c:aa:c4:6f: 3f:33:59:d2:ec:66:15:62:94:3f:88:39:af:1d:69:58:de:de: e0:28:85:3a:e2:7d:36:ba:0b:47:a8:4f:22:e1:8d:ce:3c:ba: 68:43:ae:f2:b5:a1:21:dc:17:a2:0e:a6:e4:99:b5:ba:0a:ab: 6a:e0:6f:64:2c:88:ca:cf:2d:4c:69:ae:d0:de:5f:b3:8a:2b: f2:4d:8a:0a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUO8xgAyTzmADMG/+T3vqm09p72t8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ5NDdaFw0yNDEyMTkxMTU0NDdaMDMxMTAvBgNV BAMTKDc5QUI4QUZEQjI3MDQ3OUVDNEZCRTkyRjhBRDJDRjY1NzAzNkFCQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMtY6z/SBz9dlnpkQda0/38nVS rh3IEwtWV/UAjinn3SZV/eSBMbt/Rq25TKY/DjI509ZEZsCnYMCwwOvi3wflZsQ7 Ghw4W0rB8NzG3/L4YM3RQyPSV3fBHVa+OtbOTOZ7DoDe3+jAOH8Ss7ZLrE8fMY7a H6uiaI/4mpnvtYu9b+1reIrZMH1s+6UCSQtYlrSuyfJoODxcg7YcvX5ZU6S1mfz8 nR6qUCi2ZyeR856ilZv+i6fssBmWPWpYF391CeLqbl7slHwJuf0EYFSrRUQXprz7 GHrpU07fE0XDVTROuAaqtxuIZYWCgd+XP36U8AbzbK97Tx6jg1J3QedA0a7DAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUeauK/bJwR57E++kvitLPZXA2q7AwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAADgw DQYJKoZIhvcNAQELBQADggEBABqDOJSAkYXDGKuJMifw2+3JGneOhbHVSFoACTg2 wg6diR8rzWmpkvPlNI0q9MFfTRXOXkWBCTNMAkSFkMKHeRystdY6FGBDHEN+xbnm lETXI/TaN8VVxVhO256oGF7VvTmtEbO6uZbhwhCieELoa8pU0SiOALrflb1qkJw6 a17//QNUpvquvBOhjkaLtowS0rQkZOOLGCmSMaWg+B/VvOHTuSa5H94djJMZrmGq goyZTKrEbz8zWdLsZhVilD+IOa8daVje3uAohTrifTa6C0eoTyLhjc48umhDrvK1 oSHcF6IOpuSZtboKq2rgb2QsiMrPLUxprtDeX7OKK/JNigo= -----END CERTIFICATE-----Generated at Fri May 3 00:27:04 2024 by rpki-client on console-fra.rpki-client.org