$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: LNeaS083UOlp4LUdDeQ2gGXYYeK9bcYJQvzUhUQt9Vs= Subject key identifier: EB:1A:94:B3:06:D1:A0:DD:00:6D:B2:B7:6C:E1:75:3A:6C:8F:0F:CC Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 3EC5FF02DB37C7836325C06CFB9890C9E4D21A21 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:01 +0000 ROA not before: Thu 21 Nov 2024 11:55:01 +0000 ROA not after: Thu 20 Nov 2025 12:00:01 +0000 asID: 58485 IP address blocks: 2402:e100:38::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c5:ff:02:db:37:c7:83:63:25:c0:6c:fb:98:90:c9:e4:d2:1a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:01 2024 GMT Not After : Nov 20 12:00:01 2025 GMT Subject: CN=EB1A94B306D1A0DD006DB2B76CE1753A6C8F0FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:96:2d:71:ca:f3:38:95:c6:a8:aa:f9:5e:ab: 8a:a2:d6:17:3b:40:ad:36:e3:39:7c:c7:38:be:5e: d6:80:ea:89:83:b2:09:8e:6f:26:56:90:67:6e:ef: 27:6c:c0:97:51:36:37:ef:27:87:45:3f:9c:f5:41: d1:fd:88:63:0c:eb:37:f5:61:19:20:d0:81:7d:95: 86:10:57:a0:10:79:bb:f1:80:54:dd:32:02:d9:b1: 49:bb:09:6a:68:83:f3:c9:cd:41:48:9f:18:46:8f: e9:ae:5b:d6:8c:45:d8:55:99:42:96:93:66:32:d0: ad:5c:f1:b9:a4:70:20:2a:02:53:6c:1b:bf:bc:6c: 0f:93:8c:fe:fb:74:b2:27:5d:1a:e6:a5:1b:2d:81: 5b:84:8e:56:f7:fb:61:4f:21:29:20:65:19:e9:94: 6a:5c:37:b3:33:42:cf:a7:fe:28:39:b5:08:47:ef: ef:56:b3:89:13:c4:05:a1:29:7c:80:31:51:39:56: e9:4d:e9:34:67:e2:60:b4:a1:23:f5:d3:39:3e:fa: c0:52:22:ef:45:81:9d:29:81:a3:d8:cc:d4:5b:60: 8c:cb:a2:fe:6c:5d:7d:00:d4:b5:ed:93:ad:b6:97: 80:17:4e:d9:b2:79:80:6f:61:67:9b:ca:16:b7:d6: 14:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1A:94:B3:06:D1:A0:DD:00:6D:B2:B7:6C:E1:75:3A:6C:8F:0F:CC X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a33383a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:38::/48 Signature Algorithm: sha256WithRSAEncryption 50:a0:30:49:f2:2b:bb:5e:a1:d4:fd:a0:bd:26:12:87:cd:21: 7e:b7:1a:63:2c:ea:9d:5e:7b:20:79:dd:a6:b9:55:69:ab:58: bb:c6:79:2d:1b:5a:ec:8c:ba:cd:95:11:ad:01:f0:3d:01:70: 44:72:07:b6:10:ba:d8:23:cf:39:7b:84:93:6d:9f:b1:8a:f3: 51:eb:04:b3:c4:af:ea:52:4c:f7:71:b5:f6:93:75:3c:1f:8f: 24:d0:d4:44:9d:0d:22:b2:7e:c8:a1:ab:79:8a:25:70:1f:5d: ba:7e:67:a0:87:7a:99:41:06:23:ad:e0:76:f2:7e:06:14:a9: ba:2a:30:66:20:a4:c9:d8:d0:35:fa:c0:93:9b:73:74:7e:6e: ee:fe:ad:5e:d1:ef:90:33:df:68:ef:c5:1b:ce:2f:f0:00:c3: f9:58:16:58:53:31:4d:77:3f:b6:3f:5a:1f:a0:e8:2e:63:51: 30:4f:fa:d4:88:b1:a7:91:f5:66:05:31:a2:34:01:dc:a2:5b: 1c:21:5b:40:d1:37:89:9b:50:61:3b:ea:a4:45:05:84:6d:7b: 32:0f:d5:24:cb:a6:12:72:65:37:79:4c:9c:f7:6d:85:a5:05: 2f:3b:a6:a6:1b:71:0f:4b:80:06:dc:a6:41:58:e3:d3:f3:f2: 83:7b:83:10 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPsX/Ats3x4NjJcBs+5iQyeTSGiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDFaFw0yNTExMjAxMjAwMDFaMDMxMTAvBgNV BAMTKEVCMUE5NEIzMDZEMUEwREQwMDZEQjJCNzZDRTE3NTNBNkM4RjBGQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDili1xyvM4lcaoqvleq4qi1hc7 QK024zl8xzi+XtaA6omDsgmObyZWkGdu7ydswJdRNjfvJ4dFP5z1QdH9iGMM6zf1 YRkg0IF9lYYQV6AQebvxgFTdMgLZsUm7CWpog/PJzUFInxhGj+muW9aMRdhVmUKW k2Yy0K1c8bmkcCAqAlNsG7+8bA+TjP77dLInXRrmpRstgVuEjlb3+2FPISkgZRnp lGpcN7MzQs+n/ig5tQhH7+9Ws4kTxAWhKXyAMVE5VulN6TRn4mC0oSP10zk++sBS Iu9FgZ0pgaPYzNRbYIzLov5sXX0A1LXtk622l4AXTtmyeYBvYWebyha31hSPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU6xqUswbRoN0AbbK3bOF1OmyPD8wwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzMzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAADgw DQYJKoZIhvcNAQELBQADggEBAFCgMEnyK7teodT9oL0mEofNIX63GmMs6p1eeyB5 3aa5VWmrWLvGeS0bWuyMus2VEa0B8D0BcERyB7YQutgjzzl7hJNtn7GK81HrBLPE r+pSTPdxtfaTdTwfjyTQ1ESdDSKyfsihq3mKJXAfXbp+Z6CHeplBBiOt4HbyfgYU qboqMGYgpMnY0DX6wJObc3R+bu7+rV7R75Az32jvxRvOL/AAw/lYFlhTMU13P7Y/ Wh+g6C5jUTBP+tSIsaeR9WYFMaI0AdyiWxwhW0DRN4mbUGE76qRFBYRtezIP1STL phJyZTd5TJz3bYWlBS87pqYbcQ9LgAbcpkFY49Pz8oN7gxA= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org