$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: bjLKcE6uyYPhJZ29YifTXHBYInxuCRJ71wvo0zdxJPg= Subject key identifier: 18:C7:98:42:AE:46:D0:95:82:DA:8D:A0:46:C6:7D:F3:63:EB:21:04 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 08E7F08AE704EBB6275071F9C257EE3C847FA641 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:01 +0000 ROA not before: Thu 21 Nov 2024 11:55:01 +0000 ROA not after: Thu 20 Nov 2025 12:00:01 +0000 asID: 58485 IP address blocks: 2402:e100:75::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e7:f0:8a:e7:04:eb:b6:27:50:71:f9:c2:57:ee:3c:84:7f:a6:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:01 2024 GMT Not After : Nov 20 12:00:01 2025 GMT Subject: CN=18C79842AE46D09582DA8DA046C67DF363EB2104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:54:18:74:23:23:2a:1f:af:a4:9c:99:13: 1e:b4:3c:76:48:d1:7d:58:3d:75:88:7f:e2:6d:0a: 2a:27:69:42:51:74:fb:77:f6:11:34:e6:de:f8:28: f5:41:bb:1a:c1:84:1f:5f:e7:6a:b1:b3:a9:fc:b4: 63:11:4e:9f:74:8e:06:2a:29:9b:0c:69:83:91:ab: 18:19:b0:17:83:1b:99:95:f4:9b:7e:af:1d:69:2f: f9:3f:cc:2e:00:01:8d:9f:84:85:22:f0:fa:ca:f6: 62:27:85:d2:ea:4f:29:1b:2f:62:16:8b:7e:cb:15: 3e:17:b5:82:59:ca:a7:23:37:5c:39:30:68:cc:35: a8:1d:c2:e5:7e:78:41:07:41:a6:76:c7:d7:11:2b: 9f:b4:53:94:bd:54:f3:71:90:49:0b:a4:6c:7c:5f: 25:eb:c1:da:a1:64:c0:ec:3c:62:ad:0c:25:82:7e: ff:78:14:21:60:f1:00:94:5e:da:e2:7c:9c:d2:65: 0a:62:c4:93:bd:f9:07:f4:8a:4e:1b:86:70:da:9f: c5:35:0c:d9:e1:0a:b8:db:a7:3c:d0:55:24:36:ef: b7:9c:62:71:e4:46:9d:b9:97:c1:c1:cb:49:60:33: c1:4c:21:62:04:f3:17:07:95:9a:7c:1e:26:bb:2e: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C7:98:42:AE:46:D0:95:82:DA:8D:A0:46:C6:7D:F3:63:EB:21:04 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:75::/48 Signature Algorithm: sha256WithRSAEncryption 26:c6:97:4a:3c:ce:49:2e:55:9a:ea:32:0b:3c:df:55:23:e6: ea:d5:ec:b5:f7:f3:30:3f:df:6f:d5:15:e0:b8:64:f4:5a:d4: 98:ff:f3:28:4a:9d:11:65:d3:01:cc:6f:b0:f3:df:f9:38:02: 72:db:bd:c1:78:77:43:92:2c:63:6e:f8:08:51:09:38:9a:d0: 69:91:ac:ce:c4:03:c7:24:f5:4d:d3:e9:8a:90:83:b9:74:bc: 48:e0:a6:06:20:e3:b1:85:70:e6:e2:ac:0a:30:d3:84:a8:22: f0:af:bf:4a:5c:b0:4f:c4:dc:99:45:1d:81:75:f6:bd:85:4d: 70:c2:8a:7c:89:ae:ba:0b:2d:b3:ed:fd:21:dc:64:53:87:bf: 1d:ca:e2:1b:d1:d8:be:34:db:35:50:cc:1e:31:58:38:29:9a: 02:42:77:65:75:a4:37:fa:88:11:22:49:32:de:a1:6c:3e:17: 8d:c2:c3:6b:21:f8:07:56:b7:97:62:ff:ce:13:84:8f:94:56: 83:c0:a9:43:d9:70:39:1b:08:2c:20:7d:15:6b:cb:05:7d:fa: 26:73:0e:fa:f5:90:17:58:e7:2e:26:68:f9:dd:21:fd:90:ba: 44:79:05:30:1f:65:54:79:a8:63:12:85:9b:1a:af:f2:b9:04: 25:45:1c:27 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCOfwiucE67YnUHH5wlfuPIR/pkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDFaFw0yNTExMjAxMjAwMDFaMDMxMTAvBgNV BAMTKDE4Qzc5ODQyQUU0NkQwOTU4MkRBOERBMDQ2QzY3REYzNjNFQjIxMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz0FQYdCMjKh+vpJyZEx60PHZI 0X1YPXWIf+JtCionaUJRdPt39hE05t74KPVBuxrBhB9f52qxs6n8tGMRTp90jgYq KZsMaYORqxgZsBeDG5mV9Jt+rx1pL/k/zC4AAY2fhIUi8PrK9mInhdLqTykbL2IW i37LFT4XtYJZyqcjN1w5MGjMNagdwuV+eEEHQaZ2x9cRK5+0U5S9VPNxkEkLpGx8 XyXrwdqhZMDsPGKtDCWCfv94FCFg8QCUXtrifJzSZQpixJO9+Qf0ik4bhnDan8U1 DNnhCrjbpzzQVSQ277ecYnHkRp25l8HBy0lgM8FMIWIE8xcHlZp8Hia7LnNJAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUGMeYQq5G0JWC2o2gRsZ982PrIQQwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzczNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAHUw DQYJKoZIhvcNAQELBQADggEBACbGl0o8zkkuVZrqMgs831Uj5urV7LX38zA/32/V FeC4ZPRa1Jj/8yhKnRFl0wHMb7Dz3/k4AnLbvcF4d0OSLGNu+AhRCTia0GmRrM7E A8ck9U3T6YqQg7l0vEjgpgYg47GFcObirAow04SoIvCvv0pcsE/E3JlFHYF19r2F TXDCinyJrroLLbPt/SHcZFOHvx3K4hvR2L402zVQzB4xWDgpmgJCd2V1pDf6iBEi STLeoWw+F43Cw2sh+AdWt5di/84ThI+UVoPAqUPZcDkbCCwgfRVrywV9+iZzDvr1 kBdY5y4maPndIf2QukR5BTAfZVR5qGMShZsar/K5BCVFHCc= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org