$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: XJSwgnwcVLRlMk6ocGTQHUXKSu7UJnJFdHo9dWgTxWU= Subject key identifier: B6:8C:3B:27:25:85:64:67:E0:09:A9:59:F3:B6:E4:DC:FC:B0:8A:CB Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 6E9354EB700E31599623B6E96A365CDA31F3587E Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:52:26 +0000 ROA not before: Thu 21 Dec 2023 11:47:26 +0000 ROA not after: Thu 19 Dec 2024 11:52:26 +0000 asID: 58485 IP address blocks: 2402:e100:75::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:93:54:eb:70:0e:31:59:96:23:b6:e9:6a:36:5c:da:31:f3:58:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:47:26 2023 GMT Not After : Dec 19 11:52:26 2024 GMT Subject: CN=B68C3B2725856467E009A959F3B6E4DCFCB08ACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:57:83:ee:ec:d2:bc:82:b3:0b:11:b0:90:7d: 01:e4:cc:ec:db:57:b2:06:a7:72:c0:e1:c4:53:1f: a6:f7:c7:8c:21:22:da:4c:41:36:d9:0f:70:ec:ab: e4:e8:db:89:43:ed:ca:30:8b:71:25:c9:54:e9:f4: 2e:0b:b3:5e:27:ec:c4:af:e9:ea:10:4c:5e:a0:7a: 5e:a5:8e:a9:0f:5a:6a:80:ed:fb:07:36:b0:f4:20: 39:e8:77:56:a6:97:21:2e:47:09:59:5d:3b:05:44: 1c:d0:c4:0f:a2:d6:27:93:a0:1f:e1:ff:dd:f8:d7: 6b:bd:ca:87:d0:ba:2d:63:79:bc:c0:d4:2c:0e:c1: a4:90:18:cc:84:17:78:2b:cc:55:0d:dc:69:4d:dc: 7d:17:ef:a2:22:3d:ec:12:65:0b:69:d7:2e:36:de: a1:81:61:da:b2:70:77:3d:15:ba:c9:31:8b:98:56: 15:27:b5:fb:09:80:09:b5:f2:76:6f:dd:e8:f8:ba: e8:e0:4f:f4:1b:4e:48:21:8b:1e:d7:96:6d:6b:ad: 65:83:8c:e4:23:74:f6:0d:11:bc:a6:7c:4a:81:0e: 8b:3b:6d:c1:0b:3b:46:4f:b0:4d:c4:c7:c0:8a:21: e6:ff:87:f6:76:b7:53:91:11:09:06:dc:27:bf:2f: 71:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8C:3B:27:25:85:64:67:E0:09:A9:59:F3:B6:E4:DC:FC:B0:8A:CB X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a37353a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:75::/48 Signature Algorithm: sha256WithRSAEncryption 0c:51:ad:40:ab:c8:03:3f:20:97:f2:e1:25:e7:5e:81:4f:65: ca:3c:28:a9:02:07:2b:63:35:f1:44:49:49:c4:8c:f3:f9:f3: c7:42:bb:08:ef:e6:2e:28:50:0e:e7:c3:e4:67:4c:18:32:8c: a1:d0:08:02:ce:ba:6f:61:89:41:b9:ac:6a:67:ef:ee:df:28: a3:e0:88:07:cf:9a:05:3f:db:e5:b6:cd:4c:30:ac:a9:33:3c: e0:e5:10:3d:3c:4f:d6:50:9d:45:3f:b2:be:6e:e8:bb:a3:48: 62:f7:71:a0:0a:e1:5e:b4:21:7d:26:ac:ad:78:70:a8:41:fe: 67:dd:8a:43:5f:80:d7:51:e1:8a:98:7d:de:da:32:3a:9a:2f: 29:94:f3:7d:e4:94:ee:73:cf:a8:80:40:45:25:f4:92:52:c2: 47:42:c7:6a:91:16:5e:b9:01:0d:29:f8:4a:30:42:b9:0d:68: 9d:8b:ad:b5:fb:a5:20:10:a7:f4:34:9d:2f:f6:ed:f6:dd:d2: 3b:0d:da:7d:6a:1c:7c:86:72:72:62:f3:4a:db:7b:e2:1e:73: f9:70:a0:f5:68:93:45:73:76:9e:86:68:e7:e0:56:5c:0c:f5: 8d:d4:32:06:c4:43:35:23:e7:d7:1a:e6:97:95:89:e8:cf:38: 8d:3b:11:54 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbpNU63AOMVmWI7bpajZc2jHzWH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ3MjZaFw0yNDEyMTkxMTUyMjZaMDMxMTAvBgNV BAMTKEI2OEMzQjI3MjU4NTY0NjdFMDA5QTk1OUYzQjZFNERDRkNCMDhBQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuV4Pu7NK8grMLEbCQfQHkzOzb V7IGp3LA4cRTH6b3x4whItpMQTbZD3Dsq+To24lD7cowi3ElyVTp9C4Ls14n7MSv 6eoQTF6gel6ljqkPWmqA7fsHNrD0IDnod1amlyEuRwlZXTsFRBzQxA+i1ieToB/h /93412u9yofQui1jebzA1CwOwaSQGMyEF3grzFUN3GlN3H0X76IiPewSZQtp1y42 3qGBYdqycHc9FbrJMYuYVhUntfsJgAm18nZv3ej4uujgT/QbTkghix7Xlm1rrWWD jOQjdPYNEbymfEqBDos7bcELO0ZPsE3Ex8CKIeb/h/Z2t1OREQkG3Ce/L3FjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtow7JyWFZGfgCalZ87bk3PywisswHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzczNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAHUw DQYJKoZIhvcNAQELBQADggEBAAxRrUCryAM/IJfy4SXnXoFPZco8KKkCBytjNfFE SUnEjPP588dCuwjv5i4oUA7nw+RnTBgyjKHQCALOum9hiUG5rGpn7+7fKKPgiAfP mgU/2+W2zUwwrKkzPODlED08T9ZQnUU/sr5u6LujSGL3caAK4V60IX0mrK14cKhB /mfdikNfgNdR4YqYfd7aMjqaLymU833klO5zz6iAQEUl9JJSwkdCx2qRFl65AQ0p +EowQrkNaJ2LrbX7pSAQp/Q0nS/27fbd0jsN2n1qHHyGcnJi80rbe+Iec/lwoPVo k0Vzdp6GaOfgVlwM9Y3UMgbEQzUj59ca5peViejPOI07EVQ= -----END CERTIFICATE-----Generated at Fri May 3 00:27:04 2024 by rpki-client on console-fra.rpki-client.org