$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: AwyhgoC9SnkiONSyyarxojN2GzihXUBvalkihTTc9zE= Subject key identifier: 42:66:56:8A:17:53:45:74:2E:21:7D:F8:9E:7E:98:2C:BC:E2:CA:D2 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 36BA5FF43EFAF98018AC74F8AEB9F80BA488AA8E Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:00 +0000 ROA not before: Thu 21 Nov 2024 11:55:00 +0000 ROA not after: Thu 20 Nov 2025 12:00:00 +0000 asID: 58485 IP address blocks: 2402:e100:80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ba:5f:f4:3e:fa:f9:80:18:ac:74:f8:ae:b9:f8:0b:a4:88:aa:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:00 2024 GMT Not After : Nov 20 12:00:00 2025 GMT Subject: CN=4266568A175345742E217DF89E7E982CBCE2CAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:0f:80:11:94:ef:11:56:69:ba:f7:e7:be: 3e:8c:e6:b2:95:2e:43:23:e0:3a:15:80:6d:1b:37: 56:fb:10:b4:f5:50:6d:80:38:2a:5b:35:08:24:2a: 20:09:e5:82:17:46:c8:ab:a0:2a:2d:9c:eb:b6:98: 13:6f:25:24:43:12:c6:e3:09:df:2b:a7:a4:32:a3: 0f:9d:55:39:34:48:d0:64:26:e6:9f:b0:68:49:74: fe:cf:a2:fd:fc:88:eb:62:1e:bf:cb:1b:f8:5c:30: dd:82:35:5c:09:91:76:17:a6:52:b3:83:64:91:08: 6d:0b:cb:0d:8d:0f:37:b2:63:b5:8e:f3:72:96:56: 91:be:ba:bc:03:72:33:f9:6e:b7:3f:36:09:9e:e5: 65:e2:fe:1e:d8:24:7d:c6:5c:e9:75:47:b9:fd:24: 08:2b:cc:a3:05:69:94:7c:1d:cd:5f:49:cf:5a:33: b9:89:ef:ec:ac:04:c9:5e:38:25:21:c0:f8:70:5c: 47:e8:a4:53:cc:bb:0e:9d:0a:a0:21:0b:a2:c8:d7: 34:8d:23:66:a2:90:b1:c5:ae:89:92:14:22:58:73: 94:99:be:02:a4:ea:fc:90:5d:d4:0a:cc:57:72:09: 95:fa:71:98:f5:1b:db:e9:6f:d5:22:a7:e9:88:dc: 96:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:66:56:8A:17:53:45:74:2E:21:7D:F8:9E:7E:98:2C:BC:E2:CA:D2 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:80::/48 Signature Algorithm: sha256WithRSAEncryption 2c:1b:1a:d5:b3:db:f5:70:72:7f:c7:98:19:33:71:b1:9b:14: bc:5d:bb:ab:c7:75:c3:1b:f0:d1:47:05:71:54:f4:82:08:70: 43:e9:fc:fb:df:2d:a6:93:ca:39:ba:a0:bf:e7:9d:1e:58:30: d2:69:35:85:6c:a2:aa:d7:ea:9e:ac:a3:2f:dd:c7:a4:71:8f: 8f:53:5a:18:2e:d0:15:73:26:f8:75:5c:09:8a:b0:b7:9c:97: b1:90:d1:b6:73:30:73:68:cf:d7:d7:67:50:b2:15:f6:0c:ce: b9:6c:44:8c:c1:4e:3f:e3:4c:0a:9b:9f:88:31:6b:c4:2d:67: da:54:98:26:0b:9d:94:f8:9a:14:7d:58:01:08:8c:0b:13:48: 56:fb:23:1c:2b:60:93:b0:08:9f:fe:28:f6:9c:53:15:fb:d0: f9:70:b8:1d:34:25:bc:ea:5a:aa:9a:90:8e:c4:6d:c5:a5:0c: 41:63:70:f5:14:6b:9f:61:48:3f:18:b1:77:f4:71:ed:55:1f: d9:a3:06:0e:17:d3:34:ca:81:b5:66:2c:57:5e:86:24:1b:cf: e9:ae:dd:21:69:3c:5b:08:c6:c6:37:ef:97:fa:2a:69:ed:14: 56:ba:c9:bb:c4:be:d1:3a:fd:f9:85:ab:4c:eb:e3:d7:0c:77: 44:32:9c:1b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNrpf9D76+YAYrHT4rrn4C6SIqo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDBaFw0yNTExMjAxMjAwMDBaMDMxMTAvBgNV BAMTKDQyNjY1NjhBMTc1MzQ1NzQyRTIxN0RGODlFN0U5ODJDQkNFMkNBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24A+AEZTvEVZpuvfnvj6M5rKV LkMj4DoVgG0bN1b7ELT1UG2AOCpbNQgkKiAJ5YIXRsiroCotnOu2mBNvJSRDEsbj Cd8rp6Qyow+dVTk0SNBkJuafsGhJdP7Pov38iOtiHr/LG/hcMN2CNVwJkXYXplKz g2SRCG0Lyw2NDzeyY7WO83KWVpG+urwDcjP5brc/Ngme5WXi/h7YJH3GXOl1R7n9 JAgrzKMFaZR8Hc1fSc9aM7mJ7+ysBMleOCUhwPhwXEfopFPMuw6dCqAhC6LI1zSN I2aikLHFromSFCJYc5SZvgKk6vyQXdQKzFdyCZX6cZj1G9vpb9Uip+mI3JbxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUQmZWihdTRXQuIX34nn6YLLziytIwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIAw DQYJKoZIhvcNAQELBQADggEBACwbGtWz2/Vwcn/HmBkzcbGbFLxdu6vHdcMb8NFH BXFU9IIIcEPp/PvfLaaTyjm6oL/nnR5YMNJpNYVsoqrX6p6soy/dx6Rxj49TWhgu 0BVzJvh1XAmKsLecl7GQ0bZzMHNoz9fXZ1CyFfYMzrlsRIzBTj/jTAqbn4gxa8Qt Z9pUmCYLnZT4mhR9WAEIjAsTSFb7IxwrYJOwCJ/+KPacUxX70PlwuB00JbzqWqqa kI7EbcWlDEFjcPUUa59hSD8YsXf0ce1VH9mjBg4X0zTKgbVmLFdehiQbz+mu3SFp PFsIxsY375f6KmntFFa6ybvEvtE6/fmFq0zr49cMd0QynBs= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org