$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: ONuozEbpb01+u6Vu7lx77iH4Ho0ONE7f91XXUIEcgfI= Subject key identifier: B4:58:C8:C3:54:34:74:09:AA:9E:21:07:13:99:E2:EB:E2:2E:B0:74 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 60C4BF666AD5B3D3814BD05AAFB3740BFCD5EE92 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Dec 2023 11:53:34 +0000 ROA not before: Thu 21 Dec 2023 11:48:34 +0000 ROA not after: Thu 19 Dec 2024 11:53:34 +0000 asID: 58485 IP address blocks: 2402:e100:81::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 05:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:c4:bf:66:6a:d5:b3:d3:81:4b:d0:5a:af:b3:74:0b:fc:d5:ee:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 21 11:48:34 2023 GMT Not After : Dec 19 11:53:34 2024 GMT Subject: CN=B458C8C354347409AA9E21071399E2EBE22EB074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:da:16:6f:23:7f:8c:ad:28:1a:84:99:cd:72: 9b:59:c0:55:3d:fa:d1:4c:88:5f:fb:a4:3e:aa:73: fc:32:2c:6e:3d:e4:69:7e:f3:b2:a2:b7:ed:66:b3: fa:84:bd:6d:b0:10:fd:6f:f8:af:60:ee:33:e6:a8: 12:30:c6:91:3b:68:6e:e7:92:aa:fa:42:d0:a1:ac: 83:93:d8:35:12:d5:7f:8f:2b:36:6a:2a:8d:cb:00: 27:b2:47:39:9c:eb:b6:ac:ec:b1:11:d3:5c:83:9c: ba:0e:d0:a0:aa:ed:e6:06:d4:a4:43:72:ec:a6:1b: 8f:12:a0:25:c5:70:cb:ad:a0:a1:65:35:1f:f7:bf: 83:6b:42:88:be:0e:aa:15:42:26:4f:1c:0d:79:f5: ae:5d:ed:49:82:bb:4b:fe:3c:55:74:03:70:be:84: be:26:5a:62:f0:82:9b:5c:95:53:ca:8e:17:4a:b1: 44:b9:fb:b6:86:35:f5:90:44:20:55:27:d9:69:af: c5:70:f3:be:c0:22:fa:a5:ac:e0:5f:93:aa:9d:ad: 8c:14:4b:cd:a4:5e:ac:78:9f:75:4d:ca:ff:83:f1: 8d:dd:23:2d:31:6b:64:e0:9f:d5:51:56:84:b9:f2: 45:f1:69:37:8e:3d:13:d1:d7:c6:72:3d:af:f9:6a: 09:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:58:C8:C3:54:34:74:09:AA:9E:21:07:13:99:E2:EB:E2:2E:B0:74 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:81::/48 Signature Algorithm: sha256WithRSAEncryption 02:ab:18:8a:7a:0a:b1:eb:ce:9e:63:73:35:d1:94:f0:0b:fb: d4:94:86:93:d9:99:1a:b3:85:42:55:06:3f:ce:a6:61:2a:32: 89:88:a7:e7:99:08:93:ea:36:18:b0:3a:54:98:0e:cd:3d:06: 18:f3:20:9e:1c:62:51:ba:ee:2c:a9:ec:d9:de:af:9b:c3:b8: af:1d:1f:22:bb:36:9e:7a:d3:7d:2e:a0:bb:5c:2c:bf:2a:d8: 37:2f:3a:df:ae:73:95:42:26:b4:85:ca:8e:86:6a:7e:63:63: b7:6b:e9:ca:da:bd:18:9e:34:b4:78:a9:36:0e:54:94:ec:ca: 82:de:fc:0e:f6:74:81:f8:66:51:67:8c:b2:68:5c:09:2e:8a: 24:ba:11:15:17:ce:41:51:19:97:d2:ee:9e:76:7d:74:56:b3: fb:67:e7:29:19:74:54:a7:74:6d:d4:08:84:45:4f:24:f7:cb: b5:57:38:79:82:25:5f:9c:e7:47:4f:3e:df:a2:5e:ba:29:7f: 12:37:d3:f4:16:54:2b:9d:b0:cc:8b:96:2e:b8:54:59:2a:89: f0:cd:32:e9:a0:db:59:d8:d2:db:69:de:a1:84:1a:d5:a7:3d: fe:03:75:7b:b1:de:a8:a8:e9:7f:45:1d:18:06:4b:2a:83:9c: 95:b4:49:94 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYMS/ZmrVs9OBS9Bar7N0C/zV7pIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMjExMTQ4MzRaFw0yNDEyMTkxMTUzMzRaMDMxMTAvBgNV BAMTKEI0NThDOEMzNTQzNDc0MDlBQTlFMjEwNzEzOTlFMkVCRTIyRUIwNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj2hZvI3+MrSgahJnNcptZwFU9 +tFMiF/7pD6qc/wyLG495Gl+87Kit+1ms/qEvW2wEP1v+K9g7jPmqBIwxpE7aG7n kqr6QtChrIOT2DUS1X+PKzZqKo3LACeyRzmc67as7LER01yDnLoO0KCq7eYG1KRD cuymG48SoCXFcMutoKFlNR/3v4NrQoi+DqoVQiZPHA159a5d7UmCu0v+PFV0A3C+ hL4mWmLwgptclVPKjhdKsUS5+7aGNfWQRCBVJ9lpr8Vw877AIvqlrOBfk6qdrYwU S82kXqx4n3VNyv+D8Y3dIy0xa2Tgn9VRVoS58kXxaTeOPRPR18ZyPa/5agldAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtFjIw1Q0dAmqniEHE5ni6+IusHQwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIEw DQYJKoZIhvcNAQELBQADggEBAAKrGIp6CrHrzp5jczXRlPAL+9SUhpPZmRqzhUJV Bj/OpmEqMomIp+eZCJPqNhiwOlSYDs09BhjzIJ4cYlG67iyp7Nner5vDuK8dHyK7 Np56030uoLtcLL8q2DcvOt+uc5VCJrSFyo6Gan5jY7dr6cravRieNLR4qTYOVJTs yoLe/A72dIH4ZlFnjLJoXAkuiiS6ERUXzkFRGZfS7p52fXRWs/tn5ykZdFSndG3U CIRFTyT3y7VXOHmCJV+c50dPPt+iXropfxI30/QWVCudsMyLli64VFkqifDNMumg 21nY0ttp3qGEGtWnPf4DdXux3qio6X9FHRgGSyqDnJW0SZQ= -----END CERTIFICATE-----Generated at Fri May 3 00:06:27 2024 by rpki-client on console-ams.rpki-client.org