$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: LZiLGSJdIHDnXMLX3SUdSUGcn99p7H2DzXggJdnkwkE= Subject key identifier: CF:FC:98:9B:81:7E:10:ED:87:4E:51:EF:26:39:50:EC:64:F5:26:9E Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 6EC81A006D15801299B90B26F1DE8117ED22D114 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:01 +0000 ROA not before: Thu 21 Nov 2024 11:55:01 +0000 ROA not after: Thu 20 Nov 2025 12:00:01 +0000 asID: 58485 IP address blocks: 2402:e100:81::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c8:1a:00:6d:15:80:12:99:b9:0b:26:f1:de:81:17:ed:22:d1:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:01 2024 GMT Not After : Nov 20 12:00:01 2025 GMT Subject: CN=CFFC989B817E10ED874E51EF263950EC64F5269E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a1:ed:fd:2b:05:97:e2:65:e8:c5:2e:6d:28: 11:1d:85:eb:bc:1d:5e:89:ed:05:4c:a2:73:78:cc: a4:3b:fc:a0:6e:70:e0:6c:b5:48:4a:94:0b:89:ed: c0:0c:1a:ec:a4:bc:2f:49:30:ea:74:ab:83:43:03: f6:65:ba:61:4a:c7:b8:92:82:47:df:b8:ba:2a:6b: d6:a6:5e:a6:c3:7e:dd:f2:1a:d6:54:23:6a:08:83: fc:26:7b:c2:98:8f:f7:4e:31:c8:9a:95:1d:5e:3c: b1:8f:56:cd:dd:a5:85:93:24:ff:3d:66:14:ad:da: fb:83:1c:cc:49:0f:ff:dd:a2:5c:47:4c:45:d3:74: 04:69:a1:f5:cd:27:5b:a4:e4:40:67:42:09:5b:fb: 27:ab:c6:5b:b8:65:b9:62:8e:d3:cc:56:e5:14:4a: 97:f8:81:06:80:ea:fa:68:95:c1:e9:c2:c0:30:41: bd:9b:94:81:dc:d8:db:38:a3:8b:04:19:d9:98:98: 84:57:82:b2:ed:ba:6b:b2:33:19:e6:00:0f:f2:92: 71:bf:65:5b:61:10:13:10:53:3b:27:ac:25:fa:ee: 2f:74:82:9b:a5:fa:b4:54:8a:77:c1:4b:00:50:3f: 40:fe:1b:93:47:b9:ba:7c:6e:cc:1f:c9:76:46:44: e2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FC:98:9B:81:7E:10:ED:87:4E:51:EF:26:39:50:EC:64:F5:26:9E X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a38313a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:81::/48 Signature Algorithm: sha256WithRSAEncryption a4:09:87:72:e9:72:d8:43:ca:66:34:f7:0e:91:83:29:a6:48: 66:2e:ef:82:90:3c:61:ef:4b:12:cb:2f:db:c4:ae:0e:bc:bd: 4c:53:41:30:93:f0:66:60:f1:03:a4:f2:b8:1a:8c:87:be:34: db:03:14:fb:72:1e:92:47:20:77:33:6e:19:b9:da:1d:e5:ba: f3:9c:22:44:f5:d4:9a:1e:3b:db:c0:e4:4d:a5:61:98:ff:68: 66:31:e7:f5:59:0b:fa:b5:b7:41:99:b4:93:e7:23:dd:b5:9c: 69:a1:89:6d:2b:93:d8:34:11:fc:0a:4a:f6:a8:27:6f:aa:60: d8:2e:9e:40:cb:62:f7:d8:6a:15:85:06:81:37:7b:e6:d6:c5: c0:12:9a:9e:4f:d5:03:aa:ec:00:77:2e:f9:4a:e6:70:3b:c5: 5a:a9:80:86:45:05:26:57:00:58:d8:ba:b2:0e:88:f5:8d:ed: 4a:7e:13:62:d1:93:9e:1f:de:91:a5:8e:ec:90:58:06:bc:16: cb:d5:f1:dc:15:02:35:94:0c:7a:70:08:db:c2:87:e4:75:3b: 93:88:a6:15:09:88:d9:e5:27:4e:80:5e:42:6f:7b:0c:87:08: 40:30:61:d9:ab:8b:9b:6b:20:6d:35:bc:86:fc:18:5c:48:b2: c1:f3:ce:56 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbsgaAG0VgBKZuQsm8d6BF+0i0RQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDFaFw0yNTExMjAxMjAwMDFaMDMxMTAvBgNV BAMTKENGRkM5ODlCODE3RTEwRUQ4NzRFNTFFRjI2Mzk1MEVDNjRGNTI2OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxoe39KwWX4mXoxS5tKBEdheu8 HV6J7QVMonN4zKQ7/KBucOBstUhKlAuJ7cAMGuykvC9JMOp0q4NDA/ZlumFKx7iS gkffuLoqa9amXqbDft3yGtZUI2oIg/wme8KYj/dOMcialR1ePLGPVs3dpYWTJP89 ZhSt2vuDHMxJD//dolxHTEXTdARpofXNJ1uk5EBnQglb+yerxlu4ZblijtPMVuUU Spf4gQaA6vpolcHpwsAwQb2blIHc2Ns4o4sEGdmYmIRXgrLtumuyMxnmAA/yknG/ ZVthEBMQUzsnrCX67i90gpul+rRUinfBSwBQP0D+G5NHubp8bswfyXZGROIZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUz/yYm4F+EO2HTlHvJjlQ7GT1Jp4wHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzgzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAIEw DQYJKoZIhvcNAQELBQADggEBAKQJh3LpcthDymY09w6RgymmSGYu74KQPGHvSxLL L9vErg68vUxTQTCT8GZg8QOk8rgajIe+NNsDFPtyHpJHIHczbhm52h3luvOcIkT1 1JoeO9vA5E2lYZj/aGYx5/VZC/q1t0GZtJPnI921nGmhiW0rk9g0EfwKSvaoJ2+q YNgunkDLYvfYahWFBoE3e+bWxcASmp5P1QOq7AB3LvlK5nA7xVqpgIZFBSZXAFjY urIOiPWN7Up+E2LRk54f3pGljuyQWAa8FsvV8dwVAjWUDHpwCNvCh+R1O5OIphUJ iNnlJ06AXkJvewyHCEAwYdmri5trIG01vIb8GFxIssHzzlY= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org