$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa File: 323430323a653130303a3a2f33322d3438203d3e203538343835.roa (raw, json) Hash identifier: vUtKxLKXTfruRLMlOvpg8rz9eUIDHFfVkTATVb94ii4= Subject key identifier: B2:0B:CC:4E:39:DB:AB:5A:C1:AB:75:C7:32:F6:84:1B:2F:39:8D:5A Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 0443DD94AD37273EE406DF780812448B29EA3C45 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa Signing time: Thu 03 Oct 2024 20:00:00 +0000 ROA not before: Thu 03 Oct 2024 19:55:00 +0000 ROA not after: Thu 02 Oct 2025 20:00:00 +0000 asID: 58485 IP address blocks: 2402:e100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:43:dd:94:ad:37:27:3e:e4:06:df:78:08:12:44:8b:29:ea:3c:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 3 19:55:00 2024 GMT Not After : Oct 2 20:00:00 2025 GMT Subject: CN=B20BCC4E39DBAB5AC1AB75C732F6841B2F398D5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4a:0f:31:33:d3:09:d8:62:90:a6:05:4a:00: c6:c9:9f:f5:5b:b9:2c:d6:8a:f8:07:22:2f:b0:5b: 25:f2:4a:3f:7f:bc:37:c7:c2:23:ed:82:9b:8f:65: e7:c8:68:45:4c:e5:a3:8e:2d:69:ea:50:90:29:32: 48:d4:2d:ce:3e:4c:c2:5a:35:9f:f7:f0:ff:2f:c5: bd:b0:84:d5:10:06:ca:f6:e2:d4:b1:5b:b1:40:7a: 39:3e:82:eb:39:d0:b7:4a:60:a6:2a:8b:04:40:54: 61:e9:07:9e:d0:13:f7:93:71:dc:d6:1a:90:31:7b: 55:20:08:62:d5:6c:13:1d:87:33:c3:19:9a:04:8d: dc:97:b7:0f:ca:7f:7e:a7:ab:92:90:8d:29:e0:dd: 55:da:e6:6e:3b:55:54:39:d2:be:8e:05:5d:ba:11: 71:84:b4:2c:57:0f:57:e6:75:3c:b0:13:f3:14:27: 15:2f:e2:41:e2:33:25:9c:2d:f2:71:ad:e2:ef:bf: cf:75:bf:06:fb:76:c6:17:c1:40:8b:ab:30:8c:6e: c7:da:98:1b:88:a9:9f:72:e0:9b:90:5a:b5:9d:22: a7:a9:23:5b:e7:98:9b:e6:6a:fd:19:78:cf:38:2e: c3:44:22:78:38:05:f3:90:72:56:a8:32:e5:cc:ea: 85:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0B:CC:4E:39:DB:AB:5A:C1:AB:75:C7:32:F6:84:1B:2F:39:8D:5A X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a3a2f33322d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100::/32 Signature Algorithm: sha256WithRSAEncryption 7d:85:2b:b2:20:ee:b1:e9:d7:c4:07:c9:79:e5:7a:8e:81:94: 62:21:36:9e:05:60:33:19:f0:da:79:6c:7e:fa:ae:85:a0:7a: f3:cb:8e:db:e6:85:c3:bd:32:75:0a:32:7a:fb:00:48:f0:e8: 98:f1:95:47:ca:ef:54:2a:3d:55:db:8b:f7:29:cb:ef:72:f4: 7e:90:f5:42:ba:ef:5d:4b:88:9f:ac:13:9f:b7:3e:41:17:25: a7:05:3a:ca:c6:d6:89:13:5d:b6:85:a4:16:98:78:0a:43:08: 62:07:5e:93:dd:be:04:88:3b:af:b9:ec:90:0f:98:8a:ca:07: 09:49:b7:8f:1b:a4:b5:68:a9:a7:30:fa:d9:00:f6:18:a3:85: 80:0e:56:fd:9f:2a:c6:7e:4e:80:cd:10:15:0a:be:a8:cd:f7: 87:74:cd:eb:28:dc:3a:f6:94:0a:c9:37:02:82:b9:a2:62:a4: 17:00:2d:40:b6:14:58:dd:92:cf:64:ae:01:a3:44:55:93:c5: f5:90:46:28:25:65:03:8a:e1:ec:c4:11:39:0f:1a:e2:56:79: 5e:5e:65:97:c8:4d:97:bc:d3:8a:2e:c8:96:27:d4:38:12:8b: b2:00:b3:dd:f2:28:79:1c:5c:9c:09:9d:55:5b:50:8c:91:34: 9e:a3:39:04 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUBEPdlK03Jz7kBt94CBJEiynqPEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDEwMDMxOTU1MDBaFw0yNTEwMDIyMDAwMDBaMDMxMTAvBgNV BAMTKEIyMEJDQzRFMzlEQkFCNUFDMUFCNzVDNzMyRjY4NDFCMkYzOThENUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcSg8xM9MJ2GKQpgVKAMbJn/Vb uSzWivgHIi+wWyXySj9/vDfHwiPtgpuPZefIaEVM5aOOLWnqUJApMkjULc4+TMJa NZ/38P8vxb2whNUQBsr24tSxW7FAejk+gus50LdKYKYqiwRAVGHpB57QE/eTcdzW GpAxe1UgCGLVbBMdhzPDGZoEjdyXtw/Kf36nq5KQjSng3VXa5m47VVQ50r6OBV26 EXGEtCxXD1fmdTywE/MUJxUv4kHiMyWcLfJxreLvv891vwb7dsYXwUCLqzCMbsfa mBuIqZ9y4JuQWrWdIqepI1vnmJvmav0ZeM84LsNEIng4BfOQclaoMuXM6oWJAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUsgvMTjnbq1rBq3XHMvaEGy85jVowHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAuEAMA0GCSqGSIb3 DQEBCwUAA4IBAQB9hSuyIO6x6dfEB8l55XqOgZRiITaeBWAzGfDaeWx++q6FoHrz y47b5oXDvTJ1CjJ6+wBI8OiY8ZVHyu9UKj1V24v3KcvvcvR+kPVCuu9dS4ifrBOf tz5BFyWnBTrKxtaJE122haQWmHgKQwhiB16T3b4EiDuvueyQD5iKygcJSbePG6S1 aKmnMPrZAPYYo4WADlb9nyrGfk6AzRAVCr6ozfeHdM3rKNw69pQKyTcCgrmiYqQX AC1AthRY3ZLPZK4Bo0RVk8X1kEYoJWUDiuHsxBE5DxriVnleXmWXyE2XvNOKLsiW J9Q4EouyALPd8ih5HFycCZ1VW1CMkTSeozkE -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org