$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: bs0ZMOoWFJzZsSzRHXIPfE50E27zzOl01UAYg6gx044= Subject key identifier: 8E:A0:5E:80:60:99:1F:ED:F2:F9:83:FD:08:02:BE:A7:96:9F:BC:42 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 49CD08A73EC91CBEB7C2FABCBCEE14556E9E2F14 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 21 Nov 2024 12:00:00 +0000 ROA not before: Thu 21 Nov 2024 11:55:00 +0000 ROA not after: Thu 20 Nov 2025 12:00:00 +0000 asID: 58485 IP address blocks: 2402:e100:ac::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:cd:08:a7:3e:c9:1c:be:b7:c2:fa:bc:bc:ee:14:55:6e:9e:2f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 21 11:55:00 2024 GMT Not After : Nov 20 12:00:00 2025 GMT Subject: CN=8EA05E8060991FEDF2F983FD0802BEA7969FBC42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:20:69:c4:99:1d:ed:37:ad:41:31:8e:60:40: fc:a1:d3:89:42:f1:6d:30:74:04:37:ac:4b:2b:22: a7:8a:10:d8:fc:72:d7:f6:fd:ce:12:69:cf:58:95: aa:85:b8:87:76:85:0c:9c:9f:8e:68:7e:55:85:46: ea:15:2b:e1:78:16:3b:c8:81:ad:9a:80:80:6b:7e: 94:f7:3e:98:ab:9f:68:35:83:cd:2e:67:b8:13:0f: 90:6c:75:99:3b:91:26:2e:67:45:35:45:a4:82:4c: 8a:b8:63:f3:31:53:c2:e5:f2:68:d6:2a:df:0f:99: 89:27:f8:bb:1a:18:56:1c:b2:34:c2:9d:e7:ec:8f: 4f:74:10:5f:54:98:62:01:12:3c:02:cb:21:61:45: 0e:f4:d6:51:e6:a8:2c:08:f5:53:25:f9:e7:9e:90: 47:cc:da:af:f4:5d:0e:12:e2:f4:c7:f6:24:a3:fb: 70:5e:4b:c0:42:ee:9d:a4:0f:55:c0:1b:de:1b:95: cd:d9:5a:db:d5:88:91:1e:cd:87:85:b1:a2:f6:72: 48:b3:f0:df:c6:e9:e8:3b:8c:6f:c5:20:a6:c4:1d: b3:bf:e5:e8:af:d8:c1:f1:b6:07:c1:9d:2f:83:0d: 3b:11:f1:4f:b6:e9:36:43:17:85:9d:05:c1:a5:02: 30:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A0:5E:80:60:99:1F:ED:F2:F9:83:FD:08:02:BE:A7:96:9F:BC:42 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61633a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:ac::/48 Signature Algorithm: sha256WithRSAEncryption 74:8c:cf:01:24:2a:8e:7f:5d:cb:38:65:6c:d9:65:4b:1f:e8: fa:46:81:ad:20:86:51:fb:ed:2f:35:c5:63:2d:17:3c:cf:ce: ff:ae:97:77:e2:46:6f:5c:65:3a:04:e2:f0:b6:1e:5e:c4:1c: 10:d3:8d:15:71:b5:06:4d:c4:15:9e:3e:10:9d:9f:2f:52:56: a8:11:ec:0d:1a:f2:e0:11:ec:c2:18:5f:22:dd:95:dd:75:1f: d2:1e:38:91:67:ba:6f:90:76:f4:1c:c8:b5:0e:34:74:9f:be: 96:3c:c9:b7:88:d0:e9:ff:48:45:ef:6b:4b:c3:16:13:a1:92: 70:b7:0a:6e:9f:d8:83:1f:42:7f:28:c4:4d:0f:d8:96:21:2f: 52:85:c3:33:88:88:20:c4:1b:7b:b1:94:c6:2e:5a:ef:70:10: 90:44:e3:85:d4:31:40:26:40:06:74:df:6c:8e:55:f8:6e:0a: 68:59:c6:30:ec:4e:90:68:f4:0d:9c:3e:fb:7b:19:05:2f:86: 1e:36:d1:77:12:54:3e:a5:d6:34:8e:6b:02:4b:5e:a5:35:ce: 97:eb:b7:d0:a7:bd:4a:01:02:4d:a6:a0:8a:95:60:4f:93:58: 9c:e6:9a:a9:4d:54:00:4d:7f:a9:6b:97:4b:53:45:45:80:9f: 32:ec:5a:d8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSc0Ipz7JHL63wvq8vO4UVW6eLxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMjExMTU1MDBaFw0yNTExMjAxMjAwMDBaMDMxMTAvBgNV BAMTKDhFQTA1RTgwNjA5OTFGRURGMkY5ODNGRDA4MDJCRUE3OTY5RkJDNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaIGnEmR3tN61BMY5gQPyh04lC 8W0wdAQ3rEsrIqeKENj8ctf2/c4Sac9YlaqFuId2hQycn45oflWFRuoVK+F4FjvI ga2agIBrfpT3Ppirn2g1g80uZ7gTD5BsdZk7kSYuZ0U1RaSCTIq4Y/MxU8Ll8mjW Kt8PmYkn+LsaGFYcsjTCnefsj090EF9UmGIBEjwCyyFhRQ701lHmqCwI9VMl+eee kEfM2q/0XQ4S4vTH9iSj+3BeS8BC7p2kD1XAG94blc3ZWtvViJEezYeFsaL2ckiz 8N/G6eg7jG/FIKbEHbO/5eiv2MHxtgfBnS+DDTsR8U+26TZDF4WdBcGlAjDLAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUjqBegGCZH+3y+YP9CAK+p5afvEIwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhNjE2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAKww DQYJKoZIhvcNAQELBQADggEBAHSMzwEkKo5/Xcs4ZWzZZUsf6PpGga0ghlH77S81 xWMtFzzPzv+ul3fiRm9cZToE4vC2Hl7EHBDTjRVxtQZNxBWePhCdny9SVqgR7A0a 8uAR7MIYXyLdld11H9IeOJFnum+QdvQcyLUONHSfvpY8ybeI0On/SEXva0vDFhOh knC3Cm6f2IMfQn8oxE0P2JYhL1KFwzOIiCDEG3uxlMYuWu9wEJBE44XUMUAmQAZ0 32yOVfhuCmhZxjDsTpBo9A2cPvt7GQUvhh420XcSVD6l1jSOawJLXqU1zpfrt9Cn vUoBAk2moIqVYE+TWJzmmqlNVABNf6lrl0tTRUWAnzLsWtg= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org