$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: f/PfUh13qwQbqBOuR7Y1xgR/xJQ98pR+42yK2Mrg59s= Subject key identifier: DF:87:AF:F7:0C:1B:BC:19:7E:18:5B:C7:7C:EE:01:FB:83:93:12:C8 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 784C749F21325D22D78755A1BD5B42C98426E19F Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa Signing time: Thu 14 Nov 2024 17:23:26 +0000 ROA not before: Thu 14 Nov 2024 17:18:26 +0000 ROA not after: Thu 13 Nov 2025 17:23:26 +0000 asID: 58485 IP address blocks: 2402:e100:ae::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4c:74:9f:21:32:5d:22:d7:87:55:a1:bd:5b:42:c9:84:26:e1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 14 17:18:26 2024 GMT Not After : Nov 13 17:23:26 2025 GMT Subject: CN=DF87AFF70C1BBC197E185BC77CEE01FB839312C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b4:6c:27:a3:2c:19:f7:59:db:5e:47:75:3f: de:9f:77:e2:b7:48:3a:1f:b0:36:f1:c6:1f:aa:ae: 2e:bd:70:e7:3c:e8:93:f9:98:50:a2:48:76:7b:4d: b8:09:13:13:1c:8d:75:10:a5:ba:78:fd:b1:5a:3b: b4:2f:b5:35:f4:b2:6a:4b:37:43:99:d6:96:37:23: 86:cb:89:c8:b2:be:23:43:c2:2e:13:89:78:cb:6a: 8e:f1:11:a1:f1:a2:64:80:46:fe:43:85:52:41:46: 89:19:eb:15:3e:b9:63:f1:11:74:5f:60:98:d2:89: 9c:a8:51:e8:e1:7b:d4:ad:31:2f:60:dc:d0:3f:df: 76:48:77:2c:9d:93:34:bb:24:15:67:cd:7b:66:6e: 05:23:3b:45:9a:4b:e7:a0:13:37:12:7a:a7:48:5a: ec:c0:45:22:1c:90:86:d0:a7:ab:a3:54:5a:82:6b: 6c:00:08:35:ec:cb:ec:41:8b:37:1e:6c:ec:9e:f9: 11:7f:4e:9b:8c:37:90:2f:67:c8:57:d0:21:ee:d4: 24:bb:b2:7b:40:f1:2a:5d:48:30:a6:3b:c2:c8:f0: 6d:4a:1e:37:98:df:18:ad:4a:7e:5b:7c:63:ef:a5: cd:a8:c2:05:64:e2:de:42:e5:88:6e:3e:db:91:b2: b2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:87:AF:F7:0C:1B:BC:19:7E:18:5B:C7:7C:EE:01:FB:83:93:12:C8 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a61653a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:ae::/48 Signature Algorithm: sha256WithRSAEncryption 03:21:86:73:2c:a6:6e:9f:48:de:f9:13:23:0a:dd:9b:57:35: ec:3d:58:ae:4d:4c:b7:19:31:57:ca:3d:01:84:f9:5e:bf:be: 35:af:e8:ce:a8:b6:19:ed:26:b2:d4:bc:3f:68:21:4c:70:92: a7:83:ae:12:da:d8:a8:84:59:78:bf:1d:68:03:1d:7c:1e:ec: 30:b5:5d:f5:44:29:26:21:90:40:18:3a:ee:7a:4f:a5:96:2d: ed:96:7b:a9:e5:a3:fd:93:42:73:da:99:ca:5e:27:9d:b6:aa: c9:75:40:45:1a:2e:b8:ad:93:0a:08:f8:84:cb:67:c4:05:cb: 22:5a:eb:e4:f6:b8:4e:e4:17:54:d1:93:e2:eb:eb:e4:83:df: 9b:3d:de:78:8e:ed:fe:c2:91:f1:75:63:fe:ad:79:20:8a:15: d5:26:9d:67:2b:99:5e:01:57:f4:4c:1c:71:36:d0:50:b6:fd: 22:8c:23:c2:1d:a9:b4:53:d7:6b:7f:c8:32:af:7b:67:17:15: 4e:49:4b:63:dc:cc:58:b4:13:5c:32:8b:7c:83:97:af:2f:4d: 70:31:97:0e:43:02:9d:bb:e7:b5:81:04:b3:ea:8e:1f:84:0f: 87:63:de:bc:8c:fc:a8:2b:e0:3d:c5:db:88:99:cb:8a:65:4e: 31:3a:f1:c3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUeEx0nyEyXSLXh1WhvVtCyYQm4Z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMTQxNzE4MjZaFw0yNTExMTMxNzIzMjZaMDMxMTAvBgNV BAMTKERGODdBRkY3MEMxQkJDMTk3RTE4NUJDNzdDRUUwMUZCODM5MzEyQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCstGwnoywZ91nbXkd1P96fd+K3 SDofsDbxxh+qri69cOc86JP5mFCiSHZ7TbgJExMcjXUQpbp4/bFaO7QvtTX0smpL N0OZ1pY3I4bLiciyviNDwi4TiXjLao7xEaHxomSARv5DhVJBRokZ6xU+uWPxEXRf YJjSiZyoUejhe9StMS9g3NA/33ZIdyydkzS7JBVnzXtmbgUjO0WaS+egEzcSeqdI WuzARSIckIbQp6ujVFqCa2wACDXsy+xBizcebOye+RF/TpuMN5AvZ8hX0CHu1CS7 sntA8SpdSDCmO8LI8G1KHjeY3xitSn5bfGPvpc2owgVk4t5C5YhuPtuRsrIhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU34ev9wwbvBl+GFvHfO4B+4OTEsgwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhNjE2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAAK4w DQYJKoZIhvcNAQELBQADggEBAAMhhnMspm6fSN75EyMK3ZtXNew9WK5NTLcZMVfK PQGE+V6/vjWv6M6othntJrLUvD9oIUxwkqeDrhLa2KiEWXi/HWgDHXwe7DC1XfVE KSYhkEAYOu56T6WWLe2We6nlo/2TQnPamcpeJ522qsl1QEUaLritkwoI+ITLZ8QF yyJa6+T2uE7kF1TRk+Lr6+SD35s93niO7f7CkfF1Y/6teSCKFdUmnWcrmV4BV/RM HHE20FC2/SKMI8IdqbRT12t/yDKve2cXFU5JS2PczFi0E1wyi3yDl68vTXAxlw5D Ap2757WBBLPqjh+ED4dj3ryM/Kgr4D3F24iZy4plTjE68cM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org