$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa File: 323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa (raw, json) Hash identifier: 7T58fOq0DPMtcC4WYKEb/YqZbz0lw8nZtLVxYnso2b8= Subject key identifier: 79:56:AF:A3:E5:60:E6:A5:30:4F:A6:DD:45:C6:8B:E7:70:7F:97:FB Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 5F81749B8F685A5B6EBA14FC745BEE7818556239 Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa Signing time: Fri 18 Oct 2024 04:01:31 +0000 ROA not before: Fri 18 Oct 2024 03:56:31 +0000 ROA not after: Fri 17 Oct 2025 04:01:31 +0000 asID: 45723 IP address blocks: 2403:1a00:4::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:81:74:9b:8f:68:5a:5b:6e:ba:14:fc:74:5b:ee:78:18:55:62:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Oct 18 03:56:31 2024 GMT Not After : Oct 17 04:01:31 2025 GMT Subject: CN=7956AFA3E560E6A5304FA6DD45C68BE7707F97FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:43:d8:31:bd:f4:b5:ea:ee:c6:e7:0b:1c: cc:9e:bb:e2:71:3f:2c:be:ac:c4:79:4b:f6:07:00: 8c:5c:89:44:46:ed:f0:62:0b:c8:a2:a1:77:ee:a2: a2:4c:44:d7:34:e4:64:a5:bb:ce:ea:7f:d9:a1:1b: 7a:33:af:6e:cf:d6:f9:89:a6:02:07:b9:cf:ee:3f: 4c:f3:43:ce:e2:c2:34:3d:22:eb:3e:73:25:cb:b4: 64:9a:3b:1b:a1:eb:52:13:80:19:61:81:ab:13:d5: f2:34:80:af:50:70:2a:99:23:30:68:35:17:42:40: 18:72:4e:59:f3:f0:17:23:5e:c3:d1:2b:bc:6a:47: 42:66:07:65:6c:c4:64:91:4d:88:2c:67:80:e7:b4: a2:32:d5:49:1b:84:fa:fd:4d:a4:e6:f1:83:de:59: 3c:c6:4d:69:62:04:b3:02:e2:f2:a0:c3:a3:61:f0: 37:47:30:18:86:e8:b4:1c:0c:ac:44:8c:a9:96:08: 18:a3:b5:12:b7:31:38:4a:3c:7f:7a:8e:53:02:76: 20:73:ff:89:df:11:62:f0:f1:4d:60:ec:d6:da:c0: e5:71:45:df:28:a2:c0:d5:ff:63:b4:6f:c9:dc:fb: 69:05:8c:f1:10:5e:7c:e6:ea:75:65:98:a1:a4:dd: 7f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:56:AF:A3:E5:60:E6:A5:30:4F:A6:DD:45:C6:8B:E7:70:7F:97:FB X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/323430333a316130303a343a3a2f34372d3437203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:1a00:4::/47 Signature Algorithm: sha256WithRSAEncryption 23:75:f9:db:bd:30:19:52:45:f9:80:fb:91:b6:08:6a:22:ff: f2:16:41:15:fe:c5:77:85:2e:8e:e4:67:95:0e:33:a6:eb:cc: 4d:5a:c5:fb:8e:03:bd:af:c5:77:30:a7:c3:ff:6e:50:1d:53: 6e:39:d0:a5:ca:71:d6:f7:f6:36:d6:18:4b:93:29:de:26:5c: 7e:fe:36:63:d3:74:73:88:ee:ba:1c:3a:15:a2:a3:78:0c:f0: d5:96:7c:55:6d:cd:ac:dc:3b:c1:0a:73:6a:0e:45:43:b4:ae: 6d:54:5b:d6:80:0b:a0:9e:13:c9:d3:37:35:c3:1d:6d:01:5f: e2:a2:44:74:a6:b1:47:19:c6:34:58:70:87:24:af:56:e0:6f: f1:51:c6:2f:5f:9f:f8:6f:c6:c4:f7:84:a3:6d:e3:08:3e:14: 36:2c:9c:ed:f3:7a:be:e7:74:97:ca:11:a2:a9:12:cc:c2:b1: 5b:f2:46:e7:2f:a0:70:e6:d0:a2:fe:46:d5:bb:3e:99:02:01: a0:6c:0d:ef:5a:57:7c:3a:9a:06:4d:c3:06:50:5e:21:a9:d3: 22:8e:47:ad:52:e7:c0:fe:74:25:e7:9a:e1:f8:65:e2:4d:fd: 70:8e:2c:8e:c3:e7:bb:8b:fd:e9:da:e4:98:74:ec:71:d1:c6: 7e:f7:e2:21 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUX4F0m49oWltuuhT8dFvueBhVYjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDEwMTgwMzU2MzFaFw0yNTEwMTcwNDAxMzFaMDMxMTAvBgNV BAMTKDc5NTZBRkEzRTU2MEU2QTUzMDRGQTZERDQ1QzY4QkU3NzA3Rjk3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBB0PYMb30teruxucLHMyeu+Jx Pyy+rMR5S/YHAIxciURG7fBiC8iioXfuoqJMRNc05GSlu87qf9mhG3ozr27P1vmJ pgIHuc/uP0zzQ87iwjQ9Ius+cyXLtGSaOxuh61ITgBlhgasT1fI0gK9QcCqZIzBo NRdCQBhyTlnz8BcjXsPRK7xqR0JmB2VsxGSRTYgsZ4DntKIy1UkbhPr9TaTm8YPe WTzGTWliBLMC4vKgw6Nh8DdHMBiG6LQcDKxEjKmWCBijtRK3MThKPH96jlMCdiBz /4nfEWLw8U1g7NbawOVxRd8oosDV/2O0b8nc+2kFjPEQXnzm6nVlmKGk3X9dAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUeVavo+Vg5qUwT6bdRcaL53B/l/swHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzQzMDMzM2EzMTYxMzAzMDNhMzQzYTNhMmYz NDM3MmQzNDM3MjAzZDNlMjAzNDM1MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJAMaAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQAjdfnbvTAZUkX5gPuRtghqIv/yFkEV/sV3hS6O5GeV DjOm68xNWsX7jgO9r8V3MKfD/25QHVNuOdClynHW9/Y21hhLkyneJlx+/jZj03Rz iO66HDoVoqN4DPDVlnxVbc2s3DvBCnNqDkVDtK5tVFvWgAugnhPJ0zc1wx1tAV/i okR0prFHGcY0WHCHJK9W4G/xUcYvX5/4b8bE94SjbeMIPhQ2LJzt83q+53SXyhGi qRLMwrFb8kbnL6Bw5tCi/kbVuz6ZAgGgbA3vWld8OpoGTcMGUF4hqdMijketUufA /nQl55rh+GXiTf1wjiyOw+e7i/3p2uSYdOxx0cZ+9+Ih -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org