$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa File: 323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa (raw, json) Hash identifier: KW4EEcwhlrvTNK+l1QgxB5MCIBN4X0Ahf479yXTih5s= Subject key identifier: 28:E5:26:1B:78:55:F1:25:F5:CF:70:F0:63:95:1F:D3:F6:92:1B:65 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 503D0BFA375A5BA86D6AF25979BD0502D8B306CD Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa Signing time: Fri 16 Aug 2024 01:00:02 +0000 ROA not before: Fri 16 Aug 2024 00:55:02 +0000 ROA not after: Fri 15 Aug 2025 01:00:02 +0000 asID: 131117 IP address blocks: 2402:9800:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 04:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3d:0b:fa:37:5a:5b:a8:6d:6a:f2:59:79:bd:05:02:d8:b3:06:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 00:55:02 2024 GMT Not After : Aug 15 01:00:02 2025 GMT Subject: CN=28E5261B7855F125F5CF70F063951FD3F6921B65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8c:3e:e8:55:2e:5c:0f:07:40:de:59:5a:e5: 34:e2:c8:1e:1d:9e:6c:a6:32:79:a9:cd:19:d4:40: b0:d8:e4:70:ce:18:c6:7c:1a:b6:31:13:2d:80:b2: 6b:02:b8:16:d9:24:b1:0e:e0:e1:e4:2b:15:c5:95: 9b:43:9c:24:e0:ac:e1:f3:65:58:35:12:9b:00:e8: dd:b7:54:c0:59:da:8a:6b:59:b0:7e:ab:25:e2:95: 7f:33:8b:5f:28:10:d9:a6:27:65:0b:66:b8:10:80: bd:59:d4:72:fc:63:5f:30:eb:ce:ec:3b:46:55:fd: 66:ab:c6:8b:51:01:5c:64:2d:4e:3d:54:8c:d0:e9: cf:ed:ac:b3:7b:54:b5:83:0d:2b:0a:ea:6c:17:dc: 2d:f3:73:95:87:ac:e9:94:e3:e0:8c:83:05:b9:5d: e5:3b:e6:b9:c6:45:66:ea:3b:28:d1:7a:f5:c4:2b: 1f:55:f1:5f:eb:c4:58:83:d8:63:5b:ea:e9:8e:48: 77:4b:0d:2d:89:23:75:a4:60:0c:9f:59:3a:20:7c: 06:9e:77:b5:57:5a:6f:0a:ad:33:4e:b0:e6:55:81: ee:02:e3:6f:6b:fe:99:e8:fb:5b:44:47:2b:83:a8: 07:b8:14:b6:0b:c4:4a:ac:f3:53:c2:19:bf:5d:1d: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E5:26:1B:78:55:F1:25:F5:CF:70:F0:63:95:1F:D3:F6:92:1B:65 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4000::/48 Signature Algorithm: sha256WithRSAEncryption 55:ec:03:41:5a:2a:b9:f2:b6:5f:0e:0a:36:c6:fd:41:db:11: 8a:8f:8b:04:78:b2:fe:52:1e:94:e8:95:da:0d:af:3c:3f:0a: 2a:23:bf:3d:f5:df:a7:42:ea:1e:a1:d4:f8:4e:b2:0a:07:56: d3:18:bb:6c:15:73:d0:3d:0b:3b:99:41:b7:48:06:63:89:c6: 4a:8b:67:fa:83:41:66:90:c1:d6:14:ab:3f:fc:88:04:7a:92: 55:53:79:13:12:a3:eb:b0:ff:ac:e3:53:f9:bb:61:80:78:c0: 2c:1f:60:39:65:45:e1:1f:b6:ef:16:47:24:f2:a7:4c:46:b3: 9e:83:c2:94:be:36:26:2b:15:db:65:1f:13:bb:b7:d5:38:13: 8e:bb:77:f2:0b:fa:41:c8:83:6e:cf:6b:cf:74:b1:98:23:65: d0:e3:64:60:66:11:c6:49:65:1a:85:ab:35:11:23:6d:3d:a6: dd:32:2a:af:a9:54:85:4c:91:2d:1d:15:bf:99:70:57:ff:2d: c9:5e:01:f8:70:8f:4e:cf:1e:85:a4:50:29:fd:98:2a:10:28: 08:fa:93:5c:99:2d:15:73:2e:4e:6c:7e:2c:4e:fe:04:39:f2: 4e:9d:e9:82:89:92:81:eb:46:b6:d2:5e:b7:97:94:ad:f6:e7: 51:5c:42:58 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUD0L+jdaW6htavJZeb0FAtizBs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMDU1MDJaFw0yNTA4MTUwMTAwMDJaMDMxMTAvBgNV BAMTKDI4RTUyNjFCNzg1NUYxMjVGNUNGNzBGMDYzOTUxRkQzRjY5MjFCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmjD7oVS5cDwdA3lla5TTiyB4d nmymMnmpzRnUQLDY5HDOGMZ8GrYxEy2AsmsCuBbZJLEO4OHkKxXFlZtDnCTgrOHz ZVg1EpsA6N23VMBZ2oprWbB+qyXilX8zi18oENmmJ2ULZrgQgL1Z1HL8Y18w687s O0ZV/WarxotRAVxkLU49VIzQ6c/trLN7VLWDDSsK6mwX3C3zc5WHrOmU4+CMgwW5 XeU75rnGRWbqOyjRevXEKx9V8V/rxFiD2GNb6umOSHdLDS2JI3WkYAyfWTogfAae d7VXWm8KrTNOsOZVge4C429r/pno+1tERyuDqAe4FLYLxEqs81PCGb9dHVeDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKOUmG3hV8SX1z3DwY5Uf0/aSG2UwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAAwDQYJKoZIhvcNAQELBQADggEBAFXsA0FaKrnytl8OCjbG/UHbEYqPiwR4 sv5SHpToldoNrzw/Ciojvz3136dC6h6h1PhOsgoHVtMYu2wVc9A9CzuZQbdIBmOJ xkqLZ/qDQWaQwdYUqz/8iAR6klVTeRMSo+uw/6zjU/m7YYB4wCwfYDllReEftu8W RyTyp0xGs56DwpS+NiYrFdtlHxO7t9U4E467d/IL+kHIg27Pa890sZgjZdDjZGBm EcZJZRqFqzURI209pt0yKq+pVIVMkS0dFb+ZcFf/LcleAfhwj07PHoWkUCn9mCoQ KAj6k1yZLRVzLk5sfixO/gQ58k6d6YKJkoHrRrbSXreXlK3251FcQlg= -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:41 2025 by rpki-client