$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa File: 323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa (raw, json) Hash identifier: WE77Xy2tazxYFCY9JWrG+2DWGpeIwOgl+o6PphGJkaA= Subject key identifier: E7:24:41:71:71:DD:D3:94:34:F2:50:14:19:07:52:CA:5A:CA:6A:93 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 2F610573D7438F86AA6736473841583A1F664D2F Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa Signing time: Fri 16 Aug 2024 02:00:02 +0000 ROA not before: Fri 16 Aug 2024 01:55:02 +0000 ROA not after: Fri 15 Aug 2025 02:00:02 +0000 asID: 131118 IP address blocks: 2402:9800:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:61:05:73:d7:43:8f:86:aa:67:36:47:38:41:58:3a:1f:66:4d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 01:55:02 2024 GMT Not After : Aug 15 02:00:02 2025 GMT Subject: CN=E724417171DDD39434F25014190752CA5ACA6A93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:94:1b:e8:5f:09:8b:87:03:3e:24:d1:c6: 2b:42:3a:80:8f:df:58:06:a4:31:f3:52:6b:6e:df: d4:57:f0:32:cf:02:17:9e:a4:bf:e2:f1:3b:02:ef: 9b:af:71:76:4d:6d:a7:f1:fe:2a:07:a3:75:02:fb: 3b:63:24:94:fc:c0:04:22:78:f4:76:e9:41:55:b4: f5:89:cb:49:58:2c:4a:ee:9a:f8:e0:ed:01:25:8d: a7:9f:82:c1:c0:d2:4b:22:ed:3a:78:c8:3f:83:74: 7a:c9:6b:b8:bd:76:eb:fd:cc:bd:86:01:5c:47:65: b8:a9:c2:8c:36:f3:3c:0a:9e:0b:dd:47:ca:e4:0b: 6e:43:10:4c:88:2d:5b:75:8d:23:a7:32:8a:33:45: 30:07:fe:65:6e:dc:e8:8d:92:c8:67:26:e3:ef:1d: 8c:2b:90:9d:c1:14:20:1a:4a:63:a6:99:37:7b:04: 30:9c:57:30:64:42:8d:b8:f0:7a:2b:2e:88:e2:b3: 09:de:83:99:21:73:27:ef:9e:c4:0a:ef:a8:d9:cb: 82:9b:a9:35:62:c1:20:46:7f:a1:e2:96:47:8a:b0: b6:c1:34:f7:0c:59:96:18:11:dc:65:4e:5e:68:bf: 2d:c1:95:5a:69:1d:e4:14:8c:4c:23:ed:e6:d9:a5: 88:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:24:41:71:71:DD:D3:94:34:F2:50:14:19:07:52:CA:5A:CA:6A:93 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4001::/48 Signature Algorithm: sha256WithRSAEncryption 12:44:c3:7d:95:4c:50:7d:fc:8e:ee:61:a6:cc:5c:70:03:e0: 4f:6a:a4:80:f4:6d:13:da:85:9c:20:89:ab:f2:2a:24:5b:ce: da:8f:ed:89:d8:47:4e:25:19:f6:dc:7f:78:01:05:e1:da:41: 48:13:cf:b5:d8:ae:d3:4e:b3:5d:c9:58:aa:68:85:df:d7:a9: e6:e2:93:0c:fb:4f:58:31:9a:1c:aa:60:1b:0c:30:8d:16:7d: a9:5b:cf:89:01:d2:f7:0d:ed:30:98:f5:68:2c:ad:c2:c4:4c: 0d:ad:e8:3a:d0:12:5f:88:12:af:97:a8:a9:c3:fe:c5:43:f6: 9b:96:4e:ce:9e:3f:08:db:22:3f:c0:36:9f:cb:e0:1d:36:82: 66:49:fa:18:aa:fc:f0:aa:12:fd:52:94:19:54:82:9c:d5:0c: bf:8b:cf:41:7d:97:da:5a:94:b2:e2:58:9c:0f:0f:b3:81:cf: ed:a4:fd:08:98:54:7f:0c:df:4a:e4:9b:c1:41:cf:6d:4d:5f: c7:2a:a9:8b:67:20:f3:ad:cc:3b:e4:c2:b3:71:17:0b:fd:fa: b8:63:78:f0:8b:f8:20:e2:e5:2c:65:bb:1d:97:d9:02:79:90: 41:52:92:27:24:38:cb:c4:f8:bf:31:df:a5:fc:7e:ef:e8:f7: 0f:77:6b:0a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUL2EFc9dDj4aqZzZHOEFYOh9mTS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMTU1MDJaFw0yNTA4MTUwMjAwMDJaMDMxMTAvBgNV BAMTKEU3MjQ0MTcxNzFEREQzOTQzNEYyNTAxNDE5MDc1MkNBNUFDQTZBOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvpQb6F8Ji4cDPiTRxitCOoCP 31gGpDHzUmtu39RX8DLPAheepL/i8TsC75uvcXZNbafx/ioHo3UC+ztjJJT8wAQi ePR26UFVtPWJy0lYLErumvjg7QEljaefgsHA0ksi7Tp4yD+DdHrJa7i9duv9zL2G AVxHZbipwow28zwKngvdR8rkC25DEEyILVt1jSOnMoozRTAH/mVu3OiNkshnJuPv HYwrkJ3BFCAaSmOmmTd7BDCcVzBkQo248HorLojiswneg5khcyfvnsQK76jZy4Kb qTViwSBGf6HilkeKsLbBNPcMWZYYEdxlTl5ovy3BlVppHeQUjEwj7ebZpYj/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU5yRBcXHd05Q08lAUGQdSylrKapMwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAEwDQYJKoZIhvcNAQELBQADggEBABJEw32VTFB9/I7uYabMXHAD4E9qpID0 bRPahZwgiavyKiRbztqP7YnYR04lGfbcf3gBBeHaQUgTz7XYrtNOs13JWKpohd/X qebikwz7T1gxmhyqYBsMMI0Wfalbz4kB0vcN7TCY9WgsrcLETA2t6DrQEl+IEq+X qKnD/sVD9puWTs6ePwjbIj/ANp/L4B02gmZJ+hiq/PCqEv1SlBlUgpzVDL+Lz0F9 l9palLLiWJwPD7OBz+2k/QiYVH8M30rkm8FBz21NX8cqqYtnIPOtzDvkwrNxFwv9 +rhjePCL+CDi5Sxlux2X2QJ5kEFSkickOMvE+L8x36X8fu/o9w93awo= -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org