$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa File: 323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa (raw, json) Hash identifier: UQ6Mel6v6XORam6369YC0dEEXv8ngQhAqkYr/Ep7G+g= Subject key identifier: 5A:BE:3D:13:20:09:A2:FF:16:E0:A8:2D:03:79:E3:35:AE:35:1E:6E Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 7A25139BA87F05C62DEB121068EB1C82E070DDF4 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa Signing time: Fri 15 Sep 2023 01:00:02 +0000 ROA not before: Fri 15 Sep 2023 00:55:02 +0000 ROA not after: Fri 13 Sep 2024 01:00:02 +0000 asID: 131119 IP address blocks: 2402:9800:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:25:13:9b:a8:7f:05:c6:2d:eb:12:10:68:eb:1c:82:e0:70:dd:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Sep 15 00:55:02 2023 GMT Not After : Sep 13 01:00:02 2024 GMT Subject: CN=5ABE3D132009A2FF16E0A82D0379E335AE351E6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:14:7c:47:79:ef:c7:30:00:cc:99:d3:9a:c5: 66:e1:03:fe:0e:1b:ff:2f:ad:dd:25:a2:63:15:69: 80:19:fa:96:30:06:5c:22:83:94:5c:5b:5c:d0:05: 2a:9a:aa:08:12:29:7b:e9:9e:37:73:49:6f:68:16: 75:a0:d8:84:34:e5:62:11:6f:a5:c3:22:ba:b4:45: ee:bb:75:10:16:5b:cc:65:20:ec:71:ee:37:e6:58: 81:44:ff:8f:52:1d:4d:dd:fc:41:b2:f3:b9:dc:db: 97:c4:d3:00:7b:e6:dc:16:2a:03:4f:8b:a0:1f:6b: ca:08:c7:48:e8:7f:7e:1e:9c:d9:0f:60:f3:37:e7: 0e:9a:16:85:33:cd:d0:eb:94:e9:f2:bc:71:0a:bc: 37:ba:71:8f:45:8d:f1:e1:af:09:07:a4:04:5e:ad: ec:f0:83:57:fd:f4:8c:f6:78:fa:1c:f2:e1:2e:0c: 9d:b1:77:77:a0:1e:6c:5c:54:dc:eb:39:f8:77:54: d1:56:f5:8d:ea:f7:41:e2:b5:38:70:e1:0f:c0:fe: 90:49:f6:77:74:cf:f9:70:38:64:64:73:59:9b:aa: 60:f8:cc:b6:2c:44:33:48:56:4b:fe:a8:52:b2:1c: c4:47:1b:9f:11:42:34:88:00:ea:2a:35:2f:a1:fe: ff:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BE:3D:13:20:09:A2:FF:16:E0:A8:2D:03:79:E3:35:AE:35:1E:6E X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4002::/48 Signature Algorithm: sha256WithRSAEncryption 2a:33:1c:c0:d5:ea:84:17:17:b9:45:70:85:b1:98:dd:2b:d0: 80:7f:af:fe:6a:f0:99:69:bf:1f:35:71:fe:1b:46:a9:80:31: 26:ba:cb:39:1c:ca:aa:a2:c1:e1:b3:e3:ee:71:a9:8e:fe:eb: 57:21:b3:35:9a:58:0b:93:d7:02:6e:52:77:75:be:0d:0e:b8: 51:30:fd:19:a8:2c:5f:df:6a:68:3e:c8:9d:01:0a:38:76:a9: 73:44:fe:6b:f5:ca:8e:bd:a7:1a:96:9a:cf:9a:ad:9d:2b:4a: ec:c9:ac:a0:3b:5a:a3:e0:6f:75:05:7c:49:b0:65:98:77:bb: 06:1c:30:0f:f1:d7:98:a9:3d:98:bb:2c:ee:5d:d1:af:2a:9a: 4f:59:5d:24:50:25:5a:af:a2:05:68:ad:20:8c:1e:f2:60:8d: 08:79:76:43:cd:22:7f:8f:1a:d9:e6:3d:38:67:91:f3:04:7f: 0f:d1:93:f5:ef:b7:27:44:88:8d:00:09:bd:89:23:2a:4f:18: 09:9d:c3:73:23:7c:c5:59:62:b3:68:16:05:6e:80:1e:de:a4: 5d:fb:a7:8a:96:23:e5:38:e6:da:89:0f:14:24:49:9a:56:0a: 1e:0b:4d:d8:40:4a:f0:2f:b7:da:ce:dd:b1:92:27:e9:e8:41: 99:ed:88:c1 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeiUTm6h/BcYt6xIQaOscguBw3fQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yMzA5MTUwMDU1MDJaFw0yNDA5MTMwMTAwMDJaMDMxMTAvBgNV BAMTKDVBQkUzRDEzMjAwOUEyRkYxNkUwQTgyRDAzNzlFMzM1QUUzNTFFNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqFHxHee/HMADMmdOaxWbhA/4O G/8vrd0lomMVaYAZ+pYwBlwig5RcW1zQBSqaqggSKXvpnjdzSW9oFnWg2IQ05WIR b6XDIrq0Re67dRAWW8xlIOxx7jfmWIFE/49SHU3d/EGy87nc25fE0wB75twWKgNP i6Afa8oIx0jof34enNkPYPM35w6aFoUzzdDrlOnyvHEKvDe6cY9FjfHhrwkHpARe rezwg1f99Iz2ePoc8uEuDJ2xd3egHmxcVNzrOfh3VNFW9Y3q90HitThw4Q/A/pBJ 9nd0z/lwOGRkc1mbqmD4zLYsRDNIVkv+qFKyHMRHG58RQjSIAOoqNS+h/v/bAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWr49EyAJov8W4KgtA3njNa41Hm4wHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAIwDQYJKoZIhvcNAQELBQADggEBACozHMDV6oQXF7lFcIWxmN0r0IB/r/5q 8Jlpvx81cf4bRqmAMSa6yzkcyqqiweGz4+5xqY7+61chszWaWAuT1wJuUnd1vg0O uFEw/RmoLF/famg+yJ0BCjh2qXNE/mv1yo69pxqWms+arZ0rSuzJrKA7WqPgb3UF fEmwZZh3uwYcMA/x15ipPZi7LO5d0a8qmk9ZXSRQJVqvogVorSCMHvJgjQh5dkPN In+PGtnmPThnkfMEfw/Rk/XvtydEiI0ACb2JIypPGAmdw3MjfMVZYrNoFgVugB7e pF37p4qWI+U45tqJDxQkSZpWCh4LTdhASvAvt9rO3bGSJ+noQZntiME= -----END CERTIFICATE-----Generated at Sat May 4 02:34:28 2024 by rpki-client on console-fra.rpki-client.org