$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa File: 323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa (raw, json) Hash identifier: ip/l/KBXQ9Q+oLtgt9trdsFnsGK5B7yCV8heS9Wutgk= Subject key identifier: C4:1B:5A:FC:8B:89:47:12:59:60:88:0C:6B:5B:20:C4:C4:43:46:C2 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 715A3714591F4F1AF1159E47A6829FE0E841912A Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa Signing time: Fri 16 Aug 2024 01:00:02 +0000 ROA not before: Fri 16 Aug 2024 00:55:02 +0000 ROA not after: Fri 15 Aug 2025 01:00:02 +0000 asID: 131119 IP address blocks: 2402:9800:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5a:37:14:59:1f:4f:1a:f1:15:9e:47:a6:82:9f:e0:e8:41:91:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 00:55:02 2024 GMT Not After : Aug 15 01:00:02 2025 GMT Subject: CN=C41B5AFC8B8947125960880C6B5B20C4C44346C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:ca:60:ec:03:cb:76:05:1c:b1:e3:a5:4d: d3:84:a5:39:8f:4d:12:9a:03:ca:a2:15:6f:9b:41: dc:88:8c:65:32:29:a7:10:83:66:5b:1a:e4:ec:f6: 3d:60:62:d0:b6:b7:21:66:86:fd:d7:77:11:dc:70: fe:91:d5:b7:bc:4c:8b:ef:e0:9b:a9:df:12:e5:7b: c3:21:7d:70:70:c5:99:b3:22:a7:e5:ed:83:4a:f7: 11:24:cd:37:3d:7f:96:28:72:ba:5a:30:0e:30:d6: 95:5a:d5:94:05:8b:e8:7a:18:09:fb:84:b3:15:80: 8a:6d:dd:35:2c:79:34:9a:de:88:c8:87:d1:e8:e6: 65:9d:a1:25:50:f7:2b:41:a5:70:5d:8c:69:9a:e2: 52:5b:06:0b:8f:01:a4:21:f9:4e:4e:83:d9:f1:a0: 10:04:05:ad:27:c6:cf:c1:17:d2:33:62:77:d9:52: 82:89:08:04:41:1b:63:a0:93:dd:75:15:3c:69:b3: 27:7b:0d:7e:7c:ac:47:32:05:cb:85:cc:93:b4:f0: f3:a5:4f:12:ba:14:52:b9:4f:4e:b2:5f:3d:7f:4a: 7b:1b:b6:a6:68:f3:cd:93:b9:40:45:ee:61:03:04: 8c:25:8f:60:f7:c3:d0:0e:e9:29:aa:6d:3f:43:f7: 02:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1B:5A:FC:8B:89:47:12:59:60:88:0C:6B:5B:20:C4:C4:43:46:C2 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4002::/48 Signature Algorithm: sha256WithRSAEncryption 3f:a1:9b:f9:ba:70:80:dd:7f:25:6a:67:37:90:6a:52:68:05: e8:30:2c:23:5a:8b:b4:4c:8a:f9:04:3d:32:7e:5a:07:95:33: c0:e8:2c:95:c4:ec:b0:98:b5:e7:69:e9:52:5c:1c:84:0c:8b: 2a:04:7d:ce:32:b6:05:35:ed:e5:7f:ad:b5:a8:ff:a4:13:b5: bd:b3:2b:e6:19:91:75:f5:90:a3:52:af:15:00:d8:86:46:75: 30:ed:58:32:a1:f5:08:59:8d:c5:a5:0b:f6:10:cc:eb:0c:70: 31:03:e1:42:fa:e7:1a:fb:b1:82:53:21:0a:49:19:0e:67:87: 23:eb:4a:79:91:7b:c7:b8:b5:9d:ea:45:dd:b0:21:90:13:fc: ba:96:eb:4b:67:f9:d9:da:c3:43:d7:dc:ba:4f:dc:a8:7b:2d: 4f:29:ec:40:10:af:ca:76:cc:2c:db:d9:da:16:80:cf:69:66: de:f2:bb:20:50:c6:5c:69:91:58:07:60:a4:88:d4:bd:3f:e3: 11:ce:92:36:c8:18:06:39:7f:41:fc:f0:fb:f9:0a:04:8a:c7: 15:6a:72:49:22:76:f3:f6:c9:8c:e1:6f:84:9a:76:d0:71:3f: 6c:01:3f:45:39:8c:c5:33:05:c5:5a:f5:91:ba:29:ae:14:b5: 96:24:fd:ec -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcVo3FFkfTxrxFZ5HpoKf4OhBkSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMDU1MDJaFw0yNTA4MTUwMTAwMDJaMDMxMTAvBgNV BAMTKEM0MUI1QUZDOEI4OTQ3MTI1OTYwODgwQzZCNUIyMEM0QzQ0MzQ2QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcu8pg7APLdgUcseOlTdOEpTmP TRKaA8qiFW+bQdyIjGUyKacQg2ZbGuTs9j1gYtC2tyFmhv3XdxHccP6R1be8TIvv 4Jup3xLle8MhfXBwxZmzIqfl7YNK9xEkzTc9f5YocrpaMA4w1pVa1ZQFi+h6GAn7 hLMVgIpt3TUseTSa3ojIh9Ho5mWdoSVQ9ytBpXBdjGma4lJbBguPAaQh+U5Og9nx oBAEBa0nxs/BF9IzYnfZUoKJCARBG2Ogk911FTxpsyd7DX58rEcyBcuFzJO08POl TxK6FFK5T06yXz1/SnsbtqZo882TuUBF7mEDBIwlj2D3w9AO6SmqbT9D9wIDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUxBta/IuJRxJZYIgMa1sgxMRDRsIwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAIwDQYJKoZIhvcNAQELBQADggEBAD+hm/m6cIDdfyVqZzeQalJoBegwLCNa i7RMivkEPTJ+WgeVM8DoLJXE7LCYtedp6VJcHIQMiyoEfc4ytgU17eV/rbWo/6QT tb2zK+YZkXX1kKNSrxUA2IZGdTDtWDKh9QhZjcWlC/YQzOsMcDED4UL65xr7sYJT IQpJGQ5nhyPrSnmRe8e4tZ3qRd2wIZAT/LqW60tn+dnaw0PX3LpP3Kh7LU8p7EAQ r8p2zCzb2doWgM9pZt7yuyBQxlxpkVgHYKSI1L0/4xHOkjbIGAY5f0H88Pv5CgSK xxVqckkidvP2yYzhb4SadtBxP2wBP0U5jMUzBcVa9ZG6Ka4UtZYk/ew= -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org