$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa File: 323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa (raw, json) Hash identifier: PW6vCtMOERXjYSSh2pseRhWwTwtJ4G23HHQ78zdmJm0= Subject key identifier: DF:63:D1:C9:0E:7F:C5:73:42:F9:25:CF:2F:6D:72:2B:47:61:D3:4C Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 6CA4DC80FBD960084AE62D2424001E05EAC5497F Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa Signing time: Fri 16 Aug 2024 02:00:02 +0000 ROA not before: Fri 16 Aug 2024 01:55:02 +0000 ROA not after: Fri 15 Aug 2025 02:00:02 +0000 asID: 38508 IP address blocks: 2402:9800:4003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a4:dc:80:fb:d9:60:08:4a:e6:2d:24:24:00:1e:05:ea:c5:49:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 01:55:02 2024 GMT Not After : Aug 15 02:00:02 2025 GMT Subject: CN=DF63D1C90E7FC57342F925CF2F6D722B4761D34C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:d7:dc:f0:c6:59:0a:69:07:f9:70:58:2d: f1:f2:fc:c3:50:36:b8:b6:ad:ce:7b:0a:00:20:b7: 65:0f:f7:35:14:7f:7e:a3:d2:52:bc:26:2c:0f:c5: 2c:60:0d:8b:49:65:a3:9b:c0:b4:25:c3:49:32:c8: 3f:4b:04:c9:3f:23:16:a6:24:b7:8c:de:b7:aa:4f: bd:3d:89:35:fd:6e:8a:47:0d:f8:b7:81:e3:ff:0c: ab:35:e5:db:37:3e:95:61:ac:67:af:b8:13:05:a7: 40:9c:9b:7f:bd:43:aa:ee:9a:4d:8c:25:49:7a:ab: 89:67:ba:11:b5:fb:38:43:96:8e:c0:29:f2:23:0d: 10:17:43:6e:13:f5:66:fd:55:96:64:bd:98:4f:fe: a7:b8:45:08:38:4a:9f:7c:3b:30:e3:40:11:79:48: 82:2e:27:f8:26:7b:6a:84:3c:f0:5b:a3:94:c2:c4: d2:fd:6c:c2:ab:d4:35:a2:95:2c:b0:ea:32:21:95: ac:c0:55:4f:f5:d3:fb:98:2e:cf:31:fc:07:a8:42: ea:f6:00:f7:6b:fe:d3:9b:5b:27:03:49:67:85:c0: b0:45:55:ac:ae:11:12:1a:11:ad:ec:5f:c3:2d:74: 12:93:ef:ad:bc:a7:e2:b0:0e:a0:a4:bb:6d:4a:5b: 20:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:63:D1:C9:0E:7F:C5:73:42:F9:25:CF:2F:6D:72:2B:47:61:D3:4C X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4003::/48 Signature Algorithm: sha256WithRSAEncryption 3b:c4:d7:2b:04:85:90:74:f7:0e:3e:21:b2:f6:4f:10:29:6b: dc:cc:b2:d0:1d:0a:47:4c:3c:ee:7a:9d:04:c8:ff:9f:21:2d: d4:46:b7:ed:fd:1c:2c:08:e8:9a:32:63:d0:0d:f2:0c:4e:d0: 29:35:64:78:a0:b5:92:a0:4a:a3:3e:cc:bd:73:66:82:fe:25: e2:e0:e0:4f:34:96:73:0d:81:a8:35:27:a9:58:f0:2a:ad:17: 5b:31:50:27:6e:90:16:e6:78:82:c4:b4:46:24:42:04:91:39: a7:82:70:a6:2b:70:dc:0a:81:c4:ea:e1:0a:02:c8:83:c1:68: c2:76:33:fc:d1:8e:0d:63:af:96:b0:d0:db:e1:3b:81:37:e1: c5:9c:07:8d:01:8c:6f:16:c6:d6:67:9b:8d:56:4f:78:12:78: f0:40:62:d4:b3:9e:3d:be:5f:b5:09:eb:49:8e:1f:1e:dc:76: 2e:a9:c2:e3:ce:e4:4f:3b:02:33:ff:a8:9a:6e:f4:8a:49:e6: b3:9f:e2:48:a8:f0:d9:9b:50:7f:34:b1:7d:fe:58:0d:37:ae: d9:9a:0d:9a:e5:5e:53:06:33:0e:b9:72:bb:ee:87:85:ba:a9: 51:19:e6:81:8b:0a:c8:65:cd:72:87:f1:5d:46:55:b7:5e:fe: 3d:f5:30:ba -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbKTcgPvZYAhK5i0kJAAeBerFSX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMTU1MDJaFw0yNTA4MTUwMjAwMDJaMDMxMTAvBgNV BAMTKERGNjNEMUM5MEU3RkM1NzM0MkY5MjVDRjJGNkQ3MjJCNDc2MUQzNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLDNfc8MZZCmkH+XBYLfHy/MNQ Nri2rc57CgAgt2UP9zUUf36j0lK8JiwPxSxgDYtJZaObwLQlw0kyyD9LBMk/Ixam JLeM3reqT709iTX9bopHDfi3geP/DKs15ds3PpVhrGevuBMFp0Ccm3+9Q6rumk2M JUl6q4lnuhG1+zhDlo7AKfIjDRAXQ24T9Wb9VZZkvZhP/qe4RQg4Sp98OzDjQBF5 SIIuJ/gme2qEPPBbo5TCxNL9bMKr1DWilSyw6jIhlazAVU/10/uYLs8x/AeoQur2 APdr/tObWycDSWeFwLBFVayuERIaEa3sX8MtdBKT7628p+KwDqCku21KWyBJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU32PRyQ5/xXNC+SXPL21yK0dh00wwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEADMA0GCSqGSIb3DQEBCwUAA4IBAQA7xNcrBIWQdPcOPiGy9k8QKWvczLLQHQpH TDzuep0EyP+fIS3URrft/RwsCOiaMmPQDfIMTtApNWR4oLWSoEqjPsy9c2aC/iXi 4OBPNJZzDYGoNSepWPAqrRdbMVAnbpAW5niCxLRGJEIEkTmngnCmK3DcCoHE6uEK AsiDwWjCdjP80Y4NY6+WsNDb4TuBN+HFnAeNAYxvFsbWZ5uNVk94EnjwQGLUs549 vl+1CetJjh8e3HYuqcLjzuRPOwIz/6iabvSKSeazn+JIqPDZm1B/NLF9/lgNN67Z mg2a5V5TBjMOuXK77oeFuqlRGeaBiwrIZc1yh/FdRlW3Xv499TC6 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org