$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa File: 323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa (raw, json) Hash identifier: zoOph4ORgnecC4G3qubgAInEaNPWdnN5nyNNpj+Aosc= Subject key identifier: A4:87:B8:DE:E1:7F:A0:ED:C2:62:58:71:91:EF:39:F3:B8:A0:B9:3A Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 3273CFEEDEE0DFC418F7A29F0B6E10E02295C2CD Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa Signing time: Fri 16 Aug 2024 01:00:02 +0000 ROA not before: Fri 16 Aug 2024 00:55:02 +0000 ROA not after: Fri 15 Aug 2025 01:00:02 +0000 asID: 46025 IP address blocks: 2402:9800:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:73:cf:ee:de:e0:df:c4:18:f7:a2:9f:0b:6e:10:e0:22:95:c2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 00:55:02 2024 GMT Not After : Aug 15 01:00:02 2025 GMT Subject: CN=A487B8DEE17FA0EDC262587191EF39F3B8A0B93A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bc:97:24:85:44:b5:05:c2:63:32:2c:69:af: 0f:43:c8:48:ac:2a:af:97:b3:af:f7:f8:b7:f8:f1: 1a:56:47:87:f3:96:37:8f:b7:4c:51:a7:51:ff:80: af:10:0d:f9:54:cb:a5:bc:e3:f7:1c:f2:56:d7:a0: 4a:ba:1c:98:c2:5f:1d:32:76:0c:fa:2a:5d:f3:a0: 29:bf:77:7d:07:a8:9e:2c:80:08:ff:3b:8d:4b:4f: cb:b5:07:fa:d0:fd:4a:8b:9f:9c:cb:7c:cb:4e:4e: d6:04:46:58:1e:dc:f2:01:f1:81:b5:c4:ff:e4:28: a7:3c:5d:6b:3b:d2:9b:19:ab:c7:5b:15:98:a9:d9: 18:70:e2:d7:28:f1:37:68:02:22:b7:9f:3e:2c:dd: 5a:d2:d4:d9:a9:98:76:cf:61:fa:7d:5d:68:87:c6: 29:94:ce:51:72:3f:37:55:8f:2f:e4:69:4e:f8:b0: 43:7d:3b:68:eb:35:e8:07:12:d3:dc:f6:12:2d:1e: ff:2a:a4:65:08:b1:82:db:c1:35:4f:8f:ba:d3:00: 71:18:e6:7e:4b:9a:ea:78:ba:e3:4c:9b:75:7d:20: 10:2b:8d:19:5b:15:d6:42:8a:e6:95:e2:3c:20:90: 25:29:42:8c:5f:e1:a2:44:6a:44:6e:66:ad:d3:d8: 1a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:B8:DE:E1:7F:A0:ED:C2:62:58:71:91:EF:39:F3:B8:A0:B9:3A X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030343a3a2f34382d3438203d3e203436303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4004::/48 Signature Algorithm: sha256WithRSAEncryption 41:23:28:e7:3a:cf:b7:c7:7f:e5:59:d3:d2:6a:f3:a5:b5:e4: ee:a5:d0:3d:d6:c8:84:97:2b:b8:21:ed:4f:82:11:ec:c9:f5: 05:0a:5d:f3:bf:d8:ae:e4:36:8e:43:86:b8:3a:6a:b8:aa:75: f9:17:22:2e:b6:1b:51:96:c2:e7:fc:55:62:10:19:76:66:fb: 31:16:0c:eb:9d:bc:cf:c1:94:89:cf:08:7e:e3:73:e2:0f:4c: fc:59:f9:12:11:8e:0d:ba:93:12:e3:f2:6a:ad:b3:36:8c:e8: c0:09:d1:80:98:5d:b9:8d:74:3a:da:de:05:51:9b:b1:f9:86: 25:87:d3:a5:f0:66:7e:2f:e3:97:53:04:7a:82:e3:11:a5:e6: 69:f5:4f:3a:2b:06:22:05:ca:b4:1d:93:67:3c:27:63:17:28: 98:f1:19:50:95:67:9e:6a:67:26:0e:4b:71:0e:18:a8:f4:41: 58:a3:18:0b:68:ee:02:dd:57:4c:1b:96:a0:a0:22:a9:b3:b6: ae:03:75:0e:0b:c0:f8:f7:28:96:25:b1:55:47:c8:31:52:81: 44:ce:8a:fc:c9:99:3d:f4:2c:71:7e:bd:6f:60:e8:d8:92:e5: 13:3b:b3:d5:9f:ed:66:60:7e:86:de:92:64:b0:86:35:42:c0: 1b:3f:c4:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMnPP7t7g38QY96KfC24Q4CKVws0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMDU1MDJaFw0yNTA4MTUwMTAwMDJaMDMxMTAvBgNV BAMTKEE0ODdCOERFRTE3RkEwRURDMjYyNTg3MTkxRUYzOUYzQjhBMEI5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXvJckhUS1BcJjMixprw9DyEis Kq+Xs6/3+Lf48RpWR4fzljePt0xRp1H/gK8QDflUy6W84/cc8lbXoEq6HJjCXx0y dgz6Kl3zoCm/d30HqJ4sgAj/O41LT8u1B/rQ/UqLn5zLfMtOTtYERlge3PIB8YG1 xP/kKKc8XWs70psZq8dbFZip2Rhw4tco8TdoAiK3nz4s3VrS1NmpmHbPYfp9XWiH ximUzlFyPzdVjy/kaU74sEN9O2jrNegHEtPc9hItHv8qpGUIsYLbwTVPj7rTAHEY 5n5Lmup4uuNMm3V9IBArjRlbFdZCiuaV4jwgkCUpQoxf4aJEakRuZq3T2BrnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpIe43uF/oO3CYlhxke8587iguTowHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM2MzAzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQBBIyjnOs+3x3/lWdPSavOlteTupdA91siE lyu4Ie1PghHsyfUFCl3zv9iu5DaOQ4a4Omq4qnX5FyIuthtRlsLn/FViEBl2Zvsx FgzrnbzPwZSJzwh+43PiD0z8WfkSEY4NupMS4/JqrbM2jOjACdGAmF25jXQ62t4F UZux+YYlh9Ol8GZ+L+OXUwR6guMRpeZp9U86KwYiBcq0HZNnPCdjFyiY8RlQlWee amcmDktxDhio9EFYoxgLaO4C3VdMG5agoCKps7auA3UOC8D49yiWJbFVR8gxUoFE zor8yZk99Cxxfr1vYOjYkuUTO7PVn+1mYH6G3pJksIY1QsAbP8T3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org