$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa File: 323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa (raw, json) Hash identifier: htIfiUj0TS/B8LHMX2Pwb2S3CMhqGS/4MvVddU2RMXs= Subject key identifier: D7:FF:59:99:D6:C9:3F:FD:1E:45:B3:FC:29:02:AC:AA:6E:44:C6:3C Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 204370BF0CF67DA898D097386B17146E02338921 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa Signing time: Fri 16 Aug 2024 01:00:02 +0000 ROA not before: Fri 16 Aug 2024 00:55:02 +0000 ROA not after: Fri 15 Aug 2025 01:00:02 +0000 asID: 136108 IP address blocks: 2402:9800:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:43:70:bf:0c:f6:7d:a8:98:d0:97:38:6b:17:14:6e:02:33:89:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Aug 16 00:55:02 2024 GMT Not After : Aug 15 01:00:02 2025 GMT Subject: CN=D7FF5999D6C93FFD1E45B3FC2902ACAA6E44C63C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:d9:e5:c1:33:19:92:14:75:6d:0d:a3:c3: 1b:e9:16:4d:5b:5e:28:a4:a9:fb:6b:b7:e1:4a:0d: 2c:54:cd:14:60:90:49:4e:b1:7a:0c:82:ab:51:b1: 3c:17:0e:a8:22:46:55:9f:8f:b5:59:ff:8b:2c:93: 37:22:a2:8a:6c:13:2d:41:61:35:a9:2b:7d:5f:30: 97:d3:18:e8:f8:13:b2:be:a8:0c:be:65:68:37:89: 5d:17:0c:87:e0:34:46:06:a4:2b:1f:5f:67:4d:c7: 63:43:e7:3d:24:a2:4e:b1:bb:c8:79:5e:08:b1:a5: 54:52:c2:a5:c0:7b:46:50:94:6e:d3:f0:e5:97:a0: 6c:ee:bf:0c:1a:9b:eb:91:0a:ee:ea:2e:13:4e:0a: 01:ce:ab:65:8c:7a:8f:21:97:69:b4:b3:68:7e:33: 9c:da:d3:1c:76:19:a9:9f:52:fc:09:ba:68:1b:79: b3:0b:0d:f9:75:b8:05:66:37:7c:8c:66:e9:6d:7d: 11:ce:cf:73:f8:fa:1a:25:ba:b4:58:9d:4b:b4:ef: 5f:72:5a:33:94:b4:d5:fa:7f:88:3c:7d:3d:ca:1a: 9c:e2:ed:92:89:6f:c4:01:c3:79:65:56:a2:34:c4: 48:6f:94:07:a6:5c:65:26:27:a0:cb:5e:66:b9:66: 13:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:FF:59:99:D6:C9:3F:FD:1E:45:B3:FC:29:02:AC:AA:6E:44:C6:3C X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4005::/48 Signature Algorithm: sha256WithRSAEncryption cd:0f:a7:ca:fa:be:ef:38:a4:2e:7e:b0:c9:5d:b7:a3:63:68: 11:15:72:c6:8b:1d:fc:1f:c9:f6:42:ff:6e:90:70:9f:c8:54: 32:84:1a:16:b6:f1:d2:b2:c8:c5:0d:4e:6f:64:a6:5e:1a:64: 2b:a7:08:5a:c4:ed:3b:7c:bf:90:c6:31:c9:05:89:0b:e6:5f: b1:87:a7:8e:0e:1f:3e:11:df:3d:37:93:a5:af:78:39:37:9c: 71:c5:bb:f9:40:79:d9:f5:76:a6:1f:11:61:d8:92:f5:43:43: ad:9e:72:2c:64:e4:27:13:9b:91:d6:fc:e1:46:e1:1e:f9:e2: 0d:8f:40:7e:3d:bd:d4:11:b5:e3:84:ed:45:40:d7:64:6b:d9: d4:37:ef:47:7a:35:02:2c:d8:15:5f:32:f6:af:f0:87:84:cc: b5:56:21:e5:ee:ce:c5:80:3e:3b:d6:ef:aa:76:09:1f:81:6a: 1a:46:59:d3:d1:e7:99:5f:7c:fd:80:96:b6:72:dd:93:80:02: 1f:fd:53:fe:90:8e:11:b9:0a:d7:de:e1:4d:73:59:20:85:dc: dd:43:53:eb:6f:6d:16:2e:12:42:f2:f0:4e:2e:4e:50:a9:db: 55:d9:f2:be:f4:89:25:8a:cf:2c:b7:84:00:22:65:48:fc:b6: da:77:ec:0e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUIENwvwz2faiY0Jc4axcUbgIziSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNDA4MTYwMDU1MDJaFw0yNTA4MTUwMTAwMDJaMDMxMTAvBgNV BAMTKEQ3RkY1OTk5RDZDOTNGRkQxRTQ1QjNGQzI5MDJBQ0FBNkU0NEM2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CtnlwTMZkhR1bQ2jwxvpFk1b Xiikqftrt+FKDSxUzRRgkElOsXoMgqtRsTwXDqgiRlWfj7VZ/4sskzcioopsEy1B YTWpK31fMJfTGOj4E7K+qAy+ZWg3iV0XDIfgNEYGpCsfX2dNx2ND5z0kok6xu8h5 XgixpVRSwqXAe0ZQlG7T8OWXoGzuvwwam+uRCu7qLhNOCgHOq2WMeo8hl2m0s2h+ M5za0xx2GamfUvwJumgbebMLDfl1uAVmN3yMZultfRHOz3P4+holurRYnUu0719y WjOUtNX6f4g8fT3KGpzi7ZKJb8QBw3llVqI0xEhvlAemXGUmJ6DLXma5ZhNhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU1/9ZmdbJP/0eRbP8KQKsqm5ExjwwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMTMwMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAUwDQYJKoZIhvcNAQELBQADggEBAM0Pp8r6vu84pC5+sMldt6NjaBEVcsaL HfwfyfZC/26QcJ/IVDKEGha28dKyyMUNTm9kpl4aZCunCFrE7Tt8v5DGMckFiQvm X7GHp44OHz4R3z03k6WveDk3nHHFu/lAedn1dqYfEWHYkvVDQ62ecixk5CcTm5HW /OFG4R754g2PQH49vdQRteOE7UVA12Rr2dQ370d6NQIs2BVfMvav8IeEzLVWIeXu zsWAPjvW76p2CR+BahpGWdPR55lffP2AlrZy3ZOAAh/9U/6QjhG5Ctfe4U1zWSCF 3N1DU+tvbRYuEkLy8E4uTlCp21XZ8r70iSWKzyy3hAAiZUj8ttp37A4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org