$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a363a3a2f34382d3438203d3e203338343936.roa File: 323430373a336538303a363a3a2f34382d3438203d3e203338343936.roa (raw, json) Hash identifier: ixRSzbLsmV+ke+fWtUXnvyxXmIn6Pm5nIY9ItISO/d4= Subject key identifier: 32:1F:55:41:2E:E5:3D:86:F5:7E:D1:20:A6:56:C6:89:85:2C:81:0F Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Certificate serial: 2EC51CA50668C858EB510520E509ECE8D7FC8F9B Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a363a3a2f34382d3438203d3e203338343936.roa Signing time: Tue 28 May 2024 03:00:01 +0000 ROA not before: Tue 28 May 2024 02:55:01 +0000 ROA not after: Tue 27 May 2025 03:00:01 +0000 asID: 38496 IP address blocks: 2407:3e80:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:c5:1c:a5:06:68:c8:58:eb:51:05:20:e5:09:ec:e8:d7:fc:8f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Validity Not Before: May 28 02:55:01 2024 GMT Not After : May 27 03:00:01 2025 GMT Subject: CN=321F55412EE53D86F57ED120A656C689852C810F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1f:c8:43:1b:08:d3:32:04:12:75:42:46:84: a1:e5:93:af:18:ed:a0:ad:e2:23:cf:c0:7d:60:34: b1:bd:d9:b4:e4:29:88:2f:a6:3a:ba:15:e3:b6:36: a7:23:97:d9:c9:65:79:27:a8:cf:5d:74:a9:7f:fe: 21:06:5c:bf:e7:9f:c6:5d:d1:8e:4a:bd:ea:a3:3e: 63:54:b1:e9:90:87:d8:4a:ac:e2:c2:8a:4e:55:24: 13:e1:81:10:ae:4f:cb:e2:6d:34:0c:df:a9:9e:7a: 2e:2d:c4:94:4c:de:e1:cc:ef:59:09:7c:01:17:a2: 1d:66:ae:b5:b4:d9:bc:07:f1:a8:1f:f4:68:ef:ca: 3e:f8:d7:f1:07:f0:af:cb:5a:a2:8b:2e:cc:62:4d: 2b:9c:9c:7f:a0:d2:18:18:b8:fe:68:5c:05:ae:b6: 0f:97:8d:98:3f:3f:5f:44:9e:15:a6:68:6f:47:ec: 76:fa:33:f3:df:ba:d7:c5:68:ce:b6:8e:78:8a:de: 3c:20:cd:38:d2:94:43:d8:c6:37:e3:81:71:67:e4: 67:29:d6:73:39:d3:1d:ee:7e:f6:2f:54:7f:5d:f5: 44:37:e0:a7:e4:c5:6f:7c:ad:ff:b6:b2:50:52:54: c1:83:1c:05:67:fd:81:94:ce:74:d7:5e:1f:0a:f3: af:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1F:55:41:2E:E5:3D:86:F5:7E:D1:20:A6:56:C6:89:85:2C:81:0F X509v3 Authority Key Identifier: keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a363a3a2f34382d3438203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:3e80:6::/48 Signature Algorithm: sha256WithRSAEncryption a8:ec:08:86:43:f8:26:30:7e:c1:7a:b4:5d:b4:e2:11:87:32: 22:f5:14:79:86:d6:fc:75:7e:bf:25:d0:a2:59:e7:ec:d8:57: 4b:a0:f0:25:fb:d8:74:d6:48:15:2f:c4:fe:b8:14:81:63:af: be:34:c0:17:35:3a:fd:98:fe:b3:fb:e4:b5:73:f3:0d:f4:29: 22:38:2f:32:ad:84:1d:7a:0d:04:e2:04:bd:e8:a2:8e:9e:0a: 42:ac:8f:ac:61:a5:10:fc:bf:6e:c8:61:c1:3e:6f:e1:43:5f: c8:d1:40:1c:95:7e:ec:60:cf:7b:8b:46:1d:f0:e1:08:ba:64: 9e:fc:5d:e3:69:16:3f:d9:9b:08:4e:7b:32:ca:75:75:35:58: 8d:7c:60:7e:e7:22:d1:d2:95:5f:a0:ac:3b:43:e8:67:b2:88: 7e:ff:27:09:21:34:35:b9:09:4b:38:ba:d7:f3:d3:4a:dd:b0: 53:d6:0c:68:1c:f7:63:f8:74:10:c2:66:6f:02:3b:61:cc:a8: 5c:16:fb:84:63:b7:c2:6c:1b:63:94:08:fb:24:69:53:4f:d3: de:f1:bf:6f:41:c5:d7:18:e5:99:7a:58:0b:dd:ce:39:be:d2: 41:81:90:65:fa:1f:17:fd:a1:83:d7:1a:0d:85:e2:ab:bb:27: 58:2b:e9:dd -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULsUcpQZoyFjrUQUg5Qns6Nf8j5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJC OEM1QjdGMDAeFw0yNDA1MjgwMjU1MDFaFw0yNTA1MjcwMzAwMDFaMDMxMTAvBgNV BAMTKDMyMUY1NTQxMkVFNTNEODZGNTdFRDEyMEE2NTZDNjg5ODUyQzgxMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzH8hDGwjTMgQSdUJGhKHlk68Y 7aCt4iPPwH1gNLG92bTkKYgvpjq6FeO2Nqcjl9nJZXknqM9ddKl//iEGXL/nn8Zd 0Y5KveqjPmNUsemQh9hKrOLCik5VJBPhgRCuT8vibTQM36meei4txJRM3uHM71kJ fAEXoh1mrrW02bwH8agf9Gjvyj741/EH8K/LWqKLLsxiTSucnH+g0hgYuP5oXAWu tg+XjZg/P19EnhWmaG9H7Hb6M/PfutfFaM62jniK3jwgzTjSlEPYxjfjgXFn5Gcp 1nM50x3ufvYvVH9d9UQ34KfkxW98rf+2slBSVMGDHAVn/YGUznTXXh8K86+LAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUMh9VQS7lPYb1ftEgplbGiYUsgQ8wHwYDVR0j BBgwFoAU+6z8Y2WEJbNjmcS50DImIrjFt/AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWU5NDI0My04N2YwLTQyNmYtYTljYS00YzE5ZWRiMDZiNDIvMC9GQkFDRkM2MzY1 ODQyNUIzNjM5OUM0QjlEMDMyMjYyMkI4QzVCN0YwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJCOEM1 QjdGMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTk0MjQzLTg3ZjAtNDI2Zi1h OWNhLTRjMTllZGIwNmI0Mi8wLzMyMzQzMDM3M2EzMzY1MzgzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzQzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAc+gAAGMA0G CSqGSIb3DQEBCwUAA4IBAQCo7AiGQ/gmMH7BerRdtOIRhzIi9RR5htb8dX6/JdCi Wefs2FdLoPAl+9h01kgVL8T+uBSBY6++NMAXNTr9mP6z++S1c/MN9CkiOC8yrYQd eg0E4gS96KKOngpCrI+sYaUQ/L9uyGHBPm/hQ1/I0UAclX7sYM97i0Yd8OEIumSe /F3jaRY/2ZsITnsyynV1NViNfGB+5yLR0pVfoKw7Q+hnsoh+/ycJITQ1uQlLOLrX 89NK3bBT1gxoHPdj+HQQwmZvAjthzKhcFvuEY7fCbBtjlAj7JGlTT9Pe8b9vQcXX GOWZelgL3c45vtJBgZBl+h8X/aGD1xoNheKruydYK+nd -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org