$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa File: 323430353a633863303a3a2f33322d3332203d3e20313339393831.roa (raw, json) Hash identifier: xAQ8nY4YiCbyThm1ahzRI7qCPhGk2b5venOiA8cHRk4= Subject key identifier: C3:B3:A6:FE:E7:76:B5:35:6C:5A:C3:3E:B6:61:E6:B0:70:0A:51:83 Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Certificate serial: 4DC48F3585AB5563DDD7B2B75443C62234D11DEB Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa Signing time: Mon 11 Nov 2024 08:01:12 +0000 ROA not before: Mon 11 Nov 2024 07:56:12 +0000 ROA not after: Mon 10 Nov 2025 08:01:12 +0000 asID: 139981 IP address blocks: 2405:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 07:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c4:8f:35:85:ab:55:63:dd:d7:b2:b7:54:43:c6:22:34:d1:1d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1 Validity Not Before: Nov 11 07:56:12 2024 GMT Not After : Nov 10 08:01:12 2025 GMT Subject: CN=C3B3A6FEE776B5356C5AC33EB661E6B0700A5183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:73:57:0f:2a:40:0b:a0:f9:e2:05:6a:14: ca:8d:14:44:8b:01:90:38:63:b0:1e:17:ac:c6:f0: c0:ba:74:cc:06:37:23:b0:10:be:5c:b3:fc:55:28: d8:77:cc:cf:36:65:6c:26:79:6d:e7:29:fb:7a:44: 6f:e1:0b:38:a4:45:7d:aa:03:b9:0f:40:26:02:97: e2:b3:68:a1:7f:8c:2d:21:69:4e:32:2d:e5:d7:4d: b1:e5:31:7c:3d:5e:d9:bd:a1:6d:cb:3b:6f:f3:75: cc:89:60:81:05:12:91:ad:50:20:e9:56:58:82:be: 34:6a:28:2b:89:52:33:7a:bc:cc:43:a3:9e:f2:0c: 49:dd:e3:3a:2d:1d:9f:c6:c5:73:59:ef:c5:0b:59: e2:99:14:85:50:a6:0a:38:34:3f:5e:b6:9c:5f:6e: 7e:e3:62:da:65:60:52:31:98:31:df:fa:b8:30:a5: 42:8e:a0:01:18:48:ab:4d:16:56:69:bf:98:8d:cd: 2a:9e:e0:44:1b:27:0d:64:54:93:94:6d:86:a3:17: e0:06:dd:00:bd:62:d5:d2:00:5b:70:2c:b5:f2:2d: 81:8a:c4:49:c3:61:f3:87:23:de:86:f2:3b:8a:41: 55:46:9a:f5:1c:9a:ea:7a:ad:fb:3e:d7:4f:f4:6b: fc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B3:A6:FE:E7:76:B5:35:6C:5A:C3:3E:B6:61:E6:B0:70:0A:51:83 X509v3 Authority Key Identifier: keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/323430353a633863303a3a2f33322d3332203d3e20313339393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:46:06:22:99:6e:94:8d:ce:6a:b7:30:00:80:14:e4:45:da: c5:f3:30:b7:21:2a:dc:d1:05:1a:cb:84:34:eb:9e:b6:8d:0e: 51:fe:6f:10:b5:d8:c8:5a:fc:7f:86:d0:80:b8:df:67:b6:cc: 78:c8:b1:a7:2f:46:27:ad:17:32:f4:13:13:43:26:c1:e7:32: 03:fc:79:ce:cd:2e:e1:bf:11:c0:68:71:cd:2b:ea:61:71:bf: e1:2d:f9:29:07:1f:53:ec:f0:d4:3a:d7:fb:4a:53:71:e8:9e: 56:c6:bd:9b:18:21:d1:eb:9a:9b:18:4f:86:66:82:26:e7:34: 37:29:6e:0c:10:a2:51:6e:dc:f0:71:46:a3:68:4a:2a:b3:6d: 67:7c:13:cd:25:a5:b7:4e:5a:54:90:da:1a:7c:38:3c:35:85: 8c:0d:87:d2:05:07:81:91:10:2a:dd:1d:39:19:a6:6c:5f:86: c0:1c:ef:81:73:fe:4f:2e:26:52:2b:16:80:ef:52:33:de:72: ed:00:a6:f1:35:46:44:ef:c0:3a:7b:b1:1e:c2:e8:c8:f5:1c: a9:c9:80:8b:82:8b:e4:f3:60:ab:f2:20:98:5e:1a:5f:8c:46: 1c:42:fe:a2:a8:3e:4a:b1:36:b6:be:97:6e:c4:8b:0e:f7:f8: 68:a1:ca:86 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTcSPNYWrVWPd17K3VEPGIjTRHeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlE MURFQTZDMTAeFw0yNDExMTEwNzU2MTJaFw0yNTExMTAwODAxMTJaMDMxMTAvBgNV BAMTKEMzQjNBNkZFRTc3NkI1MzU2QzVBQzMzRUI2NjFFNkIwNzAwQTUxODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjAHNXDypAC6D54gVqFMqNFESL AZA4Y7AeF6zG8MC6dMwGNyOwEL5cs/xVKNh3zM82ZWwmeW3nKft6RG/hCzikRX2q A7kPQCYCl+KzaKF/jC0haU4yLeXXTbHlMXw9Xtm9oW3LO2/zdcyJYIEFEpGtUCDp VliCvjRqKCuJUjN6vMxDo57yDEnd4zotHZ/GxXNZ78ULWeKZFIVQpgo4ND9etpxf bn7jYtplYFIxmDHf+rgwpUKOoAEYSKtNFlZpv5iNzSqe4EQbJw1kVJOUbYajF+AG 3QC9YtXSAFtwLLXyLYGKxEnDYfOHI96G8juKQVVGmvUcmup6rfs+10/0a/xLAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUw7Om/ud2tTVsWsM+tmHmsHAKUYMwHwYDVR0j BBgwFoAUKvUSHNHPp3mMwd13e0ZDadHepsEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTJlMDdmOC0xYTQ4LTQzOTEtYTZhNS04ZTRlMzljODU4OGEvMC8yQUY1MTIxQ0Qx Q0ZBNzc5OENDMURENzc3QjQ2NDM2OUQxREVBNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFGNTEyMUNEMUNGQTc3OThDQzFERDc3N0I0NjQzNjlEMURF QTZDMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MmUwN2Y4LTFhNDgtNDM5MS1h NmE1LThlNGUzOWM4NTg4YS8wLzMyMzQzMDM1M2E2MzM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFyMAwDQYJKoZI hvcNAQELBQADggEBAI9GBiKZbpSNzmq3MACAFORF2sXzMLchKtzRBRrLhDTrnraN DlH+bxC12Mha/H+G0IC432e2zHjIsacvRietFzL0ExNDJsHnMgP8ec7NLuG/EcBo cc0r6mFxv+Et+SkHH1Ps8NQ61/tKU3HonlbGvZsYIdHrmpsYT4ZmgibnNDcpbgwQ olFu3PBxRqNoSiqzbWd8E80lpbdOWlSQ2hp8ODw1hYwNh9IFB4GRECrdHTkZpmxf hsAc74Fz/k8uJlIrFoDvUjPecu0ApvE1RkTvwDp7sR7C6Mj1HKnJgIuCi+TzYKvy IJheGl+MRhxC/qKoPkqxNra+l27Eiw73+GihyoY= -----END CERTIFICATE-----Generated at Mon Nov 25 06:03:03 2024 by rpki-client on console-fra.rpki-client.org