$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: GUSl7LUTkCNLq3kjAIVktijnSt4hBS8Y9L517womeqQ= Subject key identifier: FA:FE:C3:2B:F9:D5:90:13:FE:A3:78:9D:42:56:43:31:4E:A0:75:60 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 52B14AF48135E3805D37D741CCCA5505EB03BD8F Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 01 Jul 2024 16:00:02 +0000 ROA not before: Mon 01 Jul 2024 15:55:02 +0000 ROA not after: Mon 30 Jun 2025 16:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b1:4a:f4:81:35:e3:80:5d:37:d7:41:cc:ca:55:05:eb:03:bd:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jul 1 15:55:02 2024 GMT Not After : Jun 30 16:00:02 2025 GMT Subject: CN=FAFEC32BF9D59013FEA3789D425643314EA07560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:f0:82:ec:05:fe:e3:1a:cc:64:40:a8:ec: 88:bc:4f:9f:ce:da:35:ef:26:8d:c6:6e:36:d1:50: 85:2d:d4:b0:14:86:83:70:4f:2c:3b:8e:5f:b3:dc: b3:49:92:26:2b:1d:d5:bd:91:c5:aa:36:de:da:46: fa:5a:d8:24:d3:fb:52:6f:97:a3:91:51:d1:45:c0: ae:bc:67:7f:60:bf:f5:cc:ed:43:c5:a7:19:48:2b: ca:f3:ee:9a:cc:8c:9d:3f:1e:9e:25:3c:54:c9:1b: ca:9a:29:f8:f0:fd:29:aa:b7:a8:04:7e:fe:ec:1e: 74:4f:4c:e2:6e:4b:94:8b:a8:a4:8d:ad:d0:f7:5f: a2:aa:6c:e4:e7:81:c7:15:1e:e6:db:dd:9c:a5:f4: 03:64:c4:56:a6:8e:ab:ea:f8:61:a9:1e:86:34:45: 82:4d:8e:00:13:76:0b:98:1f:04:66:ec:cb:2a:f8: c9:e2:cb:9b:ae:43:32:2e:57:f0:d1:b0:a9:5a:ca: c6:58:2f:52:50:db:1b:f8:90:19:a6:f0:05:89:2e: 6d:d4:17:ff:60:7d:3c:90:e5:89:da:7d:b5:09:80: 6b:81:81:64:64:44:51:2b:e6:18:52:c8:c3:05:3a: e3:7e:13:a3:67:d0:98:20:c3:a7:7e:59:ab:47:2a: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FE:C3:2B:F9:D5:90:13:FE:A3:78:9D:42:56:43:31:4E:A0:75:60 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 6f:e2:c5:4c:f1:c2:d6:aa:8e:ab:94:18:21:4e:8a:43:4d:78: a7:04:d0:94:d8:81:6f:dd:5e:4b:68:41:ba:89:ec:e5:b5:56: 4e:8e:ad:ae:ce:c2:81:3d:02:ee:be:4b:a1:89:68:8b:71:ff: 0a:c4:43:15:50:69:6f:40:fb:6e:3a:c6:47:5f:13:8b:62:d7: 4f:5c:98:0e:ce:dc:3c:e5:ed:da:9f:3d:1f:0d:fc:42:9c:36: 63:27:66:c4:9c:ab:56:37:92:e6:4e:e8:55:d4:58:7f:ba:93: c4:c7:fb:09:d1:ed:7d:c4:47:04:b8:96:57:54:a2:da:25:bd: 1f:2d:90:e7:6d:6e:57:39:4e:99:ba:31:c3:cc:81:c5:75:74: 90:c4:d0:b8:f6:3e:d5:54:8f:aa:f2:fd:bd:cd:84:99:34:69: 41:d1:6e:7c:71:08:5e:ba:ca:f5:b1:6b:45:c6:81:36:99:ae: 5e:6a:20:7d:16:3f:10:e5:3f:c9:ea:a1:d4:d9:2c:db:91:cf: 82:da:d3:5d:ce:15:2f:cf:51:2b:8c:ad:36:0a:5e:46:b3:9f: 07:2f:09:9c:d8:e6:48:d2:fd:3d:9b:e0:57:1a:d4:6c:4d:92: bd:76:71:53:a3:19:d5:f0:55:95:bd:b4:6b:38:a1:0a:63:a3: 1e:6e:0c:26 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUUrFK9IE144BdN9dBzMpVBesDvY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA3MDExNTU1MDJaFw0yNTA2MzAxNjAwMDJaMDMxMTAvBgNV BAMTKEZBRkVDMzJCRjlENTkwMTNGRUEzNzg5RDQyNTY0MzMxNEVBMDc1NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzpPCC7AX+4xrMZECo7Ii8T5/O 2jXvJo3GbjbRUIUt1LAUhoNwTyw7jl+z3LNJkiYrHdW9kcWqNt7aRvpa2CTT+1Jv l6ORUdFFwK68Z39gv/XM7UPFpxlIK8rz7prMjJ0/Hp4lPFTJG8qaKfjw/Smqt6gE fv7sHnRPTOJuS5SLqKSNrdD3X6KqbOTngccVHubb3Zyl9ANkxFamjqvq+GGpHoY0 RYJNjgATdguYHwRm7Msq+Mniy5uuQzIuV/DRsKlaysZYL1JQ2xv4kBmm8AWJLm3U F/9gfTyQ5YnafbUJgGuBgWRkRFEr5hhSyMMFOuN+E6Nn0Jggw6d+WatHKk6LAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU+v7DK/nVkBP+o3idQlZDMU6gdWAwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAEw DQYJKoZIhvcNAQELBQADggEBAG/ixUzxwtaqjquUGCFOikNNeKcE0JTYgW/dXkto QbqJ7OW1Vk6Ora7OwoE9Au6+S6GJaItx/wrEQxVQaW9A+246xkdfE4ti109cmA7O 3Dzl7dqfPR8N/EKcNmMnZsScq1Y3kuZO6FXUWH+6k8TH+wnR7X3ERwS4lldUotol vR8tkOdtblc5Tpm6McPMgcV1dJDE0Lj2PtVUj6ry/b3NhJk0aUHRbnxxCF66yvWx a0XGgTaZrl5qIH0WPxDlP8nqodTZLNuRz4La013OFS/PUSuMrTYKXkaznwcvCZzY 5kjS/T2b4Fca1GxNkr12cVOjGdXwVZW9tGs4oQpjox5uDCY= -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org