$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa File: 323430323a623234303a3a2f34372d3437203d3e203234313938.roa (raw, json) Hash identifier: cv1KBGnemLgcaZAxGgllsmZ1S3QTjWbciD6aB9fI3zI= Subject key identifier: 41:C5:3F:29:F2:AE:DF:A1:E0:06:FC:BD:40:ED:A4:D7:EF:BB:25:AB Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Certificate serial: 56D9FA0DFF5EA8FD58BA7C5F3F6CA3E949950A94 Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa Signing time: Thu 26 Sep 2024 09:33:14 +0000 ROA not before: Thu 26 Sep 2024 09:28:14 +0000 ROA not after: Thu 25 Sep 2025 09:33:14 +0000 asID: 24198 IP address blocks: 2402:b240::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:d9:fa:0d:ff:5e:a8:fd:58:ba:7c:5f:3f:6c:a3:e9:49:95:0a:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02 Validity Not Before: Sep 26 09:28:14 2024 GMT Not After : Sep 25 09:33:14 2025 GMT Subject: CN=41C53F29F2AEDFA1E006FCBD40EDA4D7EFBB25AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:73:65:2f:41:8b:4d:6d:ad:ce:6c:f4:b2:a0: 50:5a:02:81:32:ea:6f:46:4f:93:15:e7:d9:45:6d: 2c:78:6f:a4:9a:e4:46:62:26:c5:2b:8a:2e:3c:49: 93:bf:f2:f0:ed:c4:cb:02:2f:e0:ca:2b:23:98:43: 1a:f7:a3:3d:77:7f:29:a7:a5:c7:46:04:a9:76:01: d8:84:b4:ab:89:eb:31:d1:43:e2:d3:a6:1e:7c:3d: 65:5b:18:ef:9f:c1:cb:8c:9d:5f:99:3f:06:72:50: 93:4f:72:ba:b3:3b:b8:29:d7:92:41:3d:f4:cd:ae: d7:f7:69:fe:96:13:a1:c5:f7:b8:a1:4a:d0:19:48: 0f:f3:6e:5c:81:d1:61:40:fa:cf:e2:4d:ae:8b:f3: b2:e8:ce:bb:03:aa:bc:75:73:57:37:67:12:b6:31: ce:e2:4f:e2:2d:fe:f3:67:90:2f:ba:7b:59:8c:d0: f6:4b:79:45:d8:40:60:51:05:4a:d5:02:36:6c:d0: f8:a3:3b:aa:61:29:61:bf:76:fc:cc:70:b0:12:c5: f2:5b:a7:6f:8a:1e:84:bc:de:06:ba:1e:c0:59:8d: d6:70:78:bb:06:ac:61:f0:47:ed:50:aa:14:24:69: 78:c1:da:cc:42:a1:6b:ac:5e:74:74:d2:2e:62:b8: 34:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C5:3F:29:F2:AE:DF:A1:E0:06:FC:BD:40:ED:A4:D7:EF:BB:25:AB X509v3 Authority Key Identifier: keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/323430323a623234303a3a2f34372d3437203d3e203234313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:b240::/47 Signature Algorithm: sha256WithRSAEncryption 41:d4:b7:36:4f:2e:8b:68:fa:81:8e:d8:23:0b:50:1b:a3:7d: 27:5c:da:62:20:b9:4a:4e:58:bb:e5:12:e4:f4:13:16:17:5d: 78:df:2e:91:46:15:dc:1f:70:10:f0:1f:e6:27:da:7b:d8:5c: da:93:30:43:a1:00:f9:8d:79:2e:06:66:f2:4b:a1:a7:5d:01: 35:fe:2d:66:26:a1:3e:0f:9c:71:53:9c:f4:09:c4:78:b5:ca: 99:01:9c:3d:1a:ef:4d:97:72:36:eb:2c:c9:62:6c:9e:8c:36: 08:bc:4f:45:31:16:f5:fd:d6:df:30:ed:47:4c:fc:96:cd:49: 93:df:c9:96:0d:32:27:28:6b:98:5b:f4:84:52:47:2c:0a:27: 14:ba:f3:4b:33:ce:95:e6:ac:03:32:32:ab:c6:3c:87:13:e1: f0:c4:22:48:c8:b2:c1:58:86:43:e8:91:7e:8b:cb:20:0f:cb: 57:cc:70:d9:7e:55:6f:fb:a9:00:e2:d0:4d:4b:33:51:d3:38: 3d:65:a9:e8:21:5b:39:b6:b8:9a:f7:30:93:fb:48:ea:b1:8d: 39:7a:db:88:09:37:10:fe:f4:84:0e:c7:45:c7:fa:c6:c3:af: d5:ac:d7:8d:bc:2c:8e:f6:a2:da:a0:cd:54:9a:7e:b6:d0:ff: 90:8e:32:d2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVtn6Df9eqP1YunxfP2yj6UmVCpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3 NzgwOUQwMjAeFw0yNDA5MjYwOTI4MTRaFw0yNTA5MjUwOTMzMTRaMDMxMTAvBgNV BAMTKDQxQzUzRjI5RjJBRURGQTFFMDA2RkNCRDQwRURBNEQ3RUZCQjI1QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4c2UvQYtNba3ObPSyoFBaAoEy 6m9GT5MV59lFbSx4b6Sa5EZiJsUrii48SZO/8vDtxMsCL+DKKyOYQxr3oz13fymn pcdGBKl2AdiEtKuJ6zHRQ+LTph58PWVbGO+fwcuMnV+ZPwZyUJNPcrqzO7gp15JB PfTNrtf3af6WE6HF97ihStAZSA/zblyB0WFA+s/iTa6L87LozrsDqrx1c1c3ZxK2 Mc7iT+It/vNnkC+6e1mM0PZLeUXYQGBRBUrVAjZs0PijO6phKWG/dvzMcLASxfJb p2+KHoS83ga6HsBZjdZweLsGrGHwR+1QqhQkaXjB2sxCoWusXnR00i5iuDR7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUQcU/KfKu36HgBvy9QO2k1++7JaswHwYDVR0j BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw OUQwMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05 MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzQzMDMyM2E2MjMyMzQzMDNhM2EyZjM0Mzcy ZDM0MzcyMDNkM2UyMDMyMzQzMTM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkArJAAAAwDQYJKoZI hvcNAQELBQADggEBAEHUtzZPLoto+oGO2CMLUBujfSdc2mIguUpOWLvlEuT0ExYX XXjfLpFGFdwfcBDwH+Yn2nvYXNqTMEOhAPmNeS4GZvJLoaddATX+LWYmoT4PnHFT nPQJxHi1ypkBnD0a702XcjbrLMlibJ6MNgi8T0UxFvX91t8w7UdM/JbNSZPfyZYN Micoa5hb9IRSRywKJxS680szzpXmrAMyMqvGPIcT4fDEIkjIssFYhkPokX6LyyAP y1fMcNl+VW/7qQDi0E1LM1HTOD1lqeghWzm2uJr3MJP7SOqxjTl624gJNxD+9IQO x0XH+sbDr9Ws1428LI72otqgzVSafrbQ/5COMtI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org