$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/323430313a626663303a3a2f33322d3332203d3e20313336383430.roa File: 323430313a626663303a3a2f33322d3332203d3e20313336383430.roa (raw, json) Hash identifier: 2vipDNHkAigu2uT5W7FDzRLLshb8CXIRnjNsD4RfK2A= Subject key identifier: 95:F4:EA:DB:46:D7:D8:C4:C3:44:EB:6C:C9:84:9C:AA:7E:52:FA:31 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 225F56E353AA1033F20ABD019199468C6E89AD59 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/323430313a626663303a3a2f33322d3332203d3e20313336383430.roa Signing time: Mon 01 Jul 2024 01:05:41 +0000 ROA not before: Mon 01 Jul 2024 01:00:41 +0000 ROA not after: Mon 30 Jun 2025 01:05:41 +0000 asID: 136840 IP address blocks: 2401:bfc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5f:56:e3:53:aa:10:33:f2:0a:bd:01:91:99:46:8c:6e:89:ad:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jul 1 01:00:41 2024 GMT Not After : Jun 30 01:05:41 2025 GMT Subject: CN=95F4EADB46D7D8C4C344EB6CC9849CAA7E52FA31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:09:c4:00:a0:f6:cf:56:8d:95:0f:39:6e:db: 42:f4:25:47:04:db:28:74:70:ae:7c:31:f2:9c:86: 0f:a2:12:70:ea:54:f3:01:e8:6f:e5:f4:9a:40:d4: 31:50:8c:ab:ab:de:bb:4b:8c:8c:92:90:78:6b:75: 07:1a:8e:a4:f8:4f:6f:f2:e0:12:65:bd:4b:fc:89: cc:4d:8a:26:f4:e5:17:53:b2:1e:c5:9a:fa:da:8a: 2e:c7:e1:81:2c:75:37:2f:d1:ed:ae:b0:ed:f5:ee: 7e:e7:e6:2e:1f:58:b8:8e:f9:97:7a:90:40:f3:b8: 91:da:a2:85:b5:4a:92:3e:1b:4a:eb:61:a0:a4:7f: 15:b8:d6:d7:d0:c9:69:05:e2:2e:3a:54:f4:0f:af: 4b:fd:78:6c:e4:10:c0:75:2f:63:93:f6:98:22:c2: 33:00:06:61:e3:48:d3:c4:81:fa:ab:63:be:a9:ad: 63:9a:83:26:ca:65:ca:9c:4a:de:9a:19:6f:c7:53: b5:ee:10:7d:04:60:12:63:de:fb:df:f9:c2:3a:c7: db:9f:fa:d6:78:d8:21:b9:8e:f3:82:52:69:63:c8: e8:7e:bc:2f:df:ee:69:18:0b:07:fc:87:5a:94:39: cc:62:50:85:21:8d:97:1d:35:ed:e1:8f:7d:18:67: 2f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F4:EA:DB:46:D7:D8:C4:C3:44:EB:6C:C9:84:9C:AA:7E:52:FA:31 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/323430313a626663303a3a2f33322d3332203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:bfc0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:dc:2b:06:01:d8:c4:5b:3b:01:9f:50:ce:af:4f:e4:b2:21: 07:41:d0:d5:4a:8f:5d:62:f6:bb:d9:d9:92:a0:1c:b9:f0:7e: 28:a6:ce:4f:f0:ad:5f:bd:83:ce:be:f1:a1:bb:5d:9f:cb:73: 1a:b6:73:ee:06:25:40:2b:4a:fe:7d:09:df:29:a8:9e:78:36: 80:58:ae:0d:e4:cf:c5:36:59:81:f4:14:7b:47:b6:ab:02:53: fd:05:76:1f:0f:1b:6b:5e:72:43:6b:45:69:61:dc:fd:d2:c1: 99:95:ab:77:34:ae:52:98:ae:5d:57:b7:8b:3c:19:d3:6a:c3: 35:18:54:e3:ef:1f:19:50:19:b6:6f:ab:4f:44:aa:86:94:aa: 9b:d4:31:15:01:84:06:aa:01:9b:40:77:a2:e5:26:50:39:2b: 07:64:e6:1d:3f:51:ed:f8:90:89:c8:b1:a5:7b:1f:1f:17:fc: c3:e5:8a:e7:5d:89:bc:11:7e:a4:24:6e:d3:f7:94:de:b7:c5: 8c:94:f8:79:7b:e1:1b:5a:c6:7f:60:1b:fb:d3:30:39:55:7b: a2:23:55:7d:db:6c:38:e5:7d:42:59:ee:cc:97:6f:28:09:71: 5b:5f:02:91:1a:fb:40:9f:a8:29:c1:53:5b:9e:c2:ef:3c:84: 15:d8:62:58 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIl9W41OqEDPyCr0BkZlGjG6JrVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA3MDEwMTAwNDFaFw0yNTA2MzAwMTA1NDFaMDMxMTAvBgNV BAMTKDk1RjRFQURCNDZEN0Q4QzRDMzQ0RUI2Q0M5ODQ5Q0FBN0U1MkZBMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMCcQAoPbPVo2VDzlu20L0JUcE 2yh0cK58MfKchg+iEnDqVPMB6G/l9JpA1DFQjKur3rtLjIySkHhrdQcajqT4T2/y 4BJlvUv8icxNiib05RdTsh7Fmvraii7H4YEsdTcv0e2usO317n7n5i4fWLiO+Zd6 kEDzuJHaooW1SpI+G0rrYaCkfxW41tfQyWkF4i46VPQPr0v9eGzkEMB1L2OT9pgi wjMABmHjSNPEgfqrY76prWOagybKZcqcSt6aGW/HU7XuEH0EYBJj3vvf+cI6x9uf +tZ42CG5jvOCUmljyOh+vC/f7mkYCwf8h1qUOcxiUIUhjZcdNe3hj30YZy/HAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlfTq20bX2MTDROtsyYScqn5S+jEwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMyMzQzMDMxM2E2MjY2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBv8AwDQYJKoZI hvcNAQELBQADggEBAF/cKwYB2MRbOwGfUM6vT+SyIQdB0NVKj11i9rvZ2ZKgHLnw fiimzk/wrV+9g86+8aG7XZ/Lcxq2c+4GJUArSv59Cd8pqJ54NoBYrg3kz8U2WYH0 FHtHtqsCU/0Fdh8PG2teckNrRWlh3P3SwZmVq3c0rlKYrl1Xt4s8GdNqwzUYVOPv HxlQGbZvq09EqoaUqpvUMRUBhAaqAZtAd6LlJlA5Kwdk5h0/Ue34kInIsaV7Hx8X /MPliuddibwRfqQkbtP3lN63xYyU+Hl74Rtaxn9gG/vTMDlVe6IjVX3bbDjlfUJZ 7syXbygJcVtfApEa+0CfqCnBU1uewu88hBXYYlg= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org