$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: /JakLeHjbIQDMfWMwTkkO0tOKPtDUw6rMLvRw7KRBwU= Subject key identifier: F5:FD:A3:F1:C5:74:31:90:07:1F:AB:EC:19:CC:74:DC:BE:FD:30:E4 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 7F14B3256AE862B3CD5D125EFF78B9C6FAE4A695 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 29 Sep 2024 16:00:01 +0000 ROA not before: Sun 29 Sep 2024 15:55:01 +0000 ROA not after: Sun 28 Sep 2025 16:00:01 +0000 asID: 45147 IP address blocks: 2404:c000:4000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:14:b3:25:6a:e8:62:b3:cd:5d:12:5e:ff:78:b9:c6:fa:e4:a6:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:01 2024 GMT Not After : Sep 28 16:00:01 2025 GMT Subject: CN=F5FDA3F1C5743190071FABEC19CC74DCBEFD30E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:40:54:34:0a:03:48:d5:f9:ba:99:ef:79: 63:e4:6c:ad:5a:28:26:c3:55:2d:26:3a:aa:cd:d1: b1:98:7e:66:dd:92:4b:71:c7:aa:2e:02:c4:81:6d: 7c:0f:56:ec:ec:a8:d6:fc:79:3d:f8:e5:df:8a:9f: 7b:73:92:ad:f6:92:23:77:9c:3e:ff:6b:d8:66:57: b0:1a:4b:2e:14:6b:7e:80:e6:7c:e5:7f:13:ef:a3: 68:82:4c:f5:16:fa:5b:36:2c:9a:83:54:b2:06:8a: c3:81:d8:9f:21:ab:05:20:9d:aa:f1:64:86:2d:d2: 06:69:c2:f7:2f:6d:ef:08:8d:ac:7f:9b:4d:0c:3f: c1:4a:1e:ed:3f:38:01:47:cd:11:35:ac:77:07:20: 97:ba:49:fd:cf:1f:0a:a8:24:07:31:f1:fd:13:13: aa:12:1f:33:d5:51:65:e1:a7:f1:e9:10:a3:7a:4d: 52:3b:f7:8f:7e:b3:8b:a4:80:36:c5:bd:39:ef:f7: a3:d5:e4:f2:5c:4f:bb:e7:12:bb:23:7e:76:26:a3: 43:77:29:16:f5:5a:52:c6:fc:cf:21:78:ad:60:e6: 81:ef:fe:e0:b7:4e:32:14:df:a6:60:db:54:e9:27: 0c:6f:3a:67:48:75:e0:eb:e5:f4:83:e0:5d:d1:04: 27:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:FD:A3:F1:C5:74:31:90:07:1F:AB:EC:19:CC:74:DC:BE:FD:30:E4 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030303a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4000::/47 Signature Algorithm: sha256WithRSAEncryption 08:3b:52:dc:ee:fc:fc:cb:c0:a5:bf:cb:16:16:07:93:e6:35: 1d:8e:d1:ba:95:41:c7:a1:f9:dc:f6:c1:af:8c:5d:df:d2:30: ed:d8:6f:81:8f:e2:23:ff:ad:52:05:cb:e9:b7:3a:9b:da:be: 8d:15:98:4a:b7:e5:04:a0:ae:54:84:af:28:49:3c:39:f1:d7: 55:39:8a:a5:f3:df:39:23:8c:9e:99:69:ff:5d:f7:9d:46:8c: e0:66:0d:d4:d2:02:d8:80:09:a5:ca:25:e9:57:d7:ea:fd:e4: 73:67:83:dd:b9:95:cf:c4:27:e4:7e:8d:e9:cf:45:7c:06:ff: a5:36:5b:e7:cd:40:18:b0:f9:5b:d6:b4:e7:28:8d:0e:48:c2: 73:44:2b:ad:c9:b9:44:1d:f3:e0:9f:26:c3:e0:eb:91:89:bd: c8:24:da:9b:30:9a:0c:14:36:86:57:15:d5:53:95:95:c5:6a: 29:ce:6a:df:79:25:62:be:ed:0c:5c:75:61:56:d2:9f:3f:fe: b0:de:fd:f8:f2:fe:c3:a7:3b:ad:b0:2c:c7:94:8c:9f:4b:a3: 53:e3:4c:29:cf:88:dd:d0:da:14:3a:0d:3b:91:56:6e:e1:e9: ad:c5:7c:7c:75:4d:30:8d:97:99:73:25:f5:03:90:cd:34:7d: 0e:e8:4e:ac -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfxSzJWroYrPNXRJe/3i5xvrkppUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDFaFw0yNTA5MjgxNjAwMDFaMDMxMTAvBgNV BAMTKEY1RkRBM0YxQzU3NDMxOTAwNzFGQUJFQzE5Q0M3NERDQkVGRDMwRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv/0BUNAoDSNX5upnveWPkbK1a KCbDVS0mOqrN0bGYfmbdkktxx6ouAsSBbXwPVuzsqNb8eT345d+Kn3tzkq32kiN3 nD7/a9hmV7AaSy4Ua36A5nzlfxPvo2iCTPUW+ls2LJqDVLIGisOB2J8hqwUgnarx ZIYt0gZpwvcvbe8Ijax/m00MP8FKHu0/OAFHzRE1rHcHIJe6Sf3PHwqoJAcx8f0T E6oSHzPVUWXhp/HpEKN6TVI7949+s4ukgDbFvTnv96PV5PJcT7vnErsjfnYmo0N3 KRb1WlLG/M8heK1g5oHv/uC3TjIU36Zg21TpJwxvOmdIdeDr5fSD4F3RBCc/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9f2j8cV0MZAHH6vsGcx03L79MOQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEAAMA0GCSqGSIb3DQEBCwUAA4IBAQAIO1Lc7vz8y8Clv8sWFgeT5jUdjtG6lUHH ofnc9sGvjF3f0jDt2G+Bj+Ij/61SBcvptzqb2r6NFZhKt+UEoK5UhK8oSTw58ddV OYql8985I4yemWn/XfedRozgZg3U0gLYgAmlyiXpV9fq/eRzZ4PduZXPxCfkfo3p z0V8Bv+lNlvnzUAYsPlb1rTnKI0OSMJzRCutyblEHfPgnybD4OuRib3IJNqbMJoM FDaGVxXVU5WVxWopzmrfeSVivu0MXHVhVtKfP/6w3v348v7DpzutsCzHlIyfS6NT 40wpz4jd0NoUOg07kVZu4emtxXx8dU0wjZeZcyX1A5DNNH0O6E6s -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org