$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: qBqxjUY7H/lVExhB+oVypTDAO+xCYFvpEW2BmEk7igo= Subject key identifier: 83:21:3C:34:44:91:02:6C:3F:60:5D:31:C9:5A:17:E5:B7:A5:CE:B9 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 18A114E8FA1F2D866262FF3E844EA48462ABD89E Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 29 Sep 2024 15:00:00 +0000 ROA not before: Sun 29 Sep 2024 14:55:00 +0000 ROA not after: Sun 28 Sep 2025 15:00:00 +0000 asID: 45147 IP address blocks: 2404:c000:4002::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a1:14:e8:fa:1f:2d:86:62:62:ff:3e:84:4e:a4:84:62:ab:d8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 14:55:00 2024 GMT Not After : Sep 28 15:00:00 2025 GMT Subject: CN=83213C344491026C3F605D31C95A17E5B7A5CEB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:46:5e:60:04:fd:98:e6:e5:66:1f:3c:4f:ab: 00:5b:d9:27:78:49:f5:bc:a4:f1:64:91:b9:0e:9f: 29:de:ee:59:50:8b:0b:a0:cb:f1:17:34:b2:b9:c9: af:6f:63:12:66:60:74:62:19:18:28:a1:32:eb:ff: 38:85:86:d9:81:d0:bf:c7:6d:cf:8c:90:d5:b1:d4: ee:34:10:be:65:9d:f0:61:03:41:8b:d1:80:70:29: 2e:d4:38:f4:43:a8:1e:81:39:e1:26:70:24:9c:f1: 07:47:d2:ce:17:62:53:02:94:3f:1b:2f:b1:ea:16: 6a:fd:d4:6b:57:19:49:eb:af:58:e2:9a:09:ea:e4: a4:9a:dc:8a:44:94:09:36:19:c4:8d:ae:16:40:c1: a6:91:6c:fe:f5:93:5c:32:9e:10:b6:a0:af:65:01: de:09:f5:62:af:77:fb:23:e8:dd:43:e1:dc:ce:5b: 16:00:ee:6f:cb:dc:ab:82:17:38:b5:8a:2d:0e:e2: 7e:99:d3:15:9a:4f:00:0c:3f:14:b4:7d:99:78:72: 70:e6:33:7d:6b:2d:c6:dd:b6:c7:1b:00:b4:e7:35: d2:c8:fd:f3:6e:cb:8d:39:83:32:8c:9e:8b:9d:e5: 0f:42:17:09:66:66:42:f6:83:79:8e:fe:73:61:80: 2b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:21:3C:34:44:91:02:6C:3F:60:5D:31:C9:5A:17:E5:B7:A5:CE:B9 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030323a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4002::/47 Signature Algorithm: sha256WithRSAEncryption 46:cc:a5:26:de:64:2f:0b:6d:72:df:ff:f5:37:02:11:d8:9c: 36:f9:f1:b5:f3:f7:27:1f:1d:c5:43:29:53:8a:d4:e4:89:be: 1b:29:fd:da:c2:4c:5e:c2:c1:34:53:41:1a:5b:8a:1f:2c:1d: e3:0c:0d:b9:bd:b5:2f:8e:74:10:85:3d:b0:6f:eb:88:03:fc: 27:a5:53:ad:8c:3d:78:94:c2:8a:64:6d:f6:5f:46:a0:9a:ec: df:23:38:61:a0:74:75:0b:18:0f:02:48:dd:c3:0d:d9:86:9a: 17:86:57:ab:01:03:8e:f5:2e:a2:13:a4:3d:4e:c0:e2:07:b0: 21:84:64:56:ad:b7:12:0c:96:a3:58:76:66:1e:a3:b3:3c:9c: d7:eb:f7:19:20:24:94:79:b0:b8:1d:19:37:9e:58:92:9a:76: 98:b7:92:51:c3:aa:ae:9f:0e:32:5e:ea:b5:c5:94:25:8b:28: 3a:26:aa:52:12:d1:e9:6e:ee:6b:00:fc:96:23:de:83:76:4d: 64:c0:74:60:7b:f8:13:e4:ca:eb:b0:8a:50:b3:9f:b5:90:34: 1c:9f:5b:9b:11:6e:5b:f7:a8:fe:b4:32:ea:66:ac:c5:8b:a0: fd:f4:49:83:b3:c2:f0:d7:c7:42:90:32:e5:fa:60:02:e0:2b: 8f:4f:6e:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGKEU6PofLYZiYv8+hE6khGKr2J4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNDU1MDBaFw0yNTA5MjgxNTAwMDBaMDMxMTAvBgNV BAMTKDgzMjEzQzM0NDQ5MTAyNkMzRjYwNUQzMUM5NUExN0U1QjdBNUNFQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRl5gBP2Y5uVmHzxPqwBb2Sd4 SfW8pPFkkbkOnyne7llQiwugy/EXNLK5ya9vYxJmYHRiGRgooTLr/ziFhtmB0L/H bc+MkNWx1O40EL5lnfBhA0GL0YBwKS7UOPRDqB6BOeEmcCSc8QdH0s4XYlMClD8b L7HqFmr91GtXGUnrr1jimgnq5KSa3IpElAk2GcSNrhZAwaaRbP71k1wynhC2oK9l Ad4J9WKvd/sj6N1D4dzOWxYA7m/L3KuCFzi1ii0O4n6Z0xWaTwAMPxS0fZl4cnDm M31rLcbdtscbALTnNdLI/fNuy405gzKMnoud5Q9CFwlmZkL2g3mO/nNhgCt7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgyE8NESRAmw/YF0xyVoX5belzrkwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNDM1MzEzNDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEACMA0GCSqGSIb3DQEBCwUAA4IBAQBGzKUm3mQvC21y3//1NwIR2Jw2+fG18/cn Hx3FQylTitTkib4bKf3awkxewsE0U0EaW4ofLB3jDA25vbUvjnQQhT2wb+uIA/wn pVOtjD14lMKKZG32X0agmuzfIzhhoHR1CxgPAkjdww3ZhpoXhlerAQOO9S6iE6Q9 TsDiB7AhhGRWrbcSDJajWHZmHqOzPJzX6/cZICSUebC4HRk3nliSmnaYt5JRw6qu nw4yXuq1xZQliyg6JqpSEtHpbu5rAPyWI96Ddk1kwHRge/gT5MrrsIpQs5+1kDQc n1ubEW5b96j+tDLqZqzFi6D99EmDs8Lw18dCkDLl+mAC4CuPT27+ -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org