$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa (raw, json) Hash identifier: 4QuiXEILiZQCbnmrTwGW7H24j889K6CIE9ZUdqMX5Ik= Subject key identifier: A0:A4:FE:74:C2:42:ED:DA:0A:AC:52:DA:31:F3:BC:EB:B6:35:36:34 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 520F329D2E38A0195B93C0E2C5470A4B94F6B9E2 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa Signing time: Sun 29 Sep 2024 15:00:00 +0000 ROA not before: Sun 29 Sep 2024 14:55:00 +0000 ROA not after: Sun 28 Sep 2025 15:00:00 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0f:32:9d:2e:38:a0:19:5b:93:c0:e2:c5:47:0a:4b:94:f6:b9:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 14:55:00 2024 GMT Not After : Sep 28 15:00:00 2025 GMT Subject: CN=A0A4FE74C242EDDA0AAC52DA31F3BCEBB6353634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:e2:17:22:28:8d:eb:3b:ea:20:34:62:e7: d1:32:8e:49:09:61:56:33:35:6d:27:0a:2d:01:85: 11:55:fa:ca:da:53:1b:2b:aa:3d:db:af:59:3c:d4: 55:2a:9a:ae:a9:bf:01:f9:46:4b:e6:eb:ed:81:55: 35:30:17:85:d9:70:3d:93:2e:36:1f:df:0c:15:cf: 4f:bc:8f:c0:28:85:b2:d7:c3:1f:3d:f0:7c:e7:42: 88:70:8e:33:9b:d4:a2:ef:65:dd:c5:06:c3:37:09: f0:70:b2:c5:65:6d:a8:f4:af:cc:f9:3e:47:8b:3b: 68:3f:32:80:e4:61:98:3e:00:10:c7:11:4e:17:f4: bb:d4:b6:2e:b9:95:36:16:d6:93:77:62:6d:5c:eb: e9:00:87:94:a3:e1:96:86:15:56:8f:6b:c7:03:84: 5c:43:15:f0:f3:e3:88:5f:ed:e4:fc:cc:a4:c7:e7: 1c:7b:c6:f5:2b:99:96:18:82:e0:d8:77:c6:c7:cb: ec:70:28:87:76:b4:b0:f4:0d:18:7b:a6:f1:d9:5b: c9:9b:5e:6a:6a:fa:a9:d6:ba:19:be:31:52:69:53: 0a:5f:07:ea:04:59:e6:51:0a:a4:21:8f:a2:8a:14: be:b8:33:6d:f4:90:a9:0e:96:e8:41:7a:5c:76:a4: 48:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A4:FE:74:C2:42:ED:DA:0A:AC:52:DA:31:F3:BC:EB:B6:35:36:34 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34372d3437203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/47 Signature Algorithm: sha256WithRSAEncryption c5:f8:37:60:37:4b:f1:8c:dc:b1:f7:15:90:05:84:56:f2:7f: 92:04:de:04:34:76:86:38:9c:72:51:d5:a4:57:a1:0d:be:16: 55:d5:36:56:a5:56:0d:66:7d:b1:83:13:f2:45:7a:30:2c:2b: 6a:7d:73:2a:55:dc:bd:5d:2b:04:13:a4:99:62:e4:33:18:15: 19:57:a6:27:42:66:e4:6e:29:dc:56:c7:5a:f5:ad:1c:8d:80: 44:b2:36:7e:7d:3d:54:76:5d:a0:c4:af:bd:c9:11:bc:cd:28: 5c:99:d2:0d:49:b5:2b:99:e1:7d:48:1d:20:2e:e5:81:05:46: be:9b:ed:2e:23:d3:54:b7:b5:c0:09:28:33:10:7d:39:20:6f: ed:29:51:98:4f:71:77:75:52:9b:81:7e:51:52:12:f6:44:19: e8:cc:30:cc:fc:a2:30:bf:3e:93:20:46:c9:37:87:10:57:f5: 8e:07:3f:3d:b7:92:64:98:32:63:cf:7f:3d:64:e7:94:7c:27: bc:f4:7c:80:a3:f9:ac:86:b9:1e:59:1a:82:f6:b5:5e:89:82: 16:6b:bc:e3:4d:66:e4:e5:3a:af:c9:b0:24:3a:ac:a5:79:a1: 7c:4a:cd:d1:f7:2e:f0:62:5f:a4:2d:62:69:d2:49:fd:2d:64: 38:f4:8b:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUg8ynS44oBlbk8DixUcKS5T2ueIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNDU1MDBaFw0yNTA5MjgxNTAwMDBaMDMxMTAvBgNV BAMTKEEwQTRGRTc0QzI0MkVEREEwQUFDNTJEQTMxRjNCQ0VCQjYzNTM2MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzgeIXIiiN6zvqIDRi59EyjkkJ YVYzNW0nCi0BhRFV+sraUxsrqj3br1k81FUqmq6pvwH5Rkvm6+2BVTUwF4XZcD2T LjYf3wwVz0+8j8AohbLXwx898HznQohwjjOb1KLvZd3FBsM3CfBwssVlbaj0r8z5 PkeLO2g/MoDkYZg+ABDHEU4X9LvUti65lTYW1pN3Ym1c6+kAh5Sj4ZaGFVaPa8cD hFxDFfDz44hf7eT8zKTH5xx7xvUrmZYYguDYd8bHy+xwKId2tLD0DRh7pvHZW8mb Xmpq+qnWuhm+MVJpUwpfB+oEWeZRCqQhj6KKFL64M230kKkOluhBelx2pEgxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoKT+dMJC7doKrFLaMfO867Y1NjQwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQDF+DdgN0vxjNyx9xWQBYRW8n+SBN4ENHaG OJxyUdWkV6ENvhZV1TZWpVYNZn2xgxPyRXowLCtqfXMqVdy9XSsEE6SZYuQzGBUZ V6YnQmbkbincVsda9a0cjYBEsjZ+fT1Udl2gxK+9yRG8zShcmdINSbUrmeF9SB0g LuWBBUa+m+0uI9NUt7XACSgzEH05IG/tKVGYT3F3dVKbgX5RUhL2RBnozDDM/KIw vz6TIEbJN4cQV/WOBz89t5JkmDJjz389ZOeUfCe89HyAo/mshrkeWRqC9rVeiYIW a7zjTWbk5TqvybAkOqyleaF8Ss3R9y7wYl+kLWJp0kn9LWQ49Iuu -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org