$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa File: 323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa (raw, json) Hash identifier: OjeDXaOtvIWk++AnHkwiRZenTyk07AmdIC9obFzy9gc= Subject key identifier: 3B:E2:D8:B9:CF:48:1B:92:AA:89:32:A2:98:F1:46:EB:8E:3C:F7:9F Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 01A1BEBAC0A13A4357ABDA48A08D44B14B2527AF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa Signing time: Sun 29 Sep 2024 16:00:01 +0000 ROA not before: Sun 29 Sep 2024 15:55:01 +0000 ROA not after: Sun 28 Sep 2025 16:00:01 +0000 asID: 55818 IP address blocks: 2404:c000:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:a1:be:ba:c0:a1:3a:43:57:ab:da:48:a0:8d:44:b1:4b:25:27:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:01 2024 GMT Not After : Sep 28 16:00:01 2025 GMT Subject: CN=3BE2D8B9CF481B92AA8932A298F146EB8E3CF79F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9b:98:85:23:31:70:b6:2d:54:f1:19:f9:bd: 19:cb:8a:47:9e:a5:a7:61:dd:b4:77:85:3c:13:1c: 6a:0d:49:11:a8:21:84:dd:9e:5a:ba:67:c6:a2:fa: ae:fe:28:8b:d3:15:0c:bd:20:48:1a:cf:06:94:39: 6b:36:d6:5d:08:c7:e7:4f:4e:47:8e:87:51:94:87: 8b:fd:77:1b:ba:f7:26:26:c1:8f:6a:d6:b6:3c:bc: 93:75:d6:83:f8:8a:ac:5a:3c:40:b6:8d:f5:d8:ed: 53:9a:49:73:13:b0:e9:18:62:9f:7a:ac:52:77:0b: 18:30:0d:80:c3:48:e0:b5:ae:fb:fa:59:9c:03:f2: 9a:22:f3:20:a0:26:99:97:19:44:c5:ff:61:6c:24: d3:34:59:79:d3:65:ab:37:b7:51:8f:17:d6:27:e8: 74:c0:cc:f4:93:d9:6c:4d:8c:85:bc:4e:c8:82:dc: 1e:e2:a3:48:d8:4a:13:82:cc:b4:13:2c:04:c4:b5: 54:58:a7:12:ae:1e:9a:6c:8f:8c:30:bf:f9:f5:2a: 0b:bd:b8:cd:48:35:f5:a1:0c:28:e9:86:e0:fa:08: b8:e4:f2:7a:c2:cb:87:16:df:cf:f3:87:7b:37:b6: a1:be:74:74:82:10:c7:da:8e:ef:37:5d:16:6d:c3: ec:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E2:D8:B9:CF:48:1B:92:AA:89:32:A2:98:F1:46:EB:8E:3C:F7:9F X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a343030343a3a2f34382d3438203d3e203535383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:4004::/48 Signature Algorithm: sha256WithRSAEncryption 86:37:23:1a:9c:26:96:c7:fe:ed:34:d0:04:d0:b2:3a:48:b1: ff:aa:f1:fc:0c:04:22:4a:66:05:7a:e9:db:70:42:64:db:80: ab:a7:31:77:09:a2:a9:0d:b5:4d:66:ba:9f:7d:19:fb:2c:d0: 3a:cf:76:42:36:fc:9e:d9:8e:aa:11:87:31:92:a1:40:49:8d: f7:dd:5a:90:54:63:ab:13:c2:4a:92:b6:4a:91:71:8c:a8:82: 80:0c:ba:09:fd:53:22:10:43:54:81:98:79:48:8a:e6:84:ec: c2:e1:d3:fc:f1:ed:37:4d:59:51:ca:b4:ec:57:8a:05:36:06: 0b:dc:06:40:c9:b7:78:36:83:1c:56:27:87:6a:a1:1c:0f:ed: 14:53:62:75:eb:78:07:a5:b5:aa:07:29:74:f1:d4:2f:e6:d1: 50:49:2e:cf:f9:59:2f:9e:67:86:3d:11:ef:fb:43:69:73:92: b2:cd:61:af:6e:4b:99:30:95:51:15:2a:eb:70:9f:ca:59:2b: ad:5c:d7:a1:f0:68:e6:fd:b9:8f:5e:fc:e3:45:3d:bf:75:78: d8:72:3c:3f:bf:98:c9:5e:fe:1d:88:6c:37:38:6a:9d:88:c7: 4b:bf:48:55:f1:ac:d9:fa:74:54:bf:e9:2c:f1:6f:2e:3a:a8: b7:af:4d:12 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAaG+usChOkNXq9pIoI1EsUslJ68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDFaFw0yNTA5MjgxNjAwMDFaMDMxMTAvBgNV BAMTKDNCRTJEOEI5Q0Y0ODFCOTJBQTg5MzJBMjk4RjE0NkVCOEUzQ0Y3OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWm5iFIzFwti1U8Rn5vRnLikee padh3bR3hTwTHGoNSRGoIYTdnlq6Z8ai+q7+KIvTFQy9IEgazwaUOWs21l0Ix+dP TkeOh1GUh4v9dxu69yYmwY9q1rY8vJN11oP4iqxaPEC2jfXY7VOaSXMTsOkYYp96 rFJ3CxgwDYDDSOC1rvv6WZwD8poi8yCgJpmXGUTF/2FsJNM0WXnTZas3t1GPF9Yn 6HTAzPST2WxNjIW8TsiC3B7io0jYShOCzLQTLATEtVRYpxKuHppsj4wwv/n1Kgu9 uM1INfWhDCjphuD6CLjk8nrCy4cW38/zh3s3tqG+dHSCEMfaju83XRZtw+xLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUO+LYuc9IG5KqiTKimPFG6448958wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzgzMTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQCGNyManCaWx/7tNNAE0LI6SLH/qvH8DAQi SmYFeunbcEJk24CrpzF3CaKpDbVNZrqffRn7LNA6z3ZCNvye2Y6qEYcxkqFASY33 3VqQVGOrE8JKkrZKkXGMqIKADLoJ/VMiEENUgZh5SIrmhOzC4dP88e03TVlRyrTs V4oFNgYL3AZAybd4NoMcVieHaqEcD+0UU2J163gHpbWqByl08dQv5tFQSS7P+Vkv nmeGPRHv+0Npc5KyzWGvbkuZMJVRFSrrcJ/KWSutXNeh8Gjm/bmPXvzjRT2/dXjY cjw/v5jJXv4diGw3OGqdiMdLv0hV8azZ+nRUv+ks8W8uOqi3r00S -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org