$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa File: 323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa (raw, json) Hash identifier: /Q5NF7DXBViqDxE/gQ3XtPfK6OL1cj3OzFT6ZARtQKg= Subject key identifier: 3A:41:EC:EA:FE:A0:17:13:B1:4A:8C:10:8B:BB:6F:CC:6E:7D:F9:7F Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 5C928D77B2C1F09B3D42720D14B6FD1B0691CE98 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa Signing time: Sun 29 Sep 2024 16:00:00 +0000 ROA not before: Sun 29 Sep 2024 15:55:00 +0000 ROA not after: Sun 28 Sep 2025 16:00:00 +0000 asID: 17727 IP address blocks: 2404:c000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:92:8d:77:b2:c1:f0:9b:3d:42:72:0d:14:b6:fd:1b:06:91:ce:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:00 2024 GMT Not After : Sep 28 16:00:00 2025 GMT Subject: CN=3A41ECEAFEA01713B14A8C108BBB6FCC6E7DF97F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:61:86:34:29:69:76:cb:19:fb:4e:8e:d0:38: e7:2e:9b:f4:cd:60:45:d3:d4:df:5c:11:78:7c:1a: 99:2d:79:05:99:20:78:7a:64:3f:12:57:80:45:b5: d0:a4:07:68:84:3c:5d:fd:fb:f3:ce:06:7f:db:3f: df:35:41:4b:05:2d:27:d2:01:34:a4:70:09:85:90: dc:b8:d2:9a:1f:1f:8e:3b:8c:d0:63:35:06:3d:f8: 92:50:81:ae:cd:e6:d8:e8:2f:a7:0e:2e:c1:81:58: c3:0b:9a:8e:1e:2c:5a:12:6d:e8:12:b9:64:b2:50: 8e:5e:72:89:91:93:14:e1:02:fd:a5:50:8e:ff:a1: 3d:dc:57:ca:e1:1c:e2:c3:cf:54:d2:5b:15:0e:0e: 60:e6:79:d9:c3:ef:8b:6d:1d:fe:c5:54:2f:9c:3b: 37:f4:07:e6:3e:ad:f8:83:90:54:01:61:52:c9:ee: 0c:de:d6:08:09:b0:2a:58:b0:41:15:0e:17:3f:84: 6b:bf:6b:14:a8:19:33:b6:19:e8:b3:b1:e0:e6:52: 5f:fd:ea:60:2d:39:2f:b1:b9:16:12:4f:bb:bc:1e: d7:51:4d:9b:e6:c3:fb:5d:21:63:3d:48:e3:e8:3e: 4b:3d:8c:f4:ce:46:da:12:41:52:36:8b:80:33:b4: 87:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:41:EC:EA:FE:A0:17:13:B1:4A:8C:10:8B:BB:6F:CC:6E:7D:F9:7F X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f33332d3333203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8000::/33 Signature Algorithm: sha256WithRSAEncryption 92:98:49:27:f9:81:24:11:00:6b:df:09:b3:b8:23:a0:dd:2d: a9:2c:7b:db:1e:ad:ce:dc:ad:a8:a2:06:56:a5:db:2c:72:1c: 79:02:f6:83:f1:0b:05:9a:05:bf:8b:4f:a7:f7:af:8e:2c:f7: d8:5b:7a:2e:65:d1:2a:03:9b:e3:79:9d:4f:2e:3e:a6:8a:51: d9:d9:a1:cb:d9:aa:4d:13:bb:ca:e9:72:1b:c2:ee:e4:a2:51: 44:99:99:ba:c3:f7:4b:2d:6e:9a:4d:fc:10:b1:b2:e2:93:5e: 24:42:63:a8:bc:4c:f9:98:d6:0b:58:69:54:e9:58:8b:34:5a: 89:bb:c5:41:27:2a:4b:33:1b:8d:23:3d:2c:cb:4b:97:e7:b9: af:b7:58:5b:c9:65:71:d7:a8:8a:5f:cc:4a:5d:95:a4:f2:b2: 7c:95:b6:88:f6:de:ee:37:97:25:79:c3:14:33:8c:20:f3:2a: 28:72:34:3c:53:8e:2f:b8:dd:56:3a:c2:48:e8:d8:e7:b0:8b: 16:fe:87:77:98:f8:98:a4:6b:51:ab:ad:b9:ed:69:d1:16:10: 18:77:ec:cd:d2:b7:b9:f3:47:d2:aa:62:eb:d0:cc:b8:4d:25: 8b:7d:94:09:ff:c0:c8:6d:d3:e5:a9:dc:d9:ed:bd:72:02:d4: 2a:f4:26:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXJKNd7LB8Js9QnINFLb9GwaRzpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDBaFw0yNTA5MjgxNjAwMDBaMDMxMTAvBgNV BAMTKDNBNDFFQ0VBRkVBMDE3MTNCMTRBOEMxMDhCQkI2RkNDNkU3REY5N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9YYY0KWl2yxn7To7QOOcum/TN YEXT1N9cEXh8GpkteQWZIHh6ZD8SV4BFtdCkB2iEPF39+/POBn/bP981QUsFLSfS ATSkcAmFkNy40pofH447jNBjNQY9+JJQga7N5tjoL6cOLsGBWMMLmo4eLFoSbegS uWSyUI5ecomRkxThAv2lUI7/oT3cV8rhHOLDz1TSWxUODmDmednD74ttHf7FVC+c Ozf0B+Y+rfiDkFQBYVLJ7gze1ggJsCpYsEEVDhc/hGu/axSoGTO2GeizseDmUl/9 6mAtOS+xuRYST7u8HtdRTZvmw/tdIWM9SOPoPks9jPTORtoSQVI2i4AztIeLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOkHs6v6gFxOxSowQi7tvzG59+X8wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJATA AIAwDQYJKoZIhvcNAQELBQADggEBAJKYSSf5gSQRAGvfCbO4I6DdLakse9serc7c raiiBlal2yxyHHkC9oPxCwWaBb+LT6f3r44s99hbei5l0SoDm+N5nU8uPqaKUdnZ ocvZqk0Tu8rpchvC7uSiUUSZmbrD90stbppN/BCxsuKTXiRCY6i8TPmY1gtYaVTp WIs0Wom7xUEnKkszG40jPSzLS5fnua+3WFvJZXHXqIpfzEpdlaTysnyVtoj23u43 lyV5wxQzjCDzKihyNDxTji+43VY6wkjo2Oewixb+h3eY+Jika1GrrbntadEWEBh3 7M3St7nzR9KqYuvQzLhNJYt9lAn/wMht0+Wp3NntvXIC1Cr0JvI= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org