$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: XlyZnaJFiepn800dX9EHb8KS05HoWD8cRCDlUlRU1AE= Subject key identifier: D3:63:DE:09:0B:C9:11:6D:AC:E9:A8:C9:23:EA:0E:36:D8:28:2F:37 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 29D1E5206AD9F7F9B6A67FE8EB62B02F982B6463 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa Signing time: Mon 03 Jun 2024 04:01:11 +0000 ROA not before: Mon 03 Jun 2024 03:56:11 +0000 ROA not after: Mon 02 Jun 2025 04:01:11 +0000 asID: 17727 IP address blocks: 2404:c000:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d1:e5:20:6a:d9:f7:f9:b6:a6:7f:e8:eb:62:b0:2f:98:2b:64:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Jun 3 03:56:11 2024 GMT Not After : Jun 2 04:01:11 2025 GMT Subject: CN=D363DE090BC9116DACE9A8C923EA0E36D8282F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:99:f5:27:d1:f0:c7:cd:b5:67:9f:82:93: ad:56:61:41:02:ea:22:67:dc:8a:a1:84:10:49:90: a9:5f:54:c3:40:9c:dc:0d:05:8e:d9:9e:77:58:64: e6:5e:d5:ea:80:25:7b:13:bc:26:cc:ca:a3:5b:df: fe:11:bd:b7:cf:40:ae:bb:77:b6:12:1c:fc:69:ab: 9e:b6:e1:2f:b2:02:8f:c8:a1:55:77:68:40:79:a9: 68:63:cf:21:bf:e3:fe:e2:82:b3:38:50:8f:15:89: 3d:72:46:74:49:d8:4d:20:f3:19:b2:4c:4b:f3:2d: 49:46:e7:dd:22:63:20:38:d0:7e:ad:e8:be:a2:9b: 2b:f6:fe:48:a2:99:b7:34:e2:10:eb:ce:97:df:35: 76:03:f4:f8:63:3a:07:13:42:06:40:6d:ff:a5:59: 40:d5:19:08:6d:5f:c0:23:52:dd:d9:e6:18:7d:cb: ed:cc:63:a3:54:05:15:e2:a0:46:cb:5d:b5:e5:5c: 05:d5:ff:b8:53:57:af:4e:64:da:04:68:dc:e8:2b: 0c:34:2d:65:f0:17:19:df:2f:c7:0d:9f:42:39:33: 49:24:f5:b1:7b:18:8b:b4:b4:ec:5e:fa:81:96:3a: 2c:16:53:56:73:e4:13:26:73:38:ad:0f:a8:fe:80: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:63:DE:09:0B:C9:11:6D:AC:E9:A8:C9:23:EA:0E:36:D8:28:2F:37 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8002::/48 Signature Algorithm: sha256WithRSAEncryption 2a:a0:d1:58:54:04:07:0c:e2:f4:a0:5a:23:26:86:6b:f4:c8: 8d:dd:68:95:54:bd:39:72:60:77:ce:ec:92:de:e2:9d:45:77: ac:15:8f:82:28:c0:d0:bb:c9:2f:a9:3e:87:b9:fd:92:7f:8b: f9:2e:4c:8f:e9:87:d9:a1:f6:19:5a:ee:ed:70:96:35:c1:f2: db:84:7b:a2:43:74:85:8d:62:2e:e8:c3:ea:c0:ae:d9:bf:94: b0:42:68:9e:62:f7:a1:11:67:f9:f5:ef:c2:53:35:c7:8e:5d: 52:f9:e7:09:90:c3:19:78:12:0c:94:ed:4c:5b:92:d3:dd:d1: df:51:45:22:ab:05:73:50:ac:5a:3d:b4:5f:01:df:4e:b3:62: 5c:29:c3:b4:a0:28:40:30:17:ef:8f:2c:a2:1f:da:08:30:69: 70:95:a7:3d:4e:96:a0:ea:33:dd:37:af:3e:1d:1f:7c:4c:15: 61:61:ae:10:26:f8:dc:30:8a:5d:25:65:0a:f1:ae:68:e5:dc: 7e:58:a6:80:1e:58:19:55:35:bd:79:f4:b8:46:87:78:cb:5e: 7e:a1:b6:ef:75:94:ed:13:05:0a:e5:82:17:57:c7:df:3b:64: c9:20:50:be:28:8c:87:7c:22:09:0c:4d:b9:3b:69:8d:b7:dd: bd:0b:1d:ce -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKdHlIGrZ9/m2pn/o62KwL5grZGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA2MDMwMzU2MTFaFw0yNTA2MDIwNDAxMTFaMDMxMTAvBgNV BAMTKEQzNjNERTA5MEJDOTExNkRBQ0U5QThDOTIzRUEwRTM2RDgyODJGMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2M5n1J9Hwx821Z5+Ck61WYUEC 6iJn3IqhhBBJkKlfVMNAnNwNBY7ZnndYZOZe1eqAJXsTvCbMyqNb3/4RvbfPQK67 d7YSHPxpq5624S+yAo/IoVV3aEB5qWhjzyG/4/7igrM4UI8ViT1yRnRJ2E0g8xmy TEvzLUlG590iYyA40H6t6L6imyv2/kiimbc04hDrzpffNXYD9PhjOgcTQgZAbf+l WUDVGQhtX8AjUt3Z5hh9y+3MY6NUBRXioEbLXbXlXAXV/7hTV69OZNoEaNzoKww0 LWXwFxnfL8cNn0I5M0kk9bF7GIu0tOxe+oGWOiwWU1Zz5BMmczitD6j+gKBlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU02PeCQvJEW2s6ajJI+oONtgoLzcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AIACMA0GCSqGSIb3DQEBCwUAA4IBAQAqoNFYVAQHDOL0oFojJoZr9MiN3WiVVL05 cmB3zuyS3uKdRXesFY+CKMDQu8kvqT6Huf2Sf4v5LkyP6YfZofYZWu7tcJY1wfLb hHuiQ3SFjWIu6MPqwK7Zv5SwQmieYvehEWf59e/CUzXHjl1S+ecJkMMZeBIMlO1M W5LT3dHfUUUiqwVzUKxaPbRfAd9Os2JcKcO0oChAMBfvjyyiH9oIMGlwlac9Tpag 6jPdN68+HR98TBVhYa4QJvjcMIpdJWUK8a5o5dx+WKaAHlgZVTW9efS4Rod4y15+ obbvdZTtEwUK5YIXV8ffO2TJIFC+KIyHfCIJDE25O2mNt929Cx3O -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org