$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa File: 323430343a633030303a3a2f33322d3332203d3e203435313437.roa (raw, json) Hash identifier: 5yp8ZFxEutinaFnO79OD5Ni8A8jHFiv0H/8ED3jVxUA= Subject key identifier: FC:6F:F9:81:F4:2C:6E:69:35:B1:59:17:CF:A3:21:04:DF:68:41:3E Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 32167FBB0BD6C99CA927D513C2B5756788D08CD9 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa Signing time: Sun 29 Sep 2024 16:00:01 +0000 ROA not before: Sun 29 Sep 2024 15:55:01 +0000 ROA not after: Sun 28 Sep 2025 16:00:01 +0000 asID: 45147 IP address blocks: 2404:c000::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:16:7f:bb:0b:d6:c9:9c:a9:27:d5:13:c2:b5:75:67:88:d0:8c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:01 2024 GMT Not After : Sep 28 16:00:01 2025 GMT Subject: CN=FC6FF981F42C6E6935B15917CFA32104DF68413E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ed:c3:1b:67:58:0f:c7:53:89:d7:1e:cb:7a: ca:2e:58:93:32:09:ee:5a:e3:e8:70:fb:94:fa:58: c5:41:42:b4:b5:1c:c5:dc:e7:af:1b:63:db:ba:75: ed:90:79:fe:0d:0e:1f:4f:bb:d9:1a:90:60:03:37: 49:c0:04:05:6c:1d:fc:03:fd:2c:e4:fa:50:2e:bc: 71:34:db:f2:2c:54:8a:83:35:d3:24:48:6e:07:e9: 0c:f4:b2:cf:fd:c4:b3:f2:b9:9c:13:85:bd:fc:64: 67:e5:5f:60:83:a1:f1:06:b4:3d:db:53:3e:b6:94: 50:76:0b:36:52:8c:99:3b:07:c6:a1:ca:c6:c2:dd: ee:2e:a6:a6:1f:81:e2:69:b0:11:a9:1f:c5:02:58: ba:b2:b9:e4:2a:ce:71:d2:be:d3:ed:9a:e4:17:dc: ef:00:0b:37:0c:a0:13:5d:f3:f8:7f:24:4a:7e:e0: 83:9f:cd:ac:5f:b9:61:98:aa:1a:f7:92:db:84:8b: 22:7c:fc:04:65:fd:fc:f1:ff:5c:b2:e1:21:d9:b5: f0:44:c8:7e:82:07:66:45:19:40:b8:a3:a6:dd:f6: 80:b4:f5:31:4e:e4:d1:32:f4:48:10:e8:b2:e2:8e: c5:2e:4f:97:a1:e3:4f:c6:92:69:d8:80:e7:1d:4e: 0a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6F:F9:81:F4:2C:6E:69:35:B1:59:17:CF:A3:21:04:DF:68:41:3E X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33322d3332203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/32 Signature Algorithm: sha256WithRSAEncryption 9f:72:88:9f:b1:f9:55:17:f3:80:39:25:5e:50:48:1a:81:4f: 8e:d3:04:33:d1:0e:17:4a:66:87:00:bc:19:c9:5c:42:ea:8c: 55:85:06:3c:48:b5:1b:4d:0a:05:a5:37:dc:81:e2:c1:46:3d: 95:f2:23:a2:71:79:4e:cc:39:e3:0e:8d:9d:61:29:ff:20:f0: 4a:4c:43:21:11:8b:78:23:1c:e1:d6:42:d5:f3:01:a4:08:6b: f3:e4:8d:e5:cd:cf:64:54:ab:16:06:a4:6e:0b:ef:d2:50:af: 83:dc:10:09:88:80:5b:15:3a:61:94:5a:a8:60:bc:61:39:d6: 05:5c:b4:f4:63:fe:49:3d:d3:df:11:64:b4:70:bd:a0:56:a5: 6e:73:e7:88:ab:80:cb:79:51:4b:c4:4e:9d:8c:d0:eb:8e:32: ae:53:73:35:71:af:8e:b0:67:04:4b:19:d5:51:95:b2:16:bb: 55:db:1f:a8:3a:3b:8c:f6:06:63:d3:0f:73:37:7c:ff:43:78: 4c:90:0d:bc:5c:7c:bb:f7:f9:5a:0a:e7:04:67:6d:3e:22:3b: 6f:8c:99:a6:0e:96:c1:06:ca:9a:e6:d4:5d:db:b6:ce:e3:62: f6:14:e6:45:c8:82:2a:eb:a2:a5:ef:7e:36:93:74:53:72:ed: 85:d3:08:bb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUMhZ/uwvWyZypJ9UTwrV1Z4jQjNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDFaFw0yNTA5MjgxNjAwMDFaMDMxMTAvBgNV BAMTKEZDNkZGOTgxRjQyQzZFNjkzNUIxNTkxN0NGQTMyMTA0REY2ODQxM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7cMbZ1gPx1OJ1x7LesouWJMy Ce5a4+hw+5T6WMVBQrS1HMXc568bY9u6de2Qef4NDh9Pu9kakGADN0nABAVsHfwD /Szk+lAuvHE02/IsVIqDNdMkSG4H6Qz0ss/9xLPyuZwThb38ZGflX2CDofEGtD3b Uz62lFB2CzZSjJk7B8ahysbC3e4upqYfgeJpsBGpH8UCWLqyueQqznHSvtPtmuQX 3O8ACzcMoBNd8/h/JEp+4IOfzaxfuWGYqhr3ktuEiyJ8/ARl/fzx/1yy4SHZtfBE yH6CB2ZFGUC4o6bd9oC09TFO5NEy9EgQ6LLijsUuT5eh40/GkmnYgOcdTgrzAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU/G/5gfQsbmk1sVkXz6MhBN9oQT4wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBMAAMA0GCSqGSIb3 DQEBCwUAA4IBAQCfcoifsflVF/OAOSVeUEgagU+O0wQz0Q4XSmaHALwZyVxC6oxV hQY8SLUbTQoFpTfcgeLBRj2V8iOicXlOzDnjDo2dYSn/IPBKTEMhEYt4Ixzh1kLV 8wGkCGvz5I3lzc9kVKsWBqRuC+/SUK+D3BAJiIBbFTphlFqoYLxhOdYFXLT0Y/5J PdPfEWS0cL2gVqVuc+eIq4DLeVFLxE6djNDrjjKuU3M1ca+OsGcESxnVUZWyFrtV 2x+oOjuM9gZj0w9zN3z/Q3hMkA28XHy79/laCucEZ20+IjtvjJmmDpbBBsqa5tRd 27bO42L2FOZFyIIq66Kl7342k3RTcu2F0wi7 -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org