$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa File: 323430343a633030303a3a2f33332d3333203d3e203435313437.roa (raw, json) Hash identifier: /IARb+chVgHnTUsJvGirOOjAfP7YGAARFDAxvfwHCNs= Subject key identifier: 01:61:D0:5A:75:9A:AA:8C:B7:F0:25:34:AE:87:63:B0:7B:A8:77:07 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 49658D490CDE1C7775B40821CC1C8D405D6791B1 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa Signing time: Sun 29 Sep 2024 14:00:00 +0000 ROA not before: Sun 29 Sep 2024 13:55:00 +0000 ROA not after: Sun 28 Sep 2025 14:00:00 +0000 asID: 45147 IP address blocks: 2404:c000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:65:8d:49:0c:de:1c:77:75:b4:08:21:cc:1c:8d:40:5d:67:91:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 13:55:00 2024 GMT Not After : Sep 28 14:00:00 2025 GMT Subject: CN=0161D05A759AAA8CB7F02534AE8763B07BA87707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:44:51:57:d1:87:72:b2:95:b6:a9:e3:57:64: 76:fe:76:39:25:25:1b:da:78:1c:56:73:64:3a:89: b1:cc:3b:fe:5c:06:71:ba:0f:2f:f7:e7:5c:90:ce: 65:f1:ce:ad:39:ca:b0:8b:bd:a1:6a:06:10:76:11: a4:fb:b3:83:84:c7:39:63:5b:58:ea:48:63:d5:08: d3:63:1d:e3:12:da:32:8f:9f:43:43:8a:a1:0a:09: f7:b1:26:35:ab:41:ab:85:30:8e:e2:f3:4d:f2:ed: 57:18:2e:5e:e8:bd:84:a0:73:29:e0:a0:8c:5e:1a: 3d:99:44:70:7c:59:1d:e1:d2:e5:cb:da:ac:6d:97: 56:4a:83:0f:7e:f3:0c:e2:d1:11:dd:3e:3d:46:8e: 3e:d9:55:7c:a1:f0:cd:74:d3:4a:76:ae:94:d9:4c: 92:9b:32:8b:ca:fd:40:7c:f8:2e:32:f8:15:35:3a: 65:f3:c6:6a:ea:77:96:53:97:74:1c:e1:e4:e4:a2: ca:e5:36:18:bf:ee:18:23:5c:26:4f:88:61:f8:19: fb:46:b3:c9:89:d8:38:0f:55:8f:51:03:4c:6f:78: b5:03:73:71:a6:c4:ed:e7:90:7e:23:78:a4:e7:cb: 0c:c1:2e:92:84:98:7c:b0:1e:03:2a:6d:32:89:17: 67:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:61:D0:5A:75:9A:AA:8C:B7:F0:25:34:AE:87:63:B0:7B:A8:77:07 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f33332d3333203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/33 Signature Algorithm: sha256WithRSAEncryption a6:b7:66:64:ee:23:7e:0e:1f:0a:83:ef:2e:93:40:0f:dd:8d: 9f:50:0f:58:1a:f9:02:ae:67:ef:6e:43:96:5f:af:02:02:2e: a1:e9:f8:09:0b:60:39:6e:80:4a:81:fb:cf:fc:f4:06:38:58: 7c:a9:42:a4:cc:9c:a7:df:28:94:4a:e7:91:0c:c0:9b:42:47: ae:9c:b8:31:e0:b9:76:b0:b2:5d:4f:ac:be:89:1d:63:c6:31: ef:d1:73:21:76:13:fe:b6:41:32:de:19:97:46:2f:f4:90:bd: 59:d7:04:2a:1c:5a:81:85:64:d5:ca:d8:3b:df:1e:e8:a1:d7: ae:42:4f:60:f8:84:6f:1d:c7:78:da:3e:c0:22:dd:8d:c9:e8: bb:0a:8a:be:b4:ca:64:64:48:20:b1:12:53:c2:1a:45:39:d1: c7:5a:fc:ec:34:4f:51:c1:ca:5f:29:32:02:93:d1:c5:16:b5: 70:73:0f:e1:e8:c8:d4:51:be:58:6d:17:72:ba:d4:e2:87:c8: 09:4c:73:27:41:63:0c:23:42:19:07:d2:a6:34:fb:27:86:f3: 37:e7:2f:5d:b5:1b:e5:05:d5:a7:26:94:d3:d1:7f:2e:71:dd: 72:25:52:9b:31:2b:c4:be:24:ea:be:c6:86:c5:c3:f9:5e:1c: 76:e0:8a:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSWWNSQzeHHd1tAghzByNQF1nkbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxMzU1MDBaFw0yNTA5MjgxNDAwMDBaMDMxMTAvBgNV BAMTKDAxNjFEMDVBNzU5QUFBOENCN0YwMjUzNEFFODc2M0IwN0JBODc3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcRFFX0YdyspW2qeNXZHb+djkl JRvaeBxWc2Q6ibHMO/5cBnG6Dy/351yQzmXxzq05yrCLvaFqBhB2EaT7s4OExzlj W1jqSGPVCNNjHeMS2jKPn0NDiqEKCfexJjWrQauFMI7i803y7VcYLl7ovYSgcyng oIxeGj2ZRHB8WR3h0uXL2qxtl1ZKgw9+8wzi0RHdPj1Gjj7ZVXyh8M1000p2rpTZ TJKbMovK/UB8+C4y+BU1OmXzxmrqd5ZTl3Qc4eTkosrlNhi/7hgjXCZPiGH4GftG s8mJ2DgPVY9RA0xveLUDc3GmxO3nkH4jeKTnywzBLpKEmHywHgMqbTKJF2dnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAWHQWnWaqoy38CU0rodjsHuodwcwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBMAAADANBgkqhkiG 9w0BAQsFAAOCAQEAprdmZO4jfg4fCoPvLpNAD92Nn1APWBr5Aq5n725Dll+vAgIu oen4CQtgOW6ASoH7z/z0BjhYfKlCpMycp98olErnkQzAm0JHrpy4MeC5drCyXU+s vokdY8Yx79FzIXYT/rZBMt4Zl0Yv9JC9WdcEKhxagYVk1crYO98e6KHXrkJPYPiE bx3HeNo+wCLdjcnouwqKvrTKZGRIILESU8IaRTnRx1r87DRPUcHKXykyApPRxRa1 cHMP4ejI1FG+WG0XcrrU4ofICUxzJ0FjDCNCGQfSpjT7J4bzN+cvXbUb5QXVpyaU 09F/LnHdciVSmzErxL4k6r7GhsXD+V4cduCKEQ== -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org