$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa File: 323430343a633030303a3a2f34372d3437203d3e203435313437.roa (raw, json) Hash identifier: tJIKx5oCICLIcP5oubtypVOiTA0ZKxRACBmE4nfMf6s= Subject key identifier: D7:53:59:DB:CF:47:D6:F6:7F:1C:46:70:3C:FE:D9:E9:C7:7C:D1:56 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 28CE6DEA1FAF888C25D7ABB0EF30B3F5B67057EF Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa Signing time: Sun 29 Sep 2024 16:00:01 +0000 ROA not before: Sun 29 Sep 2024 15:55:01 +0000 ROA not after: Sun 28 Sep 2025 16:00:01 +0000 asID: 45147 IP address blocks: 2404:c000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ce:6d:ea:1f:af:88:8c:25:d7:ab:b0:ef:30:b3:f5:b6:70:57:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:01 2024 GMT Not After : Sep 28 16:00:01 2025 GMT Subject: CN=D75359DBCF47D6F67F1C46703CFED9E9C77CD156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:6f:04:b0:ae:60:c3:66:55:94:16:49:47: d2:5d:80:2d:86:05:fb:79:d1:0f:36:da:ee:45:86: 2a:df:aa:42:22:53:38:ad:cf:8a:60:64:2b:71:3e: 33:76:53:f0:f9:32:89:dc:fe:0e:ea:09:ab:01:b6: 9c:3f:3e:35:b6:89:3c:43:2b:df:b3:c8:59:70:b9: c4:4e:24:5e:3c:fe:a8:94:19:75:b3:9f:fa:40:6c: 1d:40:16:62:54:54:ab:6a:99:ec:8c:21:bc:0b:36: dd:c3:bf:9e:fa:05:b2:97:d8:1e:c8:58:95:06:db: b9:e2:4f:54:a5:80:57:ea:a5:22:a6:f7:0d:72:e3: 71:a3:07:cf:db:33:50:99:7f:30:0a:b4:40:9d:18: cc:61:7e:2d:cf:ca:18:2c:5b:a7:42:65:b1:fd:1d: 31:cb:0c:ab:09:e3:4e:eb:14:95:54:b9:f2:4d:68: 2e:bb:f0:f2:86:6a:86:9d:86:25:62:07:fe:60:b1: 59:c3:5c:92:f2:95:44:7f:c4:0d:1f:08:3a:e9:90: b1:27:6d:10:0f:02:df:b5:92:3a:b9:10:11:84:ff: 98:b6:3e:50:79:7c:70:fb:3f:6f:79:9e:1c:8b:0c: 2f:a3:94:29:b8:bf:ac:d2:7a:34:f0:36:f1:bd:e4: a1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:53:59:DB:CF:47:D6:F6:7F:1C:46:70:3C:FE:D9:E9:C7:7C:D1:56 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a3a2f34372d3437203d3e203435313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000::/47 Signature Algorithm: sha256WithRSAEncryption 43:f6:7f:e5:f2:07:fe:1a:c9:bb:65:4c:2f:f4:bb:1b:0e:9b: 48:c4:83:d7:c3:ca:df:7c:c4:b4:f4:03:95:df:c0:ff:24:cc: b1:5c:ac:d1:eb:a3:f0:bc:4f:03:d4:3f:ff:d3:c8:7d:3f:4a: 26:c5:f1:4b:66:6d:a9:ed:5a:08:f6:5d:53:15:4b:6a:5a:82: bb:85:bd:ea:0f:64:00:18:16:35:cf:9b:f0:bf:f8:93:9c:16: a2:6b:26:0d:e5:81:fe:40:bc:08:24:eb:ee:b2:71:4b:49:13: 28:cd:72:ad:c0:95:26:c3:48:51:40:e7:9c:5f:7a:fc:bf:91: 16:6b:4a:e4:51:af:1e:18:fa:e5:8f:60:4e:bc:97:b3:65:33: cb:19:2f:3d:8c:98:26:49:bc:fe:8e:fd:62:4b:4c:19:3d:ac: dc:3a:2c:17:c3:2d:16:93:45:fc:3c:3d:a4:8f:04:f2:84:0c: a6:86:f3:32:f7:ba:80:9a:87:07:37:ba:ff:ff:16:a3:4d:04: 87:d2:52:69:69:39:90:92:71:d6:96:ba:5c:b2:35:e6:02:d2: cb:f8:cd:04:c4:79:87:c3:b5:b8:9a:ba:3b:2b:72:29:10:d4: f4:a4:d4:11:0c:97:72:50:11:c3:8a:48:53:3b:6f:e6:33:64: 5a:02:8f:54 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKM5t6h+viIwl16uw7zCz9bZwV+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDFaFw0yNTA5MjgxNjAwMDFaMDMxMTAvBgNV BAMTKEQ3NTM1OURCQ0Y0N0Q2RjY3RjFDNDY3MDNDRkVEOUU5Qzc3Q0QxNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEv28EsK5gw2ZVlBZJR9JdgC2G Bft50Q822u5FhirfqkIiUzitz4pgZCtxPjN2U/D5Monc/g7qCasBtpw/PjW2iTxD K9+zyFlwucROJF48/qiUGXWzn/pAbB1AFmJUVKtqmeyMIbwLNt3Dv576BbKX2B7I WJUG27niT1SlgFfqpSKm9w1y43GjB8/bM1CZfzAKtECdGMxhfi3PyhgsW6dCZbH9 HTHLDKsJ407rFJVUufJNaC678PKGaoadhiViB/5gsVnDXJLylUR/xA0fCDrpkLEn bRAPAt+1kjq5EBGE/5i2PlB5fHD7P295nhyLDC+jlCm4v6zSejTwNvG95KEtAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU11NZ289H1vZ/HEZwPP7Z6cd80VYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhM2EyZjM0Mzcy ZDM0MzcyMDNkM2UyMDM0MzUzMTM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkBMAAAAAwDQYJKoZI hvcNAQELBQADggEBAEP2f+XyB/4aybtlTC/0uxsOm0jEg9fDyt98xLT0A5XfwP8k zLFcrNHro/C8TwPUP//TyH0/SibF8UtmbantWgj2XVMVS2pagruFveoPZAAYFjXP m/C/+JOcFqJrJg3lgf5AvAgk6+6ycUtJEyjNcq3AlSbDSFFA55xfevy/kRZrSuRR rx4Y+uWPYE68l7NlM8sZLz2MmCZJvP6O/WJLTBk9rNw6LBfDLRaTRfw8PaSPBPKE DKaG8zL3uoCahwc3uv//FqNNBIfSUmlpOZCScdaWulyyNeYC0sv4zQTEeYfDtbia ujsrcikQ1PSk1BEMl3JQEcOKSFM7b+YzZFoCj1Q= -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:29 2024 by rpki-client on console-fra.rpki-client.org