$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: M50L64dW9gGrfcxu1xrSD36UzVmQ9lRWzvUYQQ0EpFo= Subject key identifier: 89:F3:07:DF:98:B3:D4:E9:4D:D9:A9:C6:46:DE:E9:ED:50:CF:5A:0B Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 25E20038C1EFC0C2BD7B8F4C6D8B4048ECAB5BF8 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa Signing time: Sun 29 Sep 2024 16:00:00 +0000 ROA not before: Sun 29 Sep 2024 15:55:00 +0000 ROA not after: Sun 28 Sep 2025 16:00:00 +0000 asID: 17727 IP address blocks: 2404:c000:c002::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e2:00:38:c1:ef:c0:c2:bd:7b:8f:4c:6d:8b:40:48:ec:ab:5b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:00 2024 GMT Not After : Sep 28 16:00:00 2025 GMT Subject: CN=89F307DF98B3D4E94DD9A9C646DEE9ED50CF5A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:be:a6:46:30:8f:aa:69:a1:00:36:7b:03:5c: ea:91:66:53:5f:94:a6:18:f1:91:5f:13:43:49:4f: b1:83:9e:4f:e3:65:bd:c5:47:c9:3c:46:42:96:cd: 90:fe:ee:ef:13:93:a8:0d:8f:32:cb:74:1f:94:ad: 43:9f:9f:dc:6f:b9:cf:46:72:a2:b4:03:cf:dc:96: a4:fa:94:cf:8a:cb:05:e6:d9:21:0a:2a:8f:13:97: d5:9e:40:9f:d7:ce:46:34:7a:42:39:09:34:58:6b: 23:0c:a9:ae:7a:37:37:14:49:a3:89:e3:f6:7b:17: 32:48:ba:fb:03:70:b6:b4:d5:86:3c:51:68:f8:72: 65:c5:88:c0:31:1c:5a:bd:e1:2c:31:fd:52:d2:15: 37:6f:0a:18:f5:36:ca:7d:80:cd:14:95:b1:82:ee: aa:25:b4:0a:ba:ba:34:df:24:17:34:32:af:d3:88: be:96:bc:10:8f:59:c0:8c:c6:3b:2e:11:71:5e:1b: 21:b6:9e:25:08:d0:64:61:42:a0:54:22:da:f1:2c: e0:c4:97:e9:50:4d:02:67:f2:bf:05:b7:3c:d5:b6: 1f:c7:ac:45:c7:99:51:05:a7:24:97:40:a0:68:90: b2:0a:bc:e0:95:20:84:ae:63:4a:c9:44:83:1f:5c: d3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F3:07:DF:98:B3:D4:E9:4D:D9:A9:C6:46:DE:E9:ED:50:CF:5A:0B X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030323a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c002::/47 Signature Algorithm: sha256WithRSAEncryption 99:ca:d0:fd:4a:d1:0c:88:a0:8c:11:7c:cb:90:7f:29:ff:8d: c5:75:09:9e:33:a1:d6:fc:5d:fa:89:f8:b4:17:5c:6b:7f:4c: 46:03:68:e3:75:4e:7a:a4:b8:67:35:02:22:d8:79:8f:d4:24: ce:f0:b4:ce:50:4f:22:1d:85:86:33:56:80:0c:40:68:42:65: f4:ed:38:68:ca:22:74:28:da:ba:be:fd:bd:12:fb:09:ce:b4: 86:3d:65:23:e2:ec:2f:f5:be:35:0e:ac:4f:63:18:f0:a0:1a: 5b:50:c2:e4:0e:ba:d2:01:71:e1:99:b5:4d:b6:6d:72:62:bd: ca:77:0f:6d:cc:a3:21:87:e2:b0:bb:3f:db:18:7d:31:1c:0d: a5:57:8a:da:98:a8:6f:1b:2a:4d:6b:4c:5a:44:56:b4:b7:10: d1:00:27:35:9e:c0:54:4f:db:07:d6:f9:c4:58:76:22:33:ab: a0:ad:5d:d1:fb:01:09:2a:3a:37:42:fe:78:37:ad:34:8a:f6: 0e:e5:d9:ee:e0:95:29:25:0c:89:8d:b9:a4:57:ad:a6:51:eb: 6b:16:56:c6:5e:33:51:38:34:3d:c2:d2:f2:d4:e3:99:7f:14: 11:7b:4a:cc:e5:90:dc:e1:9c:83:2a:f2:0d:71:8f:a3:0f:80: 27:c8:2d:56 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJeIAOMHvwMK9e49MbYtASOyrW/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDBaFw0yNTA5MjgxNjAwMDBaMDMxMTAvBgNV BAMTKDg5RjMwN0RGOThCM0Q0RTk0REQ5QTlDNjQ2REVFOUVENTBDRjVBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxvqZGMI+qaaEANnsDXOqRZlNf lKYY8ZFfE0NJT7GDnk/jZb3FR8k8RkKWzZD+7u8Tk6gNjzLLdB+UrUOfn9xvuc9G cqK0A8/clqT6lM+KywXm2SEKKo8Tl9WeQJ/XzkY0ekI5CTRYayMMqa56NzcUSaOJ 4/Z7FzJIuvsDcLa01YY8UWj4cmXFiMAxHFq94Swx/VLSFTdvChj1Nsp9gM0UlbGC 7qoltAq6ujTfJBc0Mq/TiL6WvBCPWcCMxjsuEXFeGyG2niUI0GRhQqBUItrxLODE l+lQTQJn8r8FtzzVth/HrEXHmVEFpySXQKBokLIKvOCVIISuY0rJRIMfXNNdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUifMH35iz1OlN2anGRt7p7VDPWgswHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzIz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AMACMA0GCSqGSIb3DQEBCwUAA4IBAQCZytD9StEMiKCMEXzLkH8p/43FdQmeM6HW /F36ifi0F1xrf0xGA2jjdU56pLhnNQIi2HmP1CTO8LTOUE8iHYWGM1aADEBoQmX0 7ThoyiJ0KNq6vv29EvsJzrSGPWUj4uwv9b41DqxPYxjwoBpbUMLkDrrSAXHhmbVN tm1yYr3Kdw9tzKMhh+Kwuz/bGH0xHA2lV4ramKhvGypNa0xaRFa0txDRACc1nsBU T9sH1vnEWHYiM6ugrV3R+wEJKjo3Qv54N600ivYO5dnu4JUpJQyJjbmkV62mUetr FlbGXjNRODQ9wtLy1OOZfxQRe0rM5ZDc4ZyDKvINcY+jD4AnyC1W -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org