$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: afx8bnfiMyK/A3iCZ45ScrzzGjOEi45W1f0HZWyiB5s= Subject key identifier: 88:AB:2F:3B:9E:30:43:9A:73:70:D1:27:4F:AD:F4:E3:D1:32:91:E0 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 04D0F55756533FAEE8881C164A3C9B0F9FD36AEB Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa Signing time: Sun 29 Sep 2024 16:00:01 +0000 ROA not before: Sun 29 Sep 2024 15:55:01 +0000 ROA not after: Sun 28 Sep 2025 16:00:01 +0000 asID: 17727 IP address blocks: 2404:c000:c004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d0:f5:57:56:53:3f:ae:e8:88:1c:16:4a:3c:9b:0f:9f:d3:6a:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: Sep 29 15:55:01 2024 GMT Not After : Sep 28 16:00:01 2025 GMT Subject: CN=88AB2F3B9E30439A7370D1274FADF4E3D13291E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c1:27:01:7b:89:57:37:71:41:39:77:57:62: 47:3e:bd:90:fe:42:ac:36:53:92:3c:79:14:ab:24: 72:77:7e:ed:f6:62:70:90:b1:38:67:93:50:bd:31: d9:32:c6:df:3f:3b:2f:f5:bf:f2:d3:2a:dc:5f:65: b2:24:c8:b4:9f:a6:07:9a:67:0c:32:a0:4a:ab:a5: 0f:01:c4:d5:c7:3c:bc:0f:42:76:e7:3f:a3:5a:47: d0:e8:4b:a0:d8:84:e0:74:83:02:da:9d:cf:ca:bb: 24:85:90:ff:7d:90:7d:49:8f:97:8b:9c:37:60:32: d5:d9:e8:d6:ef:b9:2c:10:9f:db:8a:37:57:24:1b: 81:e7:0e:86:70:e4:04:f5:1a:b2:ad:4c:60:66:d2: af:a0:7d:05:c2:b3:75:c4:39:7b:81:b7:9f:44:18: 93:92:bd:49:91:3d:db:6c:c3:36:0e:69:95:a5:0f: ab:68:0c:63:de:93:b0:3e:33:8c:f2:06:74:74:35: db:a7:5d:45:5c:2c:89:c1:94:86:04:10:cc:4a:8c: d6:63:92:76:bd:49:12:62:18:5e:ca:ff:cb:24:e5: 45:e0:69:1a:e1:6b:51:ef:57:05:73:2c:80:c3:af: c1:d7:bd:98:98:50:f2:75:db:f6:6c:f4:09:fb:d5: 15:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AB:2F:3B:9E:30:43:9A:73:70:D1:27:4F:AD:F4:E3:D1:32:91:E0 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030343a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c004::/48 Signature Algorithm: sha256WithRSAEncryption 79:b5:9a:d9:25:c6:9a:81:a0:c7:68:98:20:ef:0d:69:52:72: 77:bc:01:03:24:fb:20:3f:42:6b:b4:a4:b5:6f:f5:24:0e:3e: 9e:60:1a:a1:fd:85:90:f3:3f:33:63:8e:d7:58:91:d1:a4:c1: 6c:bd:00:8a:93:e4:2f:41:61:68:5b:f1:65:0b:93:8b:50:5f: 8d:a9:6a:8c:55:5e:6b:bd:af:df:73:fc:a1:17:20:a3:90:62: 73:9d:d6:38:96:7f:6a:f8:2c:83:b7:9c:0b:a0:78:02:42:2d: 44:df:30:15:0d:d1:b9:1b:fe:d6:cd:a9:bc:61:b4:aa:3f:ee: 16:05:85:2f:5b:72:ed:1b:6e:35:7a:47:67:c0:a0:aa:2c:a4: bc:02:4f:fa:74:8f:c4:17:c7:6a:51:04:cc:e3:81:cd:a6:06: 45:d7:16:6e:6e:76:2a:da:14:80:19:af:a2:32:0d:6d:85:15: b2:7d:33:57:6d:8b:5c:46:d3:b2:ae:25:97:a3:fd:13:5f:f2: 75:29:c9:89:12:57:d4:cc:4c:82:b2:be:a6:50:60:43:a0:a0: fe:af:0c:24:de:a7:78:62:a1:e5:ec:67:8a:89:6e:58:bd:2d: 27:25:d9:a7:7e:18:5d:c6:c4:3c:4d:bc:cf:38:36:81:de:72: b0:45:82:c4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBND1V1ZTP67oiBwWSjybD5/TauswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNDA5MjkxNTU1MDFaFw0yNTA5MjgxNjAwMDFaMDMxMTAvBgNV BAMTKDg4QUIyRjNCOUUzMDQzOUE3MzcwRDEyNzRGQURGNEUzRDEzMjkxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbwScBe4lXN3FBOXdXYkc+vZD+ Qqw2U5I8eRSrJHJ3fu32YnCQsThnk1C9Mdkyxt8/Oy/1v/LTKtxfZbIkyLSfpgea ZwwyoEqrpQ8BxNXHPLwPQnbnP6NaR9DoS6DYhOB0gwLanc/KuySFkP99kH1Jj5eL nDdgMtXZ6NbvuSwQn9uKN1ckG4HnDoZw5AT1GrKtTGBm0q+gfQXCs3XEOXuBt59E GJOSvUmRPdtswzYOaZWlD6toDGPek7A+M4zyBnR0NdunXUVcLInBlIYEEMxKjNZj kna9SRJiGF7K/8sk5UXgaRrha1HvVwVzLIDDr8HXvZiYUPJ12/Zs9An71RXTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiKsvO54wQ5pzcNEnT63049EykeAwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AMAEMA0GCSqGSIb3DQEBCwUAA4IBAQB5tZrZJcaagaDHaJgg7w1pUnJ3vAEDJPsg P0JrtKS1b/UkDj6eYBqh/YWQ8z8zY47XWJHRpMFsvQCKk+QvQWFoW/FlC5OLUF+N qWqMVV5rva/fc/yhFyCjkGJzndY4ln9q+CyDt5wLoHgCQi1E3zAVDdG5G/7Wzam8 YbSqP+4WBYUvW3LtG241ekdnwKCqLKS8Ak/6dI/EF8dqUQTM44HNpgZF1xZubnYq 2hSAGa+iMg1thRWyfTNXbYtcRtOyriWXo/0TX/J1KcmJElfUzEyCsr6mUGBDoKD+ rwwk3qd4YqHl7GeKiW5YvS0nJdmnfhhdxsQ8TbzPODaB3nKwRYLE -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org