$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa File: 323430323a613530303a3a2f33322d3332203d3e2034383231.roa (raw, json) Hash identifier: /cOSCLURwMnYRY1LEPKn/FGjfHtiEkHQU6Af0iOYRl4= Subject key identifier: 4F:A6:00:6E:77:D6:BD:93:3D:83:4A:2B:C9:99:40:79:A1:6C:AA:72 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 36BB1AB0AA1CA5113349590F83DB94EBDD65C15E Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa Signing time: Mon 01 Jul 2024 01:05:04 +0000 ROA not before: Mon 01 Jul 2024 01:00:04 +0000 ROA not after: Mon 30 Jun 2025 01:05:04 +0000 asID: 4821 IP address blocks: 2402:a500::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:bb:1a:b0:aa:1c:a5:11:33:49:59:0f:83:db:94:eb:dd:65:c1:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jul 1 01:00:04 2024 GMT Not After : Jun 30 01:05:04 2025 GMT Subject: CN=4FA6006E77D6BD933D834A2BC9994079A16CAA72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:3c:23:c1:8c:e0:1a:0f:a5:6a:31:b6:37: 19:eb:2f:fc:59:b9:e6:60:12:ae:d6:2f:44:78:ef: 5f:dc:3e:b8:8a:53:c4:2d:24:42:44:da:f8:db:5f: 50:ac:0c:c1:b1:6b:81:70:d7:3c:44:8a:7b:b8:66: 7d:21:78:2f:df:2c:f9:45:7d:5b:f8:a9:c2:65:ed: 34:44:47:21:01:8d:00:26:b4:35:13:df:96:2a:e6: 68:7d:3d:e5:6d:56:49:fa:18:28:19:78:ab:d0:30: 7d:61:a2:22:fb:fe:ce:1c:b2:63:2e:8b:8e:08:33: e6:14:69:78:d7:de:75:4e:1e:74:c7:77:03:34:4d: a8:7a:78:fa:49:97:28:4b:0b:4b:8e:d0:a6:7f:ec: 7f:d5:bb:bb:cd:84:96:c4:51:bc:8c:0c:0d:65:e9: a0:b9:b2:0f:46:50:3f:96:74:d8:d7:f7:fc:dd:a0: 00:97:54:09:78:90:c0:36:20:98:be:84:0e:a6:87: ac:7e:83:1c:6e:47:93:51:f7:e0:ae:5c:50:22:ad: e2:a8:8a:b1:d5:4e:33:7b:83:c9:90:65:24:24:9f: 27:1f:c3:61:69:22:fe:dd:ac:6b:da:a2:99:dc:92: e9:72:c0:7a:a9:e0:85:06:b1:39:f2:80:1d:30:b0: 34:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A6:00:6E:77:D6:BD:93:3D:83:4A:2B:C9:99:40:79:A1:6C:AA:72 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a500::/32 Signature Algorithm: sha256WithRSAEncryption 8a:80:d1:8d:41:ad:64:b0:0e:23:34:20:13:a5:e6:ea:fb:14: dd:04:73:9a:1a:25:93:ae:2f:b7:21:57:77:5b:06:98:79:c9: 3a:f9:25:44:d7:f3:b4:d0:22:a0:16:72:8d:d6:3b:89:d1:4b: 8c:32:60:f7:3a:6a:c7:c8:ba:88:94:63:15:3d:c0:2d:74:6c: a5:ad:b5:14:7f:ac:c5:60:6b:dc:ee:1e:29:70:0c:98:98:c7: c4:cb:6a:27:4a:a9:a7:e1:5c:9c:e7:c0:4a:69:25:7b:9c:43: 01:3a:7c:d8:ef:50:42:ae:12:e1:24:4a:dc:e2:95:b7:e3:14: 82:64:21:99:7d:aa:f8:ca:cb:f1:24:5f:50:5f:24:a0:46:f2: 59:59:77:5e:5a:33:7b:c7:fc:d0:27:49:fa:78:b9:00:5a:4b: 2a:3d:00:d3:48:6e:3b:a9:b5:b0:03:8a:b2:80:05:57:12:0a: bb:90:ae:12:89:f8:ef:54:7d:2a:d4:ba:ad:5c:38:68:0b:85: dc:94:b3:53:27:0a:f7:15:5d:03:4e:18:35:d0:65:d4:cc:24: f1:0d:42:39:9a:f0:14:21:f6:2e:9c:03:11:94:4c:40:ac:38: fa:8e:7f:e8:b2:c6:e3:78:23:40:01:4e:6b:cd:1d:03:86:9f: 71:57:65:47 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUNrsasKocpREzSVkPg9uU691lwV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNDA3MDEwMTAwMDRaFw0yNTA2MzAwMTA1MDRaMDMxMTAvBgNV BAMTKDRGQTYwMDZFNzdENkJEOTMzRDgzNEEyQkM5OTk0MDc5QTE2Q0FBNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN9zwjwYzgGg+lajG2NxnrL/xZ ueZgEq7WL0R471/cPriKU8QtJEJE2vjbX1CsDMGxa4Fw1zxEinu4Zn0heC/fLPlF fVv4qcJl7TRERyEBjQAmtDUT35Yq5mh9PeVtVkn6GCgZeKvQMH1hoiL7/s4csmMu i44IM+YUaXjX3nVOHnTHdwM0Tah6ePpJlyhLC0uO0KZ/7H/Vu7vNhJbEUbyMDA1l 6aC5sg9GUD+WdNjX9/zdoACXVAl4kMA2IJi+hA6mh6x+gxxuR5NR9+CuXFAireKo irHVTjN7g8mQZSQknycfw2FpIv7drGvaopnckulywHqp4IUGsTnygB0wsDSVAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUT6YAbnfWvZM9g0oryZlAeaFsqnIwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzNDMwMzIzYTYxMzUzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKgNGNQa1ksA4jNCATpebq+xTdBHOaGiWTri+3IVd3WwaYeck6+SVE 1/O00CKgFnKN1juJ0UuMMmD3OmrHyLqIlGMVPcAtdGylrbUUf6zFYGvc7h4pcAyY mMfEy2onSqmn4Vyc58BKaSV7nEMBOnzY71BCrhLhJErc4pW34xSCZCGZfar4ysvx JF9QXySgRvJZWXdeWjN7x/zQJ0n6eLkAWksqPQDTSG47qbWwA4qygAVXEgq7kK4S ifjvVH0q1LqtXDhoC4XclLNTJwr3FV0DThg10GXUzCTxDUI5mvAUIfYunAMRlExA rDj6jn/ossbjeCNAAU5rzR0Dhp9xV2VH -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org