$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a313a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a313a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: VCX9eexAv9esi+sSNtpJiYiCYTvRXlMu/Iu7U6GqXZ0= Subject key identifier: 3B:EC:45:CC:00:74:1D:EE:D0:24:5C:6A:9F:29:A3:09:3D:C0:88:2C Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 48CDCDE3B0541B108BD86B7A0C99D70D4DCD389C Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a313a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:23:24 +0000 ROA not before: Tue 13 Aug 2024 01:18:24 +0000 ROA not after: Tue 12 Aug 2025 01:23:24 +0000 asID: 136079 IP address blocks: 2405:2cc0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:cd:cd:e3:b0:54:1b:10:8b:d8:6b:7a:0c:99:d7:0d:4d:cd:38:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:18:24 2024 GMT Not After : Aug 12 01:23:24 2025 GMT Subject: CN=3BEC45CC00741DEED0245C6A9F29A3093DC0882C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:81:ec:49:31:5e:f3:30:b8:75:66:1d:ce:1f: fb:31:10:25:c8:e9:a1:bd:e5:e6:97:83:8e:8a:64: cb:22:60:4e:b1:d3:0c:12:b6:8d:c5:6c:4f:22:8e: 6c:2b:67:0d:51:b6:37:35:c9:88:59:81:86:0b:16: b9:0f:85:62:ba:83:2f:71:b5:37:45:d5:a6:f1:82: 0c:68:25:cd:85:c2:c5:0b:11:86:68:db:a1:ff:89: 44:75:0e:0c:e1:c3:51:eb:1d:b1:86:09:a4:30:c1: 97:8a:66:23:00:bc:89:88:ce:4e:15:4d:51:59:1a: bb:68:db:e6:e4:7a:48:86:4d:92:f8:f9:1a:4e:97: 98:e8:64:ff:7e:c6:ae:43:bb:5f:a4:68:0f:ac:55: 8b:c6:5a:9d:4b:e5:f4:39:a9:71:e6:ea:e8:87:17: 26:88:56:df:5a:aa:73:03:fd:50:14:98:fb:ea:1e: d1:a9:3a:d7:c6:b8:84:e2:bf:be:84:40:41:45:31: d8:ce:57:0b:64:c1:10:65:e2:41:9c:4b:b8:57:27: 3b:24:67:7a:67:a3:24:dc:a2:74:e8:82:8f:b5:2e: 0c:e6:9e:5c:88:51:b3:d8:17:c0:f8:be:6f:86:6d: 71:f7:3b:dc:a2:8b:aa:12:e6:fc:dd:0e:5c:87:a5: 3f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EC:45:CC:00:74:1D:EE:D0:24:5C:6A:9F:29:A3:09:3D:C0:88:2C X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a313a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:1::/48 Signature Algorithm: sha256WithRSAEncryption 40:71:7a:e4:6d:d2:d5:69:72:cc:fb:aa:52:80:a0:e2:ea:8c: a0:11:56:de:4d:e5:70:e1:2b:65:46:21:5e:63:0e:f3:97:03: b0:d8:a6:b5:d6:1d:4e:2a:4b:b0:9f:16:27:dd:b9:0c:e0:a3: 07:61:d3:12:c3:d0:d5:98:20:a3:36:2a:b6:6e:3f:2d:66:be: 57:12:88:23:d7:98:21:d3:3d:b4:de:b7:b2:dd:b3:13:4a:4a: ec:06:77:7f:21:eb:79:fa:cf:c1:19:b6:4c:f7:45:ac:39:05: a4:1b:cd:1a:52:26:bc:79:c0:f7:49:2d:db:07:0e:f1:f4:bc: ab:49:7f:1f:bc:54:18:7d:78:0e:c2:a2:e6:85:6a:0a:97:43: 4d:97:12:9f:91:ed:b0:06:3c:1c:11:b1:99:d1:c9:49:f7:87: 06:df:0e:01:a9:a4:3d:df:97:bf:f5:50:c4:58:51:0a:84:87: 49:9a:da:9e:b0:9b:33:41:4d:87:66:84:3f:72:55:af:52:50: 08:b2:b3:80:b1:f3:95:bf:99:41:dd:03:56:e4:e9:99:fa:c3: bd:09:eb:38:ed:4a:9d:53:68:9a:f6:7b:99:1f:68:26:83:ee: b1:eb:15:fb:be:0d:1d:77:1a:54:d1:38:2e:cc:21:bc:6a:06: f6:4d:64:61 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSM3N47BUGxCL2Gt6DJnXDU3NOJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTE4MjRaFw0yNTA4MTIwMTIzMjRaMDMxMTAvBgNV BAMTKDNCRUM0NUNDMDA3NDFERUVEMDI0NUM2QTlGMjlBMzA5M0RDMDg4MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHgexJMV7zMLh1Zh3OH/sxECXI 6aG95eaXg46KZMsiYE6x0wwSto3FbE8ijmwrZw1Rtjc1yYhZgYYLFrkPhWK6gy9x tTdF1abxggxoJc2FwsULEYZo26H/iUR1Dgzhw1HrHbGGCaQwwZeKZiMAvImIzk4V TVFZGrto2+bkekiGTZL4+RpOl5joZP9+xq5Du1+kaA+sVYvGWp1L5fQ5qXHm6uiH FyaIVt9aqnMD/VAUmPvqHtGpOtfGuITiv76EQEFFMdjOVwtkwRBl4kGcS7hXJzsk Z3pnoyTconTogo+1LgzmnlyIUbPYF8D4vm+GbXH3O9yii6oS5vzdDlyHpT/7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUO+xFzAB0He7QJFxqnymjCT3AiCwwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAEw DQYJKoZIhvcNAQELBQADggEBAEBxeuRt0tVpcsz7qlKAoOLqjKARVt5N5XDhK2VG IV5jDvOXA7DYprXWHU4qS7CfFifduQzgowdh0xLD0NWYIKM2KrZuPy1mvlcSiCPX mCHTPbTet7LdsxNKSuwGd38h63n6z8EZtkz3Raw5BaQbzRpSJrx5wPdJLdsHDvH0 vKtJfx+8VBh9eA7CouaFagqXQ02XEp+R7bAGPBwRsZnRyUn3hwbfDgGppD3fl7/1 UMRYUQqEh0ma2p6wmzNBTYdmhD9yVa9SUAiys4Cx85W/mUHdA1bk6Zn6w70J6zjt Sp1TaJr2e5kfaCaD7rHrFfu+DR13GlTROC7MIbxqBvZNZGE= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org