$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: wANFlcEnJtKYhVhmbvh7ghaUvUER0v8nXkBQby1whj8= Subject key identifier: 02:4B:17:99:49:AB:D5:F3:47:69:0F:ED:7D:14:E4:61:7A:79:37:18 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 041E5E59724A165D068AC39DA10BFBB027E2A02F Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:26:43 +0000 ROA not before: Tue 13 Aug 2024 01:21:43 +0000 ROA not after: Tue 12 Aug 2025 01:26:43 +0000 asID: 136079 IP address blocks: 2405:2cc0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1e:5e:59:72:4a:16:5d:06:8a:c3:9d:a1:0b:fb:b0:27:e2:a0:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:21:43 2024 GMT Not After : Aug 12 01:26:43 2025 GMT Subject: CN=024B179949ABD5F347690FED7D14E4617A793718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:01:19:e4:d3:44:2f:77:d4:f4:39:72:a3: b4:cd:92:81:53:2a:42:59:b9:a7:72:33:91:ee:96: 92:1b:81:0c:b4:29:3b:38:2a:7d:eb:0e:b0:f1:3f: 00:1d:47:04:02:33:e4:5f:47:c8:c8:03:a2:5b:18: 7b:fa:1c:15:4c:81:dc:65:89:a8:27:73:2b:14:6f: 4a:56:b2:b7:c8:0b:9e:99:9e:56:7b:40:0a:95:2a: 6d:3c:01:25:48:72:d3:9c:1b:d8:39:63:dd:5a:8d: f9:9b:4a:01:68:d1:c1:4d:9b:85:ea:21:3d:4b:a1: f4:79:4f:47:bc:f1:94:18:d9:03:af:54:cc:6d:35: 6e:bd:a5:05:b3:11:10:4a:29:16:83:98:b5:33:ac: f6:5f:0b:a8:36:1c:80:3e:68:3d:f4:06:ad:80:39: fe:09:2c:5c:02:c3:3d:95:ca:0e:e6:22:be:0d:2d: d2:11:3a:7c:00:6a:27:fd:19:99:5b:e3:cc:5f:21: 13:7c:c1:ae:b0:c5:94:9d:37:41:1f:c3:6b:a4:61: 8f:a9:24:53:98:39:dc:fd:ac:a5:15:bd:4b:7f:03: f1:66:b9:c4:47:20:2e:85:4e:e0:a1:e8:5f:ef:01: 34:70:85:e4:cd:00:48:c5:70:de:06:7b:0e:ac:f8: dc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4B:17:99:49:AB:D5:F3:47:69:0F:ED:7D:14:E4:61:7A:79:37:18 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a383a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:8::/48 Signature Algorithm: sha256WithRSAEncryption 05:1c:77:3a:0e:c0:3c:c7:49:f0:69:19:ac:69:5b:aa:64:c9: 95:aa:1a:0d:20:1f:c0:1b:ac:4e:4d:21:e1:30:44:d5:90:49: c5:d3:ce:ed:81:b1:15:da:3c:9f:53:b5:fb:7a:f8:b7:46:77: e2:9b:96:66:62:7f:f8:87:cc:9a:63:38:b8:ef:b4:26:a2:c2: 7f:62:a6:0d:1b:52:06:28:49:6c:ca:a2:2c:15:4d:84:8c:fb: 6b:d9:10:f8:ec:4f:a1:d9:1e:3d:12:15:eb:43:77:ce:a7:c4: 2f:83:fc:9d:2a:e5:38:b4:f2:e1:d6:6a:fe:a8:27:6d:ca:39: d5:d6:19:be:c8:ed:84:30:6d:1c:15:bd:0a:ed:3c:92:46:e2: a3:28:23:5e:bc:cf:c1:bb:8a:70:7f:ec:96:d3:a8:2c:1f:74: 14:60:8d:37:1f:dc:8c:e8:d4:60:5a:a1:07:16:4c:f1:43:d2: 8a:27:c2:01:c0:86:8d:7d:3e:37:99:dc:bb:ce:39:2c:96:df: 84:e6:e5:62:26:d9:e3:d1:89:3b:9c:9b:e2:57:6d:dc:1a:f9: 0c:2d:88:20:77:7b:a6:75:db:c8:31:39:7f:c7:42:01:90:0a: 59:0d:42:c8:56:55:6e:39:31:6a:54:5c:90:09:08:fc:15:69: d8:f1:97:73 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBB5eWXJKFl0GisOdoQv7sCfioC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTIxNDNaFw0yNTA4MTIwMTI2NDNaMDMxMTAvBgNV BAMTKDAyNEIxNzk5NDlBQkQ1RjM0NzY5MEZFRDdEMTRFNDYxN0E3OTM3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSAEZ5NNEL3fU9Dlyo7TNkoFT KkJZuadyM5HulpIbgQy0KTs4Kn3rDrDxPwAdRwQCM+RfR8jIA6JbGHv6HBVMgdxl iagncysUb0pWsrfIC56ZnlZ7QAqVKm08ASVIctOcG9g5Y91ajfmbSgFo0cFNm4Xq IT1LofR5T0e88ZQY2QOvVMxtNW69pQWzERBKKRaDmLUzrPZfC6g2HIA+aD30Bq2A Of4JLFwCwz2Vyg7mIr4NLdIROnwAaif9GZlb48xfIRN8wa6wxZSdN0Efw2ukYY+p JFOYOdz9rKUVvUt/A/FmucRHIC6FTuCh6F/vATRwheTNAEjFcN4Gew6s+NwvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUAksXmUmr1fNHaQ/tfRTkYXp5NxgwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAgw DQYJKoZIhvcNAQELBQADggEBAAUcdzoOwDzHSfBpGaxpW6pkyZWqGg0gH8AbrE5N IeEwRNWQScXTzu2BsRXaPJ9Ttft6+LdGd+KblmZif/iHzJpjOLjvtCaiwn9ipg0b UgYoSWzKoiwVTYSM+2vZEPjsT6HZHj0SFetDd86nxC+D/J0q5Ti08uHWav6oJ23K OdXWGb7I7YQwbRwVvQrtPJJG4qMoI168z8G7inB/7JbTqCwfdBRgjTcf3Izo1GBa oQcWTPFD0oonwgHAho19PjeZ3LvOOSyW34Tm5WIm2ePRiTucm+JXbdwa+QwtiCB3 e6Z128gxOX/HQgGQClkNQshWVW45MWpUXJAJCPwVadjxl3M= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org