$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa File: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (raw, json) Hash identifier: c8RxI909Anvx0BRzpA0Rb0YziahBzyNU99IlhCC5XuA= Subject key identifier: F7:FA:72:6C:56:D3:5B:66:75:2A:D6:18:8F:FE:9E:00:FA:AD:DD:F8 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 14843F757DB64946C0420FD133503CC5A84821F3 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa Signing time: Mon 01 Jul 2024 01:05:46 +0000 ROA not before: Mon 01 Jul 2024 01:00:46 +0000 ROA not after: Mon 30 Jun 2025 01:05:46 +0000 asID: 24532 IP address blocks: 2403:2e00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:84:3f:75:7d:b6:49:46:c0:42:0f:d1:33:50:3c:c5:a8:48:21:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 1 01:00:46 2024 GMT Not After : Jun 30 01:05:46 2025 GMT Subject: CN=F7FA726C56D35B66752AD6188FFE9E00FAADDDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:78:39:d2:b7:6b:c3:8f:18:93:ed:03:e9:60: b2:41:39:f7:b7:c9:42:0b:e2:46:c9:db:08:01:8b: 90:e0:e0:29:63:38:88:f9:58:77:76:b8:d1:6a:27: cf:6c:29:3d:29:ac:74:fd:28:8e:98:05:00:5f:9d: 2b:fa:4e:da:f1:8d:1e:79:11:30:35:57:50:41:b1: d4:df:8a:17:ec:f7:17:7d:21:d4:c4:e5:01:30:72: 4f:4d:d0:27:e2:f6:70:eb:71:43:8f:5a:e4:ed:5b: 69:31:ac:d2:d2:cd:11:64:d4:c2:c0:37:6c:be:3b: d7:c7:01:24:c5:ec:0e:ab:35:99:66:0d:fc:bc:62: c5:98:de:3d:57:e8:26:60:d2:39:31:bd:67:08:c3: 57:8d:8e:e5:0b:df:a7:05:b8:2d:b3:9e:2c:7f:08: 24:f3:fb:8c:0f:5f:92:ae:b2:98:b4:af:77:78:e0: e6:33:44:9e:34:97:24:1a:51:b3:61:a7:65:5a:55: be:19:1b:a8:ba:25:c8:7b:5f:5b:b8:ab:2e:3e:1b: 74:b6:6d:50:9d:4b:3d:26:84:0c:93:64:f9:75:8d: 62:fc:ba:56:a7:d0:f5:1d:56:d1:3b:36:1c:bc:07: d0:48:08:95:32:01:fc:0b:1f:f7:e1:2c:3b:07:36: 4c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FA:72:6C:56:D3:5B:66:75:2A:D6:18:8F:FE:9E:00:FA:AD:DD:F8 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e00::/32 Signature Algorithm: sha256WithRSAEncryption 28:fa:37:7c:4e:ff:37:97:c9:25:53:10:dd:bd:ae:d5:ce:16: 46:e5:61:cd:1a:4d:0f:7e:45:2e:3d:3f:14:5c:ab:76:eb:b3: 58:f7:62:d7:01:f4:b9:ff:2c:39:a3:64:3e:c3:cd:c6:c8:4a: 18:f7:87:1a:45:38:c8:5d:f2:7d:e6:ba:2a:86:53:6d:88:51: 44:b7:06:28:15:27:1b:f6:4a:46:1a:c3:2f:22:de:68:74:14: b5:6e:57:9f:57:bf:91:84:40:49:62:65:04:7c:84:a0:5b:32: e0:e6:3e:06:35:f2:84:76:ea:43:13:e6:95:55:3e:a8:bc:c0: bd:e1:92:46:3f:db:2a:c1:ca:18:83:12:00:b5:32:95:b9:f2: 21:9a:3b:3a:d7:0c:2f:fa:d1:4d:bf:d0:c5:ec:51:bc:d2:85: 1a:49:ab:dd:53:f5:cc:b2:9f:e9:75:9f:86:f2:40:d6:c2:ee: 4d:eb:6c:c3:6c:fd:7b:0f:2d:58:fb:27:6e:e6:6a:fc:6c:ae: f7:47:f2:7f:e8:34:f7:b5:42:fc:0c:88:5d:36:45:46:fa:99: 22:1c:11:c5:40:9e:95:0a:96:0f:ec:41:1b:4f:3a:f7:fb:5c: 71:4e:c8:f1:92:6f:83:91:2e:16:fa:08:0b:c1:fe:f0:97:9f: fe:a8:ec:1d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFIQ/dX22SUbAQg/RM1A8xahIIfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDA3MDEwMTAwNDZaFw0yNTA2MzAwMTA1NDZaMDMxMTAvBgNV BAMTKEY3RkE3MjZDNTZEMzVCNjY3NTJBRDYxODhGRkU5RTAwRkFBRERERjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3eDnSt2vDjxiT7QPpYLJBOfe3 yUIL4kbJ2wgBi5Dg4CljOIj5WHd2uNFqJ89sKT0prHT9KI6YBQBfnSv6TtrxjR55 ETA1V1BBsdTfihfs9xd9IdTE5QEwck9N0Cfi9nDrcUOPWuTtW2kxrNLSzRFk1MLA N2y+O9fHASTF7A6rNZlmDfy8YsWY3j1X6CZg0jkxvWcIw1eNjuUL36cFuC2znix/ CCTz+4wPX5Kuspi0r3d44OYzRJ40lyQaUbNhp2VaVb4ZG6i6Jch7X1u4qy4+G3S2 bVCdSz0mhAyTZPl1jWL8ulan0PUdVtE7Nhy8B9BICJUyAfwLH/fhLDsHNkwLAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU9/pybFbTW2Z1KtYYj/6eAPqt3fgwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzQzMDMzM2EzMjY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy4AMA0GCSqGSIb3 DQEBCwUAA4IBAQAo+jd8Tv83l8klUxDdva7VzhZG5WHNGk0PfkUuPT8UXKt267NY 92LXAfS5/yw5o2Q+w83GyEoY94caRTjIXfJ95roqhlNtiFFEtwYoFScb9kpGGsMv It5odBS1blefV7+RhEBJYmUEfISgWzLg5j4GNfKEdupDE+aVVT6ovMC94ZJGP9sq wcoYgxIAtTKVufIhmjs61wwv+tFNv9DF7FG80oUaSavdU/XMsp/pdZ+G8kDWwu5N 62zDbP17Dy1Y+ydu5mr8bK73R/J/6DT3tUL8DIhdNkVG+pkiHBHFQJ6VCpYP7EEb Tzr3+1xxTsjxkm+DkS4W+ggLwf7wl5/+qOwd -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org