$ rpki-client -vvf repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa File: 323430353a316463303a3a2f33322d3438203d3e203436303437.roa (raw, json) Hash identifier: R6jlOMebhI7dihMnvovn6K1+eHFopc71JfRc6zYxAOY= Subject key identifier: FF:CB:FA:C3:7E:C4:A8:97:1C:93:6D:CD:D5:B0:C1:2E:1A:F6:E6:25 Certificate issuer: /CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Certificate serial: 14BBFBA71251A2530E6D177C8096BBA18919BFAE Authority key identifier: 1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa Signing time: Fri 11 Oct 2024 08:00:00 +0000 ROA not before: Fri 11 Oct 2024 07:55:00 +0000 ROA not after: Fri 10 Oct 2025 08:00:00 +0000 asID: 46047 IP address blocks: 2405:1dc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:bb:fb:a7:12:51:a2:53:0e:6d:17:7c:80:96:bb:a1:89:19:bf:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FD7CEEC69DEA7838383317FFB0D4A107AF4572A Validity Not Before: Oct 11 07:55:00 2024 GMT Not After : Oct 10 08:00:00 2025 GMT Subject: CN=FFCBFAC37EC4A8971C936DCDD5B0C12E1AF6E625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:33:bc:5d:24:b6:e8:71:b9:6d:89:09:bf: 91:66:80:a6:ac:17:7a:ac:f6:ef:6c:09:d0:1c:47: b4:80:e1:be:14:7c:62:c8:7f:1e:4e:14:7d:5a:db: 6f:db:e6:62:02:c3:39:73:87:a1:87:d7:8d:1d:5e: 28:1e:52:b1:89:96:70:d3:d2:58:2d:b2:1e:d2:5a: bb:7c:8f:e7:8b:05:5c:38:6d:d5:2b:32:56:b9:d1: 03:37:7c:a4:52:91:16:13:63:12:5a:04:e4:eb:f6: c7:73:51:17:3c:00:dc:d7:71:05:e2:31:80:5d:9f: 1c:84:57:b6:f0:b1:2f:94:1a:2a:df:1c:2c:0e:de: 43:20:ea:01:d5:97:c5:6f:5a:3d:3c:f1:78:e1:48: 28:b7:88:a0:1a:98:d6:76:e9:84:ed:bb:41:7a:03: 4c:5c:4e:7a:76:c8:c7:77:60:f9:9b:51:9b:77:16: 11:c7:03:d2:6c:da:70:93:81:f3:15:58:90:25:c2: 28:b1:b4:9d:7f:c6:d3:76:15:04:d4:3e:57:93:40: fd:18:07:b0:96:fa:4f:57:07:93:a9:ff:4d:e5:5f: bb:ee:73:16:3e:ca:0a:d2:c9:20:3b:5f:e6:58:15: ad:5d:3a:75:a7:e6:21:3d:3e:71:7f:0e:b7:94:e1: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CB:FA:C3:7E:C4:A8:97:1C:93:6D:CD:D5:B0:C1:2E:1A:F6:E6:25 X509v3 Authority Key Identifier: keyid:1F:D7:CE:EC:69:DE:A7:83:83:83:31:7F:FB:0D:4A:10:7A:F4:57:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FD7CEEC69DEA7838383317FFB0D4A107AF4572A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e129c94-c5a6-4dd4-b34a-7e353de6ce81/0/323430353a316463303a3a2f33322d3438203d3e203436303437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption b5:4f:69:3a:aa:4f:ed:f7:f5:bf:00:0d:c8:86:1d:dc:19:3d: 33:33:83:21:36:fe:b3:8f:d9:c2:c8:d7:6e:23:de:ee:e1:02: 5c:b2:3d:dc:83:b2:a8:17:7c:f3:61:e4:e1:b6:bd:71:44:b1: 52:f7:35:53:9e:bd:0a:86:69:ea:6b:6a:4c:97:74:0b:54:ec: 8e:fa:ef:fd:34:c9:af:07:5b:d9:1f:7c:26:63:9d:e5:88:d6: c9:14:f7:00:01:99:62:4c:69:31:01:ae:df:d6:8b:83:bc:ae: f0:76:77:36:44:68:df:ac:38:1e:30:88:33:56:8f:e7:ff:15: 34:0f:29:d9:4d:5a:51:42:d5:af:3e:be:7b:37:77:3b:52:f6: b4:99:15:d3:31:a2:12:7e:93:a7:af:fa:34:e4:54:4a:0d:4b: 86:e2:dd:14:d0:64:61:06:e1:95:cf:ad:80:86:b5:f0:e9:98: 84:8c:41:af:97:cf:b1:14:f2:98:91:e0:e7:df:87:78:44:a9: d4:bf:a1:a5:24:54:90:8f:67:68:66:ef:6a:b6:24:c9:3c:54: 5a:8b:e1:24:b9:c0:f7:ae:81:b2:27:ef:7b:59:ff:3e:df:46: d1:ef:a3:b4:60:34:09:38:1d:5f:f9:0f:14:fd:c0:a7:b6:17: 6f:60:e7:82 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFLv7pxJRolMObRd8gJa7oYkZv64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3 QUY0NTcyQTAeFw0yNDEwMTEwNzU1MDBaFw0yNTEwMTAwODAwMDBaMDMxMTAvBgNV BAMTKEZGQ0JGQUMzN0VDNEE4OTcxQzkzNkRDREQ1QjBDMTJFMUFGNkU2MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJjO8XSS26HG5bYkJv5FmgKas F3qs9u9sCdAcR7SA4b4UfGLIfx5OFH1a22/b5mICwzlzh6GH140dXigeUrGJlnDT 0lgtsh7SWrt8j+eLBVw4bdUrMla50QM3fKRSkRYTYxJaBOTr9sdzURc8ANzXcQXi MYBdnxyEV7bwsS+UGirfHCwO3kMg6gHVl8VvWj088XjhSCi3iKAamNZ26YTtu0F6 A0xcTnp2yMd3YPmbUZt3FhHHA9Js2nCTgfMVWJAlwiixtJ1/xtN2FQTUPleTQP0Y B7CW+k9XB5Op/03lX7vucxY+ygrSySA7X+ZYFa1dOnWn5iE9PnF/DreU4d09AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU/8v6w37EqJcck23N1bDBLhr25iUwHwYDVR0j BBgwFoAUH9fO7Gnep4ODgzF/+w1KEHr0VyowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTEyOWM5NC1jNWE2LTRkZDQtYjM0YS03ZTM1M2RlNmNlODEvMC8xRkQ3Q0VFQzY5 REVBNzgzODM4MzMxN0ZGQjBENEExMDdBRjQ1NzJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZEN0NFRUM2OURFQTc4MzgzODMzMTdGRkIwRDRBMTA3QUY0 NTcyQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllMTI5Yzk0LWM1YTYtNGRkNC1i MzRhLTdlMzUzZGU2Y2U4MS8wLzMyMzQzMDM1M2EzMTY0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzYzMDM0Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBR3AMA0GCSqGSIb3 DQEBCwUAA4IBAQC1T2k6qk/t9/W/AA3Ihh3cGT0zM4MhNv6zj9nCyNduI97u4QJc sj3cg7KoF3zzYeThtr1xRLFS9zVTnr0Khmnqa2pMl3QLVOyO+u/9NMmvB1vZH3wm Y53liNbJFPcAAZliTGkxAa7f1ouDvK7wdnc2RGjfrDgeMIgzVo/n/xU0DynZTVpR QtWvPr57N3c7Uva0mRXTMaISfpOnr/o05FRKDUuG4t0U0GRhBuGVz62AhrXw6ZiE jEGvl8+xFPKYkeDn34d4RKnUv6GlJFSQj2doZu9qtiTJPFRai+EkucD3roGyJ+97 Wf8+30bR76O0YDQJOB1f+Q8U/cCnthdvYOeC -----END CERTIFICATE-----Generated at Mon Nov 25 02:56:53 2024 by rpki-client on console-fra.rpki-client.org