$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa File: 323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa (raw, json) Hash identifier: pb+F8lpR9fsAHIJl8IH5JQ8/ORRQQoynvikl0Wj3k88= Subject key identifier: BE:9D:7D:92:AB:13:79:64:03:AE:DA:0E:70:8E:F9:64:93:30:2C:C2 Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 162B1067D411BBE52F226EE9D12B0BE02084B703 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa Signing time: Thu 04 Jul 2024 02:01:40 +0000 ROA not before: Thu 04 Jul 2024 01:56:40 +0000 ROA not after: Thu 03 Jul 2025 02:01:40 +0000 asID: 63501 IP address blocks: 2403:fc80:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:2b:10:67:d4:11:bb:e5:2f:22:6e:e9:d1:2b:0b:e0:20:84:b7:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: Jul 4 01:56:40 2024 GMT Not After : Jul 3 02:01:40 2025 GMT Subject: CN=BE9D7D92AB13796403AEDA0E708EF96493302CC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:22:b6:28:c0:ae:d7:e0:22:0b:9f:3b:33: 21:75:88:37:7b:66:3b:34:e4:40:88:8c:65:7e:06: c3:fb:0a:fc:b7:46:f0:39:39:a1:eb:ae:05:9f:17: bd:04:1f:89:e0:9f:02:51:0d:99:a9:bf:29:33:2c: 5e:0e:65:df:3c:37:27:68:b2:01:ed:f0:be:3c:f5: 1f:3e:b5:7c:bd:57:6a:8c:0f:bb:c0:24:18:1a:f9: 3a:66:5b:f2:a0:0f:f0:f0:95:95:1e:75:83:e8:c8: f1:99:ec:28:ea:15:19:78:73:35:15:c3:90:26:8e: 3b:0f:10:e1:76:6b:ce:89:4e:74:5b:1a:7d:8a:91: d7:59:24:95:ca:70:cd:fc:f2:e4:f6:cd:6b:d2:b0: d2:08:49:14:89:90:80:75:2f:b6:67:e6:dd:bb:e2: c3:61:b1:62:2f:0d:52:c9:0e:ec:2e:e8:d2:ac:b4: 2f:a2:ca:19:fe:a3:a2:73:5f:00:bd:08:34:39:e1: b9:b6:83:75:c2:f2:3a:3c:8d:8d:c8:9e:e0:81:3a: c0:16:2d:1d:94:84:6d:b0:87:fb:e2:82:54:05:a8: 8d:b2:ac:a0:70:55:89:d3:e2:6a:24:c1:cc:ce:4f: cd:3b:8b:c4:d3:91:fa:bc:ce:4d:2f:53:82:11:71: 25:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9D:7D:92:AB:13:79:64:03:AE:DA:0E:70:8E:F9:64:93:30:2C:C2 X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fc80:8000::/33 Signature Algorithm: sha256WithRSAEncryption da:37:67:f7:7b:90:fa:c3:16:d7:54:bb:de:7f:10:16:03:00: 83:66:fb:93:b2:e7:a1:47:43:7e:c0:0b:06:0d:e6:bd:fd:62: 9c:6f:93:3a:e2:69:ea:37:5d:c5:71:fd:3c:24:be:4b:9e:00: cf:e9:ff:34:30:b1:67:5c:8a:47:27:d0:62:48:a7:42:3f:c3: d1:e2:ba:fa:12:f0:c1:80:94:a2:40:ff:f6:83:98:da:4f:ff: 8e:12:d8:36:ec:f7:22:a5:46:b0:49:f1:d6:cc:bf:4f:c2:82: 48:fd:32:8c:bb:e3:01:7e:af:ad:b1:c3:73:9f:59:fa:30:df: 6d:c7:a4:37:49:68:cf:7b:eb:a7:07:94:f4:19:c0:d3:ec:27: 38:8b:21:de:aa:fb:21:fe:f1:e5:56:16:6c:2e:1b:df:f7:00: 0b:2c:1e:8c:b0:41:3e:c1:f7:f4:61:53:53:2b:6e:d1:75:86: 09:54:1a:c7:c3:31:92:c5:2b:86:f3:26:53:a8:78:63:e3:39: 37:89:52:36:f4:37:31:b7:08:f9:1c:cf:46:85:1d:c3:97:60: 2c:cf:ea:66:92:3b:b8:fc:41:84:11:30:42:de:09:bf:1a:37: ca:ed:cf:22:75:86:b6:d2:2f:51:76:8a:be:a7:56:cb:e6:9f: 4c:70:28:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFisQZ9QRu+UvIm7p0SsL4CCEtwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yNDA3MDQwMTU2NDBaFw0yNTA3MDMwMjAxNDBaMDMxMTAvBgNV BAMTKEJFOUQ3RDkyQUIxMzc5NjQwM0FFREEwRTcwOEVGOTY0OTMzMDJDQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wSK2KMCu1+AiC587MyF1iDd7 Zjs05ECIjGV+BsP7Cvy3RvA5OaHrrgWfF70EH4ngnwJRDZmpvykzLF4OZd88Nydo sgHt8L489R8+tXy9V2qMD7vAJBga+TpmW/KgD/DwlZUedYPoyPGZ7CjqFRl4czUV w5AmjjsPEOF2a86JTnRbGn2KkddZJJXKcM388uT2zWvSsNIISRSJkIB1L7Zn5t27 4sNhsWIvDVLJDuwu6NKstC+iyhn+o6JzXwC9CDQ54bm2g3XC8jo8jY3InuCBOsAW LR2UhG2wh/viglQFqI2yrKBwVYnT4mokwczOT807i8TTkfq8zk0vU4IRcSU3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvp19kqsTeWQDrtoOcI75ZJMwLMIwHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzMyMzQzMDMzM2E2NjYzMzgzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzNjMzMzUzMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJAP8 gIAwDQYJKoZIhvcNAQELBQADggEBANo3Z/d7kPrDFtdUu95/EBYDAINm+5Oy56FH Q37ACwYN5r39Ypxvkzriaeo3XcVx/TwkvkueAM/p/zQwsWdcikcn0GJIp0I/w9Hi uvoS8MGAlKJA//aDmNpP/44S2Dbs9yKlRrBJ8dbMv0/Cgkj9Moy74wF+r62xw3Of Wfow323HpDdJaM9766cHlPQZwNPsJziLId6q+yH+8eVWFmwuG9/3AAssHoywQT7B 9/RhU1MrbtF1hglUGsfDMZLFK4bzJlOoeGPjOTeJUjb0NzG3CPkcz0aFHcOXYCzP 6maSO7j8QYQRMELeCb8aN8rtzyJ1hrbSL1F2ir6nVsvmn0xwKCY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org