$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa File: 323430323a633330303a3a2f33322d3438203d3e203535363533.roa (raw, json) Hash identifier: Sjz+Mw4h9hDynPTU4wmbIFS9wojilMuVRHQLpoKIQ3U= Subject key identifier: 40:C6:A7:B9:8F:DA:83:61:6D:2B:0B:D7:31:C8:76:17:EF:1E:5E:69 Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 5712F4F499F3B13CED3F1AE5D3D86E9C7D5E2202 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa Signing time: Mon 01 Jul 2024 01:05:01 +0000 ROA not before: Mon 01 Jul 2024 01:00:01 +0000 ROA not after: Mon 30 Jun 2025 01:05:01 +0000 asID: 55653 IP address blocks: 2402:c300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:12:f4:f4:99:f3:b1:3c:ed:3f:1a:e5:d3:d8:6e:9c:7d:5e:22:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jul 1 01:00:01 2024 GMT Not After : Jun 30 01:05:01 2025 GMT Subject: CN=40C6A7B98FDA83616D2B0BD731C87617EF1E5E69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:69:3a:e2:03:7e:55:77:d8:eb:8c:e3:e6:ee: 47:ba:ab:9f:4b:d7:f6:a0:81:4f:ca:a8:a3:34:12: e3:6d:2b:c0:05:3f:37:69:a9:68:7b:f3:db:74:0b: 37:7b:e8:c8:59:f1:f8:5c:0e:0a:de:43:8d:ac:e0: a8:9a:c1:af:47:3b:e9:f0:d0:b8:92:b1:c7:56:5f: 67:cb:a6:11:5b:dc:5f:6b:df:e4:c9:d1:6c:d6:22: 48:0d:fe:67:00:98:dd:27:ce:f5:b7:0f:c5:63:32: 33:49:a0:74:fb:da:f3:ca:0d:94:fd:a0:9c:03:e7: b7:e5:bd:c8:35:f8:a3:0e:ef:0f:06:17:d2:8a:6b: 8d:fc:a8:39:c8:31:66:f2:eb:eb:01:e3:77:55:6c: 62:e6:17:d3:fd:76:cc:19:ea:8c:ea:9d:c3:4c:7c: 55:4c:99:01:64:c1:2a:7e:96:fa:6a:08:eb:35:17: 12:51:90:92:13:d9:6d:11:3e:a5:78:bc:3f:ec:9a: 42:9a:79:47:55:35:7a:3b:5b:75:c9:f0:57:d2:f6: 16:1e:e9:b3:6c:0d:45:23:b5:ab:2d:ee:0b:39:46: 44:1c:57:2e:d6:a1:fe:cf:c9:01:85:43:0a:e9:1f: c9:cd:36:2f:c9:33:6c:66:7b:51:47:0f:f5:28:5b: 3d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C6:A7:B9:8F:DA:83:61:6D:2B:0B:D7:31:C8:76:17:EF:1E:5E:69 X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/323430323a633330303a3a2f33322d3438203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:c300::/32 Signature Algorithm: sha256WithRSAEncryption c7:b2:2d:af:fd:11:4b:3e:43:1e:07:10:c5:2b:c7:e0:e8:ca: 52:ad:a1:a2:f9:23:de:eb:af:3e:c9:dc:dc:1e:ab:36:b1:22: c0:fe:74:39:42:34:59:92:3f:f6:8b:24:1d:ef:fb:0d:10:8a: fb:9c:f4:9e:d5:25:c7:17:68:39:92:b2:09:fb:5d:c1:53:e7: 9b:2f:74:f9:27:27:0b:d0:1a:e1:fd:75:44:cd:b7:63:9f:9d: ba:b2:86:f8:86:67:6d:54:b4:9a:be:b0:90:16:77:ca:0b:ba: 7f:ea:76:bf:a0:cc:46:c8:c7:8a:41:16:76:c0:da:18:8f:d6: 2d:90:1f:9d:58:71:3a:d6:47:30:eb:5b:b3:93:a7:d2:6d:4b: 11:b9:13:8b:87:ea:07:d1:8e:70:aa:3d:93:2c:eb:22:cb:b8: cb:19:17:61:b7:7a:b4:67:ff:17:79:96:3a:1b:e4:f2:49:49: 90:5a:65:4b:89:89:0b:b6:0f:e0:f7:1f:03:0d:d7:e1:2d:08: 4a:64:a6:1e:0f:a2:80:29:12:84:a8:ff:40:19:b5:05:ce:16: 03:db:da:2a:35:57:5e:a5:cd:ed:9d:43:23:98:34:49:7a:2e: 07:69:2c:5c:3d:02:c3:3d:fd:26:74:cd:e6:df:ec:b2:47:46: 1e:2d:5b:1c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUVxL09JnzsTztPxrl09hunH1eIgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNDA3MDEwMTAwMDFaFw0yNTA2MzAwMTA1MDFaMDMxMTAvBgNV BAMTKDQwQzZBN0I5OEZEQTgzNjE2RDJCMEJENzMxQzg3NjE3RUYxRTVFNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmaTriA35Vd9jrjOPm7ke6q59L 1/aggU/KqKM0EuNtK8AFPzdpqWh789t0Czd76MhZ8fhcDgreQ42s4Kiawa9HO+nw 0LiSscdWX2fLphFb3F9r3+TJ0WzWIkgN/mcAmN0nzvW3D8VjMjNJoHT72vPKDZT9 oJwD57flvcg1+KMO7w8GF9KKa438qDnIMWby6+sB43dVbGLmF9P9dswZ6ozqncNM fFVMmQFkwSp+lvpqCOs1FxJRkJIT2W0RPqV4vD/smkKaeUdVNXo7W3XJ8FfS9hYe 6bNsDUUjtast7gs5RkQcVy7Wof7PyQGFQwrpH8nNNi/JM2xme1FHD/UoWz0HAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUQManuY/ag2FtKwvXMch2F+8eXmkwHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzQzMDMyM2E2MzMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAsMAMA0GCSqGSIb3 DQEBCwUAA4IBAQDHsi2v/RFLPkMeBxDFK8fg6MpSraGi+SPe668+ydzcHqs2sSLA /nQ5QjRZkj/2iyQd7/sNEIr7nPSe1SXHF2g5krIJ+13BU+ebL3T5JycL0Brh/XVE zbdjn526sob4hmdtVLSavrCQFnfKC7p/6na/oMxGyMeKQRZ2wNoYj9YtkB+dWHE6 1kcw61uzk6fSbUsRuROLh+oH0Y5wqj2TLOsiy7jLGRdht3q0Z/8XeZY6G+TySUmQ WmVLiYkLtg/g9x8DDdfhLQhKZKYeD6KAKRKEqP9AGbUFzhYD29oqNVdepc3tnUMj mDRJei4HaSxcPQLDPf0mdM3m3+yyR0YeLVsc -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:40 2024 by rpki-client on console-ams.rpki-client.org