$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa File: 323430343a343863303a3a2f33322d3332203d3e20313338313334.roa (raw, json) Hash identifier: mGafxLeKPnG7Eg+GZ3Uvf1Rg2MZjFuXySA60etRq29k= Subject key identifier: A6:79:9B:7A:FA:E5:60:F5:8F:75:2C:0A:F6:90:8A:0F:ED:BC:DF:1A Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 5FC7A5B8848F417DFCB8146BE44602B4E3A9B517 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa Signing time: Mon 01 Jul 2024 01:03:40 +0000 ROA not before: Mon 01 Jul 2024 00:58:40 +0000 ROA not after: Mon 30 Jun 2025 01:03:40 +0000 asID: 138134 IP address blocks: 2404:48c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c7:a5:b8:84:8f:41:7d:fc:b8:14:6b:e4:46:02:b4:e3:a9:b5:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Jul 1 00:58:40 2024 GMT Not After : Jun 30 01:03:40 2025 GMT Subject: CN=A6799B7AFAE560F58F752C0AF6908A0FEDBCDF1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:a3:56:c7:ca:b9:21:1b:5d:96:ca:a5:40: 7a:a5:43:97:b9:07:a8:70:b0:46:f6:5e:9f:94:c3: 6d:f6:09:fa:67:41:b0:52:db:55:7f:86:93:c8:c4: be:c2:1d:39:46:0f:09:46:33:b8:3e:d6:6e:66:c9: f4:91:aa:aa:27:70:bb:0a:83:e1:5a:2f:0a:e1:e3: 13:63:6f:1b:01:86:78:39:0e:a5:36:07:25:3f:eb: 9b:96:1d:18:01:b1:4a:f8:35:39:fd:c9:d9:45:31: 1a:a2:0c:18:55:71:62:0b:dc:26:5c:53:68:36:a5: cc:55:5e:14:ab:3d:bd:57:04:87:b9:c6:5b:26:c4: f8:d4:69:79:6e:13:cf:68:5d:1d:fc:20:f2:e3:47: a4:95:30:5a:db:2c:d8:28:42:98:b0:ba:46:04:d8: 33:1e:47:b2:36:ef:46:cd:01:ea:1f:64:22:04:5b: 28:49:bb:25:32:56:94:6e:b6:41:c4:69:12:7f:6b: 8f:b7:9c:70:3c:cf:9c:3d:1c:4d:ee:6a:a4:9c:bf: 41:e7:31:ca:a1:fe:5b:45:77:9d:4e:88:ec:42:47: 70:d8:ff:cf:1e:75:cd:7e:5f:0e:45:4d:e4:07:f4: c0:3a:86:d0:7c:89:e8:cb:70:43:ce:46:89:f4:1f: e4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:79:9B:7A:FA:E5:60:F5:8F:75:2C:0A:F6:90:8A:0F:ED:BC:DF:1A X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 30:79:3b:74:fd:a7:ad:2e:76:58:59:14:50:f2:d4:05:df:c3: 0c:95:dc:42:5d:d5:5f:a0:33:3f:79:6e:5c:17:61:3e:01:30: 1b:1e:22:01:14:76:89:3e:d7:a1:f3:5f:c9:ba:cf:6c:89:8e: fa:a4:1d:ef:28:0d:02:59:e3:24:33:01:84:c4:fd:37:21:31: 70:7d:8e:59:b7:9b:ed:53:5a:41:0a:1d:78:87:f2:e3:10:df: 4f:ef:0a:48:19:d6:3b:6f:af:54:56:99:e9:c6:4e:ae:22:e1: 2e:56:b7:f2:f0:f3:ab:73:cb:e5:8e:50:d4:c8:48:14:41:e7: 82:25:87:05:3b:a1:81:9e:f5:93:b3:05:42:48:4c:2c:3c:21: 2b:d0:bd:58:74:3a:d7:64:ec:e7:87:eb:3b:97:dc:ba:aa:b4: b2:c9:a3:3c:2c:c5:9f:b3:2c:48:0c:1d:c7:e9:d6:f9:20:55: 51:96:e8:71:08:d4:d6:3c:f0:c3:18:47:81:eb:9a:5c:ce:dc: eb:31:93:a2:e7:a0:bc:7b:68:99:3b:ea:a9:06:1a:16:45:d8: 40:17:22:71:4f:2c:f1:cb:5a:78:5a:35:75:7f:0a:0d:6b:39: 8f:dd:6a:d7:18:ba:b5:99:68:59:d3:1e:e5:94:34:92:15:25: 95:e0:a6:86 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUX8eluISPQX38uBRr5EYCtOOptRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNDA3MDEwMDU4NDBaFw0yNTA2MzAwMTAzNDBaMDMxMTAvBgNV BAMTKEE2Nzk5QjdBRkFFNTYwRjU4Rjc1MkMwQUY2OTA4QTBGRURCQ0RGMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHL6NWx8q5IRtdlsqlQHqlQ5e5 B6hwsEb2Xp+Uw232CfpnQbBS21V/hpPIxL7CHTlGDwlGM7g+1m5myfSRqqoncLsK g+FaLwrh4xNjbxsBhng5DqU2ByU/65uWHRgBsUr4NTn9ydlFMRqiDBhVcWIL3CZc U2g2pcxVXhSrPb1XBIe5xlsmxPjUaXluE89oXR38IPLjR6SVMFrbLNgoQpiwukYE 2DMeR7I270bNAeofZCIEWyhJuyUyVpRutkHEaRJ/a4+3nHA8z5w9HE3uaqScv0Hn Mcqh/ltFd51OiOxCR3DY/88edc1+Xw5FTeQH9MA6htB8iejLcEPORon0H+RhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUpnmbevrlYPWPdSwK9pCKD+283xowHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMyMzQzMDM0M2EzNDM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMxMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQESMAwDQYJKoZI hvcNAQELBQADggEBADB5O3T9p60udlhZFFDy1AXfwwyV3EJd1V+gMz95blwXYT4B MBseIgEUdok+16HzX8m6z2yJjvqkHe8oDQJZ4yQzAYTE/TchMXB9jlm3m+1TWkEK HXiH8uMQ30/vCkgZ1jtvr1RWmenGTq4i4S5Wt/Lw86tzy+WOUNTISBRB54IlhwU7 oYGe9ZOzBUJITCw8ISvQvVh0Otdk7OeH6zuX3LqqtLLJozwsxZ+zLEgMHcfp1vkg VVGW6HEI1NY88MMYR4HrmlzO3Osxk6LnoLx7aJk76qkGGhZF2EAXInFPLPHLWnha NXV/Cg1rOY/datcYurWZaFnTHuWUNJIVJZXgpoY= -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org