$ rpki-client -vvf repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa File: 323430343a663963303a3a2f33322d3332203d3e20313338383931.roa (raw, json) Hash identifier: 9XCmEuujAlpFRjOfePqG7bPcXuGsZrGZceaephFd9a0= Subject key identifier: 41:B0:F9:C6:E5:16:F0:39:A5:D5:1F:F9:9B:2A:B7:A8:13:72:39:BD Certificate issuer: /CN=CCFC496C7B175F19C9F311A3BB624A5C30B345F4 Certificate serial: 2E5041EC882E97581ABE209DACB2D14E6891959D Authority key identifier: CC:FC:49:6C:7B:17:5F:19:C9:F3:11:A3:BB:62:4A:5C:30:B3:45:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa Signing time: Mon 04 Nov 2024 10:00:02 +0000 ROA not before: Mon 04 Nov 2024 09:55:02 +0000 ROA not after: Mon 03 Nov 2025 10:00:02 +0000 asID: 138891 IP address blocks: 2404:f9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.crl rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:50:41:ec:88:2e:97:58:1a:be:20:9d:ac:b2:d1:4e:68:91:95:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCFC496C7B175F19C9F311A3BB624A5C30B345F4 Validity Not Before: Nov 4 09:55:02 2024 GMT Not After : Nov 3 10:00:02 2025 GMT Subject: CN=41B0F9C6E516F039A5D51FF99B2AB7A8137239BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:39:fa:87:12:7f:98:81:db:41:fc:cf:d1:11: b6:c7:4a:f7:9b:02:28:f5:2c:66:f9:4d:96:52:e9: ba:fc:e2:a7:d9:b0:6c:55:8d:85:bc:bb:0b:00:7c: 9c:cb:1f:c2:e0:f4:14:7c:8c:ba:de:6a:33:3b:12: db:d5:e5:5f:24:ab:8f:52:50:fb:18:69:4e:d3:21: e0:d3:5c:b4:6e:e8:a4:cf:9d:a2:97:64:74:be:e6: 25:0f:a7:ae:98:57:75:5d:58:8c:dd:09:c5:4c:92: c7:79:f4:e2:73:1b:c3:d3:83:ff:eb:b1:ab:a3:34: 02:b6:7c:cf:47:0a:dc:a2:9b:b1:33:91:5a:f4:a2: eb:e1:93:4b:e1:bc:48:88:52:11:27:cd:16:19:f4: 31:7a:1d:8b:24:dc:e9:da:ad:d3:5f:dd:68:74:f7: 42:ff:07:8a:fa:62:f8:73:69:fd:50:5e:2c:8a:d2: 54:7a:dc:17:4c:61:03:8d:8e:1d:2b:dc:a3:ce:2e: 73:70:5b:23:4f:5a:01:d6:dc:fd:5f:0f:22:66:80: 98:29:05:57:16:f8:5c:db:1f:c7:7f:41:8f:66:e7: 4a:9f:d7:ea:57:e5:f8:bf:ed:00:cc:24:3a:38:a0: 5e:b2:df:81:53:65:7e:2f:af:0d:03:c8:08:80:1a: 81:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B0:F9:C6:E5:16:F0:39:A5:D5:1F:F9:9B:2A:B7:A8:13:72:39:BD X509v3 Authority Key Identifier: keyid:CC:FC:49:6C:7B:17:5F:19:C9:F3:11:A3:BB:62:4A:5C:30:B3:45:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CCFC496C7B175F19C9F311A3BB624A5C30B345F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d387e85d-b185-4334-801b-49c8c8b91844/0/323430343a663963303a3a2f33322d3332203d3e20313338383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f9c0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:75:e4:a1:81:83:f0:6f:a4:0c:be:cb:5d:d7:ab:b7:20:bb: d1:ed:9a:5b:94:c9:b8:69:3a:86:54:18:95:a0:9b:b3:0d:71: 39:ea:0a:f5:9f:87:fe:eb:bd:e1:f1:b2:0b:e3:08:6f:e2:d7: a4:d2:b6:42:c7:ed:67:53:16:6b:98:0a:b4:ae:4d:a2:8a:05: ce:39:6c:58:5f:31:c4:7f:8f:5a:ef:ed:42:3d:ea:05:78:cd: 45:7b:3d:a1:74:0d:04:ee:dc:50:f2:61:e6:41:49:ff:2b:98: 7d:4e:4d:c2:97:a1:41:42:55:d9:56:de:9a:cb:5c:6e:1e:2a: e3:6c:6e:78:2d:5a:3c:2a:7f:c7:50:5c:75:08:71:a0:9e:c6: 62:d9:5b:8f:8f:1c:08:b9:2f:3e:d6:5f:32:02:14:ff:6f:c0: a5:d7:1d:9a:ce:f8:0b:3c:2e:cf:01:37:15:ad:50:64:67:83: 0c:0c:ca:38:33:fe:8b:d7:79:e9:4a:68:5e:b3:07:6c:d6:ff: be:90:84:37:ec:f0:74:6a:b7:50:14:00:8c:cc:cc:14:7c:55: 9e:17:da:d6:a9:0e:d9:2c:e0:6e:3c:2c:66:e7:14:f8:ea:14: 60:cb:b0:2a:55:01:10:1d:a0:98:7f:b2:78:c4:df:b7:2e:3f: 3e:56:5f:01 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULlBB7Igul1gaviCdrLLRTmiRlZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NGQzQ5NkM3QjE3NUYxOUM5RjMxMUEzQkI2MjRBNUMz MEIzNDVGNDAeFw0yNDExMDQwOTU1MDJaFw0yNTExMDMxMDAwMDJaMDMxMTAvBgNV BAMTKDQxQjBGOUM2RTUxNkYwMzlBNUQ1MUZGOTlCMkFCN0E4MTM3MjM5QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOfqHEn+YgdtB/M/REbbHSveb Aij1LGb5TZZS6br84qfZsGxVjYW8uwsAfJzLH8Lg9BR8jLreajM7EtvV5V8kq49S UPsYaU7TIeDTXLRu6KTPnaKXZHS+5iUPp66YV3VdWIzdCcVMksd59OJzG8PTg//r saujNAK2fM9HCtyim7EzkVr0ouvhk0vhvEiIUhEnzRYZ9DF6HYsk3OnardNf3Wh0 90L/B4r6Yvhzaf1QXiyK0lR63BdMYQONjh0r3KPOLnNwWyNPWgHW3P1fDyJmgJgp BVcW+FzbH8d/QY9m50qf1+pX5fi/7QDMJDo4oF6y34FTZX4vrw0DyAiAGoELAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUQbD5xuUW8Dml1R/5myq3qBNyOb0wHwYDVR0j BBgwFoAUzPxJbHsXXxnJ8xGju2JKXDCzRfQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Mzg3ZTg1ZC1iMTg1LTQzMzQtODAxYi00OWM4YzhiOTE4NDQvMC9DQ0ZDNDk2QzdC MTc1RjE5QzlGMzExQTNCQjYyNEE1QzMwQjM0NUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0NGQzQ5NkM3QjE3NUYxOUM5RjMxMUEzQkI2MjRBNUMzMEIz NDVGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzODdlODVkLWIxODUtNDMzNC04 MDFiLTQ5YzhjOGI5MTg0NC8wLzMyMzQzMDM0M2E2NjM5NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE+cAwDQYJKoZI hvcNAQELBQADggEBAJp15KGBg/BvpAy+y13Xq7cgu9HtmluUybhpOoZUGJWgm7MN cTnqCvWfh/7rveHxsgvjCG/i16TStkLH7WdTFmuYCrSuTaKKBc45bFhfMcR/j1rv 7UI96gV4zUV7PaF0DQTu3FDyYeZBSf8rmH1OTcKXoUFCVdlW3prLXG4eKuNsbngt Wjwqf8dQXHUIcaCexmLZW4+PHAi5Lz7WXzICFP9vwKXXHZrO+As8Ls8BNxWtUGRn gwwMyjgz/ovXeelKaF6zB2zW/76QhDfs8HRqt1AUAIzMzBR8VZ4X2tapDtks4G48 LGbnFPjqFGDLsCpVARAdoJh/snjE37cuPz5WXwE= -----END CERTIFICATE-----Generated at Mon Nov 25 02:45:37 2024 by rpki-client on console-ams.rpki-client.org