$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa File: 323430303a373530303a3a2f33322d3332203d3e203435333235.roa (raw, json) Hash identifier: x21nuMOFacoxM1n3i0ebBYoK59D8tMJoxNNKmC7nIow= Subject key identifier: 10:53:61:66:4E:62:00:83:6F:7E:EE:3D:32:A6:B7:DE:91:AD:B9:2A Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Certificate serial: 290B829365534A471B7658045E5D21E0986D5790 Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa Signing time: Thu 21 Nov 2024 02:40:53 +0000 ROA not before: Thu 21 Nov 2024 02:35:53 +0000 ROA not after: Thu 20 Nov 2025 02:40:53 +0000 asID: 45325 IP address blocks: 2400:7500::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:0b:82:93:65:53:4a:47:1b:76:58:04:5e:5d:21:e0:98:6d:57:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D Validity Not Before: Nov 21 02:35:53 2024 GMT Not After : Nov 20 02:40:53 2025 GMT Subject: CN=105361664E6200836F7EEE3D32A6B7DE91ADB92A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:67:86:1a:fb:aa:3f:37:0f:2b:ad:95:94: be:99:97:6a:26:19:05:ba:19:d2:62:81:84:73:63: a5:03:d9:5a:f5:e0:ee:5f:2f:e3:66:0f:f9:c5:dd: 7e:42:e6:f5:91:69:3f:6d:06:63:4e:54:57:64:73: 31:6d:0e:67:19:02:2f:c4:08:b1:11:51:6a:83:3b: 74:04:6e:56:20:c3:e1:54:05:e2:7c:1c:4c:a5:45: 0f:d4:16:10:d7:2f:90:55:0f:e9:36:77:6c:a7:64: 2f:1e:87:fd:44:4f:86:c9:2c:ee:87:d8:7e:40:f5: 9e:df:9f:f4:b3:66:9b:b6:09:68:8e:ea:57:09:e7: 6b:8b:ba:95:dc:53:9f:2d:3b:14:83:e7:13:5d:0e: 03:32:1c:9f:98:2c:52:ff:fa:10:8d:1f:f7:01:b0: 9f:1d:95:a0:a2:86:43:d8:29:c1:9b:f2:d9:17:4b: 9b:25:41:e3:4e:9a:46:62:bb:31:fe:83:69:5d:2e: d3:c7:d8:54:20:1a:d9:cc:fb:fa:27:e7:46:1c:6f: c3:0e:0f:30:86:f3:71:09:15:de:38:cb:83:4a:7e: d8:25:f2:e6:11:e5:ef:d1:93:b1:51:88:f7:32:03: 30:33:24:94:08:28:6f:9d:f8:c9:d7:72:73:4a:df: 40:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:53:61:66:4E:62:00:83:6F:7E:EE:3D:32:A6:B7:DE:91:AD:B9:2A X509v3 Authority Key Identifier: keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/323430303a373530303a3a2f33322d3332203d3e203435333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:7500::/32 Signature Algorithm: sha256WithRSAEncryption 9d:74:bb:fe:0c:bb:c6:30:5a:a2:66:21:76:8b:44:5b:cb:87: f5:6d:1f:ac:bf:46:c9:46:f0:64:7c:98:21:45:75:9e:b2:e2: 0e:18:53:d0:2e:41:a6:2f:44:76:6f:e2:1a:e2:a3:cf:08:03: e5:0e:f7:0d:02:65:7d:c1:e9:a8:33:a7:07:ed:be:2a:c1:89: d7:e6:62:c0:bf:4c:22:b8:59:68:70:97:58:9f:8a:6b:59:69: 7c:0b:bc:a1:3c:6b:bc:c6:ca:49:43:0a:db:4d:42:20:d7:87: 6a:49:fa:1a:98:0d:79:9c:94:6d:c3:3a:64:09:21:3f:70:9f: a8:e9:40:61:d5:a4:eb:39:36:0c:4c:08:70:2b:e3:76:67:c2: 3f:5a:0d:2d:f5:7a:31:b0:5a:02:5b:62:13:d2:55:a0:6f:e6: b6:f6:2c:47:33:ca:cc:16:be:ed:bb:dc:8d:a4:6c:8e:7a:fd: 9a:ba:9e:82:28:d1:32:9d:0e:93:9e:fb:b1:51:91:de:b5:55: fe:f7:79:8f:24:4e:a2:08:cc:64:70:4c:31:9a:9d:f4:b2:0e: 2e:0d:b4:3f:13:56:2d:60:88:a1:3b:e1:be:e7:1b:20:df:bf: 63:4a:29:99:d1:6b:9c:60:a8:f4:87:11:f8:81:33:fe:8f:c2: 03:d8:50:b5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKQuCk2VTSkcbdlgEXl0h4JhtV5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE MzhBQzI2RDAeFw0yNDExMjEwMjM1NTNaFw0yNTExMjAwMjQwNTNaMDMxMTAvBgNV BAMTKDEwNTM2MTY2NEU2MjAwODM2RjdFRUUzRDMyQTZCN0RFOTFBREI5MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6BmeGGvuqPzcPK62VlL6Zl2om GQW6GdJigYRzY6UD2Vr14O5fL+NmD/nF3X5C5vWRaT9tBmNOVFdkczFtDmcZAi/E CLERUWqDO3QEblYgw+FUBeJ8HEylRQ/UFhDXL5BVD+k2d2ynZC8eh/1ET4bJLO6H 2H5A9Z7fn/SzZpu2CWiO6lcJ52uLupXcU58tOxSD5xNdDgMyHJ+YLFL/+hCNH/cB sJ8dlaCihkPYKcGb8tkXS5slQeNOmkZiuzH+g2ldLtPH2FQgGtnM+/on50Ycb8MO DzCG83EJFd44y4NKftgl8uYR5e/Rk7FRiPcyAzAzJJQIKG+d+MnXcnNK30CbAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUEFNhZk5iAINvfu49Mqa33pGtuSowHwYDVR0j BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2 QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB QzI2RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04 ZTk3LWM1NWY2OGUwNTg5YS8wLzMyMzQzMDMwM2EzNzM1MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAHUAMA0GCSqGSIb3 DQEBCwUAA4IBAQCddLv+DLvGMFqiZiF2i0Rby4f1bR+sv0bJRvBkfJghRXWesuIO GFPQLkGmL0R2b+Ia4qPPCAPlDvcNAmV9wemoM6cH7b4qwYnX5mLAv0wiuFlocJdY n4prWWl8C7yhPGu8xspJQwrbTUIg14dqSfoamA15nJRtwzpkCSE/cJ+o6UBh1aTr OTYMTAhwK+N2Z8I/Wg0t9XoxsFoCW2IT0lWgb+a29ixHM8rMFr7tu9yNpGyOev2a up6CKNEynQ6TnvuxUZHetVX+93mPJE6iCMxkcEwxmp30sg4uDbQ/E1YtYIihO+G+ 5xsg379jSimZ0WucYKj0hxH4gTP+j8ID2FC1 -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org