$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa File: 323430343a663630303a3a2f33322d3438203d3e203234323037.roa (raw, json) Hash identifier: 5jDpL7QEjYPKSYMByhJFIXLiqXsDF2veAII1Qgn0vew= Subject key identifier: 1C:DB:42:2B:F6:AB:4C:97:58:CA:7B:7A:A4:68:2A:C3:58:94:5C:0B Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 6977A5BF33B64CFC3E93C3F09F71F185D28FCE91 Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa Signing time: Wed 13 Mar 2024 03:27:28 +0000 ROA not before: Wed 13 Mar 2024 03:22:28 +0000 ROA not after: Wed 12 Mar 2025 03:27:28 +0000 asID: 24207 IP address blocks: 2404:f600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:77:a5:bf:33:b6:4c:fc:3e:93:c3:f0:9f:71:f1:85:d2:8f:ce:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Mar 13 03:22:28 2024 GMT Not After : Mar 12 03:27:28 2025 GMT Subject: CN=1CDB422BF6AB4C9758CA7B7AA4682AC358945C0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:36:72:9c:d6:e1:07:6e:af:0f:81:c3:7f:b1: 7d:d4:af:61:53:2c:11:67:44:9a:54:ce:65:cb:a5: 33:a2:c9:7d:88:52:1c:94:c9:2d:a5:1b:15:5c:78: cf:cd:b0:a8:7b:25:2d:db:eb:4c:8b:c1:1c:55:d6: bd:77:a6:ba:7d:34:b8:ea:75:f3:0a:18:c3:87:cc: e7:6b:84:5e:ca:25:a2:40:89:00:97:66:46:75:78: 8c:e9:19:70:15:c9:03:a1:65:0e:8d:6a:a7:5f:d4: da:59:c3:67:50:44:4e:05:4b:d0:4d:a6:38:08:c8: ba:f6:f2:6a:62:e5:b1:78:a8:75:02:bc:20:29:05: 65:11:8f:a0:3e:b4:d6:4a:7a:96:34:d8:76:a9:e3: fb:fe:4d:a4:1d:bb:50:59:25:4d:4e:4e:4b:e9:b0: 97:d5:9d:e6:14:09:35:23:20:3e:5b:fe:76:cd:e3: ff:10:d2:fe:c9:44:98:ce:88:41:d2:9d:37:a0:8b: 4b:4e:c6:7d:72:28:3c:72:73:ac:b2:f3:bf:71:51: 81:7a:7f:45:22:4a:f5:93:c2:77:fb:0a:93:f8:ba: fe:4c:4e:ad:2e:3e:37:8a:11:09:ea:24:a8:50:da: 50:31:1b:7c:e0:5b:11:ea:71:cc:8a:4e:7f:90:8c: 79:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DB:42:2B:F6:AB:4C:97:58:CA:7B:7A:A4:68:2A:C3:58:94:5C:0B X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f600::/32 Signature Algorithm: sha256WithRSAEncryption 25:1d:57:7c:30:66:09:3a:80:93:23:90:a0:c1:0a:40:21:b0: 11:1f:0c:40:9a:f9:01:ac:72:d3:34:0e:1e:10:33:aa:a2:c1: 65:6b:dd:ba:01:79:38:57:49:a7:7b:6e:96:b5:b3:01:5a:0d: 9d:5b:e3:b7:9d:79:3a:72:a2:42:15:2d:3d:0e:17:07:78:b1: 45:47:9a:2a:29:76:71:a6:66:e0:37:1c:44:fc:c0:b7:13:ef: 7e:52:17:f2:05:85:8a:a5:21:9d:cd:4b:7b:b3:83:22:c4:6b: 37:3a:06:18:1c:57:81:e9:38:d4:1f:38:63:96:fe:3e:ff:b0: 07:87:a2:a1:68:1d:31:47:4f:e0:86:27:09:da:ee:67:67:d0: 38:81:5d:d7:64:38:8e:cd:5f:db:fe:a6:df:ef:14:84:e9:3f: 9b:ea:88:4a:39:78:4a:22:a5:eb:49:23:18:61:3f:59:0d:54: 3a:dc:02:f7:10:2b:5e:60:83:5d:52:80:07:5c:e8:97:31:cb: 53:c6:77:f9:00:cf:bd:ec:25:3b:ef:46:c0:a3:f6:71:61:44: 11:23:3b:a5:e6:b3:90:95:65:be:1b:2c:74:f9:fb:ec:3f:51: 7b:3c:be:d3:52:21:49:c4:98:7e:8b:b5:cf:9f:b4:d7:d6:a5: c5:01:7f:60 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUaXelvzO2TPw+k8Pwn3HxhdKPzpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNDAzMTMwMzIyMjhaFw0yNTAzMTIwMzI3MjhaMDMxMTAvBgNV BAMTKDFDREI0MjJCRjZBQjRDOTc1OENBN0I3QUE0NjgyQUMzNTg5NDVDMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlNnKc1uEHbq8PgcN/sX3Ur2FT LBFnRJpUzmXLpTOiyX2IUhyUyS2lGxVceM/NsKh7JS3b60yLwRxV1r13prp9NLjq dfMKGMOHzOdrhF7KJaJAiQCXZkZ1eIzpGXAVyQOhZQ6Naqdf1NpZw2dQRE4FS9BN pjgIyLr28mpi5bF4qHUCvCApBWURj6A+tNZKepY02Hap4/v+TaQdu1BZJU1OTkvp sJfVneYUCTUjID5b/nbN4/8Q0v7JRJjOiEHSnTegi0tOxn1yKDxyc6yy879xUYF6 f0UiSvWTwnf7CpP4uv5MTq0uPjeKEQnqJKhQ2lAxG3zgWxHqccyKTn+QjHnvAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUHNtCK/arTJdYynt6pGgqw1iUXAswHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzQzMDM0M2E2NjM2MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBPYAMA0GCSqGSIb3 DQEBCwUAA4IBAQAlHVd8MGYJOoCTI5CgwQpAIbARHwxAmvkBrHLTNA4eEDOqosFl a926AXk4V0mne26WtbMBWg2dW+O3nXk6cqJCFS09DhcHeLFFR5oqKXZxpmbgNxxE /MC3E+9+UhfyBYWKpSGdzUt7s4MixGs3OgYYHFeB6TjUHzhjlv4+/7AHh6KhaB0x R0/ghicJ2u5nZ9A4gV3XZDiOzV/b/qbf7xSE6T+b6ohKOXhKIqXrSSMYYT9ZDVQ6 3AL3ECteYINdUoAHXOiXMctTxnf5AM+97CU770bAo/ZxYUQRIzul5rOQlWW+Gyx0 +fvsP1F7PL7TUiFJxJh+i7XPn7TX1qXFAX9g -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org