$ rpki-client -vvf repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/323430363a323134303a3a2f33322d3438203d3e203234323032.roa File: 323430363a323134303a3a2f33322d3438203d3e203234323032.roa (raw, json) Hash identifier: s3mGhQ5lVJzOCXJQstC2MywVoNlmuMjrSNnmM2hWJAc= Subject key identifier: 04:1A:49:F9:E3:A2:EF:76:D4:1E:16:63:92:51:D4:06:5D:80:1B:8F Certificate issuer: /CN=F959D883144B0BFBE80E98C04EE6B6F6953F074C Certificate serial: 6C7004BAF69019C492F3929427CBC3CD3B1ED14F Authority key identifier: F9:59:D8:83:14:4B:0B:FB:E8:0E:98:C0:4E:E6:B6:F6:95:3F:07:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F959D883144B0BFBE80E98C04EE6B6F6953F074C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/323430363a323134303a3a2f33322d3438203d3e203234323032.roa Signing time: Sun 24 Dec 2023 04:14:51 +0000 ROA not before: Sun 24 Dec 2023 04:09:51 +0000 ROA not after: Sun 22 Dec 2024 04:14:51 +0000 asID: 24202 IP address blocks: 2406:2140::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/F959D883144B0BFBE80E98C04EE6B6F6953F074C.crl rsync://repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/F959D883144B0BFBE80E98C04EE6B6F6953F074C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F959D883144B0BFBE80E98C04EE6B6F6953F074C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:70:04:ba:f6:90:19:c4:92:f3:92:94:27:cb:c3:cd:3b:1e:d1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F959D883144B0BFBE80E98C04EE6B6F6953F074C Validity Not Before: Dec 24 04:09:51 2023 GMT Not After : Dec 22 04:14:51 2024 GMT Subject: CN=041A49F9E3A2EF76D41E16639251D4065D801B8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:95:2c:90:8c:4a:30:80:f0:b8:d3:12:39:c5: 86:35:9d:23:91:47:7f:9d:8e:4a:f7:56:87:ec:d3: 3e:98:38:10:2e:0b:bf:cf:55:fc:f2:8b:b9:c3:df: fa:37:fa:79:b2:14:0b:e1:9a:60:1b:48:ed:dd:f7: a8:0a:dd:f0:62:57:18:db:14:06:ff:07:34:8b:7c: f2:eb:f7:99:36:3d:48:f9:6f:dc:ad:8b:13:da:c8: ff:0c:99:3c:eb:b7:2d:6b:50:1c:e9:cf:a2:7b:8e: d6:5e:3a:9f:12:8f:f4:02:7a:78:45:c6:cb:0d:eb: 20:0c:7c:0b:7f:92:c7:3e:a0:f6:a3:cc:34:47:5e: d5:54:d5:5b:17:9d:73:23:75:33:39:ea:eb:87:48: 1e:c6:82:a2:9c:61:dc:44:50:3d:70:a9:fa:a1:01: e2:95:fc:09:24:f8:d1:c1:c8:b1:a2:03:6a:c7:bc: 58:8c:43:c4:94:a8:19:5f:43:19:2e:79:4f:b8:85: 46:c5:2b:ad:a4:28:0e:86:ad:85:e2:6f:cb:89:ac: 7e:45:c8:c9:11:c2:cd:e0:98:b9:49:b8:03:b8:e2: 17:96:9b:2e:6d:e4:ed:79:e1:67:50:79:22:50:c1: 0b:db:b4:a5:94:f9:4d:b0:ca:59:bb:25:c6:9f:85: 98:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1A:49:F9:E3:A2:EF:76:D4:1E:16:63:92:51:D4:06:5D:80:1B:8F X509v3 Authority Key Identifier: keyid:F9:59:D8:83:14:4B:0B:FB:E8:0E:98:C0:4E:E6:B6:F6:95:3F:07:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/F959D883144B0BFBE80E98C04EE6B6F6953F074C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F959D883144B0BFBE80E98C04EE6B6F6953F074C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/323430363a323134303a3a2f33322d3438203d3e203234323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:2140::/32 Signature Algorithm: sha256WithRSAEncryption 51:be:c5:2f:82:03:49:84:1d:fb:7d:ad:2a:52:ec:f7:a8:2f: fb:42:5f:c6:be:45:99:d1:01:d0:d3:44:3b:e6:21:69:79:09: 20:aa:64:11:fe:80:1f:c6:ef:ec:b5:f3:9d:88:42:44:44:98: 77:3c:c3:b7:78:36:9f:66:0e:75:30:84:b3:1a:10:70:49:cd: ad:5c:72:14:0e:47:87:24:c2:20:05:79:36:4c:23:b8:28:f2: a6:9f:f2:b7:e0:ef:f7:ab:c7:6e:f3:3c:79:5f:87:fc:25:37: 94:05:95:5b:37:00:90:52:52:95:5f:f9:09:99:05:11:2b:70: 56:67:7b:04:cb:9b:95:f1:74:d9:8a:ab:e7:2f:03:b0:95:97: 1d:fc:f9:f4:a6:1e:b4:0b:29:4d:af:ea:ed:f3:af:a9:39:84: 82:98:a0:47:d7:01:6f:70:75:07:21:0a:44:24:ae:c3:7f:54: c2:0c:ff:b3:b7:87:1a:fd:2c:82:20:8e:b3:fb:d1:39:b3:6c: 61:b3:a1:48:93:d9:9e:16:0c:51:08:5c:71:50:6a:c6:09:3a: b0:22:42:ba:e3:f5:90:56:d5:87:35:d1:e9:6d:af:b6:49:8b: 18:db:05:8e:27:a4:30:ed:0b:5c:88:74:2e:d8:0f:ba:91:f3: c5:ac:c9:dc -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUbHAEuvaQGcSS85KUJ8vDzTse0U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjk1OUQ4ODMxNDRCMEJGQkU4MEU5OEMwNEVFNkI2RjY5 NTNGMDc0QzAeFw0yMzEyMjQwNDA5NTFaFw0yNDEyMjIwNDE0NTFaMDMxMTAvBgNV BAMTKDA0MUE0OUY5RTNBMkVGNzZENDFFMTY2MzkyNTFENDA2NUQ4MDFCOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCglSyQjEowgPC40xI5xYY1nSOR R3+djkr3Vofs0z6YOBAuC7/PVfzyi7nD3/o3+nmyFAvhmmAbSO3d96gK3fBiVxjb FAb/BzSLfPLr95k2PUj5b9ytixPayP8MmTzrty1rUBzpz6J7jtZeOp8Sj/QCenhF xssN6yAMfAt/ksc+oPajzDRHXtVU1VsXnXMjdTM56uuHSB7GgqKcYdxEUD1wqfqh AeKV/Akk+NHByLGiA2rHvFiMQ8SUqBlfQxkueU+4hUbFK62kKA6GrYXib8uJrH5F yMkRws3gmLlJuAO44heWmy5t5O154WdQeSJQwQvbtKWU+U2wylm7JcafhZhNAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUBBpJ+eOi73bUHhZjklHUBl2AG48wHwYDVR0j BBgwFoAU+VnYgxRLC/voDpjATua29pU/B0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWYwMmE4OS03ZWU4LTRhODMtODAwNC0yMzRkOTE0YTBmZDQvMC9GOTU5RDg4MzE0 NEIwQkZCRTgwRTk4QzA0RUU2QjZGNjk1M0YwNzRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjk1OUQ4ODMxNDRCMEJGQkU4MEU5OEMwNEVFNkI2RjY5NTNG MDc0Qy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxZjAyYTg5LTdlZTgtNGE4My04 MDA0LTIzNGQ5MTRhMGZkNC8wLzMyMzQzMDM2M2EzMjMxMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBiFAMA0GCSqGSIb3 DQEBCwUAA4IBAQBRvsUvggNJhB37fa0qUuz3qC/7Ql/GvkWZ0QHQ00Q75iFpeQkg qmQR/oAfxu/stfOdiEJERJh3PMO3eDafZg51MISzGhBwSc2tXHIUDkeHJMIgBXk2 TCO4KPKmn/K34O/3q8du8zx5X4f8JTeUBZVbNwCQUlKVX/kJmQURK3BWZ3sEy5uV 8XTZiqvnLwOwlZcd/Pn0ph60CylNr+rt86+pOYSCmKBH1wFvcHUHIQpEJK7Df1TC DP+zt4ca/SyCII6z+9E5s2xhs6FIk9meFgxRCFxxUGrGCTqwIkK64/WQVtWHNdHp ba+2SYsY2wWOJ6Qw7QtciHQu2A+6kfPFrMnc -----END CERTIFICATE-----Generated at Wed May 1 01:36:44 2024 by rpki-client on console-ams.rpki-client.org