$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa File: 323430373a366434303a3a2f33322d3438203d3e203538383230.roa (raw, json) Hash identifier: QQTvRd5IasuSE+h3OUL3w8r10ZtDfAA2ShDiaukAWm4= Subject key identifier: EF:F9:81:14:6D:50:C5:5C:BE:36:8D:20:83:F5:34:DE:3E:F6:14:CC Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Certificate serial: 5BE93BE37BBA8224A098923BDBDA1E6476B9BDC0 Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:00:31 +0000 ROA not before: Thu 14 Mar 2024 15:55:31 +0000 ROA not after: Thu 13 Mar 2025 16:00:31 +0000 asID: 58820 IP address blocks: 2407:6d40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 13:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e9:3b:e3:7b:ba:82:24:a0:98:92:3b:db:da:1e:64:76:b9:bd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Validity Not Before: Mar 14 15:55:31 2024 GMT Not After : Mar 13 16:00:31 2025 GMT Subject: CN=EFF981146D50C55CBE368D2083F534DE3EF614CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:3c:f6:de:de:38:df:14:f5:b2:f5:13:ff:62: ce:ca:ad:59:1f:14:7c:6e:69:3b:38:b1:c1:c0:b7: 10:09:d9:a5:43:6e:89:52:a6:22:11:f0:8e:d3:ed: 8a:ed:18:a3:af:d8:fc:20:59:11:81:94:66:29:cd: ef:b9:c3:61:0a:bc:25:4f:43:48:e2:0a:ac:3c:07: 02:09:f8:46:07:85:92:2a:0a:ca:a2:17:09:e4:ca: 62:64:aa:4d:18:03:d5:29:0b:12:7b:20:e4:06:f2: 40:c8:91:69:29:3b:0b:e2:a0:35:8b:99:c2:7f:d7: 87:07:44:cd:6b:f8:86:37:ec:bb:ad:66:6e:fa:6f: 60:79:4c:41:85:c2:b2:a5:60:a5:60:25:3f:c4:be: 5c:d0:18:4e:19:2c:2a:b9:f1:1a:a1:90:83:4a:42: 7d:89:60:a4:e6:42:42:4a:6b:d2:d1:6e:ef:0f:37: ea:d9:53:65:eb:53:86:55:35:18:73:01:79:2d:60: a1:17:0e:26:45:f9:d6:5f:15:b6:43:2e:a5:13:c3: 59:a0:b5:41:d3:e2:4e:99:b8:03:63:b5:11:04:3b: 33:6c:2a:cc:36:75:31:21:38:34:87:7f:9d:b5:63: 6e:4f:08:6d:c2:4f:40:7b:98:8e:02:57:4c:29:e5: 16:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F9:81:14:6D:50:C5:5C:BE:36:8D:20:83:F5:34:DE:3E:F6:14:CC X509v3 Authority Key Identifier: keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 06:f8:bd:cb:f8:c3:54:bd:25:1b:8f:b1:71:be:2d:86:d8:20: 4c:c2:4f:82:a1:99:74:8d:a5:26:c8:af:2f:f1:6d:5a:c9:e4: 09:62:d0:4d:cb:0a:a1:aa:75:31:cd:d0:80:1c:e2:fd:6f:3a: c8:31:e3:d7:f2:61:52:8e:34:64:2d:c9:b7:94:75:4c:dd:08: 97:40:28:3a:62:de:58:ee:c7:c9:d2:08:1c:32:29:dd:24:18: 76:4a:3a:61:7f:82:2e:61:eb:4d:99:c8:f2:a2:50:67:5c:74: 8e:14:36:fb:de:0e:20:aa:7f:0b:26:56:bb:45:a2:25:33:5a: bd:f0:c4:35:c5:1d:f1:d9:2c:bb:7d:ff:09:88:50:12:27:2b: 28:18:9c:c3:c9:17:48:62:f3:68:b4:9a:2b:c0:ef:60:47:69: ed:ca:2e:79:3c:32:9e:0b:b2:a0:14:19:ca:5b:45:ca:f7:6c: 58:55:3d:15:42:70:32:e1:46:fa:01:8e:99:ef:fd:ad:04:a7: dc:87:19:34:2b:42:1b:be:63:89:8b:be:44:6b:1a:f9:2d:cb: 9c:ac:0b:6e:5a:3d:4e:76:fa:7d:3e:57:91:76:f2:2a:da:e6: bc:b6:b7:14:59:85:e1:96:90:0a:e5:59:09:0d:db:0a:c6:ff: 2d:81:1c:a8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUW+k743u6giSgmJI729oeZHa5vcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdF NjkxM0M5NjAeFw0yNDAzMTQxNTU1MzFaFw0yNTAzMTMxNjAwMzFaMDMxMTAvBgNV BAMTKEVGRjk4MTE0NkQ1MEM1NUNCRTM2OEQyMDgzRjUzNERFM0VGNjE0Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2PPbe3jjfFPWy9RP/Ys7KrVkf FHxuaTs4scHAtxAJ2aVDbolSpiIR8I7T7YrtGKOv2PwgWRGBlGYpze+5w2EKvCVP Q0jiCqw8BwIJ+EYHhZIqCsqiFwnkymJkqk0YA9UpCxJ7IOQG8kDIkWkpOwvioDWL mcJ/14cHRM1r+IY37LutZm76b2B5TEGFwrKlYKVgJT/EvlzQGE4ZLCq58RqhkINK Qn2JYKTmQkJKa9LRbu8PN+rZU2XrU4ZVNRhzAXktYKEXDiZF+dZfFbZDLqUTw1mg tUHT4k6ZuANjtREEOzNsKsw2dTEhODSHf521Y25PCG3CT0B7mI4CV0wp5RYxAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU7/mBFG1QxVy+No0gg/U03j72FMwwHwYDVR0j BBgwFoAUAkbdFK9o9eVRKr2I0dt1B+aRPJYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMC8wMjQ2REQxNEFG NjhGNUU1NTEyQUJEODhEMURCNzUwN0U2OTEzQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdFNjkx M0M5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04 ODZhLThlMjJhMzI2MTFmOC8wLzMyMzQzMDM3M2EzNjY0MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB21AMA0GCSqGSIb3 DQEBCwUAA4IBAQAG+L3L+MNUvSUbj7Fxvi2G2CBMwk+CoZl0jaUmyK8v8W1ayeQJ YtBNywqhqnUxzdCAHOL9bzrIMePX8mFSjjRkLcm3lHVM3QiXQCg6Yt5Y7sfJ0ggc MindJBh2Sjphf4IuYetNmcjyolBnXHSOFDb73g4gqn8LJla7RaIlM1q98MQ1xR3x 2Sy7ff8JiFASJysoGJzDyRdIYvNotJorwO9gR2ntyi55PDKeC7KgFBnKW0XK92xY VT0VQnAy4Ub6AY6Z7/2tBKfchxk0K0IbvmOJi75Eaxr5LcucrAtuWj1Odvp9PleR dvIq2ua8trcUWYXhlpAK5VkJDdsKxv8tgRyo -----END CERTIFICATE-----Generated at Tue May 7 11:40:59 2024 by rpki-client on console-ams.rpki-client.org