$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/323430363a623930303a3a2f33322d3332203d3e203436303233.roa File: 323430363a623930303a3a2f33322d3332203d3e203436303233.roa (raw, json) Hash identifier: fICXoIdRtUfXCIoa/esJhK0+nrZ+LsNflSbl138FaIo= Subject key identifier: BD:4F:FE:F5:15:09:85:5C:4A:03:8C:06:45:C2:A5:81:B8:97:C2:5B Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 4197F622E50A6CAA20D161CD7C6E51B976C5231A Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/323430363a623930303a3a2f33322d3332203d3e203436303233.roa Signing time: Mon 12 Aug 2024 15:37:34 +0000 ROA not before: Mon 12 Aug 2024 15:32:34 +0000 ROA not after: Mon 11 Aug 2025 15:37:34 +0000 asID: 46023 IP address blocks: 2406:b900::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:97:f6:22:e5:0a:6c:aa:20:d1:61:cd:7c:6e:51:b9:76:c5:23:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Aug 12 15:32:34 2024 GMT Not After : Aug 11 15:37:34 2025 GMT Subject: CN=BD4FFEF51509855C4A038C0645C2A581B897C25B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6d:6b:6e:68:f8:30:54:ec:b2:2c:31:32:de: e5:62:a0:d7:62:5d:dc:e9:66:f8:05:70:18:dd:92: 36:99:b7:50:b4:6e:00:10:7a:68:13:45:c3:ef:03: 7d:28:a2:d3:eb:4f:af:db:c0:90:30:d6:05:98:fe: 94:99:c0:ee:ca:b0:e3:75:f0:1a:1c:15:57:c1:7a: 51:9b:b5:83:f6:35:dd:0a:11:75:02:58:b9:7d:1c: ac:97:35:08:bc:e3:8e:d3:c5:59:83:1b:2b:37:bc: 9f:3c:7d:40:53:9a:84:4f:d7:54:c9:c8:f1:29:9d: 68:b4:be:19:0d:30:94:16:53:bf:d4:2e:32:3b:d8: c8:8a:ee:6d:ba:b8:25:4d:63:e2:e5:6f:0e:60:10: c9:5b:92:7f:18:8b:23:02:22:5b:9b:b0:10:a2:7e: b9:dd:12:34:8d:90:ca:4a:b3:65:f6:a2:2d:30:c0: ee:ae:0b:dd:f5:9b:98:56:89:62:ec:98:59:c5:00: 60:69:cb:a6:2e:84:6b:7b:e5:be:26:4e:60:8e:52: 45:25:eb:28:96:01:7a:a6:56:80:85:ae:7a:b2:11: 70:06:0a:95:94:2c:65:02:7e:f1:20:e9:e1:1b:36: e1:4e:38:80:c1:14:7a:68:85:fb:61:49:35:55:a9: 69:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4F:FE:F5:15:09:85:5C:4A:03:8C:06:45:C2:A5:81:B8:97:C2:5B X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/323430363a623930303a3a2f33322d3332203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:b900::/32 Signature Algorithm: sha256WithRSAEncryption 4d:40:66:0f:f6:88:96:57:ff:e7:b6:26:77:78:87:87:fd:1a: 49:db:8a:89:02:56:e0:1e:6b:68:03:4c:5d:35:73:b8:a1:0c: cb:e2:d9:c6:45:11:c4:ff:2c:d8:dd:74:1d:95:12:7a:a7:fd: 44:84:3b:49:ce:fd:22:03:12:a7:56:f8:e3:4a:b4:a4:10:3f: ee:52:3d:ae:67:4b:42:6a:cb:c7:82:fe:ee:25:68:21:95:10: f8:29:85:2b:67:e8:ff:8c:14:f8:9f:a3:9c:56:9d:68:a2:f9: 17:4a:be:74:d4:9e:b2:b9:e5:7b:23:e2:13:f6:e1:ec:b3:d2: c9:1c:76:98:68:4f:c2:14:9f:e8:c4:2c:74:7b:ea:f5:33:9f: b6:ee:cf:4a:d4:73:40:13:f4:0a:56:d0:6f:b6:d9:df:77:d5: da:e9:e4:43:d2:f4:21:32:44:4b:03:b3:46:ce:2a:41:38:3b: c5:57:f7:db:d7:29:c0:e6:58:94:2e:ea:0d:8f:9a:37:50:76: 89:c3:54:00:1c:97:56:d1:3f:ea:20:72:04:f0:85:2b:c2:0d: 51:72:27:f2:a9:46:8f:20:28:f3:1b:dc:b6:af:2d:94:3f:06: c1:75:7a:c7:05:28:43:d6:83:66:78:49:82:37:39:ba:5c:b7: 43:d4:71:07 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUQZf2IuUKbKog0WHNfG5RuXbFIxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDA4MTIxNTMyMzRaFw0yNTA4MTExNTM3MzRaMDMxMTAvBgNV BAMTKEJENEZGRUY1MTUwOTg1NUM0QTAzOEMwNjQ1QzJBNTgxQjg5N0MyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9bWtuaPgwVOyyLDEy3uVioNdi XdzpZvgFcBjdkjaZt1C0bgAQemgTRcPvA30ootPrT6/bwJAw1gWY/pSZwO7KsON1 8BocFVfBelGbtYP2Nd0KEXUCWLl9HKyXNQi8447TxVmDGys3vJ88fUBTmoRP11TJ yPEpnWi0vhkNMJQWU7/ULjI72MiK7m26uCVNY+Llbw5gEMlbkn8YiyMCIlubsBCi frndEjSNkMpKs2X2oi0wwO6uC931m5hWiWLsmFnFAGBpy6YuhGt75b4mTmCOUkUl 6yiWAXqmVoCFrnqyEXAGCpWULGUCfvEg6eEbNuFOOIDBFHpohfthSTVVqWnlAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUvU/+9RUJhVxKA4wGRcKlgbiXwlswHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMyMzQzMDM2M2E2MjM5MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBrkAMA0GCSqGSIb3 DQEBCwUAA4IBAQBNQGYP9oiWV//ntiZ3eIeH/RpJ24qJAlbgHmtoA0xdNXO4oQzL 4tnGRRHE/yzY3XQdlRJ6p/1EhDtJzv0iAxKnVvjjSrSkED/uUj2uZ0tCasvHgv7u JWghlRD4KYUrZ+j/jBT4n6OcVp1oovkXSr501J6yueV7I+IT9uHss9LJHHaYaE/C FJ/oxCx0e+r1M5+27s9K1HNAE/QKVtBvttnfd9Xa6eRD0vQhMkRLA7NGzipBODvF V/fb1ynA5liULuoNj5o3UHaJw1QAHJdW0T/qIHIE8IUrwg1RcifyqUaPICjzG9y2 ry2UPwbBdXrHBShD1oNmeEmCNzm6XLdD1HEH -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org