$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa File: 323430313a643934303a3a2f33322d3332203d3e203234353330.roa (raw, json) Hash identifier: S1cBeAs22M4tp80YuorgB0+AcJDw3MCEnBRK/ppPOnI= Subject key identifier: 28:D2:16:F1:14:5B:06:82:2F:34:7D:15:7F:B8:C1:7C:A4:63:21:0F Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 7FB20BC96AA659E3027F473B97E923B60B4D171D Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa Signing time: Fri 19 Jan 2024 07:01:16 +0000 ROA not before: Fri 19 Jan 2024 06:56:16 +0000 ROA not after: Fri 17 Jan 2025 07:01:16 +0000 asID: 24530 IP address blocks: 2401:d940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b2:0b:c9:6a:a6:59:e3:02:7f:47:3b:97:e9:23:b6:0b:4d:17:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Jan 19 06:56:16 2024 GMT Not After : Jan 17 07:01:16 2025 GMT Subject: CN=28D216F1145B06822F347D157FB8C17CA463210F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c5:94:23:0d:a0:04:bd:98:b0:d2:87:3c:9f: e0:82:6a:f4:cd:4b:04:50:40:b5:8f:91:d1:cf:b9: b2:07:68:89:1a:c9:14:84:1f:a3:98:aa:8b:ca:8f: 2a:3f:70:ea:74:11:2e:2a:f2:32:8b:b0:f8:04:48: e1:57:81:4f:5d:68:40:40:19:1c:21:85:8e:18:e8: 30:6a:e8:89:13:54:36:7f:35:b4:fc:c8:34:cd:33: 8a:43:0a:ce:b6:6b:43:5d:2c:da:aa:81:2d:3f:c4: 2a:f1:8d:89:58:11:73:46:6e:e3:17:d8:8a:68:cc: 81:a8:ab:21:a0:bc:96:2a:2b:c4:03:8c:13:39:57: c4:99:0c:9b:97:38:7b:44:de:d0:03:93:62:72:b5: 88:72:2d:c9:ae:0c:fd:93:3b:4b:3f:6f:11:bf:ec: 87:39:a5:b5:e5:25:be:fd:e5:60:31:ff:bd:7e:12: 08:a7:df:1c:26:8b:a8:a6:10:12:a9:6a:7b:14:f1: b4:f7:80:a0:e8:2c:80:09:ab:c1:03:44:ee:f9:7f: d2:e3:de:1a:e7:4e:e9:3a:44:e7:42:63:db:3b:4d: f0:0c:43:42:85:14:d6:d3:2f:3e:f4:96:a1:fc:0c: 1f:f2:bb:90:ab:b4:2f:15:0d:c1:d9:b7:82:57:a3: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D2:16:F1:14:5B:06:82:2F:34:7D:15:7F:B8:C1:7C:A4:63:21:0F X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:d940::/32 Signature Algorithm: sha256WithRSAEncryption 13:ba:d1:54:33:08:21:6e:4d:69:2e:b7:51:1a:0e:cc:72:78: 0e:96:4d:19:01:12:a1:fa:30:95:66:1c:b8:2b:32:b2:a0:1d: 6e:33:3f:78:fb:ac:cb:c7:2b:10:73:ab:45:4a:36:21:cd:02: 60:d6:de:cb:04:aa:85:52:51:93:d6:5d:8d:24:b1:cd:5e:da: 1d:33:13:7c:cc:ac:5b:e9:87:7b:c8:32:25:1f:f1:e8:be:46: 0b:0b:33:84:56:3b:f8:6d:fb:7f:22:a7:1a:6a:69:40:40:8a: 60:e3:cc:6b:a4:83:24:4a:a3:08:e6:0d:f5:af:9a:b8:79:78: c1:7f:5c:a4:f8:01:26:60:73:f6:7e:70:0a:0a:5f:06:9b:99: df:40:69:5b:1c:4a:dc:07:07:75:19:eb:63:48:51:f0:78:87: 60:65:d8:bf:3f:00:fc:b5:0c:57:7f:28:c1:d3:72:a6:6d:ea: aa:ad:04:8b:21:f3:c9:fa:06:64:96:1e:ba:00:e5:f8:5d:4a: 78:06:bc:ab:38:a9:2b:8a:96:ed:37:a1:62:e6:06:38:6b:54: 86:e2:c3:60:07:60:be:7a:c4:e1:29:d4:9f:01:1c:06:fb:07: 51:75:2a:f8:91:50:00:0f:1e:38:8a:7e:e2:ea:31:39:cb:34: f4:bf:3a:fe -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUf7ILyWqmWeMCf0c7l+kjtgtNFx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNDAxMTkwNjU2MTZaFw0yNTAxMTcwNzAxMTZaMDMxMTAvBgNV BAMTKDI4RDIxNkYxMTQ1QjA2ODIyRjM0N0QxNTdGQjhDMTdDQTQ2MzIxMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMxZQjDaAEvZiw0oc8n+CCavTN SwRQQLWPkdHPubIHaIkayRSEH6OYqovKjyo/cOp0ES4q8jKLsPgESOFXgU9daEBA GRwhhY4Y6DBq6IkTVDZ/NbT8yDTNM4pDCs62a0NdLNqqgS0/xCrxjYlYEXNGbuMX 2IpozIGoqyGgvJYqK8QDjBM5V8SZDJuXOHtE3tADk2JytYhyLcmuDP2TO0s/bxG/ 7Ic5pbXlJb795WAx/71+Egin3xwmi6imEBKpansU8bT3gKDoLIAJq8EDRO75f9Lj 3hrnTuk6ROdCY9s7TfAMQ0KFFNbTLz70lqH8DB/yu5CrtC8VDcHZt4JXo9HhAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUKNIW8RRbBoIvNH0Vf7jBfKRjIQ8wHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMyMzQzMDMxM2E2NDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzNTMzMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAdlAMA0GCSqGSIb3 DQEBCwUAA4IBAQATutFUMwghbk1pLrdRGg7McngOlk0ZARKh+jCVZhy4KzKyoB1u Mz94+6zLxysQc6tFSjYhzQJg1t7LBKqFUlGT1l2NJLHNXtodMxN8zKxb6Yd7yDIl H/HovkYLCzOEVjv4bft/IqcaamlAQIpg48xrpIMkSqMI5g31r5q4eXjBf1yk+AEm YHP2fnAKCl8Gm5nfQGlbHErcBwd1GetjSFHweIdgZdi/PwD8tQxXfyjB03Kmbeqq rQSLIfPJ+gZklh66AOX4XUp4BryrOKkripbtN6Fi5gY4a1SG4sNgB2C+esThKdSf ARwG+wdRdSr4kVAADx44in7i6jE5yzT0vzr+ -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:33 2024 by rpki-client on console-ams.rpki-client.org