$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa File: 323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa (raw, json) Hash identifier: cavEBNoqdWm4+qj32f5KrdV3SRB82I9b1uyElL7U3P4= Subject key identifier: B1:7A:2E:17:01:F0:E8:23:1A:6D:AF:87:04:48:23:69:1F:73:CF:14 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 24C8D45DAABCB8CD5EE17F2580419BD976902ABF Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa Signing time: Fri 19 Jan 2024 07:01:17 +0000 ROA not before: Fri 19 Jan 2024 06:56:17 +0000 ROA not after: Fri 17 Jan 2025 07:01:17 +0000 asID: 24530 IP address blocks: 2401:d940:e0ff::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c8:d4:5d:aa:bc:b8:cd:5e:e1:7f:25:80:41:9b:d9:76:90:2a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Jan 19 06:56:17 2024 GMT Not After : Jan 17 07:01:17 2025 GMT Subject: CN=B17A2E1701F0E8231A6DAF87044823691F73CF14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:aa:4e:cd:b7:e4:e1:10:03:4f:92:57:37:a2: d2:64:b3:c1:c0:31:50:ff:cf:46:5a:55:c3:87:32: bd:d7:ae:b2:a8:33:98:16:13:f3:90:f3:31:83:83: 90:1b:46:27:0e:82:68:e0:1e:03:4a:c6:e7:03:c2: ea:2b:b1:01:60:91:80:b6:dc:57:ae:94:68:35:41: 88:72:a0:68:16:06:b1:8e:15:83:05:8d:2f:e7:32: fb:f7:22:07:f9:31:29:9d:1c:8d:e5:3b:9b:dd:fc: 35:e0:c9:26:30:b6:71:b3:8b:e2:cb:6a:3d:88:3f: 85:b3:68:af:ca:fd:3b:9c:36:10:c5:c4:75:7a:51: 54:3f:91:5f:2f:c7:29:80:a7:f5:c4:78:b4:08:6b: 4f:67:7d:50:e6:53:02:9d:d0:c0:5d:94:41:9b:30: bd:d7:4b:5d:75:6c:cd:8e:2e:76:1d:11:36:5d:04: ce:01:7f:ff:ad:4e:d2:c0:ab:da:5f:d4:74:9a:a9: ca:ed:cf:df:68:9e:80:f6:c4:e8:2c:12:ba:cd:f3: fd:11:ee:9d:0b:a9:54:0d:c0:13:38:8b:20:9e:4e: b4:d4:bf:0e:97:1a:c5:3a:bf:50:64:c2:65:26:4a: df:32:0e:8f:05:c8:f6:82:61:20:26:2b:e1:d8:de: 9c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7A:2E:17:01:F0:E8:23:1A:6D:AF:87:04:48:23:69:1F:73:CF:14 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:d940:e0ff::/48 Signature Algorithm: sha256WithRSAEncryption c3:a5:e4:1e:a8:77:26:2e:73:fd:fa:b5:c2:c7:59:ac:c5:e5: a9:6d:1d:1a:41:ab:30:d4:fc:2e:de:e6:c3:cb:2a:b7:c3:37: a0:f4:5b:d3:00:e2:96:3b:2e:a5:12:38:d6:64:c1:ac:ea:f0: 9d:1f:4a:f9:68:09:c5:8a:f8:bc:93:2a:39:94:8b:b5:b4:5c: 94:92:68:e5:ca:f8:b9:82:10:3c:03:4e:9f:99:5d:b6:f2:15: 24:65:61:c0:c6:98:73:68:43:4c:fe:19:7b:97:3a:2c:ee:bd: fe:69:13:99:a1:3e:2f:2e:c2:a8:f5:a9:71:e3:44:c7:9c:eb: 2e:45:88:49:09:5a:86:ed:70:0f:8a:68:43:ce:8f:62:42:6b: f4:85:a1:b7:d1:e5:b5:87:ed:c0:6e:f3:20:b3:3f:d2:c8:97: 70:fd:0e:31:71:4c:9f:dc:a7:e8:2e:b0:90:1d:8b:35:8e:7a: 71:20:be:02:24:21:18:cc:6d:ed:4a:24:a4:67:70:cb:a2:4d: ac:d6:24:5b:b0:bd:9b:73:bc:30:de:37:33:c7:f8:86:ab:7d: 0d:2e:db:b3:ed:cb:4e:e4:cb:fe:67:50:63:f9:74:0c:13:55: 70:3f:be:8a:37:d4:c8:7f:d8:c3:99:98:56:29:ed:69:2f:8a: 52:25:a9:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJMjUXaq8uM1e4X8lgEGb2XaQKr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNDAxMTkwNjU2MTdaFw0yNTAxMTcwNzAxMTdaMDMxMTAvBgNV BAMTKEIxN0EyRTE3MDFGMEU4MjMxQTZEQUY4NzA0NDgyMzY5MUY3M0NGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3qk7Nt+ThEANPklc3otJks8HA MVD/z0ZaVcOHMr3XrrKoM5gWE/OQ8zGDg5AbRicOgmjgHgNKxucDwuorsQFgkYC2 3FeulGg1QYhyoGgWBrGOFYMFjS/nMvv3Igf5MSmdHI3lO5vd/DXgySYwtnGzi+LL aj2IP4WzaK/K/TucNhDFxHV6UVQ/kV8vxymAp/XEeLQIa09nfVDmUwKd0MBdlEGb ML3XS111bM2OLnYdETZdBM4Bf/+tTtLAq9pf1HSaqcrtz99onoD2xOgsErrN8/0R 7p0LqVQNwBM4iyCeTrTUvw6XGsU6v1BkwmUmSt8yDo8FyPaCYSAmK+HY3pz/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsXouFwHw6CMaba+HBEgjaR9zzxQwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMyMzQzMDMxM2E2NDM5MzQzMDNhNjUzMDY2NjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM0MzUzMzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHZ QOD/MA0GCSqGSIb3DQEBCwUAA4IBAQDDpeQeqHcmLnP9+rXCx1msxeWpbR0aQasw 1Pwu3ubDyyq3wzeg9FvTAOKWOy6lEjjWZMGs6vCdH0r5aAnFivi8kyo5lIu1tFyU kmjlyvi5ghA8A06fmV228hUkZWHAxphzaENM/hl7lzos7r3+aROZoT4vLsKo9alx 40THnOsuRYhJCVqG7XAPimhDzo9iQmv0haG30eW1h+3AbvMgsz/SyJdw/Q4xcUyf 3KfoLrCQHYs1jnpxIL4CJCEYzG3tSiSkZ3DLok2s1iRbsL2bc7ww3jczx/iGq30N Ltuz7ctO5Mv+Z1Bj+XQME1VwP76KN9TIf9jDmZhWKe1pL4pSJamB -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org