$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33322d3332203d3e20313430343739.roa File: 323430363a353463303a3a2f33322d3332203d3e20313430343739.roa (raw, json) Hash identifier: x8p2ArJu+nwDgfLLaB0h3ceIg3Bukjco9D4aWkbZxTA= Subject key identifier: 33:89:A7:1A:7C:EB:F0:25:BD:D3:43:F5:F6:EF:1E:1D:4A:BC:51:1A Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 6351A016882548DDF992A2763204A07B2C667080 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33322d3332203d3e20313430343739.roa Signing time: Tue 05 Nov 2024 11:02:00 +0000 ROA not before: Tue 05 Nov 2024 10:57:00 +0000 ROA not after: Tue 04 Nov 2025 11:02:00 +0000 asID: 140479 IP address blocks: 2406:54c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 10:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:51:a0:16:88:25:48:dd:f9:92:a2:76:32:04:a0:7b:2c:66:70:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Nov 5 10:57:00 2024 GMT Not After : Nov 4 11:02:00 2025 GMT Subject: CN=3389A71A7CEBF025BDD343F5F6EF1E1D4ABC511A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5a:93:c2:19:5e:69:71:04:94:cc:c4:5b:d5: 7e:a2:d9:46:dd:e9:d3:5e:e2:0b:4f:65:a8:f6:d5: 55:12:b1:86:cc:fc:08:7e:21:b2:0f:27:e0:2b:ee: ee:67:7e:a0:a5:0b:dc:00:91:81:c8:6a:11:8e:8a: ca:77:d2:c7:ef:f5:34:aa:07:47:de:90:bc:dc:e9: cb:a5:15:65:12:4b:32:90:59:e3:c8:cd:06:ad:cf: 74:9d:40:9d:36:bb:c0:35:95:15:13:12:96:eb:1f: e7:b0:8e:db:e0:bb:30:7f:b2:f1:f1:d7:58:56:78: 8b:ed:34:77:32:2e:f3:3b:ac:0f:0a:71:38:89:da: 63:7f:87:d6:a4:62:6c:53:1d:0e:76:34:24:65:6d: a3:ec:43:fe:7a:4a:42:0d:87:5a:ad:5a:1c:fa:dd: 5a:a7:0d:09:d0:8a:e2:4b:06:47:cf:09:86:f0:49: f1:4e:2b:d4:ca:70:c3:eb:2b:ad:9b:2b:44:37:c0: af:68:1c:25:b6:40:a8:83:83:1f:5f:65:1c:ad:5a: 5c:be:22:50:68:8a:34:cf:e6:e9:36:4a:17:ba:8a: d2:d4:01:56:37:8b:21:0f:0b:7d:af:0e:bc:cf:63: 3c:d7:74:b3:ce:8c:e5:ad:79:38:07:cc:44:9f:40: 4a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:89:A7:1A:7C:EB:F0:25:BD:D3:43:F5:F6:EF:1E:1D:4A:BC:51:1A X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33322d3332203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0::/32 Signature Algorithm: sha256WithRSAEncryption 5f:9e:aa:55:d2:59:81:87:de:ed:58:47:ae:aa:d2:3d:9e:97: 01:0b:30:be:78:d0:6f:eb:81:8b:b3:ad:4f:ab:b7:aa:5e:0e: e4:f5:d5:c6:a6:fe:ad:eb:0f:27:da:01:f8:1f:69:2b:93:da: 3c:42:92:05:e1:e7:c6:e6:e9:bb:ff:f9:cf:f1:c5:45:fa:6b: a3:d8:ff:0c:5f:41:41:e7:37:5c:8e:3e:bc:87:e2:7a:97:39: 95:c8:a6:be:67:66:e6:40:5b:74:54:69:fd:1b:8e:1e:4b:84: 8b:4a:40:53:be:78:bb:cb:04:b0:f7:9c:72:39:21:d6:64:40: 27:90:ec:80:f3:44:6a:11:c3:f8:25:55:af:17:f3:00:65:24: fb:ef:0f:20:c0:52:d8:6f:a8:d3:35:c9:da:6d:7f:e6:8a:e8: 82:ae:8b:99:80:23:97:26:77:67:e4:57:51:7e:5c:58:26:e1: 95:41:3f:f2:d3:a4:12:dd:b5:76:80:76:ab:30:7a:39:38:bf: 73:3e:c2:82:39:22:d1:95:36:af:d3:f9:95:11:83:d4:e7:d2: 71:db:9b:72:29:6d:88:40:a0:01:96:87:9b:0b:20:59:33:6b: 5c:17:f8:91:e6:7f:9b:11:1a:5e:8c:6c:c2:49:db:67:e8:f5: 71:ba:55:30 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUY1GgFoglSN35kqJ2MgSgeyxmcIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNDExMDUxMDU3MDBaFw0yNTExMDQxMTAyMDBaMDMxMTAvBgNV BAMTKDMzODlBNzFBN0NFQkYwMjVCREQzNDNGNUY2RUYxRTFENEFCQzUxMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrWpPCGV5pcQSUzMRb1X6i2Ubd 6dNe4gtPZaj21VUSsYbM/Ah+IbIPJ+Ar7u5nfqClC9wAkYHIahGOisp30sfv9TSq B0fekLzc6culFWUSSzKQWePIzQatz3SdQJ02u8A1lRUTEpbrH+ewjtvguzB/svHx 11hWeIvtNHcyLvM7rA8KcTiJ2mN/h9akYmxTHQ52NCRlbaPsQ/56SkINh1qtWhz6 3VqnDQnQiuJLBkfPCYbwSfFOK9TKcMPrK62bK0Q3wK9oHCW2QKiDgx9fZRytWly+ IlBoijTP5uk2She6itLUAVY3iyEPC32vDrzPYzzXdLPOjOWteTgHzESfQEqhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUM4mnGnzr8CW900P19u8eHUq8URowHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGVMAwDQYJKoZI hvcNAQELBQADggEBAF+eqlXSWYGH3u1YR66q0j2elwELML540G/rgYuzrU+rt6pe DuT11cam/q3rDyfaAfgfaSuT2jxCkgXh58bm6bv/+c/xxUX6a6PY/wxfQUHnN1yO PryH4nqXOZXIpr5nZuZAW3RUaf0bjh5LhItKQFO+eLvLBLD3nHI5IdZkQCeQ7IDz RGoRw/glVa8X8wBlJPvvDyDAUthvqNM1ydptf+aK6IKui5mAI5cmd2fkV1F+XFgm 4ZVBP/LTpBLdtXaAdqswejk4v3M+woI5ItGVNq/T+ZURg9Tn0nHbm3IpbYhAoAGW h5sLIFkza1wX+JHmf5sRGl6MbMJJ22fo9XG6VTA= -----END CERTIFICATE-----Generated at Wed Nov 27 06:12:29 2024 by rpki-client on console-ams.rpki-client.org