$ rpki-client -vvf repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa File: 323430363a653930303a3a2f34382d3438203d3e20313332363439.roa (raw, json) Hash identifier: dxsc/lY5LVIvqlsrGk7iVLSq6qNvcNN7QAwMu4u4bcM= Subject key identifier: 8B:8B:03:79:2E:B9:AE:F6:02:78:56:57:68:95:16:6A:89:A2:F9:60 Certificate issuer: /CN=4ACFA054E26D225A10C6B0FD316D21263924491E Certificate serial: 0429A2DC20E4485F28D355A3ED3350C298F7508D Authority key identifier: 4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa Signing time: Mon 01 Jul 2024 01:02:38 +0000 ROA not before: Mon 01 Jul 2024 00:57:38 +0000 ROA not after: Mon 30 Jun 2025 01:02:38 +0000 asID: 132649 IP address blocks: 2406:e900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:29:a2:dc:20:e4:48:5f:28:d3:55:a3:ed:33:50:c2:98:f7:50:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACFA054E26D225A10C6B0FD316D21263924491E Validity Not Before: Jul 1 00:57:38 2024 GMT Not After : Jun 30 01:02:38 2025 GMT Subject: CN=8B8B03792EB9AEF6027856576895166A89A2F960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:2a:99:9c:b4:11:05:1f:cb:0b:be:4c:53: 25:26:6a:01:75:29:9f:ba:d6:12:f9:82:c4:57:ff: b3:e2:f8:0d:cf:7b:72:56:ad:a3:e6:b9:f4:18:5e: c1:dd:9e:27:7b:80:43:8d:5d:6b:cf:99:cb:e7:50: 01:bf:72:5a:77:eb:c1:6d:26:59:f1:1a:15:09:5b: 34:18:1f:d0:1f:05:40:5f:dd:14:1b:b4:71:06:a5: 0a:91:43:31:d3:43:ba:72:36:68:01:74:2d:8e:69: f7:7e:6f:31:21:a8:c3:d6:0b:6f:30:3b:9a:ba:8f: 6b:46:cb:e8:73:6e:0a:c1:9b:af:be:11:ab:44:63: f8:7d:c5:3f:e0:a3:87:3f:28:ec:f8:13:30:db:0c: da:9c:3a:94:1f:b4:b7:f0:93:3a:f4:31:d9:be:03: 84:19:c4:59:9f:81:82:b9:c7:e4:b6:dd:c7:fd:db: 05:9d:24:b3:4d:aa:6a:21:00:94:51:81:db:4c:c6: 14:f8:f1:c2:9e:18:9a:b4:41:3d:96:8c:2c:9c:a5: 99:4d:6c:4f:ed:35:60:8c:e0:86:62:4d:79:b5:74: 14:e4:a3:1e:b2:7a:29:46:46:6c:9a:42:51:c8:ea: 2d:55:69:1e:c1:5e:43:73:f7:48:49:bb:03:00:48: 2f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8B:03:79:2E:B9:AE:F6:02:78:56:57:68:95:16:6A:89:A2:F9:60 X509v3 Authority Key Identifier: keyid:4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/323430363a653930303a3a2f34382d3438203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:e900::/48 Signature Algorithm: sha256WithRSAEncryption 4d:1b:e3:0b:99:51:81:07:e8:64:9e:be:be:79:26:0c:58:c1: 44:37:d0:56:a9:51:4b:90:33:e2:29:64:84:e6:f2:df:24:a7: 9d:ae:72:52:0c:8d:1e:ca:0c:2d:60:64:23:35:ef:df:cd:1a: 09:17:04:19:19:cb:95:f1:8f:2e:68:a4:1f:bb:53:fb:08:10: 60:6f:ad:e9:20:c1:cf:a3:de:8e:ab:ed:9d:4b:14:0f:e7:47: 93:35:cb:a3:59:ac:56:8e:c7:31:37:75:58:46:93:ea:b3:a9: 40:4a:e4:3f:87:08:f4:d2:06:08:21:10:f1:60:63:1a:ea:7c: cd:bb:e7:bd:91:b4:17:e8:59:06:f4:2a:b2:a9:4f:fb:68:45: 77:e5:52:89:9b:db:da:3c:03:99:e2:0a:f4:cd:d5:03:4e:88: 96:db:c1:14:4d:02:b2:61:05:e0:62:f1:c8:24:49:9f:af:ec: f6:d1:5f:20:b6:b0:a8:22:49:e9:ac:04:d0:7b:e3:28:82:97: 5b:4b:d8:31:72:e1:ed:19:25:0b:b5:21:08:f8:25:8b:fa:e0: 16:40:97:1d:e0:44:47:6b:2b:ad:39:72:d9:68:67:70:6c:d1: d9:06:3e:4f:14:3f:b5:c2:ee:a0:80:22:4e:16:33:d2:2d:04: 2f:72:39:3e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUBCmi3CDkSF8o01Wj7TNQwpj3UI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYz OTI0NDkxRTAeFw0yNDA3MDEwMDU3MzhaFw0yNTA2MzAwMTAyMzhaMDMxMTAvBgNV BAMTKDhCOEIwMzc5MkVCOUFFRjYwMjc4NTY1NzY4OTUxNjZBODlBMkY5NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ySqZnLQRBR/LC75MUyUmagF1 KZ+61hL5gsRX/7Pi+A3Pe3JWraPmufQYXsHdnid7gEONXWvPmcvnUAG/clp368Ft JlnxGhUJWzQYH9AfBUBf3RQbtHEGpQqRQzHTQ7pyNmgBdC2Oafd+bzEhqMPWC28w O5q6j2tGy+hzbgrBm6++EatEY/h9xT/go4c/KOz4EzDbDNqcOpQftLfwkzr0Mdm+ A4QZxFmfgYK5x+S23cf92wWdJLNNqmohAJRRgdtMxhT48cKeGJq0QT2WjCycpZlN bE/tNWCM4IZiTXm1dBTkox6yeilGRmyaQlHI6i1VaR7BXkNz90hJuwMASC+1AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUi4sDeS65rvYCeFZXaJUWaomi+WAwHwYDVR0j BBgwFoAUSs+gVOJtIloQxrD9MW0hJjkkSR4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTQ2YTMwNS1kZjc3LTQ1ODctODcwMy1hOTA1YzUzNzc5YWMvMC80QUNGQTA1NEUy NkQyMjVBMTBDNkIwRkQzMTZEMjEyNjM5MjQ0OTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYzOTI0 NDkxRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMyMzQzMDM2M2E2NTM5MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQG6QAAADANBgkq hkiG9w0BAQsFAAOCAQEATRvjC5lRgQfoZJ6+vnkmDFjBRDfQVqlRS5Az4ilkhOby 3ySnna5yUgyNHsoMLWBkIzXv380aCRcEGRnLlfGPLmikH7tT+wgQYG+t6SDBz6Pe jqvtnUsUD+dHkzXLo1msVo7HMTd1WEaT6rOpQErkP4cI9NIGCCEQ8WBjGup8zbvn vZG0F+hZBvQqsqlP+2hFd+VSiZvb2jwDmeIK9M3VA06IltvBFE0CsmEF4GLxyCRJ n6/s9tFfILawqCJJ6awE0HvjKIKXW0vYMXLh7RklC7UhCPgli/rgFkCXHeBER2sr rTly2WhncGzR2QY+TxQ/tcLuoIAiThYz0i0EL3I5Pg== -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:37 2024 by rpki-client on console-ams.rpki-client.org