$ rpki-client -vvf repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa File: 323430363a3563303a3a2f33322d3438203d3e20313430333935.roa (raw, json) Hash identifier: Md2Gwc22wRKTc5mUc5ELs7bt6G77R7I0eKIAvlpl/5s= Subject key identifier: 5B:99:15:EF:07:93:EE:3B:15:C2:6D:34:B3:16:7F:E3:95:53:B1:FF Certificate issuer: /CN=F03C1838587677BF6505C46715F42F8B8416F949 Certificate serial: 64E82568A57015C82360C6170C484D36EFF8F18A Authority key identifier: F0:3C:18:38:58:76:77:BF:65:05:C4:67:15:F4:2F:8B:84:16:F9:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa Signing time: Sat 31 Aug 2024 10:02:24 +0000 ROA not before: Sat 31 Aug 2024 09:57:24 +0000 ROA not after: Sat 30 Aug 2025 10:02:24 +0000 asID: 140395 IP address blocks: 2406:5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.crl rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e8:25:68:a5:70:15:c8:23:60:c6:17:0c:48:4d:36:ef:f8:f1:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F03C1838587677BF6505C46715F42F8B8416F949 Validity Not Before: Aug 31 09:57:24 2024 GMT Not After : Aug 30 10:02:24 2025 GMT Subject: CN=5B9915EF0793EE3B15C26D34B3167FE39553B1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6c:91:8d:8c:33:b6:c1:e4:30:44:1c:07:e4: 95:c8:cd:26:e9:f5:b6:ed:c3:c1:65:0b:a1:37:48: e4:e7:6b:36:b9:d0:49:0a:07:4f:a3:ca:ce:2e:e0: 4c:8f:da:83:eb:7c:5c:22:fd:95:8e:40:0d:36:c9: 8c:6e:ec:e8:a9:62:1c:95:3c:dd:e9:79:80:9e:81: dc:a7:10:93:13:d9:ab:cf:38:45:8c:1a:0b:c4:fd: da:55:55:e5:33:86:50:8c:38:35:6d:3b:34:74:64: 9a:f9:3c:a7:8c:da:20:20:40:0b:4b:2a:a7:b6:01: 07:ff:9c:38:ad:ba:82:76:0e:08:97:9a:a9:4e:14: 30:32:74:a3:5c:04:bc:ed:f7:4d:25:33:ce:bb:93: b2:87:72:32:bd:2f:00:ec:46:f7:28:8b:01:89:67: 4d:1a:65:17:4f:09:d1:96:28:1e:5d:5f:8d:8b:78: 0c:b6:3c:3b:ef:39:bb:af:bc:24:19:e1:c5:62:38: 44:47:da:d4:b8:90:ca:27:a4:ff:54:e2:5e:f9:48: 01:be:6b:37:15:f0:2a:20:6f:2c:ce:f3:1a:65:2f: 05:4a:a9:32:5a:4b:c6:d2:93:5e:73:eb:b3:12:aa: 09:c7:c6:de:99:f0:a1:6b:99:3f:79:9f:53:64:b0: 27:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:99:15:EF:07:93:EE:3B:15:C2:6D:34:B3:16:7F:E3:95:53:B1:FF X509v3 Authority Key Identifier: keyid:F0:3C:18:38:58:76:77:BF:65:05:C4:67:15:F4:2F:8B:84:16:F9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/F03C1838587677BF6505C46715F42F8B8416F949.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F03C1838587677BF6505C46715F42F8B8416F949.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bd3dd79-8635-4857-8a3c-985954516f9e/0/323430363a3563303a3a2f33322d3438203d3e20313430333935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c0::/32 Signature Algorithm: sha256WithRSAEncryption 26:96:c3:ab:e5:ae:6f:1a:a5:80:60:8d:fe:03:bf:c0:d9:2b: 31:22:16:34:3c:a3:1e:37:d2:d1:d7:9e:0d:4f:6c:a5:53:01: 42:9d:83:f2:df:85:ef:71:f2:6d:6e:5b:72:f5:1f:71:c9:7c: 95:1a:32:60:1e:58:6a:0e:4a:9c:55:12:74:46:36:ab:ee:6b: 3f:bd:5f:91:9f:bb:f4:49:f1:89:35:8b:d2:e9:df:cd:f4:df: e6:84:b6:e7:94:b4:e3:0e:74:e5:5a:a6:0e:d8:cc:16:1e:02: f6:12:d4:30:5a:e6:92:21:f6:a3:b0:60:7d:b9:9c:77:11:a8: 14:1d:e3:e8:07:45:f0:77:ec:a0:85:c2:29:2e:f7:5b:d5:21: b3:6c:63:bd:5b:ef:a8:89:5d:88:39:08:e1:54:3d:d1:e5:ca: 11:cd:aa:b4:9c:2d:d0:b4:41:d5:47:a9:51:cf:05:1e:2c:29: c7:75:0d:ef:b8:23:c3:a0:91:66:fb:d6:06:92:ae:ee:40:d6: 67:08:2b:58:1a:e7:33:9f:d7:33:72:43:a1:d0:dd:8b:43:d2: 71:19:d4:74:4b:f6:fd:a8:01:ac:28:2a:b4:65:a0:38:ed:8e: b0:6a:9b:0c:b3:13:06:31:22:36:5e:c8:07:1b:64:b6:f6:bb: 71:a4:8e:e2 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZOglaKVwFcgjYMYXDEhNNu/48YowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAzQzE4Mzg1ODc2NzdCRjY1MDVDNDY3MTVGNDJGOEI4 NDE2Rjk0OTAeFw0yNDA4MzEwOTU3MjRaFw0yNTA4MzAxMDAyMjRaMDMxMTAvBgNV BAMTKDVCOTkxNUVGMDc5M0VFM0IxNUMyNkQzNEIzMTY3RkUzOTU1M0IxRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmbJGNjDO2weQwRBwH5JXIzSbp 9bbtw8FlC6E3SOTnaza50EkKB0+jys4u4EyP2oPrfFwi/ZWOQA02yYxu7OipYhyV PN3peYCegdynEJMT2avPOEWMGgvE/dpVVeUzhlCMODVtOzR0ZJr5PKeM2iAgQAtL Kqe2AQf/nDituoJ2DgiXmqlOFDAydKNcBLzt900lM867k7KHcjK9LwDsRvcoiwGJ Z00aZRdPCdGWKB5dX42LeAy2PDvvObuvvCQZ4cViOERH2tS4kMonpP9U4l75SAG+ azcV8CogbyzO8xplLwVKqTJaS8bSk15z67MSqgnHxt6Z8KFrmT95n1NksCcdAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUW5kV7weT7jsVwm00sxZ/45VTsf8wHwYDVR0j BBgwFoAU8DwYOFh2d79lBcRnFfQvi4QW+UkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmQzZGQ3OS04NjM1LTQ4NTctOGEzYy05ODU5NTQ1MTZmOWUvMC9GMDNDMTgzODU4 NzY3N0JGNjUwNUM0NjcxNUY0MkY4Qjg0MTZGOTQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjAzQzE4Mzg1ODc2NzdCRjY1MDVDNDY3MTVGNDJGOEI4NDE2 Rjk0OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZDNkZDc5LTg2MzUtNDg1Ny04 YTNjLTk4NTk1NDUxNmY5ZS8wLzMyMzQzMDM2M2EzNTYzMzAzYTNhMmYzMzMyMmQz NDM4MjAzZDNlMjAzMTM0MzAzMzM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgXAMA0GCSqGSIb3 DQEBCwUAA4IBAQAmlsOr5a5vGqWAYI3+A7/A2SsxIhY0PKMeN9LR154NT2ylUwFC nYPy34XvcfJtblty9R9xyXyVGjJgHlhqDkqcVRJ0Rjar7ms/vV+Rn7v0SfGJNYvS 6d/N9N/mhLbnlLTjDnTlWqYO2MwWHgL2EtQwWuaSIfajsGB9uZx3EagUHePoB0Xw d+yghcIpLvdb1SGzbGO9W++oiV2IOQjhVD3R5coRzaq0nC3QtEHVR6lRzwUeLCnH dQ3vuCPDoJFm+9YGkq7uQNZnCCtYGuczn9czckOh0N2LQ9JxGdR0S/b9qAGsKCq0 ZaA47Y6wapsMsxMGMSI2XsgHG2S29rtxpI7i -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:31 2024 by rpki-client on console-ams.rpki-client.org