$ rpki-client -vvf repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/323430363a613063303a3a2f33322d3332203d3e20313337333331.roa File: 323430363a613063303a3a2f33322d3332203d3e20313337333331.roa (raw, json) Hash identifier: /ifDaMeUJPfvjRPyV/C3By+OTwKlz0b5ZKyk3AtJNoY= Subject key identifier: 91:B4:12:EC:28:1B:07:C3:ED:BE:9B:57:39:3C:97:4F:D4:C1:39:F7 Certificate issuer: /CN=FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38 Certificate serial: 434C89975E5BC1B9625A2A4D94ECFF53A13D1B3A Authority key identifier: FA:BD:B6:E4:44:51:B7:F0:37:8A:E9:2C:27:50:EB:FE:5A:3C:FA:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/323430363a613063303a3a2f33322d3332203d3e20313337333331.roa Signing time: Mon 12 Feb 2024 01:00:00 +0000 ROA not before: Mon 12 Feb 2024 00:55:00 +0000 ROA not after: Mon 10 Feb 2025 01:00:00 +0000 asID: 137331 IP address blocks: 2406:a0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.crl rsync://repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 13:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:4c:89:97:5e:5b:c1:b9:62:5a:2a:4d:94:ec:ff:53:a1:3d:1b:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38 Validity Not Before: Feb 12 00:55:00 2024 GMT Not After : Feb 10 01:00:00 2025 GMT Subject: CN=91B412EC281B07C3EDBE9B57393C974FD4C139F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:18:2e:f8:82:53:ca:86:4a:a8:8d:be:da:9f: 13:1d:7e:cd:dd:d5:5f:ce:ad:f1:dc:d4:bd:af:57: 05:73:35:db:05:03:dc:72:26:57:2d:ee:28:6c:41: 7e:e0:46:5c:31:ee:52:06:39:91:a6:7b:e2:97:29: c1:b0:ed:e1:f4:e9:be:12:e1:e7:ad:10:c1:b5:31: 00:06:e0:8c:f9:58:de:5d:da:ec:69:d4:66:b1:6a: 37:b4:ec:76:e2:1f:5b:48:4a:d7:a9:19:d8:9d:53: 54:f9:5b:c9:d2:0a:06:56:19:4b:6a:4d:ad:8b:47: c1:6c:fc:0f:a2:6c:fb:bd:bd:7b:99:c9:61:61:52: 96:30:16:fc:05:2a:45:56:17:67:de:70:0c:54:b5: eb:84:ca:c8:63:38:f4:aa:3e:f5:20:e5:ce:94:7a: 65:70:0c:68:2f:28:72:a6:69:b3:36:7d:c5:1d:92: 60:da:92:d1:fe:f7:22:d1:8a:55:4d:67:28:49:59: b1:eb:5b:be:65:f8:01:b2:4b:97:77:e0:ac:46:50: ce:9f:b0:ac:75:6c:ce:2f:05:44:ac:46:2d:b5:d7: 6d:14:aa:12:f3:d3:e6:bd:48:c8:db:1d:b3:83:a1: ac:63:5e:89:d5:13:08:7f:b0:45:16:b1:be:d3:c7: 95:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B4:12:EC:28:1B:07:C3:ED:BE:9B:57:39:3C:97:4F:D4:C1:39:F7 X509v3 Authority Key Identifier: keyid:FA:BD:B6:E4:44:51:B7:F0:37:8A:E9:2C:27:50:EB:FE:5A:3C:FA:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FABDB6E44451B7F0378AE92C2750EBFE5A3CFA38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1d07e3d8-9bfc-4483-a2dd-afa4593811e5/0/323430363a613063303a3a2f33322d3332203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:a0c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:33:aa:34:c4:b3:01:e8:f1:31:8b:9e:6f:6a:fc:bb:16:9b: 98:0c:e3:af:b1:06:34:60:7d:c7:a6:e8:d2:26:71:18:63:a9: 4a:cc:bb:5b:ec:fe:4b:51:39:4f:88:4a:87:d4:ea:c9:44:6d: 84:41:49:fa:9e:f9:f4:0d:d5:69:c0:8c:a4:b8:83:c3:e4:76: 68:7e:c4:ac:03:ea:37:1c:62:39:13:f6:fe:12:e3:5e:88:5b: 71:00:a9:a3:bc:7d:08:0c:5d:f9:e8:2e:a3:a2:03:4e:34:39: df:37:c8:6e:d0:35:66:e1:83:ac:da:bb:a8:61:3b:31:0f:f9: 20:d9:d7:1c:ed:0a:d5:f5:5d:af:f0:4b:dc:1d:69:ed:a4:31: b3:22:b0:8f:4d:23:85:89:07:c7:56:59:f5:a9:39:84:12:86: db:4b:ed:2b:51:f8:55:6d:07:5e:54:a0:7b:23:fc:7e:b2:c0: 50:7b:c9:0c:26:80:68:5e:f2:e3:38:5a:f3:9f:1f:c7:99:74: 0d:f1:0c:79:1c:3a:36:96:29:c4:be:9b:17:7c:2a:85:bd:c5: 3a:2f:26:0a:83:74:9c:82:5c:cf:19:31:b6:b6:70:23:38:17: af:ce:dc:7a:67:d7:e0:18:1a:5d:44:dc:15:66:16:29:6e:8c: 60:0b:73:af -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUQ0yJl15bwbliWipNlOz/U6E9GzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkFCREI2RTQ0NDUxQjdGMDM3OEFFOTJDMjc1MEVCRkU1 QTNDRkEzODAeFw0yNDAyMTIwMDU1MDBaFw0yNTAyMTAwMTAwMDBaMDMxMTAvBgNV BAMTKDkxQjQxMkVDMjgxQjA3QzNFREJFOUI1NzM5M0M5NzRGRDRDMTM5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjGC74glPKhkqojb7anxMdfs3d 1V/OrfHc1L2vVwVzNdsFA9xyJlct7ihsQX7gRlwx7lIGOZGme+KXKcGw7eH06b4S 4eetEMG1MQAG4Iz5WN5d2uxp1Gaxaje07HbiH1tIStepGdidU1T5W8nSCgZWGUtq Ta2LR8Fs/A+ibPu9vXuZyWFhUpYwFvwFKkVWF2fecAxUteuEyshjOPSqPvUg5c6U emVwDGgvKHKmabM2fcUdkmDaktH+9yLRilVNZyhJWbHrW75l+AGyS5d34KxGUM6f sKx1bM4vBUSsRi21120UqhLz0+a9SMjbHbODoaxjXonVEwh/sEUWsb7Tx5XNAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkbQS7CgbB8PtvptXOTyXT9TBOfcwHwYDVR0j BBgwFoAU+r225ERRt/A3iuksJ1Dr/lo8+jgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZDA3ZTNkOC05YmZjLTQ0ODMtYTJkZC1hZmE0NTkzODExZTUvMC9GQUJEQjZFNDQ0 NTFCN0YwMzc4QUU5MkMyNzUwRUJGRTVBM0NGQTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkFCREI2RTQ0NDUxQjdGMDM3OEFFOTJDMjc1MEVCRkU1QTND RkEzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkMDdlM2Q4LTliZmMtNDQ4My1h MmRkLWFmYTQ1OTM4MTFlNS8wLzMyMzQzMDM2M2E2MTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGoMAwDQYJKoZI hvcNAQELBQADggEBAFczqjTEswHo8TGLnm9q/LsWm5gM46+xBjRgfcem6NImcRhj qUrMu1vs/ktROU+ISofU6slEbYRBSfqe+fQN1WnAjKS4g8Pkdmh+xKwD6jccYjkT 9v4S416IW3EAqaO8fQgMXfnoLqOiA040Od83yG7QNWbhg6zau6hhOzEP+SDZ1xzt CtX1Xa/wS9wdae2kMbMisI9NI4WJB8dWWfWpOYQShttL7StR+FVtB15UoHsj/H6y wFB7yQwmgGhe8uM4WvOfH8eZdA3xDHkcOjaWKcS+mxd8KoW9xTovJgqDdJyCXM8Z Mba2cCM4F6/O3Hpn1+AYGl1E3BVmFilujGALc68= -----END CERTIFICATE-----Generated at Wed May 1 07:23:20 2024 by rpki-client on console-ams.rpki-client.org