$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa File: 323430343a366338303a3a2f33322d3438203d3e20313334363538.roa (raw, json) Hash identifier: q8jtLBKBKQeodF380oFs3a5khPlHgV+mCvTqqN3bIXc= Subject key identifier: 07:72:6F:05:74:53:1E:85:75:CD:1A:48:79:85:91:BF:95:9B:30:0F Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 0374DB2ACBDBF40C38E6E8E31D4CBFB70661E9F8 Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa Signing time: Fri 20 Sep 2024 19:00:00 +0000 ROA not before: Fri 20 Sep 2024 18:55:00 +0000 ROA not after: Fri 19 Sep 2025 19:00:00 +0000 asID: 134658 IP address blocks: 2404:6c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:74:db:2a:cb:db:f4:0c:38:e6:e8:e3:1d:4c:bf:b7:06:61:e9:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Sep 20 18:55:00 2024 GMT Not After : Sep 19 19:00:00 2025 GMT Subject: CN=07726F0574531E8575CD1A48798591BF959B300F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e6:2f:93:21:eb:b9:4d:22:44:fe:4a:4b:2a: fc:88:29:23:c6:d2:09:48:60:a0:f3:25:36:4f:b0: 03:f7:97:2a:65:c6:0c:eb:dd:4b:d5:0b:20:3c:57: a0:e6:35:79:31:5a:21:0a:dd:6d:78:96:6c:55:25: 72:3b:db:69:52:b3:97:75:9b:f3:4e:4c:9a:c1:cb: ee:30:3a:0d:0c:c2:2d:86:b0:1b:1e:af:d0:d4:74: a7:07:4e:af:7c:5c:fb:1e:49:1d:ec:2e:77:8e:41: 9c:f7:bd:52:b3:5c:a8:a5:69:3a:2d:57:17:3b:e1: 50:05:e4:8a:a9:5d:13:da:45:67:88:e9:a4:f7:58: 94:69:92:6d:2b:2a:b0:68:ab:0d:62:1f:b5:75:ba: 43:b1:6b:04:bf:95:e5:32:28:4b:96:cc:af:50:eb: 95:2b:02:55:99:98:48:3d:8a:76:5a:5a:8b:1a:d2: 8d:95:83:a0:86:3f:8a:13:a2:27:e9:b9:f0:c6:33: 16:19:5c:63:ca:55:43:e7:6a:06:a6:15:80:bb:ee: 7f:f2:c0:07:15:8b:15:0c:d9:83:6f:bf:87:32:59: 52:c6:ed:e7:99:d9:2b:0c:bb:d0:2c:4a:31:4a:12: 18:cf:af:81:f7:bf:80:ae:c5:ff:a9:12:04:ec:c5: e1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:72:6F:05:74:53:1E:85:75:CD:1A:48:79:85:91:BF:95:9B:30:0F X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/323430343a366338303a3a2f33322d3438203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:6c80::/32 Signature Algorithm: sha256WithRSAEncryption 2e:f4:bf:d7:73:e6:96:3f:64:67:a1:f6:aa:a5:e3:14:25:e6: f3:a9:e7:43:c5:79:38:8a:a9:0f:11:b2:60:8b:fe:65:b9:a9: b2:b3:af:22:48:ee:05:f8:d1:68:8f:c2:3e:87:80:cb:07:a9: 30:45:7e:c8:ca:45:28:9c:6c:ca:44:04:6b:0a:cd:f8:8a:9f: 45:ac:92:f1:6a:49:2e:7d:83:6d:46:70:97:7b:5c:a2:20:18: 1e:ce:ae:9d:03:2d:59:67:c0:b8:94:2a:25:02:2e:6c:de:d2: 1e:62:a0:7c:c0:e5:e4:22:02:35:17:bc:de:66:17:fb:5f:12: e4:fe:36:c6:31:81:34:72:20:5d:e7:dc:71:ef:88:f6:6f:5b: d1:a6:8f:92:87:5a:28:38:c2:2d:3b:48:9c:35:29:c7:89:17: 48:80:d3:be:db:5f:c5:22:76:10:d3:6b:40:ef:5a:a8:78:15: 7d:d5:ac:8a:aa:66:2c:ef:cf:43:3d:ae:c6:27:b9:49:f9:60: 7b:c3:b4:fd:56:77:fb:55:de:cc:ed:d3:ee:d2:de:37:63:75: 63:90:8f:ec:a2:06:db:04:b4:ee:d6:d1:89:93:43:77:ed:78: 9c:6e:6d:dd:25:42:03:84:22:ab:06:a1:32:bd:4a:63:5f:5c: d5:0c:ac:31 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUA3TbKsvb9Aw45ujjHUy/twZh6fgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNDA5MjAxODU1MDBaFw0yNTA5MTkxOTAwMDBaMDMxMTAvBgNV BAMTKDA3NzI2RjA1NzQ1MzFFODU3NUNEMUE0ODc5ODU5MUJGOTU5QjMwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg5i+TIeu5TSJE/kpLKvyIKSPG 0glIYKDzJTZPsAP3lyplxgzr3UvVCyA8V6DmNXkxWiEK3W14lmxVJXI722lSs5d1 m/NOTJrBy+4wOg0Mwi2GsBser9DUdKcHTq98XPseSR3sLneOQZz3vVKzXKilaTot Vxc74VAF5IqpXRPaRWeI6aT3WJRpkm0rKrBoqw1iH7V1ukOxawS/leUyKEuWzK9Q 65UrAlWZmEg9inZaWosa0o2Vg6CGP4oToifpufDGMxYZXGPKVUPnagamFYC77n/y wAcVixUM2YNvv4cyWVLG7eeZ2SsMu9AsSjFKEhjPr4H3v4Cuxf+pEgTsxeGpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUB3JvBXRTHoV1zRpIeYWRv5WbMA8wHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMyMzQzMDM0M2EzNjYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEbIAwDQYJKoZI hvcNAQELBQADggEBAC70v9dz5pY/ZGeh9qql4xQl5vOp50PFeTiKqQ8RsmCL/mW5 qbKzryJI7gX40WiPwj6HgMsHqTBFfsjKRSicbMpEBGsKzfiKn0WskvFqSS59g21G cJd7XKIgGB7Orp0DLVlnwLiUKiUCLmze0h5ioHzA5eQiAjUXvN5mF/tfEuT+NsYx gTRyIF3n3HHviPZvW9Gmj5KHWig4wi07SJw1KceJF0iA077bX8UidhDTa0DvWqh4 FX3VrIqqZizvz0M9rsYnuUn5YHvDtP1Wd/tV3szt0+7S3jdjdWOQj+yiBtsEtO7W 0YmTQ3fteJxubd0lQgOEIqsGoTK9SmNfXNUMrDE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org