$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa File: 323430363a343463303a3a2f33322d3438203d3e20313430343632.roa (raw, json) Hash identifier: /afJJDhqLHEyFhgVDaHqEV2OiB3/NZ6i6GNwssoIGhk= Subject key identifier: F7:13:18:25:9E:BB:42:2E:26:4E:CA:CB:40:D7:0A:A6:1D:A2:B0:BF Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Certificate serial: 7D972049F7E5D3C129E536EFA08FE22812F68BC1 Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa Signing time: Sat 28 Sep 2024 08:00:01 +0000 ROA not before: Sat 28 Sep 2024 07:55:01 +0000 ROA not after: Sat 27 Sep 2025 08:00:01 +0000 asID: 140462 IP address blocks: 2406:44c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:97:20:49:f7:e5:d3:c1:29:e5:36:ef:a0:8f:e2:28:12:f6:8b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Validity Not Before: Sep 28 07:55:01 2024 GMT Not After : Sep 27 08:00:01 2025 GMT Subject: CN=F71318259EBB422E264ECACB40D70AA61DA2B0BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:fa:78:d0:2e:77:56:88:fa:50:f0:c4:95: 53:e9:be:d6:3c:b9:28:b2:f2:db:94:e4:46:31:3b: 96:9b:59:c0:80:e5:df:44:fb:a6:97:60:bf:06:c8: d7:64:94:37:4d:89:a7:9c:37:ab:89:5f:ba:7a:c0: 1f:b8:5f:b7:ed:d3:57:21:f2:78:10:9d:44:0e:41: c5:64:7b:19:5d:68:30:12:29:60:23:86:36:4d:5c: 56:6c:6c:f3:b5:ad:ca:0f:d2:2e:d6:e2:9c:28:01: 0c:5a:4d:af:78:e4:bd:f5:9c:02:13:c2:9c:07:77: 61:30:9d:0b:3c:53:3c:c1:87:08:b1:72:24:4d:fa: 71:fe:a9:84:0b:a1:17:00:f9:5d:db:e0:bd:43:21: 9e:08:b1:35:bd:ad:d1:86:7f:65:03:bd:e7:d1:d4: 47:77:0e:2a:eb:e9:b9:04:5b:e4:a4:32:7d:ab:a0: 87:ab:37:e5:ef:c4:80:a4:a2:d5:3e:62:35:03:fd: e1:3d:b0:c5:96:cd:ff:f4:f8:7b:56:f0:75:cd:d1: a9:aa:93:59:72:af:2f:16:d2:18:be:34:25:ce:37: 2b:4f:36:ff:96:7e:a1:ee:27:60:f7:08:5f:56:4c: 1c:f8:c9:e6:bb:f7:50:46:87:25:77:85:af:65:e8: 46:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:13:18:25:9E:BB:42:2E:26:4E:CA:CB:40:D7:0A:A6:1D:A2:B0:BF X509v3 Authority Key Identifier: keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/323430363a343463303a3a2f33322d3438203d3e20313430343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 8b:56:fb:aa:bf:83:e3:88:2a:e5:20:f2:16:2e:98:c7:a8:28: ea:e7:8e:f5:87:63:ac:6c:39:bb:52:28:d0:c8:eb:48:e8:b0: 0f:64:d5:c5:51:5f:9f:b5:f4:eb:d9:ae:63:d5:04:24:e9:fa: 50:3e:45:2a:a2:8b:4c:4a:24:6c:59:f4:84:41:1e:37:20:d6: a7:ea:c9:4a:5c:16:54:97:ca:72:70:e8:8d:6f:f1:01:df:47: 82:55:2d:f6:27:46:09:91:fa:6b:ec:8c:3d:07:3f:72:32:9f: 17:93:c3:d3:30:6a:b1:ed:8b:1a:f5:d3:ea:16:85:83:6d:26: 86:5a:cd:37:50:8d:9b:b7:2d:d8:e8:ca:09:08:ac:5c:34:41: 8c:99:94:fb:c7:79:f9:bd:fb:37:73:17:5d:5b:94:4b:dd:17: 09:48:d4:de:8d:07:50:db:26:dc:e4:d2:e0:3e:3a:e5:44:5c: 1d:da:9d:67:f4:6c:a0:0a:56:39:10:cb:be:bf:85:9d:f4:6c: e3:e1:74:0a:df:0b:24:27:05:52:09:42:37:1d:41:32:92:bc: c6:08:fc:a9:34:ad:b6:15:d4:0f:50:ff:8b:8a:dd:37:37:f5: 11:fc:65:9d:db:19:8e:ce:a0:5b:57:da:d4:1e:2f:89:cf:01: 3c:4d:2a:bf -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUfZcgSffl08Ep5TbvoI/iKBL2i8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUz QUQ5OTQyQzAeFw0yNDA5MjgwNzU1MDFaFw0yNTA5MjcwODAwMDFaMDMxMTAvBgNV BAMTKEY3MTMxODI1OUVCQjQyMkUyNjRFQ0FDQjQwRDcwQUE2MURBMkIwQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqBfp40C53Voj6UPDElVPpvtY8 uSiy8tuU5EYxO5abWcCA5d9E+6aXYL8GyNdklDdNiaecN6uJX7p6wB+4X7ft01ch 8ngQnUQOQcVkexldaDASKWAjhjZNXFZsbPO1rcoP0i7W4pwoAQxaTa945L31nAIT wpwHd2EwnQs8UzzBhwixciRN+nH+qYQLoRcA+V3b4L1DIZ4IsTW9rdGGf2UDvefR 1Ed3Dirr6bkEW+SkMn2roIerN+XvxICkotU+YjUD/eE9sMWWzf/0+HtW8HXN0amq k1lyry8W0hi+NCXONytPNv+WfqHuJ2D3CF9WTBz4yea791BGhyV3ha9l6EYXAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9xMYJZ67Qi4mTsrLQNcKph2isL8wHwYDVR0j BBgwFoAU78D+Mo97hvnGgvT+NzYMTjrZlCwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODNlZDdhYi0xYWM5LTRmNDItYWNkZC01MzU1N2FjN2IzZjMvMC9FRkMwRkUzMjhG N0I4NkY5QzY4MkY0RkUzNzM2MEM0RTNBRDk5NDJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUzQUQ5 OTQyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4M2VkN2FiLTFhYzktNGY0Mi1h Y2RkLTUzNTU3YWM3YjNmMy8wLzMyMzQzMDM2M2EzNDM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGRMAwDQYJKoZI hvcNAQELBQADggEBAItW+6q/g+OIKuUg8hYumMeoKOrnjvWHY6xsObtSKNDI60jo sA9k1cVRX5+19OvZrmPVBCTp+lA+RSqii0xKJGxZ9IRBHjcg1qfqyUpcFlSXynJw 6I1v8QHfR4JVLfYnRgmR+mvsjD0HP3IynxeTw9MwarHtixr10+oWhYNtJoZazTdQ jZu3LdjoygkIrFw0QYyZlPvHefm9+zdzF11blEvdFwlI1N6NB1DbJtzk0uA+OuVE XB3anWf0bKAKVjkQy76/hZ30bOPhdArfCyQnBVIJQjcdQTKSvMYI/Kk0rbYV1A9Q /4uK3Tc39RH8ZZ3bGY7OoFtX2tQeL4nPATxNKr8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org