$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3438203d3e20313431303733.roa File: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (raw, json) Hash identifier: MVU1WBH4Bf5DRpQvoLi6KqhCgXU126whT3cse5/TdSk= Subject key identifier: 3C:99:5A:92:77:F4:5C:91:93:8A:A0:45:C0:F5:65:CA:39:9A:7A:E9 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 31E6AF1BA170D5E006EAAEE3647C518BB9456355 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3438203d3e20313431303733.roa Signing time: Wed 31 Jan 2024 04:29:27 +0000 ROA not before: Wed 31 Jan 2024 04:24:27 +0000 ROA not after: Wed 29 Jan 2025 04:29:27 +0000 asID: 141073 IP address blocks: 2406:7740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e6:af:1b:a1:70:d5:e0:06:ea:ae:e3:64:7c:51:8b:b9:45:63:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jan 31 04:24:27 2024 GMT Not After : Jan 29 04:29:27 2025 GMT Subject: CN=3C995A9277F45C91938AA045C0F565CA399A7AE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:c4:dc:47:80:4d:26:c4:55:83:b4:ee:de: 9e:fa:86:b2:02:11:89:bf:71:9b:1c:42:4f:98:e0: 04:3e:49:a6:f0:45:93:68:03:4f:40:89:b1:24:47: fe:04:e2:6a:64:47:29:bb:8a:fb:24:43:b8:d9:e6: 60:d7:22:64:15:db:d7:51:5a:69:6e:34:64:64:6d: b2:64:19:3b:01:92:ca:bd:8c:39:19:8e:bc:36:e4: 8d:92:38:12:f8:c5:83:01:db:a8:66:85:20:29:c7: 84:fe:09:68:9a:ac:d3:6b:ca:30:37:ee:05:85:7e: 04:d4:b4:4b:96:a6:cf:99:93:25:92:56:63:19:5c: e7:7f:82:8b:b8:72:16:81:37:82:29:55:76:6a:5f: 15:bf:4e:3b:bd:51:f4:b1:bb:35:91:92:06:e1:12: 72:c4:70:ef:5a:e4:63:d4:6c:d2:0b:1a:1f:d9:07: 47:15:fa:ab:b6:1b:e6:d0:55:9d:5a:6e:08:64:e3: 15:75:98:0d:bd:63:ef:dd:e4:2e:af:12:2f:89:30: da:86:1a:53:2a:f5:ef:04:6b:1e:14:df:64:ab:01: e3:4c:0a:93:ae:92:14:5a:9b:82:09:49:24:a0:d3: 05:ac:cf:52:3d:6c:c0:ac:89:11:2a:20:41:75:82: 8e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:99:5A:92:77:F4:5C:91:93:8A:A0:45:C0:F5:65:CA:39:9A:7A:E9 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3438203d3e20313431303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7740::/32 Signature Algorithm: sha256WithRSAEncryption 1a:56:3a:52:b3:7d:fa:0e:83:05:82:dd:63:06:33:71:87:93: 68:54:15:15:7f:c9:9a:02:b5:8f:33:d6:ef:d1:d4:b3:49:46: 4d:ee:e6:59:d9:8c:b5:61:44:b8:26:87:3c:3d:ab:34:43:79: 89:a8:0f:d5:0b:4e:de:ba:bd:1f:52:4f:e8:b0:52:c4:0d:c4: f5:9a:64:8f:f2:b9:b0:62:1c:71:1e:77:ef:23:5f:c2:0b:73: da:93:4c:10:fe:bb:79:d8:01:ad:34:a5:17:f3:fc:c6:84:79: c6:20:73:44:62:00:e0:f0:44:84:10:97:aa:f1:1b:43:a4:26: f4:73:c5:4f:e5:ef:22:7d:4b:f0:a0:9a:44:41:06:f3:02:08: fc:76:68:3e:d5:62:f7:c1:76:e0:d0:1e:4c:1a:e8:75:df:5d: a2:8e:df:b5:43:e6:49:d7:09:9c:e4:00:07:cd:b3:1d:81:1d: 30:75:c9:c8:01:28:98:8e:a2:59:bf:a7:84:bb:b8:e4:66:ef: ed:db:29:43:2b:46:30:21:f8:6c:f9:91:d3:91:c0:36:f5:bb: 4e:09:96:b6:0a:3b:00:d2:dd:c0:e4:32:8a:9c:c3:0e:a9:ba: b5:aa:36:01:40:6e:77:f7:64:a1:9a:08:b5:79:a2:0d:c7:dd: 92:d1:a8:2f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMeavG6Fw1eAG6q7jZHxRi7lFY1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNDAxMzEwNDI0MjdaFw0yNTAxMjkwNDI5MjdaMDMxMTAvBgNV BAMTKDNDOTk1QTkyNzdGNDVDOTE5MzhBQTA0NUMwRjU2NUNBMzk5QTdBRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjEsTcR4BNJsRVg7Tu3p76hrIC EYm/cZscQk+Y4AQ+SabwRZNoA09AibEkR/4E4mpkRym7ivskQ7jZ5mDXImQV29dR WmluNGRkbbJkGTsBksq9jDkZjrw25I2SOBL4xYMB26hmhSApx4T+CWiarNNryjA3 7gWFfgTUtEuWps+ZkyWSVmMZXOd/gou4chaBN4IpVXZqXxW/Tju9UfSxuzWRkgbh EnLEcO9a5GPUbNILGh/ZB0cV+qu2G+bQVZ1abghk4xV1mA29Y+/d5C6vEi+JMNqG GlMq9e8Eax4U32SrAeNMCpOukhRam4IJSSSg0wWsz1I9bMCsiREqIEF1go4jAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUPJlaknf0XJGTiqBFwPVlyjmaeukwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NThmODVjLWE0NTgtNGE1OC1i YmRlLTRiZmIzNDNkYzRiMC8wLzMyMzQzMDM2M2EzNzM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMTMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGd0AwDQYJKoZI hvcNAQELBQADggEBABpWOlKzffoOgwWC3WMGM3GHk2hUFRV/yZoCtY8z1u/R1LNJ Rk3u5lnZjLVhRLgmhzw9qzRDeYmoD9ULTt66vR9ST+iwUsQNxPWaZI/yubBiHHEe d+8jX8ILc9qTTBD+u3nYAa00pRfz/MaEecYgc0RiAODwRIQQl6rxG0OkJvRzxU/l 7yJ9S/CgmkRBBvMCCPx2aD7VYvfBduDQHkwa6HXfXaKO37VD5knXCZzkAAfNsx2B HTB1ycgBKJiOolm/p4S7uORm7+3bKUMrRjAh+Gz5kdORwDb1u04JlrYKOwDS3cDk Moqcww6purWqNgFAbnf3ZKGaCLV5og3H3ZLRqC8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org