$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa File: 323430373a633663303a3a2f33322d3438203d3e20313432333634.roa (raw, json) Hash identifier: PyYiwhlFLYwpVeZMVUP48PPdFiaKcZ+8zWirbz0F2cA= Subject key identifier: 09:CD:29:7E:AD:BA:3D:96:83:D6:30:23:62:1F:7C:7D:F4:EE:8D:A8 Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Certificate serial: 3B950D02AE6F8143473D8DFD7A268D2F511ACDF2 Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa Signing time: Sun 10 Mar 2024 07:00:02 +0000 ROA not before: Sun 10 Mar 2024 06:55:02 +0000 ROA not after: Sun 09 Mar 2025 07:00:02 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:95:0d:02:ae:6f:81:43:47:3d:8d:fd:7a:26:8d:2f:51:1a:cd:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Validity Not Before: Mar 10 06:55:02 2024 GMT Not After : Mar 9 07:00:02 2025 GMT Subject: CN=09CD297EADBA3D9683D63023621F7C7DF4EE8DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a2:66:9f:8d:6d:d9:9a:03:11:fe:a6:62:25: 6f:57:04:39:5a:97:18:60:f8:dd:e6:c2:c5:3d:89: d8:00:17:f1:67:14:79:03:56:22:88:11:1a:ef:82: 3d:1c:45:d4:ff:33:48:0d:19:df:e9:70:55:06:17: b7:a9:0a:af:3d:ae:ea:0a:6e:81:2d:5a:3e:26:d6: 68:91:e9:88:58:2b:26:e3:19:2f:37:2d:a4:06:15: 84:30:c1:20:36:c4:4a:b7:79:1e:b0:65:58:3d:e2: 1a:13:10:5a:d6:6a:27:22:3d:8d:41:71:b7:37:aa: 79:b8:f0:1f:1c:32:7f:b0:0d:90:85:cc:6f:a6:0e: 72:21:91:55:7a:98:82:38:45:db:0c:35:8a:a6:79: c8:5f:a2:5f:38:84:fd:f6:55:83:40:11:ca:e5:b5: 33:28:c3:ad:ba:c3:59:ab:53:b6:2b:0c:bb:5c:d7: 26:a8:2e:f2:56:0a:85:76:43:01:ca:6d:05:f2:c9: d3:b4:37:54:8f:9a:9d:5f:2e:f3:16:41:8f:e4:1a: 32:e5:27:7d:58:8c:48:74:0c:6d:8b:eb:77:83:e7: 07:f4:6d:85:8b:8b:50:45:2c:69:17:cd:ce:06:c9: 84:21:2d:9c:6e:62:21:af:75:f9:cc:cf:f9:7a:52: 98:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CD:29:7E:AD:BA:3D:96:83:D6:30:23:62:1F:7C:7D:F4:EE:8D:A8 X509v3 Authority Key Identifier: keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3438203d3e20313432333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:91:ee:c0:77:01:32:e0:13:b7:a6:54:2a:c0:da:83:a4:cb: 05:7b:d4:4c:51:87:6a:12:72:8d:20:71:ce:6e:ca:14:1f:3e: 5f:54:f2:c4:80:d1:4b:61:a9:17:de:df:22:66:9e:b3:c8:40: 17:c2:2b:95:5f:96:9d:96:10:52:02:8f:e4:be:b1:73:70:f8: 46:5b:a4:0f:67:09:01:f9:8d:c9:80:c6:6c:8b:1c:58:1d:bc: f6:88:88:80:0d:69:08:b7:51:ea:bf:85:b0:fc:40:dd:2c:b0: 7c:c1:a2:92:11:12:8e:40:19:ad:9a:3c:92:5a:93:14:a6:b6: 3e:fc:d7:1e:18:51:40:bd:a0:a3:bd:43:0f:02:d8:e1:65:cc: 3e:e4:ed:0c:e8:7c:ab:3a:74:a0:47:2d:7b:98:d3:5a:63:86: d1:f4:8f:7c:92:1f:2b:be:8d:6a:72:59:21:c7:b4:b1:70:d3: a6:ec:ec:c4:8d:cd:38:a2:1f:d3:95:d2:7b:ef:68:22:76:55: 73:01:83:7b:ba:d4:9d:b0:d1:02:db:d1:62:20:26:a0:e8:9b: 28:82:33:71:eb:d8:f0:4f:e9:76:e7:d1:3d:4f:24:d9:7f:6f: b7:b8:ad:66:68:7c:20:5e:9d:6b:c6:e3:c8:7d:43:ba:34:ea: ff:d3:a5:07 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUO5UNAq5vgUNHPY39eiaNL1EazfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZD MzVFMUU0RjAeFw0yNDAzMTAwNjU1MDJaFw0yNTAzMDkwNzAwMDJaMDMxMTAvBgNV BAMTKDA5Q0QyOTdFQURCQTNEOTY4M0Q2MzAyMzYyMUY3QzdERjRFRThEQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRomafjW3ZmgMR/qZiJW9XBDla lxhg+N3mwsU9idgAF/FnFHkDViKIERrvgj0cRdT/M0gNGd/pcFUGF7epCq89ruoK boEtWj4m1miR6YhYKybjGS83LaQGFYQwwSA2xEq3eR6wZVg94hoTEFrWaiciPY1B cbc3qnm48B8cMn+wDZCFzG+mDnIhkVV6mII4RdsMNYqmechfol84hP32VYNAEcrl tTMow626w1mrU7YrDLtc1yaoLvJWCoV2QwHKbQXyydO0N1SPmp1fLvMWQY/kGjLl J31YjEh0DG2L63eD5wf0bYWLi1BFLGkXzc4GyYQhLZxuYiGvdfnMz/l6UphlAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCc0pfq26PZaD1jAjYh98ffTujagwHwYDVR0j BBgwFoAUzsX+GDo5EFyeJwLMK/CJH8NeHk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NjFjZjc3Ny04YWRmLTRlZjEtOGQ2Zi05ODYyYzU1NjIwZWEvMC9DRUM1RkUxODNB MzkxMDVDOUUyNzAyQ0MyQkYwODkxRkMzNUUxRTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZDMzVF MUU0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU2MWNmNzc3LThhZGYtNGVmMS04 ZDZmLTk4NjJjNTU2MjBlYS8wLzMyMzQzMDM3M2E2MzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHxsAwDQYJKoZI hvcNAQELBQADggEBAA6R7sB3ATLgE7emVCrA2oOkywV71ExRh2oSco0gcc5uyhQf Pl9U8sSA0UthqRfe3yJmnrPIQBfCK5Vflp2WEFICj+S+sXNw+EZbpA9nCQH5jcmA xmyLHFgdvPaIiIANaQi3Ueq/hbD8QN0ssHzBopIREo5AGa2aPJJakxSmtj781x4Y UUC9oKO9Qw8C2OFlzD7k7QzofKs6dKBHLXuY01pjhtH0j3ySHyu+jWpyWSHHtLFw 06bs7MSNzTiiH9OV0nvvaCJ2VXMBg3u61J2w0QLb0WIgJqDomyiCM3Hr2PBP6Xbn 0T1PJNl/b7e4rWZofCBenWvG48h9Q7o06v/TpQc= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org