$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: 0dUKes+eIh/aOaX/cHPsineN0HFtNVJsDIk5syVGyQk= Subject key identifier: C4:76:7E:87:E8:F8:06:64:D9:9A:57:22:73:87:1D:97:F5:82:E6:FE Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 1389D8975F1BE753952A5E8B5D542FD6A6F8740B Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa Signing time: Thu 08 Aug 2024 04:00:02 +0000 ROA not before: Thu 08 Aug 2024 03:55:02 +0000 ROA not after: Thu 07 Aug 2025 04:00:02 +0000 asID: 133827 IP address blocks: 2404:a640:113::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:89:d8:97:5f:1b:e7:53:95:2a:5e:8b:5d:54:2f:d6:a6:f8:74:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Aug 8 03:55:02 2024 GMT Not After : Aug 7 04:00:02 2025 GMT Subject: CN=C4767E87E8F80664D99A572273871D97F582E6FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:af:0e:c7:a4:c4:fc:7f:fc:4e:5e:ae:3a: 63:f7:a1:02:22:d1:41:f8:0a:b5:ed:d1:78:c0:f0: cb:12:21:08:6f:19:e6:42:35:fd:72:58:69:02:bd: c5:45:c6:d9:1c:67:cb:3e:d5:a7:a1:a5:a8:43:ff: 25:d8:11:d1:7a:ee:85:e5:bb:0d:69:44:70:b7:6c: 70:ee:d6:13:ec:e9:23:02:2c:05:08:63:8d:35:f6: ca:06:30:03:46:e5:21:cf:cc:dd:69:24:66:03:aa: 7e:3d:0e:66:d9:44:fe:da:0e:42:80:f5:5f:7b:6c: 9a:1c:f9:80:fd:ca:46:17:7f:5a:2c:e9:a0:84:1b: 33:a6:7b:1f:b0:ba:32:61:05:2b:56:1b:50:16:ef: 18:4f:63:69:6e:73:42:47:eb:13:af:80:fe:bc:40: 25:3c:ac:d6:69:9d:3c:ff:ac:55:ae:07:45:e8:4d: 00:04:9d:e8:47:b9:fc:0a:e5:00:9b:27:51:78:fc: 38:a6:2e:c3:02:9c:e8:c4:88:9d:f6:8e:31:85:5f: b5:11:2e:97:78:78:be:57:57:b1:a9:db:ce:1b:b4: 9b:3d:a6:44:5f:7b:3f:6f:69:ce:d7:c4:8f:f8:23: 1d:e1:fb:15:91:04:7a:fa:51:be:92:58:1d:2c:4d: 47:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:76:7E:87:E8:F8:06:64:D9:9A:57:22:73:87:1D:97:F5:82:E6:FE X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3131333a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:113::/48 Signature Algorithm: sha256WithRSAEncryption 86:07:51:f6:ac:4f:84:85:27:ee:e9:3b:19:9e:e8:7b:63:76: a6:b5:3b:90:50:78:8e:a9:18:45:9d:1f:a6:86:40:e5:0e:32: f8:aa:f1:4b:63:7b:ae:52:e3:fc:96:56:6e:a4:b5:bc:d9:0a: 7b:ae:d0:79:da:ac:49:5b:fc:37:6a:9e:c6:a1:cd:f1:a5:05: a5:8b:21:a1:19:e3:17:77:2d:a1:9a:c0:5d:7e:7d:38:18:d0: a8:e2:f9:28:64:ea:2d:31:a3:7e:d6:32:13:b2:c2:6d:11:6a: 7b:11:18:20:83:f9:cd:cb:27:97:12:9e:01:90:4b:cc:1b:b0: 0c:22:9c:be:08:01:00:c8:9a:fc:a3:ce:b9:c8:0b:e3:dc:26: f9:9c:16:b9:55:2d:fc:e1:b3:e7:6a:27:a4:15:0c:d9:16:c1: 58:29:b4:b3:8a:39:d5:b1:9a:76:21:6b:4b:29:75:0f:d0:0a: 48:36:89:64:fd:14:b2:96:4e:22:b7:37:d7:ef:a1:e4:ac:70: 3a:d1:59:e8:27:ba:12:70:02:79:ee:34:51:29:1c:c0:cd:2c: ec:2c:a9:6d:26:f0:67:bf:af:a3:c9:df:e5:d5:ad:1d:a3:fa: ca:1a:dc:1a:3d:ca:ca:ba:5e:e3:5d:27:9b:22:0e:0a:eb:b2: 30:03:cb:fd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE4nYl18b51OVKl6LXVQv1qb4dAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNDA4MDgwMzU1MDJaFw0yNTA4MDcwNDAwMDJaMDMxMTAvBgNV BAMTKEM0NzY3RTg3RThGODA2NjREOTlBNTcyMjczODcxRDk3RjU4MkU2RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCulq8Ox6TE/H/8Tl6uOmP3oQIi 0UH4CrXt0XjA8MsSIQhvGeZCNf1yWGkCvcVFxtkcZ8s+1aehpahD/yXYEdF67oXl uw1pRHC3bHDu1hPs6SMCLAUIY4019soGMANG5SHPzN1pJGYDqn49DmbZRP7aDkKA 9V97bJoc+YD9ykYXf1os6aCEGzOmex+wujJhBStWG1AW7xhPY2luc0JH6xOvgP68 QCU8rNZpnTz/rFWuB0XoTQAEnehHufwK5QCbJ1F4/DimLsMCnOjEiJ32jjGFX7UR Lpd4eL5XV7Gp284btJs9pkRfez9vac7XxI/4Ix3h+xWRBHr6Ub6SWB0sTUfZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxHZ+h+j4BmTZmlcic4cdl/WC5v4wHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzEzMTMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAETMA0GCSqGSIb3DQEBCwUAA4IBAQCGB1H2rE+EhSfu6TsZnuh7Y3amtTuQUHiO qRhFnR+mhkDlDjL4qvFLY3uuUuP8llZupLW82Qp7rtB52qxJW/w3ap7Goc3xpQWl iyGhGeMXdy2hmsBdfn04GNCo4vkoZOotMaN+1jITssJtEWp7ERggg/nNyyeXEp4B kEvMG7AMIpy+CAEAyJr8o865yAvj3Cb5nBa5VS384bPnaiekFQzZFsFYKbSzijnV sZp2IWtLKXUP0ApINolk/RSylk4itzfX76HkrHA60VnoJ7oScAJ57jRRKRzAzSzs LKltJvBnv6+jyd/l1a0do/rKGtwaPcrKul7jXSebIg4K67IwA8v9 -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org