$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: YVPmHYNM/91Kh3go+8hTY3GFfVG3Jf2pj4Fr/0KSs7Q= Subject key identifier: B0:C7:18:57:DD:4C:27:D1:EE:A3:46:BF:60:0D:2F:F6:17:67:B4:2A Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 754E61778E7BA2E30E8C017D4F20D683EF77FC Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa Signing time: Thu 08 Aug 2024 04:00:03 +0000 ROA not before: Thu 08 Aug 2024 03:55:03 +0000 ROA not after: Thu 07 Aug 2025 04:00:03 +0000 asID: 133827 IP address blocks: 2404:a640:956::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4e:61:77:8e:7b:a2:e3:0e:8c:01:7d:4f:20:d6:83:ef:77:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Aug 8 03:55:03 2024 GMT Not After : Aug 7 04:00:03 2025 GMT Subject: CN=B0C71857DD4C27D1EEA346BF600D2FF61767B42A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a3:ec:b2:e6:de:6c:df:41:30:fc:d1:d5:f2: 7a:e8:be:9d:3c:05:3f:7d:f1:a3:5f:3d:54:25:05: 89:49:24:53:81:8e:b3:13:fb:2f:13:d8:29:e8:63: 0b:8c:5b:78:03:85:31:30:c3:52:f4:70:43:db:e4: c0:60:ba:fc:cf:65:7e:60:40:d6:ff:20:8e:43:ea: 15:6a:bd:ad:56:6f:85:8d:13:d4:76:c3:30:07:c9: ef:5c:68:cb:d5:15:32:84:94:db:94:53:56:85:95: 44:6f:e5:5c:bb:69:36:80:8e:9e:a4:fe:2c:06:5f: 59:eb:be:0e:53:58:1d:31:9d:31:81:25:46:19:38: ac:46:f0:cf:b5:92:9a:ca:94:bb:e5:56:a6:af:f7: 01:f3:4d:a8:a0:82:87:bc:e3:56:6c:b9:fe:55:a4: 1f:4d:96:bc:36:93:a3:fb:34:3c:50:15:60:8a:71: e4:b3:bb:96:02:80:b8:fd:24:b3:ae:ee:01:55:7a: 6f:29:1c:28:8d:ec:e5:76:26:1c:54:88:e5:9e:92: 06:71:9a:b6:ad:d9:02:33:81:a1:f0:70:f5:46:eb: eb:66:c4:e0:2e:4e:21:b1:b9:c5:32:71:da:09:63: d6:95:8a:0a:12:68:b3:4d:b9:65:e6:82:aa:51:8a: 3e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C7:18:57:DD:4C:27:D1:EE:A3:46:BF:60:0D:2F:F6:17:67:B4:2A X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:956::/48 Signature Algorithm: sha256WithRSAEncryption 4f:87:58:c9:4a:ce:c9:91:ca:fb:3e:72:d2:09:87:ce:15:92: fa:3b:75:f0:92:ea:1c:0e:fc:cf:47:72:f7:64:37:bf:fa:c4: 48:92:a3:99:e9:3a:c6:fc:40:dd:40:92:f7:24:62:57:2c:2b: d3:31:72:c4:66:24:93:fd:2d:c5:ae:51:53:da:b2:bd:41:7e: e5:4d:48:4c:b2:14:b1:c5:6e:13:4d:9d:1f:65:6a:51:38:7a: b7:3a:42:00:7a:83:17:6c:90:ad:cf:41:0d:1f:c0:86:7c:eb: 21:b4:b6:d0:c1:ea:3d:c5:96:83:a6:5f:6f:42:3f:a2:41:31: 7c:de:30:29:16:a0:64:62:29:00:d0:7d:63:6d:d9:3e:26:b8: 89:d4:9d:3a:38:34:50:a2:61:11:ca:2b:e8:79:ef:83:26:12: d7:a3:c2:00:0e:cd:a9:17:d9:b9:9e:b7:db:5b:57:1e:9d:37: 91:3a:10:b1:1f:c4:5a:6d:af:21:4e:24:6b:ba:90:33:04:6a: 85:37:69:17:3d:57:55:c5:be:aa:26:1f:f3:a8:d3:ec:d7:82: 0b:91:74:0a:e0:ce:8c:5f:99:9f:17:3d:17:0b:2f:13:1c:45: 0c:f0:f2:25:54:54:14:f9:11:ec:bd:a4:58:00:88:fe:eb:94: 74:66:ea:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITdU5hd457ouMOjAF9TyDWg+93/DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwQ0U2QTc5RDUzRDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2 OUY4MzZGMB4XDTI0MDgwODAzNTUwM1oXDTI1MDgwNzA0MDAwM1owMzExMC8GA1UE AxMoQjBDNzE4NTdERDRDMjdEMUVFQTM0NkJGNjAwRDJGRjYxNzY3QjQyQTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM2j7LLm3mzfQTD80dXyeui+nTwF P33xo189VCUFiUkkU4GOsxP7LxPYKehjC4xbeAOFMTDDUvRwQ9vkwGC6/M9lfmBA 1v8gjkPqFWq9rVZvhY0T1HbDMAfJ71xoy9UVMoSU25RTVoWVRG/lXLtpNoCOnqT+ LAZfWeu+DlNYHTGdMYElRhk4rEbwz7WSmsqUu+VWpq/3AfNNqKCCh7zjVmy5/lWk H02WvDaTo/s0PFAVYIpx5LO7lgKAuP0ks67uAVV6bykcKI3s5XYmHFSI5Z6SBnGa tq3ZAjOBofBw9Ubr62bE4C5OIbG5xTJx2glj1pWKChJos025ZeaCqlGKPhkCAwEA AaOCAj0wggI5MB0GA1UdDgQWBBSwxxhX3Uwn0e6jRr9gDS/2F2e0KjAfBgNVHSME GDAWgBQM5qedU9gp8qVWI2dujSqaVp+DbzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVh OTkwMTI1LTYwOWEtNDhjOC1hYzg2LTFjM2JjMzE1YmFkNi8wLzBDRTZBNzlENTNE ODI5RjJBNTU2MjM2NzZFOEQyQTlBNTY5RjgzNkYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wQ0U2QTc5RDUzRDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4 MzZGLmNlcjCBqgYIKwYBBQUHAQsEgZ0wgZowgZcGCCsGAQUFBzALhoGKcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE5OTAxMjUtNjA5YS00OGM4LWFj ODYtMWMzYmMzMTViYWQ2LzAvMzIzNDMwMzQzYTYxMzYzNDMwM2EzOTM1MzYzYTNh MmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODMyMzcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBKZA CVYwDQYJKoZIhvcNAQELBQADggEBAE+HWMlKzsmRyvs+ctIJh84Vkvo7dfCS6hwO /M9HcvdkN7/6xEiSo5npOsb8QN1AkvckYlcsK9MxcsRmJJP9LcWuUVPasr1BfuVN SEyyFLHFbhNNnR9lalE4erc6QgB6gxdskK3PQQ0fwIZ86yG0ttDB6j3FloOmX29C P6JBMXzeMCkWoGRiKQDQfWNt2T4muInUnTo4NFCiYRHKK+h574MmEtejwgAOzakX 2bmet9tbVx6dN5E6ELEfxFptryFOJGu6kDMEaoU3aRc9V1XFvqomH/Oo0+zXgguR dArgzoxfmZ8XPRcLLxMcRQzw8iVUVBT5Eey9pFgAiP7rlHRm6hg= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org