$ rpki-client -vvf repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa File: 323430363a383434303a3a2f33322d3332203d3e20313431303837.roa (raw, json) Hash identifier: +3d3ni85obTjksCVTVT5eeZhuEeRN8VnJiNM8q/vZ10= Subject key identifier: 66:69:5C:CC:FF:28:AA:60:95:EA:5E:80:E5:43:48:1F:92:A0:00:5E Certificate issuer: /CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Certificate serial: 6C3E2E126843B1CA7B095F4C2D0E7F758FEB0906 Authority key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa Signing time: Wed 20 Mar 2024 08:00:01 +0000 ROA not before: Wed 20 Mar 2024 07:55:01 +0000 ROA not after: Wed 19 Mar 2025 08:00:01 +0000 asID: 141087 IP address blocks: 2406:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:3e:2e:12:68:43:b1:ca:7b:09:5f:4c:2d:0e:7f:75:8f:eb:09:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Validity Not Before: Mar 20 07:55:01 2024 GMT Not After : Mar 19 08:00:01 2025 GMT Subject: CN=66695CCCFF28AA6095EA5E80E543481F92A0005E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ba:00:c9:66:2d:2e:e0:d6:c1:54:a0:c6:03: 5c:30:5f:2c:a6:2d:d9:b5:ae:9d:95:99:95:8a:f1: 2b:e9:5a:f5:34:98:99:b3:99:29:19:92:b6:3a:c2: df:7a:ce:b1:4c:f3:23:57:86:5c:a3:77:15:92:55: 27:51:b5:05:b5:90:a2:2e:dc:ca:88:6c:1c:b4:f9: 3c:56:00:ae:bd:bb:ab:19:07:17:cb:cd:66:b1:d5: 17:1e:ad:9e:83:34:ad:c1:8b:a6:25:22:e5:db:c7: 87:3d:db:be:c3:dd:0b:cf:38:4b:d8:ff:4a:e7:6b: c6:92:9d:02:b3:68:4a:98:f8:66:0e:a1:21:73:72: 4b:e5:79:18:ab:17:d4:bd:b0:91:14:ef:a2:53:b5: 15:83:55:e5:11:0d:33:12:ce:7c:47:d3:fa:44:62: 48:ab:91:0c:4c:40:cf:c9:71:33:bc:0f:fb:e0:b0: 4f:ab:79:82:2d:7b:01:c0:19:ea:17:35:34:fe:c9: 8c:fb:2c:51:53:01:b4:26:50:f9:8c:0d:5e:32:f3: fe:5f:e0:66:3b:34:6d:84:e4:28:c7:60:08:de:69: e3:89:ea:0b:5b:0b:59:5e:ba:8a:f0:60:bc:ed:04: 32:c5:6d:ff:99:52:e9:02:3f:c4:4b:35:26:08:7a: cc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:69:5C:CC:FF:28:AA:60:95:EA:5E:80:E5:43:48:1F:92:A0:00:5E X509v3 Authority Key Identifier: keyid:87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:8440::/32 Signature Algorithm: sha256WithRSAEncryption 15:53:af:65:ad:92:ed:30:1b:a7:db:b9:55:2b:ef:b5:6a:dc: 83:00:fb:ae:2f:ec:29:e0:fa:fb:f0:a7:2e:2e:65:7a:38:ff: bc:d8:ab:e9:6a:0f:c4:0c:80:62:10:0e:1b:5c:16:7f:60:f6: 27:8b:e3:66:46:4b:1d:f7:62:89:37:53:76:07:8e:d8:d5:94: 95:1e:36:c8:ce:53:5b:e3:c2:f1:80:c8:3a:20:60:fb:93:69: 47:0c:34:f0:6f:4c:01:43:40:72:4c:65:5f:d9:fa:1f:49:84: e7:e4:dd:b9:c2:18:f9:3f:67:73:cf:1d:0b:91:f8:6e:b4:42: 1c:f8:bc:26:5d:6a:c3:16:e8:c5:33:1e:0a:07:ff:4e:1b:d9: 64:4e:50:5f:f6:0b:57:26:d5:07:a8:2f:64:86:c5:eb:e4:53: db:a4:65:a5:24:3d:7b:fd:7e:4f:31:6b:79:3b:d6:d9:18:69: fb:89:c6:f6:78:a1:fa:fe:f1:ee:05:43:93:22:d3:1d:8b:1e: 89:fb:91:71:21:dc:ad:a7:90:36:01:1b:a2:22:f1:c1:ba:70: 71:f6:38:ad:08:a6:de:ce:9c:a8:1b:90:6d:f7:31:1c:80:95: d8:55:ea:e7:84:81:ff:58:20:0c:22:01:b9:42:7b:d5:f1:df: a3:19:87:25 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUbD4uEmhDscp7CV9MLQ5/dY/rCQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5 QzQ1M0JFRTAeFw0yNDAzMjAwNzU1MDFaFw0yNTAzMTkwODAwMDFaMDMxMTAvBgNV BAMTKDY2Njk1Q0NDRkYyOEFBNjA5NUVBNUU4MEU1NDM0ODFGOTJBMDAwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcugDJZi0u4NbBVKDGA1wwXyym Ldm1rp2VmZWK8SvpWvU0mJmzmSkZkrY6wt96zrFM8yNXhlyjdxWSVSdRtQW1kKIu 3MqIbBy0+TxWAK69u6sZBxfLzWax1RcerZ6DNK3Bi6YlIuXbx4c9277D3QvPOEvY /0rna8aSnQKzaEqY+GYOoSFzckvleRirF9S9sJEU76JTtRWDVeURDTMSznxH0/pE YkirkQxMQM/JcTO8D/vgsE+reYItewHAGeoXNTT+yYz7LFFTAbQmUPmMDV4y8/5f 4GY7NG2E5CjHYAjeaeOJ6gtbC1leuorwYLztBDLFbf+ZUukCP8RLNSYIeszHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUZmlczP8oqmCV6l6A5UNIH5KgAF4wHwYDVR0j BBgwFoAUh430t+PHdrLtwXUvzLxeKJxFO+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMC84NzhERjRCN0Uz Qzc3NkIyRURDMTc1MkZDQ0JDNUUyODlDNDUzQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5QzQ1 M0JFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMyMzQzMDM2M2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGhEAwDQYJKoZI hvcNAQELBQADggEBABVTr2Wtku0wG6fbuVUr77Vq3IMA+64v7Cng+vvwpy4uZXo4 /7zYq+lqD8QMgGIQDhtcFn9g9ieL42ZGSx33Yok3U3YHjtjVlJUeNsjOU1vjwvGA yDogYPuTaUcMNPBvTAFDQHJMZV/Z+h9JhOfk3bnCGPk/Z3PPHQuR+G60Qhz4vCZd asMW6MUzHgoH/04b2WROUF/2C1cm1QeoL2SGxevkU9ukZaUkPXv9fk8xa3k71tkY afuJxvZ4ofr+8e4FQ5Mi0x2LHon7kXEh3K2nkDYBG6Ii8cG6cHH2OK0Ipt7OnKgb kG33MRyAldhV6ueEgf9YIAwiAblCe9Xx36MZhyU= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org