$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa File: 323430353a633563303a3a2f33322d3438203d3e20313339393736.roa (raw, json) Hash identifier: xfrI3EMm4Ep5Rz+Bb2hqA/GSHJ4grbbfa2TI4fnTntU= Subject key identifier: 7B:65:7A:BE:9C:1B:34:BE:D8:43:AD:D5:C4:D3:45:E0:9E:B2:2C:9D Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 3A8CBE419CE910D1EA97E73D75EFC4AEC4B428CC Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa Signing time: Fri 02 Aug 2024 07:02:38 +0000 ROA not before: Fri 02 Aug 2024 06:57:38 +0000 ROA not after: Fri 01 Aug 2025 07:02:38 +0000 asID: 139976 IP address blocks: 2405:c5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:8c:be:41:9c:e9:10:d1:ea:97:e7:3d:75:ef:c4:ae:c4:b4:28:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: Aug 2 06:57:38 2024 GMT Not After : Aug 1 07:02:38 2025 GMT Subject: CN=7B657ABE9C1B34BED843ADD5C4D345E09EB22C9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:24:f9:a9:14:5f:48:d9:bb:69:8f:7f:1a:9e: 65:60:1d:e2:6b:63:7a:aa:c1:69:de:fb:c5:fa:48: fe:fe:0e:b1:93:d5:b4:6b:d7:a3:61:c4:de:c6:95: 89:02:9d:5b:8e:0b:94:47:dd:3c:90:7d:68:10:02: 5b:0f:24:8e:c5:39:66:8d:f7:37:28:e8:f9:ee:a5: dc:64:e7:59:72:6c:03:47:61:5e:42:aa:d7:0a:9c: 80:82:e3:bf:ea:44:19:c2:d5:5f:63:8f:86:3b:ac: d5:bc:63:87:ac:c1:df:86:93:41:c3:2f:e8:ed:5b: 04:7c:fc:4c:86:95:77:ed:19:60:c1:2d:2a:1d:1a: e3:44:4c:7f:a9:87:8c:be:de:ae:64:3c:c0:62:56: 30:e0:d6:e3:cb:20:31:71:75:ca:f0:8d:93:4c:9d: c5:ca:f5:0e:09:0b:27:62:d4:66:9c:30:e6:82:e1: 29:38:7f:7b:c3:5e:40:85:f2:1a:d5:30:15:9e:23: 64:ab:fc:b1:54:16:1c:e5:ef:b9:ff:6e:32:7b:f3: 4d:5a:38:23:86:f4:c0:e8:f7:dc:9e:8f:6c:8c:ac: 81:d4:a3:a2:7c:07:a4:8d:4d:5e:30:d9:87:9d:40: 8d:f0:41:fb:d7:ae:00:df:96:78:89:8d:75:34:52: 33:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:65:7A:BE:9C:1B:34:BE:D8:43:AD:D5:C4:D3:45:E0:9E:B2:2C:9D X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a3a2f33322d3438203d3e20313339393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c5c0::/32 Signature Algorithm: sha256WithRSAEncryption 70:d3:a6:88:3c:86:53:ff:cb:9a:4a:ad:d2:a3:3b:b9:99:8f: 2d:5f:f2:d2:55:df:0b:b8:57:24:d3:38:1c:33:01:57:48:0c: 65:e8:17:e5:97:35:8a:73:d2:57:dd:57:5c:73:ae:1d:f9:b7: 8a:20:b5:64:61:e3:4b:21:8b:ef:a4:31:e7:7b:ff:82:2c:e6: e4:c4:15:eb:df:c5:69:1c:ad:b3:33:9e:b4:97:f5:be:24:56: 09:34:13:5a:3c:d2:1b:ed:d6:8c:e0:4c:79:9d:1c:4f:09:c9: e6:88:e8:9e:d4:d5:8c:99:33:dd:19:8f:c9:af:ab:0a:7d:87: 81:b9:9a:19:0a:8c:ff:cf:93:c4:c0:1d:19:40:44:4e:a6:c1: b8:42:15:15:38:57:81:c6:d8:ee:b4:39:83:e9:a4:e9:c3:50: 26:ad:c6:40:4c:fd:cb:a7:2a:16:9f:fb:7b:f2:12:63:88:39: 4f:b2:8c:a6:cf:31:3d:72:1d:ae:ac:9d:6a:ee:51:9e:40:e0: 3a:9d:07:8a:a4:23:d5:40:c0:20:b0:21:b4:ef:97:d0:5e:cb: a3:b6:c9:33:66:03:a7:5d:2b:93:4c:1d:e8:59:b3:7a:7b:bf: 61:d3:c4:39:ba:f7:3e:df:a3:71:1e:6b:fb:9a:60:b2:a2:82: 9c:3e:be:40 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOoy+QZzpENHql+c9de/ErsS0KMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNDA4MDIwNjU3MzhaFw0yNTA4MDEwNzAyMzhaMDMxMTAvBgNV BAMTKDdCNjU3QUJFOUMxQjM0QkVEODQzQURENUM0RDM0NUUwOUVCMjJDOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJPmpFF9I2btpj38anmVgHeJr Y3qqwWne+8X6SP7+DrGT1bRr16NhxN7GlYkCnVuOC5RH3TyQfWgQAlsPJI7FOWaN 9zco6Pnupdxk51lybANHYV5CqtcKnICC47/qRBnC1V9jj4Y7rNW8Y4eswd+Gk0HD L+jtWwR8/EyGlXftGWDBLSodGuNETH+ph4y+3q5kPMBiVjDg1uPLIDFxdcrwjZNM ncXK9Q4JCydi1GacMOaC4Sk4f3vDXkCF8hrVMBWeI2Sr/LFUFhzl77n/bjJ7801a OCOG9MDo99yej2yMrIHUo6J8B6SNTV4w2YedQI3wQfvXrgDflniJjXU0UjNPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUe2V6vpwbNL7YQ63VxNNF4J6yLJ0wHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMyMzQzMDM1M2E2MzM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFxcAwDQYJKoZI hvcNAQELBQADggEBAHDTpog8hlP/y5pKrdKjO7mZjy1f8tJV3wu4VyTTOBwzAVdI DGXoF+WXNYpz0lfdV1xzrh35t4ogtWRh40shi++kMed7/4Is5uTEFevfxWkcrbMz nrSX9b4kVgk0E1o80hvt1ozgTHmdHE8JyeaI6J7U1YyZM90Zj8mvqwp9h4G5mhkK jP/Pk8TAHRlARE6mwbhCFRU4V4HG2O60OYPppOnDUCatxkBM/cunKhaf+3vyEmOI OU+yjKbPMT1yHa6snWruUZ5A4DqdB4qkI9VAwCCwIbTvl9Bey6O2yTNmA6ddK5NM HehZs3p7v2HTxDm69z7fo3Eea/uaYLKigpw+vkA= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org