$ rpki-client -vvf repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa File: 323430363a396163303a3a2f33322d3438203d3e20313431313134.roa (raw, json) Hash identifier: /hJyfV6PR16JNZ+DEa2S1gpvBiL5SDBd/0mdlnBUhuY= Subject key identifier: 3D:22:98:D9:ED:CA:0C:42:D0:22:7C:84:8F:CB:C5:30:8D:2D:74:75 Certificate issuer: /CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Certificate serial: 10C847E202AAE004BFF0CD3A6400867F53FA1142 Authority key identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa Signing time: Wed 25 Sep 2024 11:00:01 +0000 ROA not before: Wed 25 Sep 2024 10:55:01 +0000 ROA not after: Wed 24 Sep 2025 11:00:01 +0000 asID: 141114 IP address blocks: 2406:9ac0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:c8:47:e2:02:aa:e0:04:bf:f0:cd:3a:64:00:86:7f:53:fa:11:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Validity Not Before: Sep 25 10:55:01 2024 GMT Not After : Sep 24 11:00:01 2025 GMT Subject: CN=3D2298D9EDCA0C42D0227C848FCBC5308D2D7475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1f:97:ac:bf:12:9e:07:41:95:7f:b6:6a:ca: e3:26:51:07:03:18:e1:56:9c:01:17:f4:63:3a:c8: 94:23:db:a1:a6:5e:d5:c4:ab:b7:8f:e0:55:8f:88: a8:b4:57:df:8c:f3:99:98:a3:65:ac:35:57:b6:93: 10:1f:dc:83:bb:44:14:74:fd:b9:17:a9:31:41:50: 81:58:2a:17:46:38:d5:2b:64:26:2f:38:32:d6:dc: 4f:c9:af:70:d9:30:3d:d0:d7:ee:63:ea:ff:7e:73: 8a:8f:8e:08:1d:be:87:eb:51:7d:7e:37:ed:35:bc: 3c:80:9d:66:6b:f7:12:2b:e3:20:d7:3c:3c:8e:36: fb:5f:36:aa:dd:9d:5c:e4:5e:a3:6e:5e:4c:80:88: 36:50:d5:79:13:c3:f9:08:44:41:99:bc:bf:98:0c: e2:22:d8:c8:53:88:6d:28:92:73:36:d7:7b:a7:e5: 93:eb:1d:ea:10:e4:59:c9:3a:05:aa:4b:30:2f:85: 7e:0c:5b:67:d1:31:7b:b7:28:9d:bd:df:43:32:b5: 74:c1:e4:2d:40:a8:8f:e4:c6:39:29:e9:d3:cc:de: 11:c5:bc:6e:1c:d5:4b:15:44:a2:61:e7:df:3c:a1: fd:f3:48:74:69:85:94:00:8f:4b:a5:db:78:09:9d: 28:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:22:98:D9:ED:CA:0C:42:D0:22:7C:84:8F:CB:C5:30:8D:2D:74:75 X509v3 Authority Key Identifier: keyid:52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/323430363a396163303a3a2f33322d3438203d3e20313431313134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:4e:61:ba:ef:5b:18:7f:9b:8b:5e:51:c4:5d:1c:6d:c4:96: 26:eb:2b:43:0f:59:0f:de:4f:ed:8a:b4:b4:2c:26:f6:92:ab: 09:f0:27:d2:fa:9c:88:93:87:be:59:3c:b1:0d:3b:77:7a:24: 2c:27:f0:9b:d2:e7:d2:32:77:98:53:97:de:f4:c0:55:e6:3f: 2c:aa:1a:9d:bf:ae:b1:1c:2f:b6:ec:5b:2d:37:6e:21:54:bf: 4a:1d:de:43:23:4b:2e:f1:c6:34:a9:07:5a:f5:0b:1d:f2:2f: 0d:46:7b:0b:cb:58:5d:27:de:f6:28:dc:ce:48:29:b8:a3:2c: 11:67:f6:3c:a4:84:76:ae:8b:db:99:da:70:c5:4a:0c:20:ea: 8b:d3:e4:3c:e6:77:15:a9:97:72:1c:ba:48:1b:77:25:94:a5: 9f:16:22:c2:a0:a8:a5:dc:bf:8d:80:3f:f8:39:3b:57:66:97: e0:65:ec:0f:fc:66:4d:c4:cd:e9:f4:d8:96:99:f5:72:e1:66: 64:94:41:48:fc:98:42:85:12:4a:0b:31:44:36:25:53:8b:03: d7:55:4c:81:e0:7c:ca:21:0f:6c:45:76:7c:91:47:92:b0:c3: 61:2f:55:94:1d:26:a3:e3:a2:13:8e:b8:cc:8c:f7:7a:d4:53: ff:9e:dd:ba -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEMhH4gKq4AS/8M06ZACGf1P6EUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFD NjFGOUY4NjAeFw0yNDA5MjUxMDU1MDFaFw0yNTA5MjQxMTAwMDFaMDMxMTAvBgNV BAMTKDNEMjI5OEQ5RURDQTBDNDJEMDIyN0M4NDhGQ0JDNTMwOEQyRDc0NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnH5esvxKeB0GVf7ZqyuMmUQcD GOFWnAEX9GM6yJQj26GmXtXEq7eP4FWPiKi0V9+M85mYo2WsNVe2kxAf3IO7RBR0 /bkXqTFBUIFYKhdGONUrZCYvODLW3E/Jr3DZMD3Q1+5j6v9+c4qPjggdvofrUX1+ N+01vDyAnWZr9xIr4yDXPDyONvtfNqrdnVzkXqNuXkyAiDZQ1XkTw/kIREGZvL+Y DOIi2MhTiG0oknM213un5ZPrHeoQ5FnJOgWqSzAvhX4MW2fRMXu3KJ2930MytXTB 5C1AqI/kxjkp6dPM3hHFvG4c1UsVRKJh5988of3zSHRphZQAj0ul23gJnSglAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUPSKY2e3KDELQInyEj8vFMI0tdHUwHwYDVR0j BBgwFoAUUhRRg7W+GmY/vFwigQJUGsYfn4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTdlODllOC01M2FhLTQ0ZjYtYjZkOC01ODc5MDc4YmY2NjQvMC81MjE0NTE4M0I1 QkUxQTY2M0ZCQzVDMjI4MTAyNTQxQUM2MUY5Rjg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIxNDUxODNCNUJFMUE2NjNGQkM1QzIyODEwMjU0MUFDNjFG OUY4Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2U4OWU4LTUzYWEtNDRmNi1i NmQ4LTU4NzkwNzhiZjY2NC8wLzMyMzQzMDM2M2EzOTYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMTMxMzEzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGmsAwDQYJKoZI hvcNAQELBQADggEBAF1OYbrvWxh/m4teUcRdHG3ElibrK0MPWQ/eT+2KtLQsJvaS qwnwJ9L6nIiTh75ZPLENO3d6JCwn8JvS59Iyd5hTl970wFXmPyyqGp2/rrEcL7bs Wy03biFUv0od3kMjSy7xxjSpB1r1Cx3yLw1GewvLWF0n3vYo3M5IKbijLBFn9jyk hHaui9uZ2nDFSgwg6ovT5DzmdxWpl3IcukgbdyWUpZ8WIsKgqKXcv42AP/g5O1dm l+Bl7A/8Zk3Ezen02JaZ9XLhZmSUQUj8mEKFEkoLMUQ2JVOLA9dVTIHgfMohD2xF dnyRR5Kww2EvVZQdJqPjohOOuMyM93rUU/+e3bo= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org