$ rpki-client -vvf repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa File: 323430353a366334303a3a2f33322d3438203d3e203234353237.roa (raw, json) Hash identifier: WsDliuQbW03SwQN24y9FuY0ZkLEdakFBBqX9AL604CY= Subject key identifier: AC:10:47:A0:0E:62:3B:C3:F6:15:4E:ED:9B:4F:B3:1E:88:C5:01:C4 Certificate issuer: /CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Certificate serial: 657C9E5A649D3CF9E55B0E20E5F37C9DF9CEA870 Authority key identifier: E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa Signing time: Mon 01 Jul 2024 00:02:15 +0000 ROA not before: Sun 30 Jun 2024 23:57:15 +0000 ROA not after: Mon 30 Jun 2025 00:02:15 +0000 asID: 24527 IP address blocks: 2405:6c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7c:9e:5a:64:9d:3c:f9:e5:5b:0e:20:e5:f3:7c:9d:f9:ce:a8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Validity Not Before: Jun 30 23:57:15 2024 GMT Not After : Jun 30 00:02:15 2025 GMT Subject: CN=AC1047A00E623BC3F6154EED9B4FB31E88C501C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:73:2a:29:19:53:81:77:15:b0:67:b0:cd:b1: 76:d0:1e:44:a5:fa:18:b7:73:ae:2b:e3:ed:56:a0: ba:06:6a:42:01:dc:2b:ae:f6:bb:b8:c8:4d:e0:ca: bf:c7:a1:9c:ac:3b:a0:6f:e8:2e:dd:ad:6d:68:ec: 09:06:68:38:69:17:cd:b6:60:59:6a:73:fd:95:bc: 1e:8a:96:be:f6:31:51:29:72:4c:0a:ba:55:80:94: 76:32:e1:61:1b:55:5c:b0:49:4c:95:9f:12:f7:de: e6:86:a8:8b:2d:e3:9c:5c:40:24:4f:e9:30:40:5f: 7c:3a:b6:e3:1a:98:40:af:6d:d9:bf:e8:6c:54:21: e0:80:d1:fe:31:f1:ec:ef:9c:3f:a9:82:14:d0:e5: e1:e9:2c:34:55:b9:bd:61:03:58:18:01:ff:ec:aa: 00:ec:ac:df:42:ef:12:0d:f2:07:19:96:f3:20:b5: d8:0d:80:ef:40:4b:dd:bf:81:e5:3c:13:d3:7e:b4: da:b0:78:e1:06:48:8a:f9:09:9c:10:6e:f9:00:58: fc:5a:02:c1:62:14:a9:e5:c6:cc:0a:0e:15:87:4d: 37:e2:67:3c:0a:73:b2:14:3c:d3:89:45:1a:06:bb: a8:e4:3f:aa:a1:8c:05:d9:23:78:6f:d8:38:2d:3c: 70:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:10:47:A0:0E:62:3B:C3:F6:15:4E:ED:9B:4F:B3:1E:88:C5:01:C4 X509v3 Authority Key Identifier: keyid:E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 36:e8:0f:c0:5e:95:16:60:e0:4c:a5:3f:53:15:6c:de:f7:2d: 63:73:20:a2:cf:14:67:86:5e:98:09:0e:01:c5:c9:f2:69:48: dc:5b:9c:3c:66:0d:8e:82:71:e4:db:57:c8:0f:ff:ea:bd:5f: 10:3c:49:01:f8:77:ff:b4:ed:21:07:70:78:db:c9:4f:cd:01: 02:41:ce:e1:b3:e5:76:dc:79:21:b6:ac:c0:01:aa:10:5c:21: c3:b5:e9:23:95:51:83:5c:31:38:62:bd:8d:1b:03:64:fc:00: 58:e5:65:1e:75:40:7d:90:fc:a0:a1:ac:8c:ba:42:41:62:50: a2:b4:bb:37:44:b8:f5:f0:97:6b:9d:af:67:ff:21:50:73:87: ef:ee:59:b5:10:b4:e1:4d:39:c2:72:48:d0:70:a3:5d:0e:cd: ea:02:fc:8d:fb:14:43:47:b6:71:84:ce:02:22:d5:cf:2c:85: 1a:58:5e:dc:e5:56:c4:a3:19:78:f4:f1:ca:68:ba:ef:17:0f: 1e:39:d4:12:ab:80:2d:d6:5e:13:46:bc:ab:f3:3c:9b:41:8f: cb:3e:4a:a1:05:ac:2e:25:43:2a:3e:24:88:d6:44:93:f4:2c: f3:92:38:dd:83:71:77:cf:04:73:44:eb:3b:60:4d:29:3a:15: 3f:2a:f7:5a -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZXyeWmSdPPnlWw4g5fN8nfnOqHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAw NEFCMkM2MTAeFw0yNDA2MzAyMzU3MTVaFw0yNTA2MzAwMDAyMTVaMDMxMTAvBgNV BAMTKEFDMTA0N0EwMEU2MjNCQzNGNjE1NEVFRDlCNEZCMzFFODhDNTAxQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqcyopGVOBdxWwZ7DNsXbQHkSl +hi3c64r4+1WoLoGakIB3Cuu9ru4yE3gyr/HoZysO6Bv6C7drW1o7AkGaDhpF822 YFlqc/2VvB6Klr72MVEpckwKulWAlHYy4WEbVVywSUyVnxL33uaGqIst45xcQCRP 6TBAX3w6tuMamECvbdm/6GxUIeCA0f4x8ezvnD+pghTQ5eHpLDRVub1hA1gYAf/s qgDsrN9C7xIN8gcZlvMgtdgNgO9AS92/geU8E9N+tNqweOEGSIr5CZwQbvkAWPxa AsFiFKnlxswKDhWHTTfiZzwKc7IUPNOJRRoGu6jkP6qhjAXZI3hv2DgtPHBZAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUrBBHoA5iO8P2FU7tm0+zHojFAcQwHwYDVR0j BBgwFoAU6fegqm3Mof99PWFGDVU0oASrLGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmI4N2ZlYi0wZmUyLTQxOGEtYTM3YS1iZTNkZDFmMGU2M2MvMC9FOUY3QTBBQTZE Q0NBMUZGN0QzRDYxNDYwRDU1MzRBMDA0QUIyQzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAwNEFC MkM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2Yjg3ZmViLTBmZTItNDE4YS1h MzdhLWJlM2RkMWYwZTYzYy8wLzMyMzQzMDM1M2EzNjYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBWxAMA0GCSqGSIb3 DQEBCwUAA4IBAQA26A/AXpUWYOBMpT9TFWze9y1jcyCizxRnhl6YCQ4BxcnyaUjc W5w8Zg2OgnHk21fID//qvV8QPEkB+Hf/tO0hB3B428lPzQECQc7hs+V23HkhtqzA AaoQXCHDtekjlVGDXDE4Yr2NGwNk/ABY5WUedUB9kPygoayMukJBYlCitLs3RLj1 8Jdrna9n/yFQc4fv7lm1ELThTTnCckjQcKNdDs3qAvyN+xRDR7ZxhM4CItXPLIUa WF7c5VbEoxl49PHKaLrvFw8eOdQSq4At1l4TRryr8zybQY/LPkqhBawuJUMqPiSI 1kST9Czzkjjdg3F3zwRzROs7YE0pOhU/Kvda -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org