$ rpki-client -vvf repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa File: 323430343a3630303a3a2f33322d3438203d3e2034383333.roa (raw, json) Hash identifier: XRUL5OC/FVMM95Sr+TgKKKXzxAgbs6oPZwx6ooD6oPE= Subject key identifier: 03:35:DE:07:63:B1:06:9A:9D:92:52:A1:5E:11:03:4A:A7:CA:EA:F9 Certificate issuer: /CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Certificate serial: 170E907A4E04D05174AFD307E3C71A0397A22B4F Authority key identifier: CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa Signing time: Mon 01 Jul 2024 01:04:22 +0000 ROA not before: Mon 01 Jul 2024 00:59:22 +0000 ROA not after: Mon 30 Jun 2025 01:04:22 +0000 asID: 4833 IP address blocks: 2404:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0e:90:7a:4e:04:d0:51:74:af:d3:07:e3:c7:1a:03:97:a2:2b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Validity Not Before: Jul 1 00:59:22 2024 GMT Not After : Jun 30 01:04:22 2025 GMT Subject: CN=0335DE0763B1069A9D9252A15E11034AA7CAEAF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:65:0f:e5:94:93:fc:28:80:52:a0:2f:aa: c0:7f:30:aa:7d:37:44:a5:13:5b:e8:a7:f0:88:23: b6:fd:73:4c:41:cf:d8:3c:a3:69:84:27:5a:8a:e5: 17:e0:7d:2d:9f:eb:0b:94:20:55:fb:52:0f:3c:61: 48:3d:1c:0b:55:2b:2e:62:c7:69:d2:1a:fb:31:f1: a3:df:90:cf:c3:4c:08:eb:3b:5f:a5:8c:da:cd:69: 0d:65:f0:59:56:e4:cf:79:99:04:45:8f:ea:0a:ad: 84:9b:ba:9a:00:fe:81:34:c0:5b:25:5f:f8:f9:87: 91:9a:d3:fa:49:c1:2c:72:a0:c7:69:cb:35:c6:a1: 19:c1:12:c1:28:0e:48:d0:b3:36:da:bd:39:9e:cf: 20:db:b4:84:b9:bb:bf:0e:41:09:30:a7:86:94:14: 54:ba:0a:09:d5:1a:43:92:43:e5:94:e2:e4:34:f6: bc:4a:65:01:49:36:ad:3a:66:bc:20:d3:e0:38:fe: 31:33:19:60:87:d7:4a:ea:ea:4d:29:b6:67:3d:30: e0:87:de:22:ef:9f:37:e3:b1:d5:00:95:5a:a4:5d: e3:8a:95:1d:fa:89:ea:8c:59:79:fd:52:88:4b:d5: ef:0e:5a:15:2b:98:59:2d:42:d1:eb:fc:e1:ef:02: e5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:35:DE:07:63:B1:06:9A:9D:92:52:A1:5E:11:03:4A:A7:CA:EA:F9 X509v3 Authority Key Identifier: keyid:CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/323430343a3630303a3a2f33322d3438203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:600::/32 Signature Algorithm: sha256WithRSAEncryption 13:95:80:68:a3:0e:43:39:a9:e9:6b:37:87:01:bb:dc:b4:8e: ee:bf:4c:ac:ba:11:97:75:bf:98:86:3b:bf:87:1c:c6:28:63: f0:73:dd:87:f1:f5:e5:41:83:35:f0:e5:17:a6:ca:92:45:87: 93:4a:b8:a1:99:f1:7d:f9:a1:08:98:68:ac:81:af:4d:bc:96: e8:9f:b5:d1:0e:c0:a0:58:87:89:b2:58:c1:cb:84:95:b7:06: 5e:2e:bd:d6:e7:6a:c6:7f:cc:b1:26:97:58:54:a5:7b:d8:d5: 5e:9f:38:f6:67:5c:72:c2:c7:54:77:9f:fe:7c:e0:ec:29:8e: ee:34:75:a6:4c:dc:dc:0f:a5:b6:d8:c0:1e:8f:cd:c3:1a:4f: c8:79:f8:20:0a:29:d3:9e:eb:8e:89:9b:5b:8b:93:15:10:aa: 2c:83:3b:ad:59:29:07:53:f2:7b:f5:d7:b5:f5:bf:12:15:8f: fc:43:76:a6:0d:14:fb:fb:7d:a6:44:12:40:c4:61:a5:34:6c: 84:4c:31:74:6a:2f:d4:21:28:67:4a:c2:9a:ce:79:56:26:2e: 08:fa:ca:44:f1:d6:b0:fb:6b:05:59:81:f2:c3:59:18:50:64: f4:8f:eb:33:99:65:a4:3d:e5:bc:f1:6f:86:8b:e6:90:6e:ea: 92:5b:6c:3d -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUFw6Qek4E0FF0r9MH48caA5eiK08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURG NjQ4QzRFOTAeFw0yNDA3MDEwMDU5MjJaFw0yNTA2MzAwMTA0MjJaMDMxMTAvBgNV BAMTKDAzMzVERTA3NjNCMTA2OUE5RDkyNTJBMTVFMTEwMzRBQTdDQUVBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHvWUP5ZST/CiAUqAvqsB/MKp9 N0SlE1vop/CII7b9c0xBz9g8o2mEJ1qK5RfgfS2f6wuUIFX7Ug88YUg9HAtVKy5i x2nSGvsx8aPfkM/DTAjrO1+ljNrNaQ1l8FlW5M95mQRFj+oKrYSbupoA/oE0wFsl X/j5h5Ga0/pJwSxyoMdpyzXGoRnBEsEoDkjQszbavTmezyDbtIS5u78OQQkwp4aU FFS6CgnVGkOSQ+WU4uQ09rxKZQFJNq06Zrwg0+A4/jEzGWCH10rq6k0ptmc9MOCH 3iLvnzfjsdUAlVqkXeOKlR36ieqMWXn9UohL1e8OWhUrmFktQtHr/OHvAuXPAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUAzXeB2OxBpqdklKhXhEDSqfK6vkwHwYDVR0j BBgwFoAUzWgeQG0uzYrKKOTwe5r6nfZIxOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmMxZjUxYS04NjQ1LTRlYjEtYTJmZi1lMjdjMjRjOGUwYzgvMC9DRDY4MUU0MDZE MkVDRDhBQ0EyOEU0RjA3QjlBRkE5REY2NDhDNEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURGNjQ4 QzRFOS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZjMWY1MWEtODY0NS00ZWIxLWEy ZmYtZTI3YzI0YzhlMGM4LzAvMzIzNDMwMzQzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDM0MzgzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQGADANBgkqhkiG9w0BAQsF AAOCAQEAE5WAaKMOQzmp6Ws3hwG73LSO7r9MrLoRl3W/mIY7v4ccxihj8HPdh/H1 5UGDNfDlF6bKkkWHk0q4oZnxffmhCJhorIGvTbyW6J+10Q7AoFiHibJYwcuElbcG Xi691udqxn/MsSaXWFSle9jVXp849mdccsLHVHef/nzg7CmO7jR1pkzc3A+lttjA Ho/NwxpPyHn4IAop057rjombW4uTFRCqLIM7rVkpB1Pye/XXtfW/EhWP/EN2pg0U +/t9pkQSQMRhpTRshEwxdGov1CEoZ0rCms55ViYuCPrKRPHWsPtrBVmB8sNZGFBk 9I/rM5llpD3lvPFvhovmkG7qkltsPQ== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org