$ rpki-client -vvf repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3438203d3e203538383230.roa File: 323430373a366634303a3a2f33322d3438203d3e203538383230.roa (raw, json) Hash identifier: dVPw8I7FInrL6sS+ODK+88iVGePwDoY4UlcefUUVJ+0= Subject key identifier: 45:EC:0C:1A:AB:F4:3B:7D:13:EA:33:CF:EE:9A:0A:8B:CC:79:DA:B4 Certificate issuer: /CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Certificate serial: 29CB33032838C070DC34E8FEE566BF3928BA1FDA Authority key identifier: 15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3438203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:00:01 +0000 ROA not before: Thu 14 Mar 2024 15:55:01 +0000 ROA not after: Thu 13 Mar 2025 16:00:01 +0000 asID: 58820 IP address blocks: 2407:6f40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:cb:33:03:28:38:c0:70:dc:34:e8:fe:e5:66:bf:39:28:ba:1f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=151AB754D8D5F171FE636D5DB7C89D082E1A90CE Validity Not Before: Mar 14 15:55:01 2024 GMT Not After : Mar 13 16:00:01 2025 GMT Subject: CN=45EC0C1AABF43B7D13EA33CFEE9A0A8BCC79DAB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:be:ba:4b:7a:06:7a:e2:a9:a1:ff:5b:bf: f3:b3:48:16:aa:e1:e9:4b:84:41:a3:eb:3b:df:d7: 4d:d9:ab:3c:f0:33:22:6a:0e:27:fe:bf:2c:ab:bb: 77:db:16:44:90:49:f3:0c:8a:b2:e9:5c:95:92:4f: 9d:3c:64:fa:4e:09:07:1b:55:c8:c3:f6:48:91:59: 93:cd:ab:5a:4f:19:1e:5f:b1:8e:2e:da:0d:6b:fc: 82:f5:cf:6c:f9:fc:85:e1:0b:20:48:ad:e6:ee:53: ac:72:79:54:71:38:39:e0:c8:de:42:db:d4:56:20: 7d:02:7d:40:ef:25:9e:7e:12:cf:3b:e7:e7:e5:2a: 99:2c:60:ad:a9:eb:f1:93:6e:66:2e:e3:5b:5d:bc: b1:cc:86:3e:7a:ea:5e:ef:50:33:8b:e5:e5:10:d2: 94:12:48:e8:f8:9f:8c:3a:29:b3:38:29:15:a0:29: ad:0e:dc:29:1c:6c:c0:48:33:60:54:8d:85:bb:c6: 26:c1:c3:58:dc:8d:0e:f5:2b:16:f4:f7:81:aa:07: 21:9a:0b:8a:d2:ee:80:36:fb:11:79:e9:ef:51:7a: 87:cf:37:a8:8f:f6:7c:30:95:d8:41:54:d7:9c:06: bc:48:59:1c:50:83:1b:8b:0b:dd:16:8d:3c:3e:fc: da:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EC:0C:1A:AB:F4:3B:7D:13:EA:33:CF:EE:9A:0A:8B:CC:79:DA:B4 X509v3 Authority Key Identifier: keyid:15:1A:B7:54:D8:D5:F1:71:FE:63:6D:5D:B7:C8:9D:08:2E:1A:90:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/151AB754D8D5F171FE636D5DB7C89D082E1A90CE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ed47202-de60-47f3-a2a7-608a74a1e874/0/323430373a366634303a3a2f33322d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6f40::/32 Signature Algorithm: sha256WithRSAEncryption 0f:9c:1e:4a:55:76:5d:21:87:51:9f:e0:71:d0:84:8d:2a:8c: 01:61:e4:54:d2:b0:c3:bf:d5:02:27:93:b7:57:fc:c6:ec:46: 8f:d0:19:89:74:d1:cf:96:f9:12:48:ae:9e:52:43:50:bf:cb: 9d:2d:9c:54:ce:fa:b9:70:69:a2:42:3c:a9:64:c9:45:22:34: de:c7:f1:9f:6d:f5:21:cc:7c:26:39:09:a1:97:3f:c5:99:5c: 5a:6f:73:77:6c:7d:12:6a:09:8a:77:4b:96:94:b8:ef:0a:b5: 45:a6:7a:8a:33:30:21:d9:86:19:80:65:ee:23:7a:85:14:1c: 22:c2:5d:20:7f:cd:b0:37:8e:ed:5f:36:ee:d0:b1:be:b5:7c: 0f:83:dd:f2:a5:1d:40:1d:aa:18:da:6e:47:2f:1b:99:3c:78: 37:3c:61:f0:ed:de:f9:12:da:fd:8d:8d:d5:db:8c:a9:a1:e3: 9f:b2:18:c9:3e:a2:5c:cd:86:57:a4:cf:c6:ab:4d:c7:97:c5: 38:b4:21:ea:a0:50:30:5d:13:86:c5:01:0c:22:09:ba:30:92: 19:ee:15:0d:fc:8c:23:83:e7:b8:cf:d9:13:bf:9e:7c:4e:dc: 03:bf:d1:b5:d8:37:8d:22:c9:92:65:25:5a:83:96:d6:9a:31: 9c:f1:5c:b3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKcszAyg4wHDcNOj+5Wa/OSi6H9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgy RTFBOTBDRTAeFw0yNDAzMTQxNTU1MDFaFw0yNTAzMTMxNjAwMDFaMDMxMTAvBgNV BAMTKDQ1RUMwQzFBQUJGNDNCN0QxM0VBMzNDRkVFOUEwQThCQ0M3OURBQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu1r66S3oGeuKpof9bv/OzSBaq 4elLhEGj6zvf103ZqzzwMyJqDif+vyyru3fbFkSQSfMMirLpXJWST508ZPpOCQcb VcjD9kiRWZPNq1pPGR5fsY4u2g1r/IL1z2z5/IXhCyBIrebuU6xyeVRxODngyN5C 29RWIH0CfUDvJZ5+Es875+flKpksYK2p6/GTbmYu41tdvLHMhj566l7vUDOL5eUQ 0pQSSOj4n4w6KbM4KRWgKa0O3CkcbMBIM2BUjYW7xibBw1jcjQ71Kxb094GqByGa C4rS7oA2+xF56e9ReofPN6iP9nwwldhBVNecBrxIWRxQgxuLC90WjTw+/NqTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQURewMGqv0O30T6jPP7poKi8x52rQwHwYDVR0j BBgwFoAUFRq3VNjV8XH+Y21dt8idCC4akM4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWQ0NzIwMi1kZTYwLTQ3ZjMtYTJhNy02MDhhNzRhMWU4NzQvMC8xNTFBQjc1NEQ4 RDVGMTcxRkU2MzZENURCN0M4OUQwODJFMUE5MENFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTUxQUI3NTREOEQ1RjE3MUZFNjM2RDVEQjdDODlEMDgyRTFB OTBDRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZDQ3MjAyLWRlNjAtNDdmMy1h MmE3LTYwOGE3NGExZTg3NC8wLzMyMzQzMDM3M2EzNjY2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB29AMA0GCSqGSIb3 DQEBCwUAA4IBAQAPnB5KVXZdIYdRn+Bx0ISNKowBYeRU0rDDv9UCJ5O3V/zG7EaP 0BmJdNHPlvkSSK6eUkNQv8udLZxUzvq5cGmiQjypZMlFIjTex/GfbfUhzHwmOQmh lz/FmVxab3N3bH0SagmKd0uWlLjvCrVFpnqKMzAh2YYZgGXuI3qFFBwiwl0gf82w N47tXzbu0LG+tXwPg93ypR1AHaoY2m5HLxuZPHg3PGHw7d75Etr9jY3V24ypoeOf shjJPqJczYZXpM/Gq03Hl8U4tCHqoFAwXROGxQEMIgm6MJIZ7hUN/Iwjg+e4z9kT v558TtwDv9G12DeNIsmSZSVag5bWmjGc8Vyz -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org