$ rpki-client -vvf repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa File: 323430363a6263303a3a2f33322d3332203d3e20313430343032.roa (raw, json) Hash identifier: eWBh9DJ/MPkJFpCaGlnM8dbwPsWagNI+6zeUB0wWyZQ= Subject key identifier: D8:1A:18:7F:74:B3:CE:21:11:19:16:4D:F1:F3:5E:21:3D:79:F7:13 Certificate issuer: /CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Certificate serial: 4F12BD007F09AB4773E4A6877B0899753F82F015 Authority key identifier: AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject info access: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa Signing time: Thu 18 Jan 2024 13:00:46 +0000 ROA not before: Thu 18 Jan 2024 12:55:46 +0000 ROA not after: Thu 16 Jan 2025 13:00:46 +0000 asID: 140402 IP address blocks: 2406:bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:12:bd:00:7f:09:ab:47:73:e4:a6:87:7b:08:99:75:3f:82:f0:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Validity Not Before: Jan 18 12:55:46 2024 GMT Not After : Jan 16 13:00:46 2025 GMT Subject: CN=D81A187F74B3CE211119164DF1F35E213D79F713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ec:4a:fc:00:67:9c:df:02:68:9e:c8:0c:d1: 63:77:95:2d:43:b7:9f:fe:df:1c:7f:dc:cb:b5:bf: 05:f0:0c:66:bb:a4:2e:8f:df:37:58:89:61:48:18: a0:2a:76:df:98:d0:8f:9d:67:52:b9:e4:26:af:ce: 19:76:05:59:74:32:c0:d7:69:6d:6e:df:79:ee:36: b6:0c:e5:c0:6b:17:7d:1f:6a:32:b0:8c:8a:42:85: 3a:ce:2c:32:7e:9a:35:2b:43:b3:22:7b:ab:71:c2: 88:c8:f9:34:ba:d9:fa:1c:3c:2d:3d:e0:a5:44:59: 0f:96:0b:51:8f:98:57:f1:6e:bf:69:a4:20:1a:51: b9:46:b7:66:c0:d0:16:77:31:1f:1e:29:9a:cc:e7: 57:32:63:cd:6d:a7:dc:f0:17:69:63:fa:fc:1b:6e: f3:22:69:4f:58:d8:c3:1c:37:cb:fd:66:7c:5d:be: 1e:ab:a8:cc:fd:8c:89:38:0b:fa:e7:14:da:60:ec: 6b:cb:0f:ed:a1:49:af:29:87:88:f0:d6:89:dd:33: 01:71:52:f7:f2:cb:12:ea:06:a1:eb:ca:e2:bc:7c: 75:38:ec:8f:5e:38:d2:1a:95:59:62:0a:ec:83:96: ce:a3:ce:71:ef:0e:18:02:af:12:8b:38:47:1d:cc: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1A:18:7F:74:B3:CE:21:11:19:16:4D:F1:F3:5E:21:3D:79:F7:13 X509v3 Authority Key Identifier: keyid:AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:bc0::/32 Signature Algorithm: sha256WithRSAEncryption 77:7c:26:d5:b3:d0:6a:49:a0:9a:28:c9:a8:f3:75:19:33:50: 87:e6:f1:39:0c:7a:ab:72:2a:35:4e:60:4f:45:26:6f:53:f7: 13:bf:f5:d8:c7:ab:df:62:36:8f:24:ff:e5:29:3e:6f:1d:b4: e4:1b:14:8b:8d:6e:5a:63:42:4b:20:c3:6f:bc:9b:7e:bc:d8: 0b:b5:51:9f:2a:09:7e:1e:cb:73:7a:45:96:bb:4b:ef:5a:40: 27:76:2a:ca:e6:32:52:57:5e:03:dc:a0:86:7b:2c:e7:51:84: fc:21:3a:9c:25:99:64:17:be:8f:d6:4f:f6:f0:0c:30:87:7d: 69:2f:0f:65:b2:68:c6:fb:e1:af:e8:51:03:e3:04:70:16:35: be:fa:e2:3e:13:63:0c:94:b2:13:05:16:95:1d:7e:1f:b3:2e: 46:e0:c1:19:d1:92:e8:ed:a6:69:1a:35:a2:07:aa:8f:a0:4b: a7:10:f9:b5:32:f9:82:2f:21:12:82:81:54:63:f3:f3:3f:09: 0c:f1:1f:00:a1:e8:c1:ed:1d:7d:fe:26:86:3d:c9:12:fd:5c: 9e:91:20:08:1d:58:20:4b:12:6e:c1:d2:98:d6:de:9d:af:de: 20:05:7b:21:fe:ff:2a:ab:57:77:aa:7c:54:7f:e4:a2:47:76: 91:9d:33:b7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUTxK9AH8Jq0dz5KaHewiZdT+C8BUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkw NTY4RjQ5NDAeFw0yNDAxMTgxMjU1NDZaFw0yNTAxMTYxMzAwNDZaMDMxMTAvBgNV BAMTKEQ4MUExODdGNzRCM0NFMjExMTE5MTY0REYxRjM1RTIxM0Q3OUY3MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7Er8AGec3wJonsgM0WN3lS1D t5/+3xx/3Mu1vwXwDGa7pC6P3zdYiWFIGKAqdt+Y0I+dZ1K55Cavzhl2BVl0MsDX aW1u33nuNrYM5cBrF30fajKwjIpChTrOLDJ+mjUrQ7Mie6txwojI+TS62focPC09 4KVEWQ+WC1GPmFfxbr9ppCAaUblGt2bA0BZ3MR8eKZrM51cyY81tp9zwF2lj+vwb bvMiaU9Y2MMcN8v9Znxdvh6rqMz9jIk4C/rnFNpg7GvLD+2hSa8ph4jw1ondMwFx UvfyyxLqBqHryuK8fHU47I9eONIalVliCuyDls6jznHvDhgCrxKLOEcdzGifAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU2BoYf3SzziERGRZN8fNeIT159xMwHwYDVR0j BBgwFoAUrV6nbXq72GF8Mj8G4k71GQVo9JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjllNzA2NC1iMzUyLTQzYjYtOWYwOS01MTRkNjhhMjczOWUvMC9BRDVFQTc2RDdB QkJEODYxN0MzMjNGMDZFMjRFRjUxOTA1NjhGNDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkwNTY4 RjQ5NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyOWU3MDY0LWIzNTItNDNiNi05 ZjA5LTUxNGQ2OGEyNzM5ZS8wLzMyMzQzMDM2M2E2MjYzMzAzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMTM0MzAzNDMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgvAMA0GCSqGSIb3 DQEBCwUAA4IBAQB3fCbVs9BqSaCaKMmo83UZM1CH5vE5DHqrcio1TmBPRSZvU/cT v/XYx6vfYjaPJP/lKT5vHbTkGxSLjW5aY0JLIMNvvJt+vNgLtVGfKgl+HstzekWW u0vvWkAndirK5jJSV14D3KCGeyznUYT8ITqcJZlkF76P1k/28Awwh31pLw9lsmjG ++Gv6FED4wRwFjW++uI+E2MMlLITBRaVHX4fsy5G4MEZ0ZLo7aZpGjWiB6qPoEun EPm1MvmCLyESgoFUY/PzPwkM8R8AoejB7R19/iaGPckS/VyekSAIHVggSxJuwdKY 1t6dr94gBXsh/v8qq1d3qnxUf+SiR3aRnTO3 -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org