$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa File: 323430363a393330303a3a2f33322d3438203d3e203338353036.roa (raw, json) Hash identifier: jYKdHs/1nDVZ/+Ed/Vmdxf+QRP9rr+yNjg2t9L7K9P0= Subject key identifier: 71:B9:E6:58:9D:B8:B2:5E:7C:AD:D0:D8:8E:C2:F8:10:18:A5:73:44 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 5BC880629E72D4DFDAA13F20567453C672454B49 Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa Signing time: Sat 15 Jun 2024 09:00:00 +0000 ROA not before: Sat 15 Jun 2024 08:55:00 +0000 ROA not after: Sat 14 Jun 2025 09:00:00 +0000 asID: 38506 IP address blocks: 2406:9300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c8:80:62:9e:72:d4:df:da:a1:3f:20:56:74:53:c6:72:45:4b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Jun 15 08:55:00 2024 GMT Not After : Jun 14 09:00:00 2025 GMT Subject: CN=71B9E6589DB8B25E7CADD0D88EC2F81018A57344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d2:04:9a:78:b0:f9:e1:ef:81:07:b0:d9:8a: a0:b7:50:dc:0e:f2:6e:cd:18:6c:e1:2c:42:81:e9: ba:d6:91:89:ae:18:05:06:a5:47:8d:a1:02:49:d4: a9:b7:75:d4:ef:0e:c9:e3:86:bc:9e:3a:20:93:e6: 0a:72:26:1a:1b:2b:05:a3:53:a4:78:3e:d8:0d:5a: c4:e7:cb:16:09:90:da:46:f6:a7:7e:50:c9:06:f7: 21:bb:4b:5a:a1:0f:33:ff:49:b2:ca:3c:62:5d:0f: 06:d2:92:02:a4:c3:83:eb:cb:af:b5:74:98:d0:99: 67:da:ef:eb:65:e2:c2:da:a9:c2:e5:97:2f:af:18: 21:25:24:db:a2:36:b6:b4:e2:d9:ef:6b:11:5b:6a: d7:5a:68:5b:6a:a0:ca:52:f6:ee:39:40:10:fb:9d: 1a:fb:3b:33:05:38:50:e3:79:39:12:33:27:a6:de: 1d:6b:a3:7b:93:46:d1:a6:86:10:46:77:51:7b:16: 9c:bc:46:d8:30:f1:3c:9f:8a:ba:7b:44:e3:47:75: 30:7d:e0:12:54:17:12:42:75:bb:c9:9f:36:a9:c2: 88:d7:0e:62:de:da:aa:fe:a4:51:a3:49:26:5d:64: b5:f7:c8:51:0a:2f:79:3c:2d:cb:5f:6e:fe:08:23: f6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B9:E6:58:9D:B8:B2:5E:7C:AD:D0:D8:8E:C2:F8:10:18:A5:73:44 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:9300::/32 Signature Algorithm: sha256WithRSAEncryption 47:05:6c:9e:08:5d:39:a9:1f:6f:ac:22:12:ce:3c:5a:48:66: a4:48:a2:a3:bb:4b:9b:a1:89:56:38:b1:0e:51:23:2d:da:da: c6:96:23:fe:52:0b:ef:93:a7:d1:65:c9:d8:64:8d:01:bd:ce: b3:53:e3:81:24:eb:4c:10:24:a1:fa:ce:a6:5f:d0:b8:74:76: cd:3c:d8:6a:d3:80:9a:b0:76:22:9d:ac:7b:d9:c7:f8:4d:c7: 43:fa:3b:38:70:be:61:7e:1e:1f:e5:2a:c2:e4:46:25:02:e6: 84:c6:a8:bf:4e:ba:81:53:92:3f:69:c6:23:c3:4a:77:b1:54: b6:4c:46:a8:a3:43:4b:5f:2b:5d:08:62:86:6d:90:63:49:bb: 6f:bb:2c:f7:0b:c7:52:5c:05:1a:f4:95:5f:da:47:b4:ca:a5: 29:2b:05:7c:da:5a:32:65:ce:7d:c2:13:59:09:dd:d6:ab:e0: 58:05:45:54:5a:cb:13:17:54:84:2a:f3:8f:56:77:8e:0d:a5: 2f:d8:8f:ee:29:b2:03:3a:d7:e1:df:31:1f:7b:b1:0a:3f:c6: d2:fa:64:b9:cf:c9:a1:a7:61:7c:10:ee:cd:cb:f4:10:fd:17: df:c3:5e:e9:6d:1a:3d:43:73:82:5d:e2:e8:4c:37:dd:ec:df: 78:ea:50:1f -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUW8iAYp5y1N/aoT8gVnRTxnJFS0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNDA2MTUwODU1MDBaFw0yNTA2MTQwOTAwMDBaMDMxMTAvBgNV BAMTKDcxQjlFNjU4OURCOEIyNUU3Q0FERDBEODhFQzJGODEwMThBNTczNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV0gSaeLD54e+BB7DZiqC3UNwO 8m7NGGzhLEKB6brWkYmuGAUGpUeNoQJJ1Km3ddTvDsnjhryeOiCT5gpyJhobKwWj U6R4PtgNWsTnyxYJkNpG9qd+UMkG9yG7S1qhDzP/SbLKPGJdDwbSkgKkw4Pry6+1 dJjQmWfa7+tl4sLaqcLlly+vGCElJNuiNra04tnvaxFbatdaaFtqoMpS9u45QBD7 nRr7OzMFOFDjeTkSMyem3h1ro3uTRtGmhhBGd1F7Fpy8Rtgw8Tyfirp7RONHdTB9 4BJUFxJCdbvJnzapwojXDmLe2qr+pFGjSSZdZLX3yFEKL3k8Lctfbv4II/YFAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUcbnmWJ24sl58rdDYjsL4EBilc0QwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMyMzQzMDM2M2EzOTMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBpMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBHBWyeCF05qR9vrCISzjxaSGakSKKju0uboYlWOLEOUSMt2trG liP+Ugvvk6fRZcnYZI0Bvc6zU+OBJOtMECSh+s6mX9C4dHbNPNhq04CasHYinax7 2cf4TcdD+js4cL5hfh4f5SrC5EYlAuaExqi/TrqBU5I/acYjw0p3sVS2TEaoo0NL XytdCGKGbZBjSbtvuyz3C8dSXAUa9JVf2ke0yqUpKwV82loyZc59whNZCd3Wq+BY BUVUWssTF1SEKvOPVneODaUv2I/uKbIDOtfh3zEfe7EKP8bS+mS5z8mhp2F8EO7N y/QQ/Rffw17pbRo9Q3OCXeLoTDfd7N946lAf -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org