$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa File: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (raw, json) Hash identifier: /EXeKzU1Ad6DuHV8qtDgsoCpXIHLKoTVOdUlzIGDL4k= Subject key identifier: 3E:35:7E:92:B8:DA:E1:57:DF:9D:D8:70:E0:B2:7A:88:08:AB:B6:84 Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 0CBAA72F36B0D85A3A8EB6030AF5732F706B7BDB Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa Signing time: Tue 25 Jun 2024 08:00:00 +0000 ROA not before: Tue 25 Jun 2024 07:55:00 +0000 ROA not after: Tue 24 Jun 2025 08:00:00 +0000 asID: 45317 IP address blocks: 2406:1b00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 20:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ba:a7:2f:36:b0:d8:5a:3a:8e:b6:03:0a:f5:73:2f:70:6b:7b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Jun 25 07:55:00 2024 GMT Not After : Jun 24 08:00:00 2025 GMT Subject: CN=3E357E92B8DAE157DF9DD870E0B27A8808ABB684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:07:14:c3:0f:30:e2:f1:12:29:78:d0:ad:1c: 8d:f2:00:f0:66:21:a6:4e:c0:18:cc:a2:9e:76:82: 3d:36:82:f1:10:5a:e2:b3:d7:70:ca:38:92:01:22: 60:9b:d3:a5:dd:ea:93:55:3f:12:1f:67:8e:4f:fb: ec:fc:1d:01:a8:08:c0:49:0c:7b:1a:52:af:ee:19: 1a:fb:f1:f5:1b:49:80:55:a6:ed:92:c2:cb:35:56: 4d:f2:15:dd:7e:bc:48:46:4a:94:27:01:8c:14:87: ff:c4:d2:99:c8:28:ff:6e:44:2f:fa:3a:1c:fe:28: c4:35:95:65:51:c4:87:f8:cf:bf:c9:99:f4:21:f7: a6:17:07:84:e7:b1:53:e3:33:92:b4:1a:9e:82:c5: 05:26:f4:0a:50:73:cb:8f:07:8d:69:fb:40:87:bb: 4e:7c:ce:7b:af:1d:08:fc:89:bc:02:e3:02:6f:5d: 98:14:8a:7b:c0:8c:13:40:47:ba:b1:b6:5d:e9:cf: 39:30:fe:96:c3:67:86:72:95:8d:2c:30:4a:8e:02: 22:df:83:da:49:db:1a:c6:2e:fc:c7:4b:4d:54:e7: 6c:1d:d0:8e:01:94:e2:a6:c3:bc:ac:3e:e1:e7:5d: 74:f5:6b:c1:09:d9:3f:0f:f3:96:e4:0c:a7:39:81: 5c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:35:7E:92:B8:DA:E1:57:DF:9D:D8:70:E0:B2:7A:88:08:AB:B6:84 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1b00::/32 Signature Algorithm: sha256WithRSAEncryption 82:84:f0:bb:b8:2b:ce:06:e3:f6:e0:1b:da:10:22:a6:92:ea: ff:8a:ea:be:93:b1:30:3f:d4:2e:0b:6f:82:1b:90:de:1a:c6: 1a:84:06:05:87:2c:82:97:20:58:d7:20:eb:68:a0:04:f3:13: 76:16:2b:30:ee:58:b1:bb:fe:7e:e9:ef:96:89:3d:f2:05:80: 48:c6:f3:10:c1:3a:c7:a8:1c:ac:bd:ff:24:68:c8:8a:1f:85: 6f:39:7b:19:b5:55:62:96:09:13:e7:53:32:30:09:20:c4:29: 90:55:89:9f:8f:75:36:af:ee:58:ac:cc:50:80:7a:8a:30:b8: 76:d3:91:64:06:65:35:8c:58:29:d8:c3:e3:de:0e:af:16:57: 8d:da:ec:d3:f8:21:a8:2d:fb:04:7c:14:b5:3e:70:38:95:c9: 01:90:7d:6b:57:14:da:0e:a0:3c:a2:7a:29:4a:a2:55:a3:0b: 22:8e:20:f8:bd:03:e8:93:43:24:78:36:a1:6d:1f:fb:91:98: 41:9f:cf:b2:9e:b7:96:a4:38:4d:9d:e7:4d:56:3c:52:7e:86: f0:fa:54:43:2e:a4:82:4b:4a:3e:bc:7c:b5:0e:d0:98:df:f9: 82:28:15:85:db:c7:fd:78:65:c9:1a:ea:7f:d6:b3:90:04:68: f3:dd:a0:1f -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUDLqnLzaw2Fo6jrYDCvVzL3Bre9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNDA2MjUwNzU1MDBaFw0yNTA2MjQwODAwMDBaMDMxMTAvBgNV BAMTKDNFMzU3RTkyQjhEQUUxNTdERjlERDg3MEUwQjI3QTg4MDhBQkI2ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLBxTDDzDi8RIpeNCtHI3yAPBm IaZOwBjMop52gj02gvEQWuKz13DKOJIBImCb06Xd6pNVPxIfZ45P++z8HQGoCMBJ DHsaUq/uGRr78fUbSYBVpu2Swss1Vk3yFd1+vEhGSpQnAYwUh//E0pnIKP9uRC/6 Ohz+KMQ1lWVRxIf4z7/JmfQh96YXB4TnsVPjM5K0Gp6CxQUm9ApQc8uPB41p+0CH u058znuvHQj8ibwC4wJvXZgUinvAjBNAR7qxtl3pzzkw/pbDZ4ZylY0sMEqOAiLf g9pJ2xrGLvzHS01U52wd0I4BlOKmw7ysPuHnXXT1a8EJ2T8P85bkDKc5gVzdAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUPjV+krja4Vffndhw4LJ6iAirtoQwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYWNjMzY1LWUxOTQtNGFjMC05 NTNhLTRkZjNhNTkwMGIxNC8wLzMyMzQzMDM2M2EzMTYyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzMzMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBhsAMA0GCSqGSIb3 DQEBCwUAA4IBAQCChPC7uCvOBuP24BvaECKmkur/iuq+k7EwP9QuC2+CG5DeGsYa hAYFhyyClyBY1yDraKAE8xN2Fisw7lixu/5+6e+WiT3yBYBIxvMQwTrHqBysvf8k aMiKH4VvOXsZtVVilgkT51MyMAkgxCmQVYmfj3U2r+5YrMxQgHqKMLh205FkBmU1 jFgp2MPj3g6vFleN2uzT+CGoLfsEfBS1PnA4lckBkH1rVxTaDqA8onopSqJVowsi jiD4vQPok0MkeDahbR/7kZhBn8+ynreWpDhNnedNVjxSfobw+lRDLqSCS0o+vHy1 DtCY3/mCKBWF28f9eGXJGup/1rOQBGjz3aAf -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:21 2024 by rpki-client on console-fra.rpki-client.org