$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa File: 323430373a366434303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: 1TyhLB8fOXjmKceU8yRe4plYrAet4G8VcfEQ2+B2uHc= Subject key identifier: 26:DB:2F:FB:EE:27:EE:B1:2F:62:DF:81:93:F8:08:70:14:37:A9:C9 Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Certificate serial: 7DF14600D1AD04B9822226494A98505EDD69599F Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 14 Mar 2024 16:00:32 +0000 ROA not before: Thu 14 Mar 2024 15:55:32 +0000 ROA not after: Thu 13 Mar 2025 16:00:32 +0000 asID: 58820 IP address blocks: 2407:6d40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f1:46:00:d1:ad:04:b9:82:22:26:49:4a:98:50:5e:dd:69:59:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Validity Not Before: Mar 14 15:55:32 2024 GMT Not After : Mar 13 16:00:32 2025 GMT Subject: CN=26DB2FFBEE27EEB12F62DF8193F808701437A9C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4a:72:e3:77:ba:22:40:a1:b0:ab:e8:7f:9e: 4b:0b:62:5d:07:a0:e8:ca:17:e6:f7:42:6a:76:bd: 47:dd:dc:74:93:8a:56:e1:d7:4c:f7:4a:fe:cb:d3: 8a:1c:d7:3e:d8:0a:4a:5e:16:7b:9a:7a:e5:6a:88: 80:31:69:e9:37:9d:50:80:b1:11:75:b2:f9:77:3b: f2:b1:08:f9:6d:79:4a:b0:7f:66:26:6a:35:df:cd: 9c:a5:1d:c9:b5:de:1b:59:82:c7:73:33:8b:cb:d3: ce:1f:22:24:4c:66:bc:f5:cb:0d:c2:24:6b:14:1b: 06:c1:53:7e:79:ca:61:51:5e:5c:52:8f:52:39:9a: 04:4f:3a:4f:ae:85:48:3d:4d:a0:b2:25:78:29:a1: 7e:5a:97:e9:02:9f:8d:55:5c:a1:14:bf:d0:f6:b4: d2:33:18:e5:4f:a9:b0:22:c9:a3:f2:41:aa:f1:0e: fb:a3:43:bd:a9:f1:69:3f:fe:6b:03:bd:c1:36:57: 48:da:ba:02:7b:7b:49:8b:d0:9e:01:11:94:20:64: 7a:62:fd:cc:8d:88:82:7f:1e:49:0a:43:e1:30:02: 61:bc:7a:a6:eb:e8:5d:53:a3:ee:08:3d:f5:7d:9f: c1:c0:07:a6:63:e4:ca:f2:c2:0a:b1:d2:9d:3d:f8: 50:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DB:2F:FB:EE:27:EE:B1:2F:62:DF:81:93:F8:08:70:14:37:A9:C9 X509v3 Authority Key Identifier: keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/323430373a366434303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 7b:1e:93:25:68:2b:35:e7:7f:07:dd:7f:49:76:6a:38:70:53: a3:12:6e:9e:98:02:46:61:4e:ec:18:ab:05:d6:33:61:13:84: 80:74:b3:ec:76:a8:3f:81:73:76:22:d3:0b:91:70:d2:b7:3b: 64:e9:b1:50:d9:db:97:5f:04:aa:72:7a:6c:08:95:14:36:2b: 4e:5b:57:74:8e:2f:e8:1f:86:c7:f6:c4:43:eb:21:fb:ba:fd: 5c:bf:a7:f5:01:d1:4e:e6:53:2f:2b:03:4c:69:56:78:65:55: f3:33:34:9d:59:07:20:c4:40:5a:9c:f3:72:6a:88:fc:e1:d3: f1:c6:c1:92:0e:42:1f:56:6b:c8:3f:2e:2b:ff:ae:07:9f:74: 47:b2:9d:f6:52:1e:03:d7:03:5d:b7:3f:e1:f8:ca:24:12:4e: 50:f1:21:0d:3d:71:c0:09:f1:49:90:6e:9c:04:92:f9:c4:8c: 63:d7:4e:b5:b8:33:db:e8:d8:1e:c5:78:90:11:29:3d:38:35: 2b:e3:95:d2:91:bb:89:e5:03:8d:d2:77:5c:e2:8e:3d:54:fe: 1e:e8:76:7f:a8:7c:6a:32:6b:90:40:e9:64:4e:7f:ac:78:4f: 40:77:9c:85:7c:c4:27:2f:67:1f:a4:41:ca:46:8c:a3:8c:0c: 1c:20:84:0d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUffFGANGtBLmCIiZJSphQXt1pWZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdF NjkxM0M5NjAeFw0yNDAzMTQxNTU1MzJaFw0yNTAzMTMxNjAwMzJaMDMxMTAvBgNV BAMTKDI2REIyRkZCRUUyN0VFQjEyRjYyREY4MTkzRjgwODcwMTQzN0E5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDASnLjd7oiQKGwq+h/nksLYl0H oOjKF+b3Qmp2vUfd3HSTilbh10z3Sv7L04oc1z7YCkpeFnuaeuVqiIAxaek3nVCA sRF1svl3O/KxCPlteUqwf2YmajXfzZylHcm13htZgsdzM4vL084fIiRMZrz1yw3C JGsUGwbBU355ymFRXlxSj1I5mgRPOk+uhUg9TaCyJXgpoX5al+kCn41VXKEUv9D2 tNIzGOVPqbAiyaPyQarxDvujQ72p8Wk//msDvcE2V0jaugJ7e0mL0J4BEZQgZHpi /cyNiIJ/HkkKQ+EwAmG8eqbr6F1To+4IPfV9n8HAB6Zj5Mrywgqx0p09+FAHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJtsv++4n7rEvYt+Bk/gIcBQ3qckwHwYDVR0j BBgwFoAUAkbdFK9o9eVRKr2I0dt1B+aRPJYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMC8wMjQ2REQxNEFG NjhGNUU1NTEyQUJEODhEMURCNzUwN0U2OTEzQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdFNjkx M0M5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04 ODZhLThlMjJhMzI2MTFmOC8wLzMyMzQzMDM3M2EzNjY0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB21AMA0GCSqGSIb3 DQEBCwUAA4IBAQB7HpMlaCs1538H3X9Jdmo4cFOjEm6emAJGYU7sGKsF1jNhE4SA dLPsdqg/gXN2ItMLkXDStztk6bFQ2duXXwSqcnpsCJUUNitOW1d0ji/oH4bH9sRD 6yH7uv1cv6f1AdFO5lMvKwNMaVZ4ZVXzMzSdWQcgxEBanPNyaoj84dPxxsGSDkIf VmvIPy4r/64Hn3RHsp32Uh4D1wNdtz/h+MokEk5Q8SENPXHACfFJkG6cBJL5xIxj 1061uDPb6NgexXiQESk9ODUr45XSkbuJ5QON0ndc4o49VP4e6HZ/qHxqMmuQQOlk Tn+seE9Ad5yFfMQnL2cfpEHKRoyjjAwcIIQN -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org