$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31313a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a31313a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: 2chvHLKN2+W7Ez0a9FJ2ZAibtwsAcniBMJVzgn1jnUI= Subject key identifier: 71:6B:01:C3:B0:E6:78:AD:32:23:A8:29:9E:E5:52:9B:71:2C:89:A3 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 186E01F43A8AD0F4270E0E84BC73856194CF2501 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31313a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:55 +0000 ROA not before: Mon 28 Oct 2024 04:57:55 +0000 ROA not after: Mon 27 Oct 2025 05:02:55 +0000 asID: 141968 IP address blocks: 2407:6ac0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6e:01:f4:3a:8a:d0:f4:27:0e:0e:84:bc:73:85:61:94:cf:25:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:55 2024 GMT Not After : Oct 27 05:02:55 2025 GMT Subject: CN=716B01C3B0E678AD3223A8299EE5529B712C89A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ac:fd:a1:d2:db:b5:cb:11:82:9d:b3:e0:19: 38:56:f7:af:60:72:b7:9a:fa:e2:88:8b:cf:14:61: 8d:d6:64:50:60:43:e7:5f:51:62:d5:2f:b7:8b:14: fb:df:3a:a8:e1:bf:61:2c:4e:22:86:72:41:ba:65: aa:9d:36:e4:d4:09:51:2f:32:66:c7:19:5b:de:2a: 59:42:56:e0:b0:29:f6:af:b4:1e:f3:b7:0c:d3:56: 30:43:47:c8:ff:ef:9e:fe:91:42:33:45:c5:b8:92: a0:74:cb:2d:7b:b6:6f:ce:cf:0d:52:0b:9a:cf:60: 65:ca:22:50:26:a3:0a:a5:29:67:c7:2f:5e:f3:33: 65:4b:9f:a5:67:2a:be:95:3e:bd:df:99:37:b4:73: 1d:ed:fd:d6:9a:fd:5c:7c:f9:d0:08:90:57:80:14: df:00:8c:c9:c5:ab:88:96:cc:91:f9:3d:16:98:ac: 59:c0:ec:e0:a0:9a:f9:db:b1:70:85:c9:68:45:29: 85:4d:41:75:8b:50:e0:c8:2e:24:31:0b:b6:76:96: 59:12:40:17:d9:c5:fe:ae:32:36:72:0f:14:9e:49: 05:0a:bb:b3:4d:d2:b4:3e:c0:8a:4c:a2:87:d7:24: e0:64:07:77:80:b8:df:b0:e1:12:83:75:3e:85:82: e6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6B:01:C3:B0:E6:78:AD:32:23:A8:29:9E:E5:52:9B:71:2C:89:A3 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a31313a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:11::/48 Signature Algorithm: sha256WithRSAEncryption 8a:c3:3d:cf:4e:9c:64:88:02:7e:8a:36:97:9c:61:1d:03:e7: de:c8:83:d1:9a:c8:db:35:80:c0:0c:df:27:10:df:07:ac:3e: 1c:a6:bc:9a:ae:14:2e:cd:eb:68:ce:8a:a7:c6:15:da:56:52: 06:fa:a5:2d:3d:4b:7d:15:24:c8:ba:99:97:28:41:52:94:8c: 7b:bc:25:63:73:07:26:71:8c:3c:29:3c:69:cf:9d:15:b9:e2: 60:d3:f0:fb:77:d9:95:58:81:be:48:c9:19:ef:92:b3:c8:4a: cc:cf:20:54:de:53:41:7a:f6:d2:c6:fb:da:7b:85:df:f1:32: 0d:b2:d0:81:7f:dc:23:2d:d8:06:90:13:37:cd:7e:c2:92:eb: d5:48:3c:ea:9a:88:d3:65:95:14:ec:be:6e:1f:19:44:16:34: 34:87:0e:b1:20:a5:ec:ba:e3:2a:b0:08:3c:3d:45:55:f3:db: 37:0a:2c:ac:60:5c:22:94:f5:66:4b:39:92:03:f1:7e:ca:c9: 64:36:07:08:cc:ba:f1:30:b5:e1:e8:7f:9d:ce:4e:11:e6:d6: 3a:e3:89:ff:8e:ce:3c:88:cf:5e:ba:1c:41:3a:7f:0a:47:01: aa:96:60:fb:bb:3e:f7:8b:c6:7d:77:8a:aa:d2:64:7a:b5:90: b0:04:11:db -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGG4B9DqK0PQnDg6EvHOFYZTPJQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTVaFw0yNTEwMjcwNTAyNTVaMDMxMTAvBgNV BAMTKDcxNkIwMUMzQjBFNjc4QUQzMjIzQTgyOTlFRTU1MjlCNzEyQzg5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWrP2h0tu1yxGCnbPgGThW969g crea+uKIi88UYY3WZFBgQ+dfUWLVL7eLFPvfOqjhv2EsTiKGckG6ZaqdNuTUCVEv MmbHGVveKllCVuCwKfavtB7ztwzTVjBDR8j/757+kUIzRcW4kqB0yy17tm/Ozw1S C5rPYGXKIlAmowqlKWfHL17zM2VLn6VnKr6VPr3fmTe0cx3t/daa/Vx8+dAIkFeA FN8AjMnFq4iWzJH5PRaYrFnA7OCgmvnbsXCFyWhFKYVNQXWLUODILiQxC7Z2llkS QBfZxf6uMjZyDxSeSQUKu7NN0rQ+wIpMoofXJOBkB3eAuN+w4RKDdT6FgubLAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUcWsBw7DmeK0yI6gpnuVSm3EsiaMwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM5MzYzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHasAA ETANBgkqhkiG9w0BAQsFAAOCAQEAisM9z06cZIgCfoo2l5xhHQPn3siD0ZrI2zWA wAzfJxDfB6w+HKa8mq4ULs3raM6Kp8YV2lZSBvqlLT1LfRUkyLqZlyhBUpSMe7wl Y3MHJnGMPCk8ac+dFbniYNPw+3fZlViBvkjJGe+Ss8hKzM8gVN5TQXr20sb72nuF 3/EyDbLQgX/cIy3YBpATN81+wpLr1Ug86pqI02WVFOy+bh8ZRBY0NIcOsSCl7Lrj KrAIPD1FVfPbNwosrGBcIpT1Zks5kgPxfsrJZDYHCMy68TC14eh/nc5OEebWOuOJ /47OPIjPXrocQTp/CkcBqpZg+7s+94vGfXeKqtJkerWQsAQR2w== -----END CERTIFICATE-----Generated at Sun Feb 16 21:56:20 2025 by rpki-client