$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a313a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a313a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: FxygXHMJkUSekdOPOQwnKQAouwcJ3vAqbrZz6plOspU= Subject key identifier: B9:57:33:50:F9:81:3E:35:BC:5C:AC:78:3D:0B:F0:53:CD:AF:DD:D0 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 3F868F5C60BB1C4545C5F5B7075E144600DD3B9F Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a313a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:56 +0000 ROA not before: Mon 28 Oct 2024 04:57:56 +0000 ROA not after: Mon 27 Oct 2025 05:02:56 +0000 asID: 141968 IP address blocks: 2407:6ac0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 15:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:86:8f:5c:60:bb:1c:45:45:c5:f5:b7:07:5e:14:46:00:dd:3b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:56 2024 GMT Not After : Oct 27 05:02:56 2025 GMT Subject: CN=B9573350F9813E35BC5CAC783D0BF053CDAFDDD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:74:ed:4b:83:9f:76:92:f9:15:de:d5:64: af:48:d7:05:88:90:1c:06:91:b0:bd:ab:9b:7a:71: c4:77:93:80:62:36:09:ce:24:de:d4:3c:c8:0c:2f: 9d:a5:41:5e:95:04:58:2d:9f:9f:c7:9c:04:db:d3: 36:eb:34:5b:cc:ad:ee:24:7b:f7:77:fa:c3:1b:d1: 57:b0:ce:fb:9c:1a:ae:a7:2f:c9:22:c9:77:2a:5c: e5:63:47:ba:41:a1:8c:8a:1e:ab:59:64:3a:e2:06: 06:24:f4:a8:30:9e:cd:d4:2c:1b:83:33:22:24:58: 79:fe:b6:34:b5:92:ea:c5:3e:ec:8e:7d:84:bb:ea: 0e:d5:99:58:64:ea:3c:62:96:6f:9f:4c:72:5b:eb: 27:c1:26:3e:47:37:e5:14:ee:32:95:c4:b4:ab:ba: 4c:53:38:67:38:db:71:42:5b:3b:92:44:ed:6f:cd: 2a:70:f6:ed:bd:38:85:0a:8e:91:cf:ff:39:c6:c9: 36:1b:0e:af:bf:67:9c:a7:4e:24:c5:17:04:1b:00: 13:2b:5b:e7:0a:e5:96:47:da:ed:33:f9:78:e1:b0: 62:1d:f8:79:80:1b:e5:ab:8c:2a:80:8e:93:26:2d: 74:cd:37:ff:e0:a2:aa:3a:d9:06:56:69:d8:ea:ea: 71:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:57:33:50:F9:81:3E:35:BC:5C:AC:78:3D:0B:F0:53:CD:AF:DD:D0 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a313a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:1::/48 Signature Algorithm: sha256WithRSAEncryption 71:ec:d0:48:7a:e1:fb:e6:43:77:1a:1f:a9:e0:28:cd:fe:e3: 6b:97:78:e1:05:2f:94:54:44:69:7b:79:12:ac:3b:ee:86:68: 04:34:53:b4:f4:9f:09:9c:0e:d3:17:43:3f:88:b2:ca:30:32: 82:da:bf:32:00:9c:fa:18:5e:54:7b:50:ba:08:b6:ae:93:55: 3b:74:0a:69:fd:b5:aa:c0:ca:49:18:9d:0b:d3:bb:32:ab:a0: 4e:39:17:15:bc:ec:d9:82:d8:b3:78:44:3d:f3:1a:2c:3e:f9: 0f:ac:14:57:82:89:f8:33:02:0d:7e:45:7f:7f:5f:e6:92:c9: 43:fa:d9:6f:2f:f7:6f:57:cd:99:ea:23:cd:8a:5d:60:f4:33: 9b:05:49:2b:de:df:4e:db:7e:3a:11:1a:3b:42:80:4a:84:6c: 0b:5d:44:27:9b:d6:1c:44:37:d0:37:89:9e:3b:49:74:65:4e: 2e:2e:6a:75:5e:33:d9:dd:98:86:0f:89:88:18:7f:cf:9b:25: cf:90:7f:da:6d:66:bf:05:7d:1f:12:f8:f7:79:67:c3:e2:6e: a5:0b:90:b6:a0:a2:3a:ae:18:9a:06:1e:d6:c7:0e:89:77:0e: 64:4c:9b:73:84:9d:c0:9c:3a:c1:97:ed:d2:92:d8:23:05:5c: 95:ba:00:55 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUP4aPXGC7HEVFxfW3B14URgDdO58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTZaFw0yNTEwMjcwNTAyNTZaMDMxMTAvBgNV BAMTKEI5NTczMzUwRjk4MTNFMzVCQzVDQUM3ODNEMEJGMDUzQ0RBRkRERDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7K3TtS4OfdpL5Fd7VZK9I1wWI kBwGkbC9q5t6ccR3k4BiNgnOJN7UPMgML52lQV6VBFgtn5/HnATb0zbrNFvMre4k e/d3+sMb0VewzvucGq6nL8kiyXcqXOVjR7pBoYyKHqtZZDriBgYk9Kgwns3ULBuD MyIkWHn+tjS1kurFPuyOfYS76g7VmVhk6jxilm+fTHJb6yfBJj5HN+UU7jKVxLSr ukxTOGc423FCWzuSRO1vzSpw9u29OIUKjpHP/znGyTYbDq+/Z5ynTiTFFwQbABMr W+cK5ZZH2u0z+XjhsGId+HmAG+WrjCqAjpMmLXTNN//goqo62QZWadjq6nH/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuVczUPmBPjW8XKx4PQvwU82v3dAwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAEw DQYJKoZIhvcNAQELBQADggEBAHHs0Eh64fvmQ3caH6ngKM3+42uXeOEFL5RURGl7 eRKsO+6GaAQ0U7T0nwmcDtMXQz+IssowMoLavzIAnPoYXlR7ULoItq6TVTt0Cmn9 tarAykkYnQvTuzKroE45FxW87NmC2LN4RD3zGiw++Q+sFFeCifgzAg1+RX9/X+aS yUP62W8v929XzZnqI82KXWD0M5sFSSve307bfjoRGjtCgEqEbAtdRCeb1hxEN9A3 iZ47SXRlTi4uanVeM9ndmIYPiYgYf8+bJc+Qf9ptZr8FfR8S+Pd5Z8PibqULkLag ojquGJoGHtbHDol3DmRMm3OEncCcOsGX7dKS2CMFXJW6AFU= -----END CERTIFICATE-----Generated at Wed Nov 20 11:08:52 2024 by rpki-client on console-ams.rpki-client.org