$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a333a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a333a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: 3SKQ4iz2ufWkk2MYpg2iPHnF6jxRCTr8PBuax5FlebY= Subject key identifier: FB:30:CC:06:E7:F0:7F:89:BF:64:85:EC:6B:55:4B:BD:CD:23:54:F0 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 6687BF1E197E06BAF263C26944CB81557A8D4340 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a333a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:56 +0000 ROA not before: Mon 28 Oct 2024 04:57:56 +0000 ROA not after: Mon 27 Oct 2025 05:02:56 +0000 asID: 141968 IP address blocks: 2407:6ac0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:87:bf:1e:19:7e:06:ba:f2:63:c2:69:44:cb:81:55:7a:8d:43:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:56 2024 GMT Not After : Oct 27 05:02:56 2025 GMT Subject: CN=FB30CC06E7F07F89BF6485EC6B554BBDCD2354F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6d:90:4b:ae:ce:ea:0d:f4:26:31:d1:be:68: 4c:43:34:eb:58:ab:dc:48:80:fd:c0:9c:70:bb:fc: ed:f5:bd:7a:92:d2:b9:8c:0c:47:75:ef:a9:58:ba: 08:0c:1e:fd:66:8e:dd:96:24:50:bf:0f:a2:08:32: 55:31:5a:b9:8c:6e:51:4e:41:21:9d:ce:56:d7:da: d2:36:80:ed:fb:61:19:b8:17:c0:87:50:ef:93:e3: 3b:4f:5a:7b:af:3a:9c:f0:e7:2e:da:24:91:7a:32: 19:bf:f6:e7:79:bb:bb:0c:ed:c1:54:4d:d9:3e:b3: 5b:5e:df:0f:70:ca:6a:0b:e8:68:ad:5e:04:16:0d: ca:3d:a8:43:a1:06:fa:19:6b:41:bc:dd:f6:4d:3c: 23:2b:32:11:24:97:10:20:61:c7:d0:85:e6:30:f8: 79:6e:ee:33:aa:9e:74:4f:09:cf:e7:cc:9e:89:e9: 87:c6:1a:1c:77:83:fa:95:a9:0d:b1:5b:6a:63:61: ce:e6:40:7d:45:6a:f4:39:e5:0b:9d:c8:63:06:42: 3f:83:3f:d8:2e:88:7c:26:d3:15:a9:cf:1d:4f:d6: 29:99:3e:c5:8c:a0:c8:34:24:77:47:00:2a:c3:98: 55:ed:90:a4:de:51:f3:6c:64:41:b7:a7:51:39:93: ea:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:30:CC:06:E7:F0:7F:89:BF:64:85:EC:6B:55:4B:BD:CD:23:54:F0 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a333a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:3::/48 Signature Algorithm: sha256WithRSAEncryption 80:7f:52:c5:3a:0e:09:e1:30:db:ae:8d:29:5b:58:ce:ab:c5: 99:09:5b:b5:f7:67:bf:d4:20:1c:12:db:e9:dc:b5:03:cd:0f: 64:7c:44:d5:3d:7b:57:1f:c1:5c:19:c7:ed:37:b6:95:e0:85: 45:6a:64:7d:bc:84:54:04:c4:43:01:d4:f6:8a:51:8f:ee:96: 9b:14:e4:20:c5:80:ff:c8:9e:81:da:e8:59:5e:7d:87:d5:50: 98:58:b2:52:f7:76:87:1f:d8:bf:95:88:14:26:39:88:67:b3: 3d:c8:df:2d:b1:c1:4d:3e:6e:f0:a3:f4:11:2a:cf:44:4d:9c: 85:84:3d:15:16:ba:7a:97:01:b6:9e:e6:60:b6:55:5b:77:93: 2b:07:5c:4f:c1:da:f2:e7:0c:73:39:2b:4c:1f:ff:90:d9:e8: 14:b3:c6:64:a9:f4:a6:1a:f1:a9:75:ec:e6:b8:11:d6:a7:c5: f8:39:39:41:82:a7:93:8b:bb:3b:b8:23:f9:70:e0:62:8e:2b: 7f:0b:b5:fe:38:ae:02:cc:76:15:81:d8:24:3c:53:9f:a7:bd: 9d:e2:4d:42:ae:f9:21:d2:c3:0c:2f:e5:a3:a0:10:96:e7:6d: 6e:b3:b8:f1:1d:e0:a0:fe:f9:a6:44:6b:5a:34:a7:fe:65:39: df:bc:62:00 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZoe/Hhl+BrryY8JpRMuBVXqNQ0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTZaFw0yNTEwMjcwNTAyNTZaMDMxMTAvBgNV BAMTKEZCMzBDQzA2RTdGMDdGODlCRjY0ODVFQzZCNTU0QkJEQ0QyMzU0RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbZBLrs7qDfQmMdG+aExDNOtY q9xIgP3AnHC7/O31vXqS0rmMDEd176lYuggMHv1mjt2WJFC/D6IIMlUxWrmMblFO QSGdzlbX2tI2gO37YRm4F8CHUO+T4ztPWnuvOpzw5y7aJJF6Mhm/9ud5u7sM7cFU Tdk+s1te3w9wymoL6GitXgQWDco9qEOhBvoZa0G83fZNPCMrMhEklxAgYcfQheYw +Hlu7jOqnnRPCc/nzJ6J6YfGGhx3g/qVqQ2xW2pjYc7mQH1FavQ55QudyGMGQj+D P9guiHwm0xWpzx1P1imZPsWMoMg0JHdHACrDmFXtkKTeUfNsZEG3p1E5k+o5AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU+zDMBufwf4m/ZIXsa1VLvc0jVPAwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAMw DQYJKoZIhvcNAQELBQADggEBAIB/UsU6DgnhMNuujSlbWM6rxZkJW7X3Z7/UIBwS 2+nctQPND2R8RNU9e1cfwVwZx+03tpXghUVqZH28hFQExEMB1PaKUY/ulpsU5CDF gP/InoHa6FlefYfVUJhYslL3docf2L+ViBQmOYhnsz3I3y2xwU0+bvCj9BEqz0RN nIWEPRUWunqXAbae5mC2VVt3kysHXE/B2vLnDHM5K0wf/5DZ6BSzxmSp9KYa8al1 7Oa4Edanxfg5OUGCp5OLuzu4I/lw4GKOK38Ltf44rgLMdhWB2CQ8U5+nvZ3iTUKu +SHSwwwv5aOgEJbnbW6zuPEd4KD++aZEa1o0p/5lOd+8YgA= -----END CERTIFICATE-----Generated at Sun Feb 16 21:57:16 2025 by rpki-client