$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: iRpAsPLIt0OsWq1bi/rfMIqgNubQbkkMF3mJVeaa9Nw= Subject key identifier: AD:4E:15:FC:9A:DE:A1:59:00:6C:E6:80:D8:DF:FB:19:0D:A8:FE:09 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 7E3676EB3F7C47574BD568D88275F7181C2DFB37 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:56 +0000 ROA not before: Mon 28 Oct 2024 04:57:56 +0000 ROA not after: Mon 27 Oct 2025 05:02:56 +0000 asID: 141968 IP address blocks: 2407:6ac0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 15:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:36:76:eb:3f:7c:47:57:4b:d5:68:d8:82:75:f7:18:1c:2d:fb:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:56 2024 GMT Not After : Oct 27 05:02:56 2025 GMT Subject: CN=AD4E15FC9ADEA159006CE680D8DFFB190DA8FE09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ff:b6:60:a5:1a:c1:b5:b5:aa:05:74:9c:b3: cf:a0:ec:9b:66:d2:58:62:33:3f:7b:ba:37:4e:2b: eb:e7:80:a5:b5:1d:18:e1:0e:03:ba:ce:25:d7:bb: b8:7f:7f:7f:cc:87:41:5e:66:b7:20:d2:f8:b6:ae: 6e:b9:ec:d8:2f:ee:e6:0f:8c:40:c4:04:8f:e0:ec: 20:36:12:3b:2c:b1:18:78:b5:2f:4f:7f:30:b7:a2: 65:41:0b:a7:63:33:89:ef:45:88:fa:f8:94:a7:79: aa:cd:f9:98:3a:07:47:5d:8a:f1:70:6d:93:28:e6: 37:41:a4:94:fa:79:fc:00:c7:ac:76:3b:d2:08:9b: af:8d:2b:30:f9:2a:f0:c0:78:ca:2f:fb:e1:7e:3a: 2e:35:37:67:ca:b1:77:ee:ad:9c:f7:1a:d6:5d:61: cf:b2:00:c3:9e:1b:7c:ec:8d:93:80:f0:71:bb:7b: 23:83:b3:08:ac:8f:80:43:5b:e5:ab:20:b5:d9:d8: 7f:ee:7b:68:a9:14:8a:2d:ab:24:3d:fb:fe:56:c0: fe:3b:b9:46:69:c4:a5:60:e3:6d:66:b5:a2:fa:e2: d7:74:9f:48:91:91:1e:8b:6c:2e:04:76:b3:2a:ae: fa:53:32:56:ce:f1:cb:b6:c6:82:8b:a2:7d:f8:8f: b9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4E:15:FC:9A:DE:A1:59:00:6C:E6:80:D8:DF:FB:19:0D:A8:FE:09 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a343a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:4::/48 Signature Algorithm: sha256WithRSAEncryption 8a:63:62:ca:10:f7:e6:cc:39:a1:3d:2a:09:0a:88:e2:33:ee: 12:e2:c0:7a:56:1d:28:7b:56:fb:56:80:f7:73:6d:74:fc:af: 28:04:d8:75:4c:22:86:7a:8e:c9:a0:f7:35:0c:ee:5b:8c:3a: 44:af:35:39:0b:76:9b:29:5c:30:d4:1e:c7:b1:60:65:0f:02: 47:31:ce:02:52:c3:d2:76:10:e4:ba:5a:63:62:db:5f:1d:5d: bc:13:fb:58:cd:ea:24:26:29:91:f2:db:8f:3d:d8:c8:1a:8e: 30:3d:2e:c9:a3:84:28:ff:28:3f:70:21:d7:51:e0:5b:77:4e: 6a:4c:25:50:f6:91:0c:f2:84:f2:fd:4d:19:3d:84:b0:0f:f4: 9f:88:1b:f8:4f:e8:b6:16:5a:4c:04:51:b7:47:d2:23:49:fb: 03:87:54:2d:ec:86:7b:9c:65:ed:e2:cb:81:25:5e:c5:f4:11: 54:a4:cc:2f:49:9b:4b:88:20:e0:27:d8:07:d7:ea:d7:95:6d: 1d:80:e4:20:41:ec:f7:5b:64:1e:34:a2:35:6a:a2:ff:36:a2: 51:2b:f9:8f:b4:2a:86:69:a7:75:d7:99:84:c7:d9:3b:3c:16: 87:3a:d2:01:d0:f1:a2:27:61:f5:bd:88:68:64:02:b8:08:a0: b7:ff:01:37 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfjZ26z98R1dL1WjYgnX3GBwt+zcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTZaFw0yNTEwMjcwNTAyNTZaMDMxMTAvBgNV BAMTKEFENEUxNUZDOUFERUExNTkwMDZDRTY4MEQ4REZGQjE5MERBOEZFMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2/7ZgpRrBtbWqBXScs8+g7Jtm 0lhiMz97ujdOK+vngKW1HRjhDgO6ziXXu7h/f3/Mh0FeZrcg0vi2rm657Ngv7uYP jEDEBI/g7CA2EjsssRh4tS9PfzC3omVBC6djM4nvRYj6+JSnearN+Zg6B0ddivFw bZMo5jdBpJT6efwAx6x2O9IIm6+NKzD5KvDAeMov++F+Oi41N2fKsXfurZz3GtZd Yc+yAMOeG3zsjZOA8HG7eyODswisj4BDW+WrILXZ2H/ue2ipFIotqyQ9+/5WwP47 uUZpxKVg421mtaL64td0n0iRkR6LbC4EdrMqrvpTMlbO8cu2xoKLon34j7kJAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrU4V/JreoVkAbOaA2N/7GQ2o/gkwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAQw DQYJKoZIhvcNAQELBQADggEBAIpjYsoQ9+bMOaE9KgkKiOIz7hLiwHpWHSh7VvtW gPdzbXT8rygE2HVMIoZ6jsmg9zUM7luMOkSvNTkLdpspXDDUHsexYGUPAkcxzgJS w9J2EOS6WmNi218dXbwT+1jN6iQmKZHy24892MgajjA9LsmjhCj/KD9wIddR4Ft3 TmpMJVD2kQzyhPL9TRk9hLAP9J+IG/hP6LYWWkwEUbdH0iNJ+wOHVC3shnucZe3i y4ElXsX0EVSkzC9Jm0uIIOAn2AfX6teVbR2A5CBB7PdbZB40ojVqov82olEr+Y+0 KoZpp3XXmYTH2Ts8Foc60gHQ8aInYfW9iGhkArgIoLf/ATc= -----END CERTIFICATE-----Generated at Wed Nov 20 12:07:51 2024 by rpki-client on console-fra.rpki-client.org