$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a353a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a353a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: AOzuRVdhFTERJDmeQClX0B+JMFOgUCfH/lx7mkl3uvQ= Subject key identifier: 3B:F3:98:C9:52:6A:9A:E3:0A:6A:00:82:CF:31:4B:18:6C:E9:E0:19 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 64C7A013B0A9ED8634E4349638C57901897C19 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a353a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 04:00:01 +0000 ROA not before: Mon 28 Oct 2024 03:55:01 +0000 ROA not after: Mon 27 Oct 2025 04:00:01 +0000 asID: 141968 IP address blocks: 2407:6ac0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c7:a0:13:b0:a9:ed:86:34:e4:34:96:38:c5:79:01:89:7c:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 03:55:01 2024 GMT Not After : Oct 27 04:00:01 2025 GMT Subject: CN=3BF398C9526A9AE30A6A0082CF314B186CE9E019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:37:1a:a9:74:6a:67:76:3b:c3:4a:fd:9e:a8: fd:39:08:24:de:f5:13:31:34:a1:61:f3:e3:36:e0: c8:76:45:8e:c1:2e:fe:3e:68:3a:df:3d:ea:8a:75: 7d:f2:a6:36:96:1f:60:3b:f8:18:be:14:10:d7:61: 72:30:f4:9b:07:ba:7c:02:07:37:59:26:3e:fe:17: 72:b9:a8:2a:7b:d8:54:77:fb:73:43:46:20:d1:4b: 79:57:a0:6c:fc:d6:63:85:b3:b2:99:f1:0d:bf:b1: 43:ab:a0:0d:88:e7:00:71:ba:ef:73:9d:0c:29:8e: 62:09:8a:df:75:3d:19:06:5d:38:4c:e3:3b:5a:63: ac:8f:01:df:99:83:07:12:f5:48:67:a7:db:8a:6a: fd:8b:56:82:88:3d:17:4a:fb:d3:19:86:bf:06:ed: d0:6b:38:18:c4:7f:3a:cd:9f:77:85:84:d3:10:a8: 65:fc:55:5e:39:79:36:a0:7c:4f:50:9c:32:40:3f: d7:88:40:a2:b5:8c:ac:6c:a2:39:7c:79:48:80:c1: d3:99:ba:60:e9:2c:54:d7:30:c1:db:d3:16:8e:2e: 77:23:8e:82:7e:32:3c:c4:d3:83:cf:3a:70:f9:df: 8e:09:43:9d:1d:88:b0:46:f8:23:3e:d4:a9:bb:e1: 8e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F3:98:C9:52:6A:9A:E3:0A:6A:00:82:CF:31:4B:18:6C:E9:E0:19 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a353a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:5::/48 Signature Algorithm: sha256WithRSAEncryption 1a:16:6a:cd:14:a9:18:2b:6c:85:38:25:d4:ca:cd:0b:b2:84: 85:ad:16:58:0f:b9:18:ea:77:03:e9:b0:42:a7:9b:1c:f8:76: 01:3d:9f:0f:a0:30:b9:ba:f7:29:3f:c4:22:df:ca:10:02:32: 6f:a9:d9:fc:98:1d:41:a7:5b:af:62:be:0c:44:9d:24:4e:cd: b6:1e:9f:03:cb:1e:ec:de:70:79:84:ed:a7:86:6e:fb:ef:38: 43:ef:99:0b:52:c0:29:18:1b:d7:ae:45:50:d3:e6:37:c2:91: c4:96:b7:5e:d4:7e:43:05:ea:68:ff:04:4d:12:c1:2c:f6:e0: be:36:18:2d:43:45:ed:a8:48:9a:27:46:0e:6e:06:c7:69:7f: 8c:14:45:0a:c9:94:2f:93:22:32:43:29:0d:d8:94:d3:f6:be: 81:84:eb:17:8d:e3:03:43:45:7c:3c:68:f5:50:89:e5:11:95: 27:ad:df:a8:b8:f5:f7:e1:78:c3:ba:b6:a4:10:d0:72:49:22: 23:46:03:49:df:34:0f:e1:9a:c4:49:04:8b:af:be:b2:20:e1: c6:da:94:3a:68:22:75:b9:0c:ab:4d:c2:28:0b:2f:6c:ce:11: 0d:a4:36:56:be:24:22:80:bc:9f:73:1f:40:aa:d3:51:8b:60: 14:de:de:f9 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgITZMegE7Cp7YY05DSWOMV5AYl8GTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhGMDYxNTQ1NzQwQjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0 RjY5Mzg3MB4XDTI0MTAyODAzNTUwMVoXDTI1MTAyNzA0MDAwMVowMzExMC8GA1UE AxMoM0JGMzk4Qzk1MjZBOUFFMzBBNkEwMDgyQ0YzMTRCMTg2Q0U5RTAxOTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL83Gql0amd2O8NK/Z6o/TkIJN71 EzE0oWHz4zbgyHZFjsEu/j5oOt896op1ffKmNpYfYDv4GL4UENdhcjD0mwe6fAIH N1kmPv4XcrmoKnvYVHf7c0NGINFLeVegbPzWY4WzspnxDb+xQ6ugDYjnAHG673Od DCmOYgmK33U9GQZdOEzjO1pjrI8B35mDBxL1SGen24pq/YtWgog9F0r70xmGvwbt 0Gs4GMR/Os2fd4WE0xCoZfxVXjl5NqB8T1CcMkA/14hAorWMrGyiOXx5SIDB05m6 YOksVNcwwdvTFo4udyOOgn4yPMTTg886cPnfjglDnR2IsEb4Iz7UqbvhjksCAwEA AaOCAjkwggI1MB0GA1UdDgQWBBQ785jJUmqa4wpqAILPMUsYbOngGTAfBgNVHSME GDAWgBTwYVRXQLa2ap08HR/k8/21pPaThzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Ez NmEyMTcxLTEyYTAtNGUwMS1iY2FiLWJlM2I2YjgzNmY1ZC8wL0YwNjE1NDU3NDBC NkI2NkE5RDNDMUQxRkU0RjNGREI1QTRGNjkzODcuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9GMDYxNTQ1NzQwQjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5 Mzg3LmNlcjCBpgYIKwYBBQUHAQsEgZkwgZYwgZMGCCsGAQUFBzALhoGGcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTM2YTIxNzEtMTJhMC00ZTAxLWJj YWItYmUzYjZiODM2ZjVkLzAvMzIzNDMwMzczYTM2NjE2MzMwM2EzNTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM5MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHasAABTAN BgkqhkiG9w0BAQsFAAOCAQEAGhZqzRSpGCtshTgl1MrNC7KEha0WWA+5GOp3A+mw QqebHPh2AT2fD6Awubr3KT/EIt/KEAIyb6nZ/JgdQadbr2K+DESdJE7Nth6fA8se 7N5weYTtp4Zu++84Q++ZC1LAKRgb165FUNPmN8KRxJa3XtR+QwXqaP8ETRLBLPbg vjYYLUNF7ahImidGDm4Gx2l/jBRFCsmUL5MiMkMpDdiU0/a+gYTrF43jA0NFfDxo 9VCJ5RGVJ63fqLj19+F4w7q2pBDQckkiI0YDSd80D+GaxEkEi6++siDhxtqUOmgi dbkMq03CKAsvbM4RDaQ2Vr4kIoC8n3MfQKrTUYtgFN7e+Q== -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:32 2025 by rpki-client