$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a373a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a373a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: H0heYtYlkiqF1JOZLA75evZ+R7+2gTE9FhKGOY4qFto= Subject key identifier: 10:B4:44:04:96:AE:3B:87:5B:05:5D:EA:F6:75:E2:0A:13:D5:CC:AB Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 4AB1423201326176D313663176C0B1F65164DD8B Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a373a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:56 +0000 ROA not before: Mon 28 Oct 2024 04:57:56 +0000 ROA not after: Mon 27 Oct 2025 05:02:56 +0000 asID: 141968 IP address blocks: 2407:6ac0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b1:42:32:01:32:61:76:d3:13:66:31:76:c0:b1:f6:51:64:dd:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:56 2024 GMT Not After : Oct 27 05:02:56 2025 GMT Subject: CN=10B4440496AE3B875B055DEAF675E20A13D5CCAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:db:d0:74:19:bc:2f:2f:b1:6c:20:c8:9b:2a: bc:d3:60:cc:5e:f4:61:3b:97:34:47:26:ac:34:e0: b5:96:d2:0c:f0:80:5c:b0:5c:61:18:24:86:db:85: ea:46:a8:ca:65:53:eb:47:f7:c5:e7:06:8e:43:52: f4:60:0a:30:c4:8c:8a:27:b7:51:0a:9c:63:ee:9b: ac:f1:4a:c7:77:63:5c:11:35:f8:a2:ed:a8:e3:ed: 17:bd:62:7c:73:16:a9:d9:41:6a:6d:a7:71:fb:51: 0b:6d:58:c0:97:2d:52:03:85:31:ab:e6:6d:ef:35: 7d:c7:d3:45:b9:82:da:4a:98:3b:e7:c5:e4:f1:68: 4b:79:1e:d6:e4:35:4b:c0:e5:b4:ca:10:8e:4f:64: 82:19:46:62:12:5e:46:33:86:4c:6c:9b:17:3a:d9: aa:cb:c4:a9:a9:82:6a:a6:6d:53:81:97:86:6e:a5: fa:73:46:36:e3:b1:1e:b0:00:61:db:68:73:91:87: 4a:21:fa:14:b5:4b:35:5a:18:08:04:d5:02:3c:b3: 65:b5:a4:d5:92:00:33:e0:9e:2b:cd:09:76:ef:29: 29:7b:8a:c7:87:b2:06:f5:84:b1:86:23:e3:ea:bc: 16:40:66:7a:68:81:6b:9f:b2:f9:3d:1f:7b:c4:7b: 04:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B4:44:04:96:AE:3B:87:5B:05:5D:EA:F6:75:E2:0A:13:D5:CC:AB X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a373a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:7::/48 Signature Algorithm: sha256WithRSAEncryption 25:95:3f:cc:0f:0a:bd:17:21:2d:6b:41:79:81:c0:5c:f2:7e: 2a:eb:40:68:ec:89:d5:75:4a:c5:3b:ff:7a:48:19:69:46:91: c9:f6:c2:2c:48:99:fb:72:a8:28:d9:4e:14:17:b5:3f:cf:2f: bf:4d:9f:21:a7:fb:f7:cc:7f:55:dd:0f:d9:3c:2c:79:49:de: a0:d3:ac:75:70:3d:ff:ea:1e:ca:fd:93:02:12:86:70:0b:9c: 33:ee:be:24:0f:1f:25:94:0a:01:d1:f6:28:54:21:1c:6a:22: a5:1c:c2:90:6a:43:35:3a:3d:de:9e:f3:7e:11:ab:21:9b:98: cf:04:3f:9e:be:ea:0c:82:bf:86:9a:7c:9d:89:4c:22:89:87: 08:4e:96:e7:f8:1c:9f:48:96:ce:32:29:30:54:6b:a3:71:ea: 5e:2a:6a:18:15:1d:29:c4:7c:a8:51:3a:dc:30:12:7e:59:59: 25:58:b2:99:79:e3:62:f9:46:7b:7a:23:54:b1:7e:2c:ab:18: 80:bf:88:3a:82:0d:89:35:71:27:1e:3f:74:87:bc:6d:b7:7e: f9:2a:7b:0a:8b:97:9e:6d:9c:4d:08:18:98:9a:5c:f2:70:d9: 60:11:f3:fb:3e:71:61:73:ef:68:64:6d:f7:f7:c4:d1:c5:9c: a9:05:01:89 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSrFCMgEyYXbTE2YxdsCx9lFk3YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTZaFw0yNTEwMjcwNTAyNTZaMDMxMTAvBgNV BAMTKDEwQjQ0NDA0OTZBRTNCODc1QjA1NURFQUY2NzVFMjBBMTNENUNDQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM29B0GbwvL7FsIMibKrzTYMxe 9GE7lzRHJqw04LWW0gzwgFywXGEYJIbbhepGqMplU+tH98XnBo5DUvRgCjDEjIon t1EKnGPum6zxSsd3Y1wRNfii7ajj7Re9YnxzFqnZQWptp3H7UQttWMCXLVIDhTGr 5m3vNX3H00W5gtpKmDvnxeTxaEt5HtbkNUvA5bTKEI5PZIIZRmISXkYzhkxsmxc6 2arLxKmpgmqmbVOBl4ZupfpzRjbjsR6wAGHbaHORh0oh+hS1SzVaGAgE1QI8s2W1 pNWSADPgnivNCXbvKSl7iseHsgb1hLGGI+PqvBZAZnpogWufsvk9H3vEewRnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUELREBJauO4dbBV3q9nXiChPVzKswHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAcw DQYJKoZIhvcNAQELBQADggEBACWVP8wPCr0XIS1rQXmBwFzyfirrQGjsidV1SsU7 /3pIGWlGkcn2wixImftyqCjZThQXtT/PL79NnyGn+/fMf1XdD9k8LHlJ3qDTrHVw Pf/qHsr9kwIShnALnDPuviQPHyWUCgHR9ihUIRxqIqUcwpBqQzU6Pd6e834RqyGb mM8EP56+6gyCv4aafJ2JTCKJhwhOluf4HJ9Ils4yKTBUa6Nx6l4qahgVHSnEfKhR OtwwEn5ZWSVYspl542L5Rnt6I1SxfiyrGIC/iDqCDYk1cSceP3SHvG23fvkqewqL l55tnE0IGJiaXPJw2WAR8/s+cWFz72hkbff3xNHFnKkFAYk= -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org