$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a393a3a2f34382d3438203d3e20313431393638.roa File: 323430373a366163303a393a3a2f34382d3438203d3e20313431393638.roa (raw, json) Hash identifier: 3TCdJ5SKQQMneW5BgHP+DZSO8att1WsR7XVtJ7bCTjA= Subject key identifier: C9:DC:18:A9:7D:EF:AF:1B:89:3E:DD:4E:5B:02:B5:B7:28:73:4F:B2 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 0D445A8EEC41F3C2F21BCED4B7CD3A7DF2FC48C7 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a393a3a2f34382d3438203d3e20313431393638.roa Signing time: Mon 28 Oct 2024 05:02:56 +0000 ROA not before: Mon 28 Oct 2024 04:57:56 +0000 ROA not after: Mon 27 Oct 2025 05:02:56 +0000 asID: 141968 IP address blocks: 2407:6ac0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:44:5a:8e:ec:41:f3:c2:f2:1b:ce:d4:b7:cd:3a:7d:f2:fc:48:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 28 04:57:56 2024 GMT Not After : Oct 27 05:02:56 2025 GMT Subject: CN=C9DC18A97DEFAF1B893EDD4E5B02B5B728734FB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:62:5a:df:c6:1f:28:ff:81:f1:6e:3c:cd:00: d9:8d:98:e8:c9:85:98:17:5b:6c:a0:83:f1:b8:58: 7a:3e:14:92:68:21:ed:80:83:d1:43:9b:95:7b:5b: 98:b8:2b:be:2f:34:ac:21:68:1b:fc:c3:da:d7:b3: ab:c4:a4:ac:16:c2:15:e6:bb:33:d2:bd:87:ff:ba: 4f:60:12:f9:5e:58:c1:99:9b:16:67:69:9d:dc:1b: a4:92:b8:7a:e9:68:9d:5a:f7:3e:e7:04:df:bb:5f: e0:44:fe:70:d3:2e:c1:d0:6a:d5:04:a6:f5:43:c6: ed:27:d0:ea:9e:07:9e:91:91:23:36:38:d4:91:85: 34:93:e1:2f:4b:72:66:c7:a9:cd:d8:45:63:49:5e: 01:b5:8c:82:2a:78:b6:99:a1:fd:be:06:49:2f:7b: 9b:86:30:a5:a7:a0:74:66:32:90:98:36:bb:93:25: ec:46:3a:1a:f9:f9:b8:f1:6f:36:ea:0d:6f:4b:74: ee:02:b4:76:9c:ef:07:9e:09:c0:5f:5e:59:b7:dd: d6:f5:86:c9:d2:81:b0:40:6d:64:c4:9a:2c:82:77: 7b:8b:4c:88:a5:51:fd:72:83:75:90:fa:47:7a:a7: 4f:57:53:c5:70:c9:bb:97:e0:f2:d1:41:68:3e:ee: 56:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DC:18:A9:7D:EF:AF:1B:89:3E:DD:4E:5B:02:B5:B7:28:73:4F:B2 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a393a3a2f34382d3438203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0:9::/48 Signature Algorithm: sha256WithRSAEncryption 66:24:20:a2:ba:a2:64:8d:95:48:81:60:6a:c3:09:23:a3:35: fb:0d:57:20:0c:29:1a:83:59:44:39:ea:6b:b4:f3:82:5c:6d: 1a:33:1b:d1:e9:e5:3f:8b:44:84:07:c1:50:23:24:90:cd:af: cc:42:4c:db:6d:32:a2:3a:0c:5a:82:fa:09:58:c9:1d:a8:e6: a9:ab:08:73:e9:d7:4d:77:bc:d6:e8:63:88:0b:76:f8:10:59: f8:00:c9:cb:48:d8:f4:a0:73:34:fe:fe:3f:ae:09:4b:c8:bc: a9:66:70:34:c2:5f:b5:d1:c1:4d:3e:c8:06:cd:ea:e4:52:d4: b3:77:7a:5c:6a:47:bf:79:6c:a6:85:00:27:01:a6:68:ab:67: 9c:95:eb:87:52:3a:59:05:ca:a1:41:a4:3a:0e:d7:b9:76:a1: c5:90:59:4f:a0:ac:7c:9e:85:92:a4:d2:69:ec:1c:04:18:f9: fd:47:84:55:5a:5b:96:2f:14:d8:cd:37:29:e6:e7:df:8e:d5: 0a:a6:44:4c:24:8a:5b:e8:16:73:56:5d:76:89:3c:23:14:32: 06:17:6d:19:aa:0c:5a:b4:35:62:ac:bf:dd:8e:25:b6:14:4c: 64:3a:42:73:5e:53:fb:62:6c:4d:8c:c1:9e:a5:1a:d0:7a:84: e0:e5:99:76 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDURajuxB88LyG87Ut806ffL8SMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjgwNDU3NTZaFw0yNTEwMjcwNTAyNTZaMDMxMTAvBgNV BAMTKEM5REMxOEE5N0RFRkFGMUI4OTNFREQ0RTVCMDJCNUI3Mjg3MzRGQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDYlrfxh8o/4HxbjzNANmNmOjJ hZgXW2ygg/G4WHo+FJJoIe2Ag9FDm5V7W5i4K74vNKwhaBv8w9rXs6vEpKwWwhXm uzPSvYf/uk9gEvleWMGZmxZnaZ3cG6SSuHrpaJ1a9z7nBN+7X+BE/nDTLsHQatUE pvVDxu0n0OqeB56RkSM2ONSRhTST4S9LcmbHqc3YRWNJXgG1jIIqeLaZof2+Bkkv e5uGMKWnoHRmMpCYNruTJexGOhr5+bjxbzbqDW9LdO4CtHac7weeCcBfXlm33db1 hsnSgbBAbWTEmiyCd3uLTIilUf1yg3WQ+kd6p09XU8VwybuX4PLRQWg+7laPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUydwYqX3vrxuJPt1OWwK1tyhzT7IwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzOTM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB2rAAAkw DQYJKoZIhvcNAQELBQADggEBAGYkIKK6omSNlUiBYGrDCSOjNfsNVyAMKRqDWUQ5 6mu084JcbRozG9Hp5T+LRIQHwVAjJJDNr8xCTNttMqI6DFqC+glYyR2o5qmrCHPp 1013vNboY4gLdvgQWfgAyctI2PSgczT+/j+uCUvIvKlmcDTCX7XRwU0+yAbN6uRS 1LN3elxqR795bKaFACcBpmirZ5yV64dSOlkFyqFBpDoO17l2ocWQWU+grHyehZKk 0mnsHAQY+f1HhFVaW5YvFNjNNynm59+O1QqmREwkilvoFnNWXXaJPCMUMgYXbRmq DFq0NWKsv92OJbYUTGQ6QnNeU/tibE2MwZ6lGtB6hODlmXY= -----END CERTIFICATE-----Generated at Sun Feb 16 21:57:18 2025 by rpki-client