$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa File: 323430373a366163303a3a2f33322d3332203d3e20313431393638.roa (raw, json) Hash identifier: jGPbTLVV7jn3lV6yTnJElLdoxzWapOayDJgNMTEnxY8= Subject key identifier: 52:9C:CC:8A:51:66:92:CC:AE:D1:3E:B5:86:F7:D9:8A:0E:EC:D5:BF Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 68187B902D06292F4E3085A346D323F9943E7F0E Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa Signing time: Tue 29 Oct 2024 01:00:01 +0000 ROA not before: Tue 29 Oct 2024 00:55:01 +0000 ROA not after: Tue 28 Oct 2025 01:00:01 +0000 asID: 141968 IP address blocks: 2407:6ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:18:7b:90:2d:06:29:2f:4e:30:85:a3:46:d3:23:f9:94:3e:7f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Oct 29 00:55:01 2024 GMT Not After : Oct 28 01:00:01 2025 GMT Subject: CN=529CCC8A516692CCAED13EB586F7D98A0EECD5BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d0:af:ea:d4:2d:01:f8:ef:09:af:85:6b:8a: 06:6a:35:b6:2c:68:45:0f:6c:c5:40:d6:c5:6c:bb: 82:b0:99:4c:d9:ff:60:57:f0:5e:cf:79:32:33:ca: c6:0a:31:0f:94:f0:76:35:ee:4b:75:43:e7:cd:0f: f7:0d:28:8a:ec:17:73:76:b9:6f:74:ba:cd:bf:f7: bb:dc:aa:2c:63:3e:ab:09:bc:65:35:b9:1e:a1:86: 94:06:c0:fc:4b:e8:49:d7:80:ac:7f:33:91:15:c1: 3a:11:54:e0:18:8f:a9:49:0d:4e:c8:52:1d:39:97: 8a:9e:2a:44:5c:e9:84:62:4b:43:e2:b6:ac:e7:21: 98:3e:3a:b4:a0:d8:29:89:6a:47:0a:c6:07:cf:ef: 30:b7:aa:e9:fe:67:41:e8:50:eb:61:8a:af:05:16: f9:48:e9:f2:ae:bb:b7:c2:07:86:66:22:61:88:a4: eb:1a:c1:39:3e:64:49:72:2a:f2:77:18:13:e1:e3: 62:3b:97:a7:db:52:60:28:9b:a3:84:f8:8e:2b:c2: 71:b0:b1:0a:fa:67:bc:4c:fe:e7:1d:47:26:08:d9: e1:89:07:41:0e:1c:21:e0:ff:90:b6:63:f4:5d:7f: e2:26:4a:96:b3:d9:23:b4:3f:ad:d8:2e:74:46:2d: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9C:CC:8A:51:66:92:CC:AE:D1:3E:B5:86:F7:D9:8A:0E:EC:D5:BF X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/323430373a366163303a3a2f33322d3332203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6ac0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:d6:e2:b7:54:2f:f1:ab:b3:a4:bc:1d:a1:1f:9e:b9:1b:05: 89:8d:1a:84:c5:8a:78:4c:54:ce:d1:a7:e5:db:fe:a5:87:47: 85:f0:be:6f:57:09:3c:c8:7c:be:8c:6e:2d:e9:24:bb:72:cf: 76:08:56:ee:f4:b9:14:ce:ea:34:9e:e3:0f:17:d5:49:3a:88: d2:ac:68:a9:46:fb:80:8e:b4:0c:b6:37:f7:80:32:8e:f7:c1: d4:58:91:3e:dc:34:62:b2:62:13:05:f1:7f:db:1f:5d:b7:87: 60:52:2f:a7:e6:6f:c6:b4:7c:da:17:d2:e0:1d:cd:8a:da:81: ac:a4:ae:1e:35:2e:f6:07:f0:e6:e8:3a:e1:2c:d6:95:df:d2: cd:eb:40:6e:6c:93:20:dd:e4:51:f0:02:a7:ab:34:67:a9:13: f9:00:82:62:9c:10:88:9c:1f:41:f0:1c:6c:c3:76:cb:3e:3d: f7:5f:2e:4b:b8:3e:0e:83:96:85:33:f9:f2:df:af:0a:a8:a9: 1f:82:19:d8:5c:09:04:9c:7c:f1:57:5b:cb:08:91:e4:5b:3c: 8f:10:df:08:8c:ca:8a:0f:b2:ae:a3:76:c0:8d:06:d3:69:43: 68:b4:d6:1a:cd:c1:7e:dc:55:24:73:80:4f:99:0a:93:19:ac: f8:22:89:03 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUaBh7kC0GKS9OMIWjRtMj+ZQ+fw4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDEwMjkwMDU1MDFaFw0yNTEwMjgwMTAwMDFaMDMxMTAvBgNV BAMTKDUyOUNDQzhBNTE2NjkyQ0NBRUQxM0VCNTg2RjdEOThBMEVFQ0Q1QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF0K/q1C0B+O8Jr4VrigZqNbYs aEUPbMVA1sVsu4KwmUzZ/2BX8F7PeTIzysYKMQ+U8HY17kt1Q+fND/cNKIrsF3N2 uW90us2/97vcqixjPqsJvGU1uR6hhpQGwPxL6EnXgKx/M5EVwToRVOAYj6lJDU7I Uh05l4qeKkRc6YRiS0PitqznIZg+OrSg2CmJakcKxgfP7zC3qun+Z0HoUOthiq8F FvlI6fKuu7fCB4ZmImGIpOsawTk+ZElyKvJ3GBPh42I7l6fbUmAom6OE+I4rwnGw sQr6Z7xM/ucdRyYI2eGJB0EOHCHg/5C2Y/Rdf+ImSpaz2SO0P63YLnRGLa8xAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUpzMilFmksyu0T61hvfZig7s1b8wHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMyMzQzMDM3M2EzNjYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTM5MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHasAwDQYJKoZI hvcNAQELBQADggEBAI3W4rdUL/Grs6S8HaEfnrkbBYmNGoTFinhMVM7Rp+Xb/qWH R4Xwvm9XCTzIfL6Mbi3pJLtyz3YIVu70uRTO6jSe4w8X1Uk6iNKsaKlG+4COtAy2 N/eAMo73wdRYkT7cNGKyYhMF8X/bH123h2BSL6fmb8a0fNoX0uAdzYragaykrh41 LvYH8OboOuEs1pXf0s3rQG5skyDd5FHwAqerNGepE/kAgmKcEIicH0HwHGzDdss+ PfdfLku4Pg6DloUz+fLfrwqoqR+CGdhcCQScfPFXW8sIkeRbPI8Q3wiMyooPsq6j dsCNBtNpQ2i01hrNwX7cVSRzgE+ZCpMZrPgiiQM= -----END CERTIFICATE-----Generated at Sun Feb 16 21:54:30 2025 by rpki-client