$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: 74pFaN/es75Ig0CrWkt2hfhPk+/GuU1QhSqPlkk7DKc= Subject key identifier: 2D:22:0C:EA:36:35:7B:7A:7F:0E:14:3F:20:27:65:3F:99:38:68:69 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 0B1E4050643E74D50126D10FBC570B0C42F0A5BC Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 15 Jun 2024 10:00:01 +0000 ROA not before: Sat 15 Jun 2024 09:55:01 +0000 ROA not after: Sat 14 Jun 2025 10:00:01 +0000 asID: 142366 IP address blocks: 2407:b4c0:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:1e:40:50:64:3e:74:d5:01:26:d1:0f:bc:57:0b:0c:42:f0:a5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Jun 15 09:55:01 2024 GMT Not After : Jun 14 10:00:01 2025 GMT Subject: CN=2D220CEA36357B7A7F0E143F2027653F99386869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:60:2f:8c:98:c1:06:27:72:67:f4:34:d2: 9e:34:99:31:70:7f:54:09:d6:b8:f6:fb:29:1b:2c: 66:de:17:a9:65:ba:24:7e:ad:d6:e4:f2:91:45:50: 80:f8:8f:c0:30:49:74:68:b9:f6:90:5a:10:a6:30: 08:33:41:29:08:99:bf:6a:3a:b0:02:f4:83:6b:e2: 9f:86:cb:07:11:02:d7:26:48:c4:df:c2:19:fc:08: bc:94:e6:73:54:26:4d:1d:ec:7a:4e:4f:b1:22:8e: 89:ca:32:c8:28:37:31:f4:66:f4:da:ca:48:f9:c4: d7:6e:e3:ff:e3:e0:de:0c:10:2d:a0:a4:65:0b:28: e5:0e:0e:39:e9:d2:3b:e5:cf:92:62:76:1a:b2:a9: 89:50:47:0a:8b:9e:67:2d:82:86:9d:a8:32:b6:27: a0:61:88:76:77:5e:0d:0c:6c:11:06:28:3d:5b:b8: 5e:a8:c7:2c:3a:d0:bf:f8:c7:e1:af:09:ec:64:25: 46:5f:a5:5c:c2:f7:8f:f0:d4:ef:dd:ab:9c:e8:02: a3:cb:6b:be:f3:4b:3a:5a:c2:33:4e:85:7f:60:7e: fb:e8:8b:8d:9b:59:ef:6f:02:e1:2c:2e:1b:b5:aa: d0:9f:8c:67:ab:79:ab:e3:f6:20:b9:6f:0f:78:6d: 2c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:22:0C:EA:36:35:7B:7A:7F:0E:14:3F:20:27:65:3F:99:38:68:69 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:c::/48 Signature Algorithm: sha256WithRSAEncryption 66:c9:a1:63:3d:36:b2:9d:a2:b0:fa:d3:aa:53:cc:29:d2:2a: da:ea:30:19:31:e6:6f:2f:32:a4:71:c6:8b:cb:0b:89:ea:8e: ab:0a:e2:35:5d:27:bc:1c:05:0b:1f:1c:39:f0:57:45:9f:d7: 01:d7:8b:1a:4d:d4:38:a2:35:9b:cb:22:aa:d2:59:c6:77:6d: 51:2b:32:b1:d0:4a:65:69:89:8d:65:1f:0b:fa:57:b8:1a:b8: 89:12:6c:fb:b0:8f:93:b8:f2:fd:39:12:d2:fc:ae:6c:cc:0d: b0:ad:c0:12:a8:bc:67:3a:2c:7c:e7:3b:9f:2e:21:6f:87:37: 4f:c6:5a:e9:6b:aa:ae:45:4c:4c:78:0e:67:94:59:b3:1b:9c: 99:04:74:7e:15:4f:a5:25:31:d1:2d:22:6f:0f:95:59:31:b9: 95:ce:fe:96:5f:d1:f3:74:ca:87:65:d0:81:e6:9e:a7:f6:46: f7:7e:0f:bc:22:8b:02:56:56:37:75:5c:97:f3:26:90:2e:8c: ef:0c:35:a5:b9:df:25:a1:39:51:02:7c:91:2d:0f:54:f2:89: 6f:34:76:87:8a:e7:f0:ad:7a:43:cf:38:7d:98:fa:4b:3a:7a: 10:81:f3:bd:1d:55:f7:2a:1a:3e:91:e1:f8:24:6c:7b:0d:c2: 8a:c6:07:bd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCx5AUGQ+dNUBJtEPvFcLDELwpbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNDA2MTUwOTU1MDFaFw0yNTA2MTQxMDAwMDFaMDMxMTAvBgNV BAMTKDJEMjIwQ0VBMzYzNTdCN0E3RjBFMTQzRjIwMjc2NTNGOTkzODY4NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xmAvjJjBBidyZ/Q00p40mTFw f1QJ1rj2+ykbLGbeF6lluiR+rdbk8pFFUID4j8AwSXRoufaQWhCmMAgzQSkImb9q OrAC9INr4p+GywcRAtcmSMTfwhn8CLyU5nNUJk0d7HpOT7EijonKMsgoNzH0ZvTa ykj5xNdu4//j4N4MEC2gpGULKOUODjnp0jvlz5JidhqyqYlQRwqLnmctgoadqDK2 J6BhiHZ3Xg0MbBEGKD1buF6oxyw60L/4x+GvCexkJUZfpVzC94/w1O/dq5zoAqPL a77zSzpawjNOhX9gfvvoi42bWe9vAuEsLhu1qtCfjGereavj9iC5bw94bSyHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULSIM6jY1e3p/DhQ/ICdlP5k4aGkwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAAww DQYJKoZIhvcNAQELBQADggEBAGbJoWM9NrKdorD606pTzCnSKtrqMBkx5m8vMqRx xovLC4nqjqsK4jVdJ7wcBQsfHDnwV0Wf1wHXixpN1DiiNZvLIqrSWcZ3bVErMrHQ SmVpiY1lHwv6V7gauIkSbPuwj5O48v05EtL8rmzMDbCtwBKovGc6LHznO58uIW+H N0/GWulrqq5FTEx4DmeUWbMbnJkEdH4VT6UlMdEtIm8PlVkxuZXO/pZf0fN0yodl 0IHmnqf2Rvd+D7wiiwJWVjd1XJfzJpAujO8MNaW53yWhOVECfJEtD1TyiW80doeK 5/CtekPPOH2Y+ks6ehCB870dVfcqGj6R4fgkbHsNworGB70= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org