$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: Pmh/HGW6XVZDRxgmyf7EREKf9d/bSITsOHkEqHsv+x0= Subject key identifier: EC:28:DE:97:CA:30:71:94:0A:91:C1:05:06:08:5B:08:48:8A:50:3E Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 27CD318BA3E4A16052F091E40C1F5B9D55A7824C Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 15 Jun 2024 10:00:02 +0000 ROA not before: Sat 15 Jun 2024 09:55:02 +0000 ROA not after: Sat 14 Jun 2025 10:00:02 +0000 asID: 142366 IP address blocks: 2407:b4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cd:31:8b:a3:e4:a1:60:52:f0:91:e4:0c:1f:5b:9d:55:a7:82:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: Jun 15 09:55:02 2024 GMT Not After : Jun 14 10:00:02 2025 GMT Subject: CN=EC28DE97CA3071940A91C10506085B08488A503E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:be:8f:96:c8:bb:ec:d1:d2:11:45:24:16:4b: f1:e5:d1:64:bf:d9:ea:ea:3d:05:de:0a:14:5d:8f: 74:d7:ab:3e:b1:b1:d6:a2:d1:50:56:e2:61:55:a8: 5d:e3:34:ee:6a:53:2f:a6:66:01:ea:4b:84:e1:cd: 96:47:6d:f6:61:94:75:fd:4e:01:d5:cf:da:1d:7a: 1e:3b:55:1c:bf:5f:86:fa:d4:21:cb:42:5c:6b:3f: 3c:3a:9f:3d:0c:a0:4e:80:1a:59:70:8e:bd:9f:ed: 7c:1d:e7:88:82:4d:e4:1f:2e:59:c9:99:d1:8d:f8: 18:ca:94:05:b5:08:e6:fe:ef:bb:2a:f1:89:41:49: 33:92:67:5d:ec:14:17:b7:82:93:25:89:89:71:1a: 53:91:99:38:f4:14:4d:b4:c5:e3:57:07:fb:a2:eb: e5:a6:9f:6d:bd:8f:e0:16:9d:9e:74:c0:e3:e2:5b: cd:05:b4:85:3a:6f:b4:c0:09:5d:5c:8f:fd:0c:c0: 77:ec:7b:6d:96:f6:5b:66:3d:d9:d8:5c:8a:b0:87: 48:1c:e2:bd:e5:d1:05:e9:17:e0:b9:43:b2:d8:02: 59:69:bd:a3:b9:86:a8:35:8f:a5:65:f9:28:c0:02: a5:75:8d:6d:bb:b3:56:03:9e:1b:ff:c4:61:77:4d: ec:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:28:DE:97:CA:30:71:94:0A:91:C1:05:06:08:5B:08:48:8A:50:3E X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 20:f8:f4:73:78:b4:49:62:4a:a8:80:cb:83:6d:a2:f3:ba:b0: 2e:8b:e1:e7:52:40:ed:46:ed:07:c2:12:3e:05:d3:29:60:8b: 63:14:5e:72:2c:b5:0e:41:ab:72:ff:83:db:60:63:aa:d9:f8: 3f:22:37:7b:13:ce:b3:49:0f:d1:8b:96:95:1f:9a:90:53:a6: 14:44:2d:7d:d5:fe:8b:9f:a6:74:1b:d6:13:ac:55:a9:98:72: a6:58:8c:b4:24:99:65:ed:f7:c2:73:2c:79:ee:35:ba:aa:2f: 06:fc:76:cc:d6:5a:9a:05:90:fa:26:b8:93:b4:3f:42:29:22: 5f:c8:31:24:f3:48:d6:e1:24:bc:8d:29:0c:ee:95:96:20:29: ff:16:6b:02:ac:af:f2:b7:71:73:62:f0:39:3c:f2:a6:28:54: 70:a3:a5:40:fc:99:6d:eb:53:38:a8:d9:ae:3b:74:2c:70:e4: 03:fe:6e:87:d9:b6:b5:6c:53:b9:8b:fb:f0:66:5e:05:d8:bd: c4:04:b1:e5:f7:f9:a0:c2:87:b1:41:26:8e:68:9d:69:ce:60: 70:c3:a8:5e:02:5a:39:d7:9f:77:c5:90:5f:79:53:0f:f3:fd: f7:20:17:49:19:36:08:96:f8:9c:dc:aa:b0:a1:20:a8:26:a4: cd:8c:68:0a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJ80xi6PkoWBS8JHkDB9bnVWngkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNDA2MTUwOTU1MDJaFw0yNTA2MTQxMDAwMDJaMDMxMTAvBgNV BAMTKEVDMjhERTk3Q0EzMDcxOTQwQTkxQzEwNTA2MDg1QjA4NDg4QTUwM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vo+WyLvs0dIRRSQWS/Hl0WS/ 2erqPQXeChRdj3TXqz6xsdai0VBW4mFVqF3jNO5qUy+mZgHqS4ThzZZHbfZhlHX9 TgHVz9odeh47VRy/X4b61CHLQlxrPzw6nz0MoE6AGllwjr2f7Xwd54iCTeQfLlnJ mdGN+BjKlAW1COb+77sq8YlBSTOSZ13sFBe3gpMliYlxGlORmTj0FE20xeNXB/ui 6+Wmn229j+AWnZ50wOPiW80FtIU6b7TACV1cj/0MwHfse22W9ltmPdnYXIqwh0gc 4r3l0QXpF+C5Q7LYAllpvaO5hqg1j6Vl+SjAAqV1jW27s1YDnhv/xGF3TexhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7Cjel8owcZQKkcEFBghbCEiKUD4wHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAA0w DQYJKoZIhvcNAQELBQADggEBACD49HN4tEliSqiAy4NtovO6sC6L4edSQO1G7QfC Ej4F0ylgi2MUXnIstQ5Bq3L/g9tgY6rZ+D8iN3sTzrNJD9GLlpUfmpBTphRELX3V /oufpnQb1hOsVamYcqZYjLQkmWXt98JzLHnuNbqqLwb8dszWWpoFkPomuJO0P0Ip Il/IMSTzSNbhJLyNKQzulZYgKf8WawKsr/K3cXNi8Dk88qYoVHCjpUD8mW3rUzio 2a47dCxw5AP+bofZtrVsU7mL+/BmXgXYvcQEseX3+aDCh7FBJo5onWnOYHDDqF4C WjnXn3fFkF95Uw/z/fcgF0kZNgiW+JzcqrChIKgmpM2MaAo= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org