$ rpki-client -vvf repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa File: 323430373a396338303a3a2f33322d3438203d3e20313335343834.roa (raw, json) Hash identifier: n5BgEkTxLwtJUZihnJWVAnPuV9guSfKe7HeHpe21Ps8= Subject key identifier: BC:E6:49:08:F4:50:A5:AF:4C:3D:76:8E:3C:E6:D6:61:7F:DE:FB:B6 Certificate issuer: /CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Certificate serial: 7EEBF3AA6002328C75B5F8ECD9EC8105CD6FF0F7 Authority key identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa Signing time: Mon 01 Jul 2024 01:05:22 +0000 ROA not before: Mon 01 Jul 2024 01:00:22 +0000 ROA not after: Mon 30 Jun 2025 01:05:22 +0000 asID: 135484 IP address blocks: 2407:9c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:eb:f3:aa:60:02:32:8c:75:b5:f8:ec:d9:ec:81:05:cd:6f:f0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Validity Not Before: Jul 1 01:00:22 2024 GMT Not After : Jun 30 01:05:22 2025 GMT Subject: CN=BCE64908F450A5AF4C3D768E3CE6D6617FDEFBB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:5d:62:04:8f:21:fa:0d:bc:2d:1f:5f:7d: 8e:37:82:a2:a0:56:66:ae:9d:bd:2a:54:ec:14:76: 4e:e6:0d:9a:aa:69:5f:42:12:7e:10:de:38:a3:d5: bc:d7:20:27:91:9a:fc:aa:04:73:25:3c:d6:5e:87: 4b:75:7a:a6:df:58:80:e5:59:ff:45:44:56:88:c6: 29:f6:df:4b:6a:02:48:46:e8:33:05:40:32:4c:44: 5f:cb:fa:79:3c:7c:cb:91:8d:9b:d2:b7:24:a1:5a: 66:2c:5a:f3:56:5f:81:d9:16:33:bf:b0:c5:22:95: f8:7c:e9:94:f3:df:c8:c3:af:17:ab:5a:c8:79:61: 7b:d5:44:61:d2:68:75:38:58:88:a6:75:57:90:61: 21:a5:fc:99:1f:ca:1d:f9:c7:c4:ff:55:51:4c:f1: 69:b1:9c:53:ca:b7:4d:87:48:2b:dc:b7:de:28:8c: e2:50:96:80:1e:ef:df:51:1c:40:08:0b:fc:89:ba: 7a:9a:a8:3c:45:66:da:9f:f4:3f:8c:82:73:57:47: 9e:b8:78:3c:e1:db:a6:54:4d:cc:16:23:06:f6:b8: 90:2f:77:65:9b:84:f8:9c:bb:2f:9b:71:5d:f7:dd: e8:f4:16:68:ed:d1:65:2e:ee:61:ad:06:6a:d8:2f: 9a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E6:49:08:F4:50:A5:AF:4C:3D:76:8E:3C:E6:D6:61:7F:DE:FB:B6 X509v3 Authority Key Identifier: keyid:0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9c80::/32 Signature Algorithm: sha256WithRSAEncryption 4a:68:53:e0:a8:e8:c3:e1:de:34:57:28:31:7b:47:49:72:89: c2:f2:e0:b0:42:e5:2e:10:2c:11:c6:15:d3:fe:73:cd:23:59: 38:d1:8c:c5:42:7b:44:9b:2d:b1:1e:1c:d0:02:79:be:34:70: ea:3c:4b:b7:2d:9d:ff:f2:d5:38:6b:32:89:a6:5d:dc:dc:04: 38:63:6e:46:a9:b7:0d:37:24:70:09:79:6f:f4:ab:84:8f:2d: 47:7d:4d:10:f5:75:c1:ae:7c:58:ea:e5:66:99:f8:3c:bd:54: d2:61:f5:ea:d9:40:ab:fe:9c:be:cb:ea:a7:d3:7e:ad:32:d9: 40:5d:10:5f:03:be:c3:b1:bd:7c:7b:d7:24:6c:88:56:cc:c9: 1d:d0:36:7d:f0:88:a3:b1:37:e6:fd:4f:18:13:2a:78:fe:52: f3:bf:d1:a4:ff:42:9b:3d:d5:43:fa:b1:47:03:28:e6:a6:b2: 17:44:1e:92:df:ac:bb:6d:18:f2:59:99:f0:dd:e9:ef:f3:3c: 66:0f:8a:d1:89:27:3b:3a:06:23:c2:ad:3f:20:54:ed:d9:c8: ac:7c:73:2f:2f:9d:17:47:bb:cc:8e:7c:01:4b:a8:9f:3a:71: 27:be:2d:e2:6d:ed:59:b4:0d:48:ca:25:5c:13:7a:f5:45:5d: ba:f8:ee:fc -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUfuvzqmACMox1tfjs2eyBBc1v8PcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5 Nzk3RUE2QzAeFw0yNDA3MDEwMTAwMjJaFw0yNTA2MzAwMTA1MjJaMDMxMTAvBgNV BAMTKEJDRTY0OTA4RjQ1MEE1QUY0QzNENzY4RTNDRTZENjYxN0ZERUZCQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFuV1iBI8h+g28LR9ffY43gqKg Vmaunb0qVOwUdk7mDZqqaV9CEn4Q3jij1bzXICeRmvyqBHMlPNZeh0t1eqbfWIDl Wf9FRFaIxin230tqAkhG6DMFQDJMRF/L+nk8fMuRjZvStyShWmYsWvNWX4HZFjO/ sMUilfh86ZTz38jDrxerWsh5YXvVRGHSaHU4WIimdVeQYSGl/Jkfyh35x8T/VVFM 8WmxnFPKt02HSCvct94ojOJQloAe799RHEAIC/yJunqaqDxFZtqf9D+MgnNXR564 eDzh26ZUTcwWIwb2uJAvd2WbhPicuy+bcV333ej0Fmjt0WUu7mGtBmrYL5rzAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvOZJCPRQpa9MPXaOPObWYX/e+7YwHwYDVR0j BBgwFoAUDoY3wj/X/Rq/kbAl5IBAkJeX6mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzNmMjI4OC04OGNmLTRkMmItYmJhNi1hMDNkZDVmODM3NjEvMC8wRTg2MzdDMjNG RDdGRDFBQkY5MUIwMjVFNDgwNDA5MDk3OTdFQTZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5Nzk3 RUE2Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjM2YyMjg4LTg4Y2YtNGQyYi1i YmE2LWEwM2RkNWY4Mzc2MS8wLzMyMzQzMDM3M2EzOTYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHnIAwDQYJKoZI hvcNAQELBQADggEBAEpoU+Co6MPh3jRXKDF7R0lyicLy4LBC5S4QLBHGFdP+c80j WTjRjMVCe0SbLbEeHNACeb40cOo8S7ctnf/y1ThrMommXdzcBDhjbkaptw03JHAJ eW/0q4SPLUd9TRD1dcGufFjq5WaZ+Dy9VNJh9erZQKv+nL7L6qfTfq0y2UBdEF8D vsOxvXx71yRsiFbMyR3QNn3wiKOxN+b9TxgTKnj+UvO/0aT/Qps91UP6sUcDKOam shdEHpLfrLttGPJZmfDd6e/zPGYPitGJJzs6BiPCrT8gVO3ZyKx8cy8vnRdHu8yO fAFLqJ86cSe+LeJt7Vm0DUjKJVwTevVFXbr47vw= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org