$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa File: 323430343a616663303a3a2f33322d3438203d3e20313338383239.roa (raw, json) Hash identifier: eGPsvW1Z8g2lb6PQV85bHzrLK2sHUl4m5VjNz3WmkbM= Subject key identifier: 7B:17:0B:83:D2:02:06:38:82:51:C7:8B:97:43:55:67:B0:5E:B5:13 Certificate issuer: /CN=6DBEA32A7EE18535066521365EFB05C4148698C9 Certificate serial: 127F5E38F14784CCED21A11854FF650612B6B0C8 Authority key identifier: 6D:BE:A3:2A:7E:E1:85:35:06:65:21:36:5E:FB:05:C4:14:86:98:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa Signing time: Mon 01 Jul 2024 01:03:57 +0000 ROA not before: Mon 01 Jul 2024 00:58:57 +0000 ROA not after: Mon 30 Jun 2025 01:03:57 +0000 asID: 138829 IP address blocks: 2404:afc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.crl rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:7f:5e:38:f1:47:84:cc:ed:21:a1:18:54:ff:65:06:12:b6:b0:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DBEA32A7EE18535066521365EFB05C4148698C9 Validity Not Before: Jul 1 00:58:57 2024 GMT Not After : Jun 30 01:03:57 2025 GMT Subject: CN=7B170B83D20206388251C78B97435567B05EB513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:61:33:d4:8c:43:72:06:1f:5c:1c:80:1e: 6c:50:19:62:9b:09:98:05:97:97:4f:97:a4:df:0c: de:b3:b5:28:7a:c4:1a:3f:9b:7e:5b:c1:11:a0:89: 95:43:3a:62:9b:50:41:ff:4f:c6:46:d4:1a:89:ec: 85:0c:4c:78:b5:5c:14:04:2b:bb:59:85:7b:f2:63: 88:0e:4b:49:2f:49:3d:d7:25:6b:b5:f5:1a:4a:f7: 02:56:ea:c2:84:af:2a:9f:3d:31:73:d0:70:17:d0: 8c:52:5a:c2:63:2d:4b:3c:7d:39:e3:6a:c0:7f:60: 08:91:19:f1:84:0d:37:10:fe:40:8a:d3:e4:0c:c6: 46:02:9c:87:87:de:50:be:60:09:a8:ea:2e:1d:e8: 51:2b:30:e0:5e:99:e2:bc:28:71:dc:77:0f:5d:4c: 35:86:e0:e7:f4:a6:07:36:98:af:cc:00:af:bd:10: 59:2d:02:39:92:8c:a7:99:9d:3e:e7:ac:ab:44:17: 80:f4:33:bb:e9:54:a3:f9:8e:4c:d0:1d:67:32:e3: 54:cc:06:34:ce:bd:29:b2:fe:ae:2e:88:8d:b2:5a: 0e:ca:ad:27:5b:18:17:75:59:50:c5:b5:ba:35:8f: f6:7f:c6:4d:39:42:8f:5e:3c:13:86:bd:a3:1a:14: 08:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:17:0B:83:D2:02:06:38:82:51:C7:8B:97:43:55:67:B0:5E:B5:13 X509v3 Authority Key Identifier: keyid:6D:BE:A3:2A:7E:E1:85:35:06:65:21:36:5E:FB:05:C4:14:86:98:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:afc0::/32 Signature Algorithm: sha256WithRSAEncryption ab:a7:00:3d:b7:e8:b8:9b:23:b4:3f:55:e6:4a:5c:b0:99:c9: 82:89:8b:65:80:1e:ec:4f:6b:03:be:94:7c:fd:b3:f7:9e:82: 29:be:a8:40:31:20:67:c4:dd:b5:b7:0e:14:d0:03:79:2f:92: a5:da:6a:00:1e:d6:4e:a3:87:0e:13:f8:b0:b5:e6:22:32:23: 30:ee:17:6d:30:a0:c8:cc:b7:98:76:ea:64:06:83:b9:47:47: a8:65:d5:a0:0b:4d:03:b6:32:65:3f:0b:fc:6b:35:47:c1:fc: b8:ab:33:98:2f:08:38:29:2d:38:12:2a:81:0b:ba:60:e8:22: 3a:4c:b0:fe:ff:81:53:89:b2:2b:da:d7:9c:00:fb:9b:0e:59: 32:7c:68:cc:18:e5:23:72:86:47:9d:46:48:3f:1b:2c:ad:ed: 34:10:05:da:84:0a:5d:b4:cc:3a:bb:9c:e1:85:b5:ae:0f:3f: 6d:c7:1a:ba:3b:e7:3e:b3:5d:3e:a0:05:56:ef:bd:a3:ca:6a: 72:70:31:07:00:68:ff:3e:a3:19:4b:81:8b:f4:74:d8:66:5e: f7:b4:6d:10:b2:17:9a:1c:27:b9:7e:01:eb:66:8d:7c:32:a8: a0:a9:e6:95:3b:dc:61:ce:bb:39:dd:a3:37:bb:ec:8f:a6:07: 41:b1:49:0b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEn9eOPFHhMztIaEYVP9lBhK2sMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCRUEzMkE3RUUxODUzNTA2NjUyMTM2NUVGQjA1QzQx NDg2OThDOTAeFw0yNDA3MDEwMDU4NTdaFw0yNTA2MzAwMTAzNTdaMDMxMTAvBgNV BAMTKDdCMTcwQjgzRDIwMjA2Mzg4MjUxQzc4Qjk3NDM1NTY3QjA1RUI1MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3rmEz1IxDcgYfXByAHmxQGWKb CZgFl5dPl6TfDN6ztSh6xBo/m35bwRGgiZVDOmKbUEH/T8ZG1BqJ7IUMTHi1XBQE K7tZhXvyY4gOS0kvST3XJWu19RpK9wJW6sKEryqfPTFz0HAX0IxSWsJjLUs8fTnj asB/YAiRGfGEDTcQ/kCK0+QMxkYCnIeH3lC+YAmo6i4d6FErMOBemeK8KHHcdw9d TDWG4Of0pgc2mK/MAK+9EFktAjmSjKeZnT7nrKtEF4D0M7vpVKP5jkzQHWcy41TM BjTOvSmy/q4uiI2yWg7KrSdbGBd1WVDFtbo1j/Z/xk05Qo9ePBOGvaMaFAgpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUexcLg9ICBjiCUceLl0NVZ7BetRMwHwYDVR0j BBgwFoAUbb6jKn7hhTUGZSE2XvsFxBSGmMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGQ4ODBkNC1jMzNlLTQwMWUtYjQ2OC1hNWE2YThhYWYzZDcvMC82REJFQTMyQTdF RTE4NTM1MDY2NTIxMzY1RUZCMDVDNDE0ODY5OEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRCRUEzMkE3RUUxODUzNTA2NjUyMTM2NUVGQjA1QzQxNDg2 OThDOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwZDg4MGQ0LWMzM2UtNDAxZS1i NDY4LWE1YTZhOGFhZjNkNy8wLzMyMzQzMDM0M2E2MTY2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEr8AwDQYJKoZI hvcNAQELBQADggEBAKunAD236LibI7Q/VeZKXLCZyYKJi2WAHuxPawO+lHz9s/ee gim+qEAxIGfE3bW3DhTQA3kvkqXaagAe1k6jhw4T+LC15iIyIzDuF20woMjMt5h2 6mQGg7lHR6hl1aALTQO2MmU/C/xrNUfB/LirM5gvCDgpLTgSKoELumDoIjpMsP7/ gVOJsiva15wA+5sOWTJ8aMwY5SNyhkedRkg/Gyyt7TQQBdqECl20zDq7nOGFta4P P23HGro75z6zXT6gBVbvvaPKanJwMQcAaP8+oxlLgYv0dNhmXve0bRCyF5ocJ7l+ AetmjXwyqKCp5pU73GHOuzndoze77I+mB0GxSQs= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org