$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: m/65e9cOFT5GxdbAl14pYw1g3WDPcrPd8V2NoqzZ7g4= Subject key identifier: 8B:B1:D3:29:A8:F9:ED:2B:7E:C5:4E:47:10:1A:14:42:7F:61:4E:75 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 591A76FFB460A0995B139B81543DA1470471F213 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa Signing time: Wed 15 May 2024 09:01:01 +0000 ROA not before: Wed 15 May 2024 08:56:01 +0000 ROA not after: Wed 14 May 2025 09:01:01 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:1a:76:ff:b4:60:a0:99:5b:13:9b:81:54:3d:a1:47:04:71:f2:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: May 15 08:56:01 2024 GMT Not After : May 14 09:01:01 2025 GMT Subject: CN=8BB1D329A8F9ED2B7EC54E47101A14427F614E75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f4:0e:76:e7:d8:41:82:29:aa:5f:fa:a9:ca: b7:48:6d:c6:44:22:8f:57:b2:6c:2d:29:82:24:b3: 71:de:3f:b2:17:94:d9:0a:6d:c7:0d:18:3c:9c:b4: e9:3a:25:70:bd:52:67:a8:d2:b3:3a:e8:44:4b:98: f2:40:84:41:77:77:d1:ee:c1:88:3d:a7:f0:e7:6b: 9b:03:1b:55:cb:8d:9b:0d:cd:7a:0d:67:90:6d:1c: 42:e3:7a:04:65:a8:8d:49:59:2e:fa:0e:e1:4d:68: ff:bf:d3:22:81:a7:1a:87:cf:fd:1b:b1:e7:b9:ca: ef:4f:71:21:d8:24:86:5f:c5:a7:36:73:1c:bc:97: bd:db:2d:e6:1b:1f:c2:7e:0d:da:93:39:49:07:ce: 98:b2:25:e3:67:4f:c0:c8:ba:3f:5f:15:6c:99:f6: 54:d6:d4:1e:7d:df:37:7c:6b:8b:62:24:d2:ff:79: 1f:99:e4:3b:8f:63:b4:4f:1b:25:0a:ef:31:cb:c7: 4c:f6:00:34:10:6e:5a:38:f5:17:70:7a:8b:be:b3: 48:f7:2f:70:75:f6:3f:69:18:7b:d9:64:93:f2:0a: 42:ae:55:15:2a:fe:16:3f:bb:f5:77:7d:08:a1:50: 32:f5:66:b9:b3:64:5e:3b:07:24:49:62:39:f9:7b: 09:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B1:D3:29:A8:F9:ED:2B:7E:C5:4E:47:10:1A:14:42:7F:61:4E:75 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 57:a1:42:c9:ad:99:50:86:ab:95:33:49:a9:30:b4:9b:da:70: 8d:9d:9e:71:0e:ad:5e:3a:f6:3e:84:c9:5a:2a:9f:15:db:d9: 89:b8:29:33:30:7e:7b:3f:3a:18:f3:3c:0c:36:0a:7b:52:cc: c9:d9:a9:0a:c1:16:05:62:2f:c3:47:45:ad:67:05:89:3f:f3: 75:66:09:df:bb:1f:82:12:ac:8e:5d:5e:55:10:95:dc:52:e6: c7:a8:c5:20:da:68:99:42:32:7f:0e:5a:a8:42:be:dd:28:bb: 81:08:42:e7:6a:10:a2:31:91:f8:df:80:23:d4:07:10:bb:d3: 92:b9:8e:9e:b1:d6:5e:2a:b4:a6:8c:e5:aa:c4:17:cc:82:d3: c3:10:0d:af:4c:27:3e:b8:33:74:38:ad:c6:64:19:53:cf:ec: 79:12:7a:09:cd:f3:5e:f4:c3:5b:3b:aa:b1:01:71:fd:ec:94: 5c:30:c1:00:b5:35:90:34:42:1b:fd:4d:29:68:0b:65:e1:4c: 91:07:82:2f:b4:fb:33:f3:e9:d5:7b:8c:ed:b8:4e:80:b3:38: ca:92:bd:37:db:ed:a3:46:59:07:17:e9:fd:4c:89:da:d9:9b: 19:b4:a3:1c:cc:22:e6:55:54:55:05:4a:72:9a:6f:e5:02:c3: cc:39:2b:83 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWRp2/7RgoJlbE5uBVD2hRwRx8hMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNDA1MTUwODU2MDFaFw0yNTA1MTQwOTAxMDFaMDMxMTAvBgNV BAMTKDhCQjFEMzI5QThGOUVEMkI3RUM1NEU0NzEwMUExNDQyN0Y2MTRFNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf9A5259hBgimqX/qpyrdIbcZE Io9XsmwtKYIks3HeP7IXlNkKbccNGDyctOk6JXC9Umeo0rM66ERLmPJAhEF3d9Hu wYg9p/Dna5sDG1XLjZsNzXoNZ5BtHELjegRlqI1JWS76DuFNaP+/0yKBpxqHz/0b see5yu9PcSHYJIZfxac2cxy8l73bLeYbH8J+DdqTOUkHzpiyJeNnT8DIuj9fFWyZ 9lTW1B593zd8a4tiJNL/eR+Z5DuPY7RPGyUK7zHLx0z2ADQQblo49Rdweou+s0j3 L3B19j9pGHvZZJPyCkKuVRUq/hY/u/V3fQihUDL1ZrmzZF47ByRJYjn5ewk1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUi7HTKaj57St+xU5HEBoUQn9hTnUwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAFehQsmtmVCGq5UzSakwtJvacI2dnnEOrV469j6EyVoqnxXb 2Ym4KTMwfns/OhjzPAw2CntSzMnZqQrBFgViL8NHRa1nBYk/83VmCd+7H4ISrI5d XlUQldxS5seoxSDaaJlCMn8OWqhCvt0ou4EIQudqEKIxkfjfgCPUBxC705K5jp6x 1l4qtKaM5arEF8yC08MQDa9MJz64M3Q4rcZkGVPP7HkSegnN8170w1s7qrEBcf3s lFwwwQC1NZA0Qhv9TSloC2XhTJEHgi+0+zPz6dV7jO24ToCzOMqSvTfb7aNGWQcX 6f1MidrZmxm0oxzMIuZVVFUFSnKab+UCw8w5K4M= -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org