$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa File: 323430363a313334303a3a2f33322d3333203d3e20313430343037.roa (raw, json) Hash identifier: 77Uaq405aecCjRZ1hW4Q+EEazhfZI1UiNjat3IG/Q8I= Subject key identifier: 7C:5F:82:A5:B3:F1:BE:1D:DA:CC:77:85:C7:53:80:D3:20:9F:7F:13 Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Certificate serial: 2D88A89FE681BBC58A91BDE81CB163C859858481 Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa Signing time: Wed 15 May 2024 09:01:01 +0000 ROA not before: Wed 15 May 2024 08:56:01 +0000 ROA not after: Wed 14 May 2025 09:01:01 +0000 asID: 140407 IP address blocks: 2406:1340::/32 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:88:a8:9f:e6:81:bb:c5:8a:91:bd:e8:1c:b1:63:c8:59:85:84:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53 Validity Not Before: May 15 08:56:01 2024 GMT Not After : May 14 09:01:01 2025 GMT Subject: CN=7C5F82A5B3F1BE1DDACC7785C75380D3209F7F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:c3:28:cd:8e:31:1e:10:95:54:12:6f:26: 34:fc:c5:2b:c9:e9:c5:b5:1d:0e:e0:43:e2:29:f9: 24:a4:00:1f:35:7d:ef:69:9c:1b:ac:e2:1f:cf:da: f0:da:0f:c2:8e:71:ec:d9:8d:80:2e:88:8b:72:2e: 7c:16:d2:2f:b3:55:7f:ef:f3:ab:a2:c4:c6:ab:71: a6:5b:60:59:27:69:7a:8a:5b:7a:6d:a6:2e:bd:4d: 55:80:65:da:35:ab:0e:5a:48:fd:3f:b8:67:82:86: 68:ea:61:37:16:80:9f:56:2c:8f:4e:9f:1e:14:70: 75:a9:78:1b:76:3e:a2:b4:0d:04:e9:4e:c8:7d:54: 17:8c:1b:dd:c6:d6:19:ef:fb:18:e5:05:6c:58:7b: 2c:a1:df:ef:e2:ed:79:a7:35:c7:ce:4a:37:2b:62: 5b:70:f5:2a:13:50:7d:80:82:c5:25:46:82:25:9b: 04:d3:c6:95:01:3c:47:7a:b3:eb:67:95:23:26:42: f8:64:f0:34:0a:7f:37:84:9f:78:4a:40:87:b1:61: f6:d8:24:75:e2:8b:2c:30:d7:0d:66:47:11:44:af: f8:bc:73:3f:54:da:7a:71:15:0f:27:9c:e8:a6:9a: 79:72:5e:14:af:0c:8e:6f:a3:ff:27:76:30:29:5e: 8f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:5F:82:A5:B3:F1:BE:1D:DA:CC:77:85:C7:53:80:D3:20:9F:7F:13 X509v3 Authority Key Identifier: keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a3a2f33322d3333203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1340::/32 Signature Algorithm: sha256WithRSAEncryption 65:03:cf:44:9d:82:6c:7e:a5:29:6e:02:cc:a6:ac:90:e5:2d: 18:14:2b:3e:9b:b2:1a:32:9d:61:86:80:18:61:19:1c:af:55: 21:97:c7:a5:42:17:df:c1:ee:99:d2:78:d5:35:ee:3e:5f:d4: f1:10:66:e3:44:19:5c:d5:58:09:71:af:d6:52:9b:c6:90:6e: 1f:bd:b4:fe:45:0b:18:8d:23:2a:54:f1:ca:d8:8d:b6:64:22: 0c:36:41:2a:f8:09:33:7d:ee:ed:1a:4e:e4:ee:dd:4e:52:4e: d2:95:67:b1:a7:a9:fd:0f:bb:0d:b4:34:51:d6:96:15:db:b3: 30:68:12:19:ec:18:da:35:81:db:d7:8e:cd:6a:be:08:5b:b7: d9:81:ef:16:35:38:59:95:56:55:4a:cf:6a:35:b6:80:86:9d: 60:3f:3a:59:08:ae:83:2c:b7:f1:0b:c3:c5:4d:ae:0e:4e:19: 9c:9b:f0:0a:38:f0:4d:13:14:73:2d:a2:0f:bf:a0:da:c9:0d: 36:3c:3f:71:1e:28:de:36:87:19:13:48:13:f1:c1:53:f3:d0: 9e:fb:35:2f:20:b4:09:e7:55:40:16:0b:60:35:d8:5f:fd:0a: 8b:29:eb:3d:77:0f:29:ca:90:f7:0d:9b:ea:b1:25:f4:30:2d: a7:21:67:06 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULYion+aBu8WKkb3oHLFjyFmFhIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NE QTY2MkM1MzAeFw0yNDA1MTUwODU2MDFaFw0yNTA1MTQwOTAxMDFaMDMxMTAvBgNV BAMTKDdDNUY4MkE1QjNGMUJFMUREQUNDNzc4NUM3NTM4MEQzMjA5RjdGMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGE8MozY4xHhCVVBJvJjT8xSvJ 6cW1HQ7gQ+Ip+SSkAB81fe9pnBus4h/P2vDaD8KOcezZjYAuiItyLnwW0i+zVX/v 86uixMarcaZbYFknaXqKW3ptpi69TVWAZdo1qw5aSP0/uGeChmjqYTcWgJ9WLI9O nx4UcHWpeBt2PqK0DQTpTsh9VBeMG93G1hnv+xjlBWxYeyyh3+/i7XmnNcfOSjcr Yltw9SoTUH2AgsUlRoIlmwTTxpUBPEd6s+tnlSMmQvhk8DQKfzeEn3hKQIexYfbY JHXiiyww1w1mRxFEr/i8cz9U2npxFQ8nnOimmnlyXhSvDI5vo/8ndjApXo+VAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUfF+CpbPxvh3azHeFx1OA0yCffxMwHwYDVR0j BBgwFoAU8Q3qhaGZE40K2W3E08tTfNpmLFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NTk2YmNjOC0zOGNkLTQ0MzctODBiMS01YmFlOWY4NTc5MzcvMC9GMTBERUE4NUEx OTkxMzhEMEFEOTZEQzREM0NCNTM3Q0RBNjYyQzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjEwREVBODVBMTk5MTM4RDBBRDk2REM0RDNDQjUzN0NEQTY2 MkM1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1OTZiY2M4LTM4Y2QtNDQzNy04 MGIxLTViYWU5Zjg1NzkzNy8wLzMyMzQzMDM2M2EzMTMzMzQzMDNhM2EyZjMzMzIy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGE0AwDQYJKoZI hvcNAQELBQADggEBAGUDz0Sdgmx+pSluAsymrJDlLRgUKz6bshoynWGGgBhhGRyv VSGXx6VCF9/B7pnSeNU17j5f1PEQZuNEGVzVWAlxr9ZSm8aQbh+9tP5FCxiNIypU 8crYjbZkIgw2QSr4CTN97u0aTuTu3U5STtKVZ7Gnqf0Puw20NFHWlhXbszBoEhns GNo1gdvXjs1qvghbt9mB7xY1OFmVVlVKz2o1toCGnWA/OlkIroMst/ELw8VNrg5O GZyb8Ao48E0TFHMtog+/oNrJDTY8P3EeKN42hxkTSBPxwVPz0J77NS8gtAnnVUAW C2A12F/9Cosp6z13DynKkPcNm+qxJfQwLachZwY= -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org