$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa File: 323430343a663863303a3a2f33322d3332203d3e203435333132.roa (raw, json) Hash identifier: bUCoU/DwSihJSs80WPjHlvGZZx4Ih4jKUYuIblxY1vc= Subject key identifier: 6C:57:62:73:50:18:E8:E9:53:3C:52:06:4F:04:50:DA:C0:A2:31:32 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 694672F0B76240ABF9765963D9B9FA990B62EC46 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa Signing time: Thu 31 Oct 2024 05:00:15 +0000 ROA not before: Thu 31 Oct 2024 04:55:15 +0000 ROA not after: Thu 30 Oct 2025 05:00:15 +0000 asID: 45312 IP address blocks: 2404:f8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:46:72:f0:b7:62:40:ab:f9:76:59:63:d9:b9:fa:99:0b:62:ec:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Oct 31 04:55:15 2024 GMT Not After : Oct 30 05:00:15 2025 GMT Subject: CN=6C5762735018E8E9533C52064F0450DAC0A23132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:f5:df:c6:2d:6e:c3:c7:f9:fa:fb:bd:4e: 9e:11:5b:b5:2e:87:2f:5d:83:e8:af:76:44:ba:c9: 3c:56:51:78:41:dd:3e:ce:3b:55:fc:f5:03:80:1b: 45:39:6d:e6:ca:5b:75:0f:b2:a9:09:a3:76:82:eb: e6:37:3b:8a:b8:4a:98:8f:63:52:69:c0:46:ca:b8: 38:9f:87:c9:3b:d6:6e:24:57:f4:d4:9e:94:a0:c6: 3b:5d:3c:ef:d8:9d:12:71:b2:21:a2:28:53:68:a0: fc:86:79:ea:d3:3c:77:b9:be:bb:34:74:56:1f:92: 8a:85:d0:87:6d:0e:5d:03:1f:37:73:3a:c2:76:b7: f0:b0:f6:82:35:aa:fb:f9:10:2d:a7:b1:68:1d:1a: 87:ea:7d:42:25:8a:55:f5:5c:96:bb:f8:2a:fc:c6: 7a:d4:44:ca:5e:7e:a5:3a:3f:8a:66:d1:5c:78:de: 32:80:bb:da:51:50:33:b6:01:1e:a0:38:5d:66:47: 89:a1:9e:d4:23:3a:d9:6d:c4:ed:d9:1a:31:57:1f: 79:d6:99:0b:a4:1b:b9:8c:22:47:d7:56:86:c7:1b: a7:1e:21:81:4a:d3:d6:51:7f:04:a6:ed:2b:83:b5: 7f:73:2d:07:b5:fe:6a:90:b9:dc:55:cb:89:a2:95: 65:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:57:62:73:50:18:E8:E9:53:3C:52:06:4F:04:50:DA:C0:A2:31:32 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/323430343a663863303a3a2f33322d3332203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 53:1c:15:36:4a:0d:f2:22:cb:65:4f:9e:9a:aa:de:2c:dd:a5: 9e:9c:bb:32:a9:25:62:5d:c9:41:48:48:00:49:19:ee:2e:bc: 27:f0:64:74:1a:98:7d:8b:4c:72:2a:cf:89:eb:4e:53:e5:84: d3:d0:47:4d:c7:f0:ff:da:d9:79:72:75:62:01:58:1e:84:96: 31:0c:b6:3a:96:06:68:ff:90:94:8d:15:7a:64:6d:3b:a1:69: c1:50:84:6a:66:4f:9c:89:44:a4:0c:3b:75:bd:7d:9d:e9:fc: 00:dd:2f:76:33:07:3c:04:ac:77:47:c0:bc:d0:b6:1b:39:92: 55:b7:af:1b:40:d6:19:4b:be:0d:c8:75:ad:f1:a6:ef:e7:ad: 85:dc:0c:4e:48:4a:f4:47:e7:7b:e9:a0:8f:43:32:d5:3f:36: 51:69:49:0e:fd:2b:bc:16:70:d0:a5:4d:95:78:51:9c:50:c3: 75:6e:81:ef:0e:48:3c:87:46:d3:2c:45:bf:e4:3d:39:03:a3: b4:32:32:51:07:fc:45:ad:7f:88:05:ac:e6:a6:28:d5:45:e2: fa:81:3f:72:ab:4e:bf:67:31:35:a4:5f:b3:8d:7a:df:ba:2a: 20:e4:90:4a:3d:c0:5f:27:69:ec:71:45:44:c8:93:80:62:d5: c6:9f:1c:30 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUaUZy8LdiQKv5dllj2bn6mQti7EYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNDEwMzEwNDU1MTVaFw0yNTEwMzAwNTAwMTVaMDMxMTAvBgNV BAMTKDZDNTc2MjczNTAxOEU4RTk1MzNDNTIwNjRGMDQ1MERBQzBBMjMxMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIGfXfxi1uw8f5+vu9Tp4RW7Uu hy9dg+ivdkS6yTxWUXhB3T7OO1X89QOAG0U5bebKW3UPsqkJo3aC6+Y3O4q4SpiP Y1JpwEbKuDifh8k71m4kV/TUnpSgxjtdPO/YnRJxsiGiKFNooPyGeerTPHe5vrs0 dFYfkoqF0IdtDl0DHzdzOsJ2t/Cw9oI1qvv5EC2nsWgdGofqfUIlilX1XJa7+Cr8 xnrURMpefqU6P4pm0Vx43jKAu9pRUDO2AR6gOF1mR4mhntQjOtltxO3ZGjFXH3nW mQukG7mMIkfXVobHG6ceIYFK09ZRfwSm7SuDtX9zLQe1/mqQudxVy4milWVTAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUbFdic1AY6OlTPFIGTwRQ2sCiMTIwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMyMzQzMDM0M2E2NjM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBPjAMA0GCSqGSIb3 DQEBCwUAA4IBAQBTHBU2Sg3yIstlT56aqt4s3aWenLsyqSViXclBSEgASRnuLrwn 8GR0Gph9i0xyKs+J605T5YTT0EdNx/D/2tl5cnViAVgehJYxDLY6lgZo/5CUjRV6 ZG07oWnBUIRqZk+ciUSkDDt1vX2d6fwA3S92Mwc8BKx3R8C80LYbOZJVt68bQNYZ S74NyHWt8abv562F3AxOSEr0R+d76aCPQzLVPzZRaUkO/Su8FnDQpU2VeFGcUMN1 boHvDkg8h0bTLEW/5D05A6O0MjJRB/xFrX+IBazmpijVReL6gT9yq06/ZzE1pF+z jXrfuiog5JBKPcBfJ2nscUVEyJOAYtXGnxww -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org