$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa File: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (raw, json) Hash identifier: UaGmn4kTfe+1TDn5eCuN9O53yKjU57F4Hz3jxRXHWWY= Subject key identifier: 71:65:1F:9A:27:F3:67:D0:45:EE:D7:EF:BA:4C:4D:7C:94:5A:8A:A8 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 0C77D564DD3A12977178E93AC1FCE66875F66EBA Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa Signing time: Sat 12 Oct 2024 05:00:00 +0000 ROA not before: Sat 12 Oct 2024 04:55:00 +0000 ROA not after: Sat 11 Oct 2025 05:00:00 +0000 asID: 58821 IP address blocks: 2406:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:77:d5:64:dd:3a:12:97:71:78:e9:3a:c1:fc:e6:68:75:f6:6e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Oct 12 04:55:00 2024 GMT Not After : Oct 11 05:00:00 2025 GMT Subject: CN=71651F9A27F367D045EED7EFBA4C4D7C945A8AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:81:ee:8a:01:db:3a:49:98:80:4b:84:71:68: 7e:23:2f:8b:a5:d8:bd:cc:7f:98:19:52:70:39:06: ef:2c:76:a6:46:89:bc:02:ae:b1:10:10:90:2d:bf: 22:a9:a4:66:5e:f5:4d:f1:fe:dc:6a:f7:9d:6c:59: db:83:ca:a1:bc:f5:9a:bb:21:9a:ae:1c:a9:79:01: cc:1b:a3:69:d4:45:6c:bf:9f:14:e3:16:5d:f5:1a: 79:0a:6a:96:e1:c5:3d:a8:7f:e6:24:ef:bf:7f:fc: 51:69:81:f4:a3:a7:9a:d6:b2:d8:ba:5d:ee:26:1c: 6b:c5:67:ad:ab:89:58:88:2d:5a:4e:0b:16:7e:59: ce:ff:e6:7d:58:33:51:73:ac:4a:a8:30:4f:b6:4e: a1:55:3b:0d:c9:3f:ed:5b:0c:dc:dc:03:fa:46:da: 79:42:33:e5:3f:52:76:4d:ad:bd:f1:bb:4b:8d:c6: 22:66:b5:8c:99:69:dd:cb:2f:d9:9c:24:66:a0:ab: 44:63:aa:ff:42:10:17:ad:49:fc:1f:6f:85:2e:9b: 2a:9d:e7:a2:5a:f8:17:d8:cf:35:76:be:c3:39:57: f4:db:f3:4f:ab:ce:73:16:d7:61:36:a4:c7:4c:91: 2a:aa:05:9a:9f:a2:79:90:82:83:a8:d1:4f:f0:a5: 1c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:65:1F:9A:27:F3:67:D0:45:EE:D7:EF:BA:4C:4D:7C:94:5A:8A:A8 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/323430363a376234303a3a2f33322d3438203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 69:94:09:91:55:a6:ef:e6:43:e4:75:a0:55:cb:35:d2:1b:22: 46:41:56:5f:20:26:b8:4c:9f:35:57:c2:aa:fb:89:bb:9a:6e: ef:c7:87:75:6e:8a:6f:cc:c2:7e:1f:d4:5c:6b:fa:a6:78:c6: f3:30:94:57:39:7c:ab:a1:8e:fd:9b:de:ad:f4:e7:d0:5a:0c: 39:98:43:c4:32:db:6f:83:da:dc:34:bf:af:fd:41:b0:ad:0b: 43:f7:d7:24:41:ae:92:c2:90:d0:a1:07:f5:58:ae:d7:51:28: e1:51:65:53:7f:44:c4:77:70:39:23:18:f3:69:61:f7:9b:b4: 82:7c:4a:8d:90:cd:0b:68:c7:4a:d7:7b:eb:93:77:58:95:c9: 20:81:98:51:53:06:d2:5f:34:0f:d1:b9:9d:34:4e:e4:21:ee: 76:6a:bd:81:50:87:18:70:21:cd:fa:cd:0a:b6:bc:90:b6:1d: 39:c0:b8:a9:18:d1:b7:e4:40:2b:b5:21:7b:3d:42:c3:98:b7: a2:2a:c7:80:13:f0:fd:d3:54:26:7e:af:75:6d:ae:58:f6:15: 1d:b8:39:8c:bd:4b:f9:5c:2f:bb:da:48:3d:8e:92:1c:ea:ef: ba:a3:65:87:ec:f7:52:b6:e4:06:1b:44:12:9f:f1:e4:d1:12: f9:58:21:b3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUDHfVZN06EpdxeOk6wfzmaHX2browDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNDEwMTIwNDU1MDBaFw0yNTEwMTEwNTAwMDBaMDMxMTAvBgNV BAMTKDcxNjUxRjlBMjdGMzY3RDA0NUVFRDdFRkJBNEM0RDdDOTQ1QThBQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhge6KAds6SZiAS4RxaH4jL4ul 2L3Mf5gZUnA5Bu8sdqZGibwCrrEQEJAtvyKppGZe9U3x/txq951sWduDyqG89Zq7 IZquHKl5Acwbo2nURWy/nxTjFl31GnkKapbhxT2of+Yk779//FFpgfSjp5rWsti6 Xe4mHGvFZ62riViILVpOCxZ+Wc7/5n1YM1FzrEqoME+2TqFVOw3JP+1bDNzcA/pG 2nlCM+U/UnZNrb3xu0uNxiJmtYyZad3LL9mcJGagq0Rjqv9CEBetSfwfb4Uumyqd 56Ja+BfYzzV2vsM5V/Tb80+rznMW12E2pMdMkSqqBZqfonmQgoOo0U/wpRzhAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUcWUfmifzZ9BF7tfvukxNfJRaiqgwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEzLWFjNmUtNGE1Zi1i M2ViLWQ1MzUyY2FmNDg2Yi8wLzMyMzQzMDM2M2EzNzYyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBntAMA0GCSqGSIb3 DQEBCwUAA4IBAQBplAmRVabv5kPkdaBVyzXSGyJGQVZfICa4TJ81V8Kq+4m7mm7v x4d1bopvzMJ+H9Rca/qmeMbzMJRXOXyroY79m96t9OfQWgw5mEPEMttvg9rcNL+v /UGwrQtD99ckQa6SwpDQoQf1WK7XUSjhUWVTf0TEd3A5IxjzaWH3m7SCfEqNkM0L aMdK13vrk3dYlckggZhRUwbSXzQP0bmdNE7kIe52ar2BUIcYcCHN+s0KtryQth05 wLipGNG35EArtSF7PULDmLeiKseAE/D901Qmfq91ba5Y9hUduDmMvUv5XC+72kg9 jpIc6u+6o2WH7PdStuQGG0QSn/Hk0RL5WCGz -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org