$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa File: 323430363a343534303a3a2f33322d3332203d3e20313430343634.roa (raw, json) Hash identifier: zD3MmvWg8/hnp1isGEqEx8GCf/Gya3epsj8OBSoizYQ= Subject key identifier: 99:B8:81:C5:C6:5A:86:10:27:42:77:9B:F9:5A:B8:E2:41:67:52:1C Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 144BDA5D806837D4F84007361EE0F950A66E37DD Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa Signing time: Tue 17 Sep 2024 11:01:03 +0000 ROA not before: Tue 17 Sep 2024 10:56:03 +0000 ROA not after: Tue 16 Sep 2025 11:01:03 +0000 asID: 140464 IP address blocks: 2406:4540::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4b:da:5d:80:68:37:d4:f8:40:07:36:1e:e0:f9:50:a6:6e:37:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Sep 17 10:56:03 2024 GMT Not After : Sep 16 11:01:03 2025 GMT Subject: CN=99B881C5C65A86102742779BF95AB8E24167521C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:ec:4d:67:a7:32:e9:a6:be:2a:47:15:54: 6c:9f:25:92:26:47:50:3c:2e:59:48:28:d2:49:ee: e2:2b:f3:9c:38:a7:bb:7b:13:6a:16:29:e1:1f:7b: 35:08:16:7b:7c:b7:ad:a6:57:a6:30:26:46:9a:af: b0:8b:67:2e:57:b3:18:4f:a2:1a:8c:3a:dd:23:86: 06:f6:d6:91:8f:5e:fa:13:28:f6:ae:15:b0:7b:c3: 6f:2b:dd:52:b3:b6:fe:a7:cc:d9:00:a7:a8:05:fb: 83:97:0d:0b:46:4e:1d:7b:aa:88:01:65:66:95:08: 1b:90:91:5e:ed:17:46:e7:41:2b:72:d0:0d:d5:f7: 6e:50:f6:23:26:ae:17:e3:29:8e:4b:b8:ef:f1:6b: eb:49:b1:13:be:48:a6:f8:93:7f:fb:9e:27:fe:83: ed:e6:8a:41:fa:f6:2a:e5:51:f4:af:a5:1e:5a:70: 22:13:03:8a:a3:c5:a8:85:ba:e9:f1:81:80:2b:76: d7:b3:a1:a3:64:0e:95:c6:a7:94:91:d9:aa:fe:28: b8:c8:30:22:1f:85:cf:fc:90:09:b5:6a:04:fd:69: 63:25:df:05:51:41:60:a7:99:2a:83:dc:79:f3:0d: fb:84:e7:cf:d2:f2:95:1a:c6:a9:58:30:f5:20:6b: be:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B8:81:C5:C6:5A:86:10:27:42:77:9B:F9:5A:B8:E2:41:67:52:1C X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/323430363a343534303a3a2f33322d3332203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4540::/32 Signature Algorithm: sha256WithRSAEncryption 9d:23:65:4c:41:e2:95:56:1b:96:40:22:9f:b3:27:cd:f3:52: f1:3e:47:1c:0e:bc:f5:44:58:47:d8:59:16:c9:57:1a:b2:4c: 93:93:fc:c5:55:6f:31:1e:49:95:2c:b6:aa:e6:04:10:12:b0: 45:d0:8c:a1:e4:ca:99:68:0a:fe:11:f3:12:7a:b7:19:0f:f6: 23:39:2e:01:3f:3a:8d:99:db:b4:b3:e7:89:11:da:70:c3:29: 68:2f:88:34:d1:92:03:7a:ef:05:74:df:a2:1f:d8:f3:62:66: e0:44:70:82:07:fc:ce:66:52:10:21:41:12:01:d7:ad:da:09: 1e:f7:61:31:86:8c:e5:34:ae:7d:51:b7:b7:53:9d:54:39:a0: 5a:f7:ff:7d:ce:18:e2:c5:55:e2:dc:37:62:12:f5:27:01:66: 7b:37:bd:84:55:81:91:36:46:49:49:3c:7e:8e:d9:55:ba:86: b5:8f:4a:2b:af:4f:1b:ef:67:06:29:f6:f4:14:fd:ec:9a:4c: a9:cf:d9:4d:1a:27:fa:82:f8:d2:0c:6e:4f:27:b8:6d:85:95: 5d:9e:dc:60:f3:7e:ff:92:18:92:77:c1:56:b2:95:fd:11:61: 3b:ca:18:81:44:52:3f:87:a7:75:6d:93:2b:e0:30:38:60:5f: 0a:b8:36:fd -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFEvaXYBoN9T4QAc2HuD5UKZuN90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNDA5MTcxMDU2MDNaFw0yNTA5MTYxMTAxMDNaMDMxMTAvBgNV BAMTKDk5Qjg4MUM1QzY1QTg2MTAyNzQyNzc5QkY5NUFCOEUyNDE2NzUyMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuPuxNZ6cy6aa+KkcVVGyfJZIm R1A8LllIKNJJ7uIr85w4p7t7E2oWKeEfezUIFnt8t62mV6YwJkaar7CLZy5XsxhP ohqMOt0jhgb21pGPXvoTKPauFbB7w28r3VKztv6nzNkAp6gF+4OXDQtGTh17qogB ZWaVCBuQkV7tF0bnQSty0A3V925Q9iMmrhfjKY5LuO/xa+tJsRO+SKb4k3/7nif+ g+3mikH69irlUfSvpR5acCITA4qjxaiFuunxgYArdtezoaNkDpXGp5SR2ar+KLjI MCIfhc/8kAm1agT9aWMl3wVRQWCnmSqD3HnzDfuE58/S8pUaxqlYMPUga76NAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmbiBxcZahhAnQneb+Vq44kFnUhwwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMyMzQzMDM2M2EzNDM1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGRUAwDQYJKoZI hvcNAQELBQADggEBAJ0jZUxB4pVWG5ZAIp+zJ83zUvE+RxwOvPVEWEfYWRbJVxqy TJOT/MVVbzEeSZUstqrmBBASsEXQjKHkyploCv4R8xJ6txkP9iM5LgE/Oo2Z27Sz 54kR2nDDKWgviDTRkgN67wV036If2PNiZuBEcIIH/M5mUhAhQRIB163aCR73YTGG jOU0rn1Rt7dTnVQ5oFr3/33OGOLFVeLcN2IS9ScBZns3vYRVgZE2RklJPH6O2VW6 hrWPSiuvTxvvZwYp9vQU/eyaTKnP2U0aJ/qC+NIMbk8nuG2FlV2e3GDzfv+SGJJ3 wVaylf0RYTvKGIFEUj+Hp3VtkyvgMDhgXwq4Nv0= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org