$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa File: 323430353a363634303a3a2f33322d3332203d3e20313430343732.roa (raw, json) Hash identifier: pEuGHffSBuQ9CB7cyE5s2X8ac22BfSRPVTL+kmga4HE= Subject key identifier: 94:2B:C0:D9:EF:5D:02:47:CD:E9:3E:AA:F7:F1:CC:05:A6:FB:F0:59 Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Certificate serial: 246D98F9059B7360B70BEA6F665EA33C22641DC1 Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa Signing time: Wed 20 Mar 2024 16:00:02 +0000 ROA not before: Wed 20 Mar 2024 15:55:02 +0000 ROA not after: Wed 19 Mar 2025 16:00:02 +0000 asID: 140472 IP address blocks: 2405:6640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:6d:98:f9:05:9b:73:60:b7:0b:ea:6f:66:5e:a3:3c:22:64:1d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Validity Not Before: Mar 20 15:55:02 2024 GMT Not After : Mar 19 16:00:02 2025 GMT Subject: CN=942BC0D9EF5D0247CDE93EAAF7F1CC05A6FBF059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:f4:d8:94:9f:51:6c:6f:b1:c1:14:67:63: f8:a7:40:4f:d7:7a:b0:ad:54:ab:d7:45:e3:42:3e: 30:e5:06:9d:17:f8:6c:da:e8:3d:29:76:8d:a8:1f: e2:01:f7:ea:51:8a:86:51:95:04:6f:db:ad:03:9b: 5d:72:cd:67:c5:3a:87:05:af:6a:89:28:cd:29:3a: 9f:a6:52:16:3b:47:c9:f1:e0:28:b3:78:47:0f:9d: 1c:ed:6d:fa:7f:e5:f1:f8:1c:e3:aa:f5:d1:1f:f1: 28:77:c2:c5:da:17:99:e8:b1:cf:5e:bb:09:f9:61: 23:a7:d6:39:a5:fa:39:c1:2e:91:f5:8f:29:1f:e9: a4:fb:b8:52:cf:9a:ed:55:18:0a:5d:e1:d8:e6:8f: 1b:62:ab:f8:c2:d4:68:d8:c5:7c:79:ba:79:4b:90: b1:83:6d:c2:43:44:95:a4:05:0a:de:30:d8:41:1f: e8:1d:9b:8a:a1:3d:40:e7:8e:8e:d7:bb:fe:3a:b7: 4b:80:e6:ba:ce:93:ea:56:1f:23:1a:bc:9c:a5:3d: 31:51:3f:44:d1:8c:c4:c7:e6:1b:6d:0b:37:a1:76: c2:1e:04:f3:67:0e:7a:cc:f8:21:b8:ac:f4:b5:d3: 99:6b:3b:84:ed:37:34:15:3b:72:50:55:c9:a6:e5: cc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2B:C0:D9:EF:5D:02:47:CD:E9:3E:AA:F7:F1:CC:05:A6:FB:F0:59 X509v3 Authority Key Identifier: keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6640::/32 Signature Algorithm: sha256WithRSAEncryption 70:1b:23:af:a7:ef:af:40:62:aa:31:af:c9:34:de:b0:ff:83: c4:96:9e:88:57:c7:6d:54:a8:6e:83:a8:8e:a0:84:74:d5:81: 2c:05:9e:10:16:ae:8f:f1:76:64:15:1e:68:38:7a:25:af:a7: c4:a3:39:42:4a:2d:a5:9e:39:9d:d5:a9:16:79:c9:d6:97:4f: b0:3c:ff:60:0f:43:e4:65:4b:3f:f8:c9:dd:aa:31:9f:17:19: 86:b2:6b:3f:45:e3:df:85:88:1c:73:10:7c:77:27:6a:d8:46: 3f:26:b7:5a:ec:2f:ac:00:cb:56:c6:69:53:e8:d7:a3:3c:cf: 66:9a:9b:34:8f:87:72:13:fe:26:53:0d:bc:85:79:65:99:ea: cf:30:45:f0:76:17:1f:99:12:cd:03:16:70:d2:01:a1:ea:a6: 14:0d:43:13:53:eb:f3:84:24:43:c5:48:bb:a3:d6:ef:59:3d: 4d:2b:f2:16:63:f0:2a:d2:0d:37:d0:3c:41:1e:94:19:5f:4f: 7d:2b:99:8e:0b:58:b0:7d:41:6b:8f:f3:fc:9d:c3:cc:ef:b6: 3b:b1:df:1c:2e:86:05:25:3c:40:32:5b:8d:51:c5:da:2b:77: 8a:25:3b:81:4a:96:b4:bb:d3:84:69:68:b3:c8:e1:75:53:36: 07:79:d3:ac -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJG2Y+QWbc2C3C+pvZl6jPCJkHcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2 NkE1MUZENjAeFw0yNDAzMjAxNTU1MDJaFw0yNTAzMTkxNjAwMDJaMDMxMTAvBgNV BAMTKDk0MkJDMEQ5RUY1RDAyNDdDREU5M0VBQUY3RjFDQzA1QTZGQkYwNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+O/TYlJ9RbG+xwRRnY/inQE/X erCtVKvXReNCPjDlBp0X+Gza6D0pdo2oH+IB9+pRioZRlQRv260Dm11yzWfFOocF r2qJKM0pOp+mUhY7R8nx4CizeEcPnRztbfp/5fH4HOOq9dEf8Sh3wsXaF5nosc9e uwn5YSOn1jml+jnBLpH1jykf6aT7uFLPmu1VGApd4djmjxtiq/jC1GjYxXx5unlL kLGDbcJDRJWkBQreMNhBH+gdm4qhPUDnjo7Xu/46t0uA5rrOk+pWHyMavJylPTFR P0TRjMTH5httCzehdsIeBPNnDnrM+CG4rPS105lrO4TtNzQVO3JQVcmm5cwrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlCvA2e9dAkfN6T6q9/HMBab78FkwHwYDVR0j BBgwFoAUFMjLl/04EZA5LvWLKpzY1WalH9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGFlYzY2Yy05ZTFkLTQzMjEtYjA2OS1lZWFiNDc5M2EwMGIvMC8xNEM4Q0I5N0ZE MzgxMTkwMzkyRUY1OEIyQTlDRDhENTY2QTUxRkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2NkE1 MUZENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkYWVjNjZjLTllMWQtNDMyMS1i MDY5LWVlYWI0NzkzYTAwYi8wLzMyMzQzMDM1M2EzNjM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFZkAwDQYJKoZI hvcNAQELBQADggEBAHAbI6+n769AYqoxr8k03rD/g8SWnohXx21UqG6DqI6ghHTV gSwFnhAWro/xdmQVHmg4eiWvp8SjOUJKLaWeOZ3VqRZ5ydaXT7A8/2APQ+RlSz/4 yd2qMZ8XGYayaz9F49+FiBxzEHx3J2rYRj8mt1rsL6wAy1bGaVPo16M8z2aamzSP h3IT/iZTDbyFeWWZ6s8wRfB2Fx+ZEs0DFnDSAaHqphQNQxNT6/OEJEPFSLuj1u9Z PU0r8hZj8CrSDTfQPEEelBlfT30rmY4LWLB9QWuP8/ydw8zvtjux3xwuhgUlPEAy W41Rxdord4olO4FKlrS704RpaLPI4XVTNgd506w= -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org