$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa File: 323430343a3162383a3a2f33322d3332203d3e2039373934.roa (raw, json) Hash identifier: E024Sg+etQExLMa0GpVwX5DDDt2ndI95BE9f3QWbGo0= Subject key identifier: 43:FA:3B:25:60:66:CD:5C:DA:AF:E8:4C:FA:16:41:35:14:1B:44:6E Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 30CCC631356D0788F4C8D22B5040A1B87A477510 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa Signing time: Mon 01 Jul 2024 01:02:54 +0000 ROA not before: Mon 01 Jul 2024 00:57:54 +0000 ROA not after: Mon 30 Jun 2025 01:02:54 +0000 asID: 9794 IP address blocks: 2404:1b8::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:cc:c6:31:35:6d:07:88:f4:c8:d2:2b:50:40:a1:b8:7a:47:75:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 1 00:57:54 2024 GMT Not After : Jun 30 01:02:54 2025 GMT Subject: CN=43FA3B256066CD5CDAAFE84CFA164135141B446E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:f4:50:e8:fe:b8:a9:8e:bc:35:c7:72:0d: 7a:86:f4:d1:a8:e6:56:c5:72:dc:8f:79:b9:ba:56: 91:34:6a:68:5f:c1:9f:e2:47:12:85:1e:a5:e1:ec: 42:a9:dc:dc:c7:e8:c1:33:ce:66:9c:4f:13:a5:6e: 1a:e5:ce:6c:ae:b7:92:1d:f1:d3:f3:99:02:d8:80: 47:52:d2:3b:21:74:0a:37:b3:20:3e:1c:1a:f6:41: 78:d8:ba:93:5d:d6:bb:74:a8:dc:96:30:66:ad:4f: 70:c6:ea:47:76:c4:53:5a:2d:ef:c4:51:af:52:55: c6:29:f4:7e:4d:7b:58:2d:6a:82:37:8a:53:ce:67: 24:e6:82:9d:30:a1:d1:ec:9f:f6:57:80:f1:e8:d8: 30:f0:69:19:17:cb:a3:d5:95:c0:ae:15:bc:ac:75: a1:df:8a:7a:2a:7e:21:cd:3a:ef:f2:b6:b5:d3:12: f3:f1:3f:16:de:4f:97:e7:2d:ab:80:b2:00:d6:ca: 89:63:d8:28:b6:e7:a7:eb:db:d4:0e:1f:72:2a:51: 75:d5:d3:b5:a0:7e:44:a2:f6:06:94:c8:86:8b:12: 41:69:72:ca:fc:3d:f3:72:41:3b:89:97:13:aa:f8: 0f:db:00:6e:ff:f1:5b:f2:2e:42:6f:0a:cc:28:0c: 6e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FA:3B:25:60:66:CD:5C:DA:AF:E8:4C:FA:16:41:35:14:1B:44:6E X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/323430343a3162383a3a2f33322d3332203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1b8::/32 Signature Algorithm: sha256WithRSAEncryption 8a:17:93:20:aa:1e:13:fe:67:0c:01:28:08:58:15:2f:c7:e1: 4f:bd:00:50:bb:a4:f2:76:0d:d7:77:56:1d:aa:a4:b3:d8:99: 06:43:bd:36:cc:40:2e:17:cb:69:4a:c6:0b:3e:1c:b5:04:b2: 8f:52:86:66:cd:81:12:56:b7:47:68:a7:39:f3:cb:04:d8:e0: 77:ee:73:96:dc:90:d5:48:50:61:31:20:75:d1:73:dd:a8:a6: ce:e8:bd:af:b8:a9:2c:70:f1:b6:e7:6e:5b:57:2c:11:1c:90: e8:8a:e2:3c:60:8c:48:9a:2f:30:df:f2:4a:7c:8c:b6:1b:3b: fd:9b:95:7d:22:76:fe:ad:a1:5e:ac:b5:6e:21:10:72:60:ef: 65:6a:06:a6:16:9c:b1:90:1d:1b:f9:75:4a:7f:30:13:d9:66: 1a:ad:60:06:af:f0:66:99:48:2b:7c:3d:0f:07:6c:e3:13:b7: da:06:9f:ed:8d:d1:52:35:8f:1c:7a:a7:e2:c9:08:1b:06:59: 33:9e:1d:46:a8:65:43:43:d5:a7:41:e9:72:d4:63:3e:26:eb: 4d:96:ca:32:f6:a1:b9:34:71:fa:3c:f7:13:13:90:74:87:24: 17:4a:b5:75:95:3e:09:3e:7a:bb:5a:fa:86:e2:76:a5:38:22: 0b:55:1c:b0 -----BEGIN CERTIFICATE----- MIIFIjCCBAqgAwIBAgIUMMzGMTVtB4j0yNIrUEChuHpHdRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTRaFw0yNTA2MzAwMTAyNTRaMDMxMTAvBgNV BAMTKDQzRkEzQjI1NjA2NkNENUNEQUFGRTg0Q0ZBMTY0MTM1MTQxQjQ0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClvfRQ6P64qY68NcdyDXqG9NGo 5lbFctyPebm6VpE0amhfwZ/iRxKFHqXh7EKp3NzH6MEzzmacTxOlbhrlzmyut5Id 8dPzmQLYgEdS0jshdAo3syA+HBr2QXjYupNd1rt0qNyWMGatT3DG6kd2xFNaLe/E Ua9SVcYp9H5Ne1gtaoI3ilPOZyTmgp0wodHsn/ZXgPHo2DDwaRkXy6PVlcCuFbys daHfinoqfiHNOu/ytrXTEvPxPxbeT5fnLauAsgDWyolj2Ci256fr29QOH3IqUXXV 07WgfkSi9gaUyIaLEkFpcsr8PfNyQTuJlxOq+A/bAG7/8VvyLkJvCswoDG7nAgMB AAGjggIsMIICKDAdBgNVHQ4EFgQUQ/o7JWBmzVzar+hM+hZBNRQbRG4wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzNDMwMzQzYTMxNjIzODNhM2EyZjMzMzIyZDMz MzIyMDNkM2UyMDM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAQBuDANBgkqhkiG9w0BAQsF AAOCAQEAiheTIKoeE/5nDAEoCFgVL8fhT70AULuk8nYN13dWHaqks9iZBkO9NsxA LhfLaUrGCz4ctQSyj1KGZs2BEla3R2inOfPLBNjgd+5zltyQ1UhQYTEgddFz3aim zui9r7ipLHDxtuduW1csERyQ6IriPGCMSJovMN/ySnyMths7/ZuVfSJ2/q2hXqy1 biEQcmDvZWoGphacsZAdG/l1Sn8wE9lmGq1gBq/wZplIK3w9Dwds4xO32gaf7Y3R UjWPHHqn4skIGwZZM54dRqhlQ0PVp0HpctRjPibrTZbKMvahuTRx+jz3ExOQdIck F0q1dZU+CT56u1r6huJ2pTgiC1UcsA== -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org