$ rpki-client -vvf repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa File: 323430363a376263303a3a2f33322d3332203d3e20313431303737.roa (raw, json) Hash identifier: Zqt9Hlh/od04z7ba0Qt6p0VU1aUw/YRYHF6UhSiZpuU= Subject key identifier: ED:2C:DB:11:ED:FA:36:22:79:98:09:D2:C0:CE:33:CF:CC:BB:D3:0F Certificate issuer: /CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Certificate serial: 23EB9F5E3B4A9A864B82BD9991C33D0DA347CCF9 Authority key identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa Signing time: Sun 04 Feb 2024 19:00:02 +0000 ROA not before: Sun 04 Feb 2024 18:55:02 +0000 ROA not after: Sun 02 Feb 2025 19:00:02 +0000 asID: 141077 IP address blocks: 2406:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:eb:9f:5e:3b:4a:9a:86:4b:82:bd:99:91:c3:3d:0d:a3:47:cc:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Validity Not Before: Feb 4 18:55:02 2024 GMT Not After : Feb 2 19:00:02 2025 GMT Subject: CN=ED2CDB11EDFA3622799809D2C0CE33CFCCBBD30F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:ae:bf:f6:ce:e4:c1:6a:6b:5d:94:30:0a: 1e:a6:9d:67:c6:ca:87:f0:1e:75:b7:35:72:d8:de: c9:d0:e6:be:73:7e:fc:70:99:4d:fa:40:0c:43:d7: 1d:81:6f:5f:a9:b0:b3:b8:b9:7a:ca:fe:8a:d3:c3: 2e:10:7f:ba:99:ab:4a:25:bf:b0:20:46:79:cd:c8: ef:c9:70:96:49:ab:72:c3:9a:9e:e7:ac:2b:be:92: 5a:69:0f:63:3a:77:3e:28:bf:99:e3:9b:fd:88:9c: 20:b9:80:e0:d9:fd:2d:8e:e9:ab:b6:94:04:80:fe: 03:06:13:72:ae:84:ec:61:10:92:e6:31:cc:26:af: 6e:31:37:fe:96:52:3d:ed:57:98:7d:b3:d8:60:61: a4:0b:7c:b1:0d:e6:44:4a:90:28:78:4d:f5:d1:ea: fb:f1:c9:db:de:ae:19:16:0a:23:dc:51:d8:67:fe: ea:a1:67:0b:06:25:bb:a2:03:45:08:21:ca:12:56: 7d:39:8d:d5:c7:d8:96:5e:98:6a:b5:48:08:22:35: 01:07:0e:69:9e:9b:e2:f4:b8:8c:78:f6:62:72:c4: 9a:ec:51:08:0a:a8:39:0c:98:f2:44:c2:d2:f6:95: 60:d0:5f:00:19:2e:66:cf:0f:02:4e:83:23:ed:b4: fd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2C:DB:11:ED:FA:36:22:79:98:09:D2:C0:CE:33:CF:CC:BB:D3:0F X509v3 Authority Key Identifier: keyid:C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 33:c0:03:fc:ce:a1:b0:5c:c3:56:40:3d:14:2d:7e:f3:80:e7: ad:d0:80:fe:09:dd:fc:9e:d0:34:d4:a5:b7:18:ea:f0:36:e6: 2f:72:63:fb:b2:c3:0c:ce:00:b4:fe:d1:c6:19:6f:7c:a9:40: 40:f5:1d:15:bb:14:cd:de:7f:91:d4:18:00:e2:76:84:bc:c5: 18:a1:c1:f0:b8:35:4b:c8:d0:ec:08:75:f5:08:4e:a4:50:ba: d0:cc:dc:6d:8e:93:96:96:b2:95:e0:c0:bb:06:fc:9b:4f:d4: ae:2a:37:49:a5:ba:e1:ca:b0:36:a1:5b:88:3d:60:d5:59:6a: 24:77:51:26:73:c7:81:cd:f0:0e:bb:d5:0a:b5:f1:a4:69:aa: 17:57:13:98:c2:81:7c:f0:c7:13:49:24:9a:e9:87:03:ec:2c: ce:20:e4:b6:96:66:ef:8b:af:00:62:34:7b:bb:a3:5e:9a:5f: 4c:8f:2c:48:b4:8b:84:2a:24:12:2a:85:0a:c2:53:7f:a9:3b: c5:07:ff:77:d0:62:6f:77:0e:10:2d:de:c8:4f:a8:aa:9e:01: 6f:9e:1f:e9:32:15:56:ec:b5:1c:52:26:34:fd:12:15:37:1d: 9a:a5:09:94:ad:95:1c:f3:9b:e5:22:ec:60:10:3b:f7:b3:27: a5:b7:c7:e7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUI+ufXjtKmoZLgr2ZkcM9DaNHzPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2 MkE1QzU4MjAeFw0yNDAyMDQxODU1MDJaFw0yNTAyMDIxOTAwMDJaMDMxMTAvBgNV BAMTKEVEMkNEQjExRURGQTM2MjI3OTk4MDlEMkMwQ0UzM0NGQ0NCQkQzMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cq6/9s7kwWprXZQwCh6mnWfG yofwHnW3NXLY3snQ5r5zfvxwmU36QAxD1x2Bb1+psLO4uXrK/orTwy4Qf7qZq0ol v7AgRnnNyO/JcJZJq3LDmp7nrCu+klppD2M6dz4ov5njm/2InCC5gODZ/S2O6au2 lASA/gMGE3KuhOxhEJLmMcwmr24xN/6WUj3tV5h9s9hgYaQLfLEN5kRKkCh4TfXR 6vvxydverhkWCiPcUdhn/uqhZwsGJbuiA0UIIcoSVn05jdXH2JZemGq1SAgiNQEH Dmmem+L0uIx49mJyxJrsUQgKqDkMmPJEwtL2lWDQXwAZLmbPDwJOgyPttP1/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU7SzbEe36NiJ5mAnSwM4zz8y70w8wHwYDVR0j BBgwFoAUwl1QVqac4NBoW62OSPM6SmKlxYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTY0MDFlMy05ZjYyLTRiM2MtYmZmYi03ODMzNTVhZTY3NzAvMC9DMjVENTA1NkE2 OUNFMEQwNjg1QkFEOEU0OEYzM0E0QTYyQTVDNTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2MkE1 QzU4Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUzLTlmNjItNGIzYy1i ZmZiLTc4MzM1NWFlNjc3MC8wLzMyMzQzMDM2M2EzNzYyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGe8AwDQYJKoZI hvcNAQELBQADggEBADPAA/zOobBcw1ZAPRQtfvOA563QgP4J3fye0DTUpbcY6vA2 5i9yY/uywwzOALT+0cYZb3ypQED1HRW7FM3ef5HUGADidoS8xRihwfC4NUvI0OwI dfUITqRQutDM3G2Ok5aWspXgwLsG/JtP1K4qN0mluuHKsDahW4g9YNVZaiR3USZz x4HN8A671Qq18aRpqhdXE5jCgXzwxxNJJJrphwPsLM4g5LaWZu+LrwBiNHu7o16a X0yPLEi0i4QqJBIqhQrCU3+pO8UH/3fQYm93DhAt3shPqKqeAW+eH+kyFVbstRxS JjT9EhU3HZqlCZStlRzzm+Ui7GAQO/ezJ6W3x+c= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:39 2024 by rpki-client on console-fra.rpki-client.org