$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa File: 323430363a373634303a3a2f33322d3332203d3e20313431303731.roa (raw, json) Hash identifier: FULqUc9OVfsHFelY/OWJ9v0pOikh2oi0bwKOdwPWf1U= Subject key identifier: 0B:EE:E5:9A:37:44:05:3F:9D:C9:7A:20:ED:F8:58:D6:5B:29:69:53 Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 74F3FFC129A1A9566B97E8E3A3D1C120035D2135 Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa Signing time: Wed 14 Feb 2024 18:30:32 +0000 ROA not before: Wed 14 Feb 2024 18:25:32 +0000 ROA not after: Wed 12 Feb 2025 18:30:32 +0000 asID: 141071 IP address blocks: 2406:7640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f3:ff:c1:29:a1:a9:56:6b:97:e8:e3:a3:d1:c1:20:03:5d:21:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Feb 14 18:25:32 2024 GMT Not After : Feb 12 18:30:32 2025 GMT Subject: CN=0BEEE59A3744053F9DC97A20EDF858D65B296953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f7:5e:c0:27:2b:f8:ec:ef:37:98:5f:46:db: 23:f4:2c:81:bf:f8:34:b0:af:e6:5f:b5:34:5b:22: ab:8a:b5:e5:36:08:5d:10:fd:39:90:5d:7d:51:36: 9a:93:c3:d4:8b:99:40:e2:2f:d9:7f:5b:20:b8:6f: fd:39:8b:6e:da:31:42:4f:41:cf:6d:53:3d:fd:b9: a2:26:39:29:87:b5:d9:0d:b6:65:86:f1:ee:47:ba: 7a:89:63:62:7d:f9:cf:21:a4:d6:b0:5b:b0:61:b3: 46:26:13:ac:2d:cc:de:7e:a8:63:56:97:43:d1:d0: 64:d1:d9:da:92:89:af:14:44:f5:4c:dd:d6:aa:79: b9:b7:94:27:94:19:1c:36:8b:5b:a5:1e:09:37:15: 70:15:e5:04:a6:37:89:cb:d0:85:b0:15:fc:69:44: e6:e3:88:0e:12:f3:05:ff:f3:28:58:fc:3d:1e:57: 5c:79:6c:9f:9f:e6:7b:79:0e:e1:3c:62:e0:94:3d: 31:58:19:e9:6d:96:10:dd:1b:d3:5e:d6:da:24:a5: 94:4f:8b:14:25:da:6b:a7:3f:18:36:5f:b2:fc:fa: 40:50:7b:c0:0f:90:e3:f7:25:ce:8c:40:2c:01:7f: f9:73:a9:36:40:f4:3d:65:d1:14:bf:18:a1:2d:1c: 9e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EE:E5:9A:37:44:05:3F:9D:C9:7A:20:ED:F8:58:D6:5B:29:69:53 X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7640::/32 Signature Algorithm: sha256WithRSAEncryption be:71:cf:6b:30:3a:43:87:e7:08:2e:fc:6d:e1:fe:e1:aa:fc: a0:0b:d9:b0:bc:ed:20:33:89:65:eb:7d:4f:40:2f:1c:8d:a4: f2:c3:d7:76:2f:00:41:f0:65:0c:4e:6f:d2:de:8e:36:51:98: 7e:4f:c3:c5:6e:dd:f4:55:83:cd:61:ae:ba:88:06:4e:f1:00: 64:f9:bc:59:30:d4:ff:48:49:e4:85:9d:2f:f9:c5:f7:5d:cc: f8:bb:cb:bc:0c:5e:a3:b5:18:8d:ce:97:37:ae:53:59:d6:e3: 0a:2b:4c:5b:a4:a1:c0:02:f9:23:82:f0:61:27:21:41:37:cc: 9a:35:62:7c:52:70:81:3f:54:eb:d7:bd:3b:68:46:c5:4b:b4: 11:14:e6:8f:b0:8c:72:6e:2b:fb:30:7e:30:51:06:f4:0c:00: 41:b1:9b:c0:e6:bd:18:05:fa:c2:df:6f:54:c2:06:4f:21:e2: 87:42:f9:df:1b:47:7d:2c:41:2c:c1:0a:55:08:94:02:6c:af: d7:ec:34:ff:55:6d:4e:84:6b:5a:00:e4:f9:44:43:ce:c1:49: 12:7e:87:22:9f:06:3a:04:da:cc:fc:cd:7c:6e:25:b9:1e:be: 87:a0:7c:a1:b8:a4:f9:b4:a7:8c:4b:a3:c6:97:f5:c5:17:06: b7:f4:d6:61 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdPP/wSmhqVZrl+jjo9HBIANdITUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNDAyMTQxODI1MzJaFw0yNTAyMTIxODMwMzJaMDMxMTAvBgNV BAMTKDBCRUVFNTlBMzc0NDA1M0Y5REM5N0EyMEVERjg1OEQ2NUIyOTY5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8917AJyv47O83mF9G2yP0LIG/ +DSwr+ZftTRbIquKteU2CF0Q/TmQXX1RNpqTw9SLmUDiL9l/WyC4b/05i27aMUJP Qc9tUz39uaImOSmHtdkNtmWG8e5HunqJY2J9+c8hpNawW7Bhs0YmE6wtzN5+qGNW l0PR0GTR2dqSia8URPVM3daqebm3lCeUGRw2i1ulHgk3FXAV5QSmN4nL0IWwFfxp RObjiA4S8wX/8yhY/D0eV1x5bJ+f5nt5DuE8YuCUPTFYGeltlhDdG9Ne1tokpZRP ixQl2munPxg2X7L8+kBQe8APkOP3Jc6MQCwBf/lzqTZA9D1l0RS/GKEtHJ6bAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUC+7lmjdEBT+dyXog7fhY1lspaVMwHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMyMzQzMDM2M2EzNzM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGdkAwDQYJKoZI hvcNAQELBQADggEBAL5xz2swOkOH5wgu/G3h/uGq/KAL2bC87SAziWXrfU9ALxyN pPLD13YvAEHwZQxOb9LejjZRmH5Pw8Vu3fRVg81hrrqIBk7xAGT5vFkw1P9ISeSF nS/5xfddzPi7y7wMXqO1GI3OlzeuU1nW4worTFukocAC+SOC8GEnIUE3zJo1YnxS cIE/VOvXvTtoRsVLtBEU5o+wjHJuK/swfjBRBvQMAEGxm8DmvRgF+sLfb1TCBk8h 4odC+d8bR30sQSzBClUIlAJsr9fsNP9VbU6Ea1oA5PlEQ87BSRJ+hyKfBjoE2sz8 zXxuJbkevoegfKG4pPm0p4xLo8aX9cUXBrf01mE= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org