$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: NQ2ye5QxCxIoEkqHxBUJyo6rSBIUVJNBvpNF3uf87lc= Subject key identifier: 6F:D9:8F:3B:0D:68:68:2A:B0:C9:1C:13:AE:61:69:E5:3F:25:AC:59 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 756A6FCED4A10DED016CFE6A583E01B7ED7D9C4E Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa Signing time: Fri 14 Jun 2024 08:00:00 +0000 ROA not before: Fri 14 Jun 2024 07:55:00 +0000 ROA not after: Fri 13 Jun 2025 08:00:00 +0000 asID: 131705 IP address blocks: 2406:5c40:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:6a:6f:ce:d4:a1:0d:ed:01:6c:fe:6a:58:3e:01:b7:ed:7d:9c:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jun 14 07:55:00 2024 GMT Not After : Jun 13 08:00:00 2025 GMT Subject: CN=6FD98F3B0D68682AB0C91C13AE6169E53F25AC59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:03:26:6f:0b:bc:14:8b:6a:c5:a6:61:ee: 01:e3:b7:34:67:ee:53:3b:f5:40:d8:35:38:7d:39: 7a:d1:12:45:33:df:48:8a:b0:3d:22:46:b9:8f:6b: ba:37:1e:c0:78:7b:06:f2:ca:18:74:1b:f2:ac:58: 9d:ea:ed:b5:a4:b7:0d:c5:8f:4e:43:73:bd:c4:7d: e8:a4:96:0b:27:fc:86:cb:79:6d:43:70:cb:27:f4: 15:f7:a3:e8:c3:c8:b5:bf:f8:3f:7f:8a:36:12:8b: 9c:7b:9f:3d:df:c5:94:59:08:97:6d:21:1b:78:c1: bb:b0:ba:49:b0:9b:d9:f1:32:3e:2a:98:e8:27:02: c5:8e:a9:b1:7b:13:05:c2:3e:17:9a:27:25:78:8f: 09:e5:de:a7:8a:04:e8:ee:9a:28:08:33:9e:57:f5: f6:c1:fa:c9:c1:0d:fd:26:cc:6d:b2:e1:b7:08:29: 42:93:b9:2b:a1:18:38:76:ef:c3:19:fe:ff:d7:84: 49:15:14:f3:f4:c9:dc:51:db:4e:f6:df:8c:19:5b: 69:b9:9d:94:bb:b7:de:dc:7b:10:c5:d5:81:0e:5a: 80:94:22:dd:7c:c3:d7:be:b7:b0:d4:76:f7:1e:f3: c9:ee:20:6b:68:eb:42:8c:bd:f9:f2:70:e0:27:ad: 06:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D9:8F:3B:0D:68:68:2A:B0:C9:1C:13:AE:61:69:E5:3F:25:AC:59 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 32:ac:1a:04:db:58:45:a5:5f:ea:f4:d7:b0:4a:5c:19:9d:11: a8:6d:a1:60:1f:e0:6e:63:02:61:e0:06:d2:82:4b:a9:ee:e1: 62:cc:66:63:b7:70:b1:60:1e:33:23:ba:d6:3b:6d:70:cd:10: 3a:18:82:ce:08:b3:ff:d4:ed:de:84:81:63:df:63:dd:68:03: a2:e7:ab:26:36:69:e2:ce:89:31:b6:3e:b4:ac:ef:5f:75:fa: a9:c4:6d:3a:48:cc:69:c4:da:55:ea:91:47:bb:b4:c3:c4:9f: ab:43:2f:7d:99:a6:e7:f4:89:86:09:c0:11:df:bf:d3:b2:ae: 7f:45:6c:34:71:fc:31:c6:39:17:23:4b:9b:ec:47:66:31:31: 9e:f4:4f:08:e2:a2:7d:c1:7b:ae:b2:6b:4f:a6:13:b0:3a:8b: 68:5b:fc:22:dd:07:0f:bd:eb:b1:4e:11:c5:80:af:11:32:2c: 36:25:15:00:2c:04:41:03:55:14:a9:b2:1e:62:95:44:78:a4: e5:6f:49:b3:49:34:bc:7a:0d:ea:9c:4e:9a:a5:7d:4e:9b:1c: d9:83:27:67:c4:c0:94:83:9f:0c:5e:e0:a5:a5:69:60:99:03: 38:bf:d1:1d:5d:d8:09:16:0c:f3:0f:b6:73:e6:0d:56:c1:a5: d2:bc:c2:67 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUdWpvztShDe0BbP5qWD4Bt+19nE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNDA2MTQwNzU1MDBaFw0yNTA2MTMwODAwMDBaMDMxMTAvBgNV BAMTKDZGRDk4RjNCMEQ2ODY4MkFCMEM5MUMxM0FFNjE2OUU1M0YyNUFDNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaawMmbwu8FItqxaZh7gHjtzRn 7lM79UDYNTh9OXrREkUz30iKsD0iRrmPa7o3HsB4ewbyyhh0G/KsWJ3q7bWktw3F j05Dc73Efeiklgsn/IbLeW1DcMsn9BX3o+jDyLW/+D9/ijYSi5x7nz3fxZRZCJdt IRt4wbuwukmwm9nxMj4qmOgnAsWOqbF7EwXCPheaJyV4jwnl3qeKBOjumigIM55X 9fbB+snBDf0mzG2y4bcIKUKTuSuhGDh278MZ/v/XhEkVFPP0ydxR207234wZW2m5 nZS7t97cexDF1YEOWoCUIt18w9e+t7DUdvce88nuIGto60KMvfnycOAnrQaBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUb9mPOw1oaCqwyRwTrmFp5T8lrFkwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BlxAEDANBgkqhkiG9w0BAQsFAAOCAQEAMqwaBNtYRaVf6vTXsEpcGZ0RqG2hYB/g bmMCYeAG0oJLqe7hYsxmY7dwsWAeMyO61jttcM0QOhiCzgiz/9Tt3oSBY99j3WgD ouerJjZp4s6JMbY+tKzvX3X6qcRtOkjMacTaVeqRR7u0w8Sfq0MvfZmm5/SJhgnA Ed+/07Kuf0VsNHH8McY5FyNLm+xHZjExnvRPCOKifcF7rrJrT6YTsDqLaFv8It0H D73rsU4RxYCvETIsNiUVACwEQQNVFKmyHmKVRHik5W9Js0k0vHoN6pxOmqV9Tpsc 2YMnZ8TAlIOfDF7gpaVpYJkDOL/RHV3YCRYM8w+2c+YNVsGl0rzCZw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org