$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: VCJVYb5Yj3VQmqeBZPc4wM5hAoFiEaNDgbEKKi9Z34Y= Subject key identifier: FB:04:39:29:2E:C3:D5:E0:31:46:4E:1B:9E:64:1D:59:AE:D7:F1:93 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 3D16C45236FE953D42BC51BF186A024ACBF04627 Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa Signing time: Fri 14 Jun 2024 08:00:00 +0000 ROA not before: Fri 14 Jun 2024 07:55:00 +0000 ROA not after: Fri 13 Jun 2025 08:00:00 +0000 asID: 131705 IP address blocks: 2406:5c40::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 13:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:16:c4:52:36:fe:95:3d:42:bc:51:bf:18:6a:02:4a:cb:f0:46:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jun 14 07:55:00 2024 GMT Not After : Jun 13 08:00:00 2025 GMT Subject: CN=FB0439292EC3D5E031464E1B9E641D59AED7F193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ce:1f:d8:58:59:49:cc:d7:8e:66:7d:e5:92: d2:81:34:48:11:af:2a:5c:15:5e:ea:e7:a9:fb:19: c1:c0:88:29:14:3a:e5:4c:7d:29:8a:02:f5:d7:65: 63:7e:70:bb:c1:bb:82:83:da:8c:e7:3b:48:a1:31: 23:8d:f8:9a:35:77:61:ca:3c:8e:df:1d:8c:8c:69: 23:34:e3:10:9f:54:9e:58:d5:d5:44:a5:c1:1a:d9: 52:ed:70:dd:9f:92:77:1f:b3:5f:02:3d:71:e2:1e: e1:b4:65:c5:9b:1f:2a:61:be:f5:58:dd:87:60:d9: 14:b1:a5:1c:b8:0c:9b:73:93:40:2a:81:4c:fc:c0: b4:aa:1d:a9:ba:1a:0f:4a:49:9d:21:81:e6:2a:58: ac:e5:72:1e:85:2b:39:77:1c:bf:26:a8:99:56:9b: 5d:79:e7:13:d7:a0:55:da:2d:d6:0b:e0:54:7b:7a: b2:7e:16:42:7c:29:53:74:07:d0:ba:7b:b4:82:a8: b8:b8:07:2e:c7:2c:53:f6:14:5b:4b:69:be:bc:f9: f5:c4:e7:89:dd:d5:b0:d6:40:ca:1d:c4:90:cc:f3: 2b:28:73:77:36:06:fa:b6:dc:bf:42:59:0a:16:4c: 48:7e:c3:5a:b7:23:77:ad:0a:b0:3f:f9:9f:4f:31: eb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:04:39:29:2E:C3:D5:E0:31:46:4E:1B:9E:64:1D:59:AE:D7:F1:93 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/36 Signature Algorithm: sha256WithRSAEncryption 2c:a8:14:92:62:1b:a2:84:e0:0a:22:2c:5c:89:5d:cf:19:63: f1:c9:a4:3f:81:49:c2:d8:86:70:c9:e4:53:ec:6d:54:d4:69: 06:03:ca:7e:3a:ee:16:3c:36:66:30:7a:e4:f1:5a:f2:55:5d: f8:57:27:a9:25:26:b3:d9:ae:95:d4:27:a1:f3:99:0a:14:b6: 9c:69:24:b0:ac:9c:59:21:96:5f:60:e7:be:1e:41:f7:14:b8: ff:9b:66:24:d6:ef:bc:b4:6e:7c:d7:bb:89:44:0c:9c:e9:f4: 31:86:0e:4c:15:e2:b8:0e:e2:f2:76:0d:10:50:7c:92:b5:21: 38:8a:06:c6:ca:b0:7a:25:15:36:17:f6:c0:05:94:84:67:33: 03:fa:1a:8f:2c:95:75:50:17:fa:51:2f:4f:e9:51:0d:15:f4: b8:26:8e:4b:10:e5:e4:ee:1a:48:aa:eb:85:3e:36:bc:c2:72: fd:93:c9:88:8d:fa:df:f2:4b:73:a1:3c:63:ae:5c:b2:03:61: c5:60:85:c5:f4:ed:4b:2a:b0:83:e9:53:81:af:7a:99:02:80: 27:77:09:5c:08:48:2a:7e:2a:1b:95:21:ad:15:96:8c:fe:cd: 76:25:49:ae:58:49:a0:fd:92:00:f1:d8:19:d9:3d:07:5e:23: 7a:0a:60:67 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPRbEUjb+lT1CvFG/GGoCSsvwRicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNDA2MTQwNzU1MDBaFw0yNTA2MTMwODAwMDBaMDMxMTAvBgNV BAMTKEZCMDQzOTI5MkVDM0Q1RTAzMTQ2NEUxQjlFNjQxRDU5QUVEN0YxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzh/YWFlJzNeOZn3lktKBNEgR rypcFV7q56n7GcHAiCkUOuVMfSmKAvXXZWN+cLvBu4KD2oznO0ihMSON+Jo1d2HK PI7fHYyMaSM04xCfVJ5Y1dVEpcEa2VLtcN2fkncfs18CPXHiHuG0ZcWbHyphvvVY 3Ydg2RSxpRy4DJtzk0AqgUz8wLSqHam6Gg9KSZ0hgeYqWKzlch6FKzl3HL8mqJlW m1155xPXoFXaLdYL4FR7erJ+FkJ8KVN0B9C6e7SCqLi4By7HLFP2FFtLab68+fXE 54nd1bDWQModxJDM8ysoc3c2Bvq23L9CWQoWTEh+w1q3I3etCrA/+Z9PMesPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+wQ5KS7D1eAxRk4bnmQdWa7X8ZMwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGXEAAMA0GCSqG SIb3DQEBCwUAA4IBAQAsqBSSYhuihOAKIixciV3PGWPxyaQ/gUnC2IZwyeRT7G1U 1GkGA8p+Ou4WPDZmMHrk8VryVV34VyepJSaz2a6V1Ceh85kKFLacaSSwrJxZIZZf YOe+HkH3FLj/m2Yk1u+8tG5817uJRAyc6fQxhg5MFeK4DuLydg0QUHyStSE4igbG yrB6JRU2F/bABZSEZzMD+hqPLJV1UBf6US9P6VENFfS4Jo5LEOXk7hpIquuFPja8 wnL9k8mIjfrf8ktzoTxjrlyyA2HFYIXF9O1LKrCD6VOBr3qZAoAndwlcCEgqfiob lSGtFZaM/s12JUmuWEmg/ZIA8dgZ2T0HXiN6CmBn -----END CERTIFICATE-----Generated at Fri Jun 21 11:44:11 2024 by rpki-client on console-fra.rpki-client.org