$ rpki-client -vvf repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa File: 323430363a343934303a3a2f33322d3332203d3e20313430343639.roa (raw, json) Hash identifier: IG4+6wpyLqd68emapMZn0l0WwPLKecBNd2LG8+PvHPA= Subject key identifier: 14:2F:A4:3F:84:54:CA:A8:62:5B:4B:09:69:FD:F2:96:30:13:F7:83 Certificate issuer: /CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Certificate serial: 4F6C831CFC89CC3458D6A6DD0256294D3630E46E Authority key identifier: 10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa Signing time: Tue 19 Nov 2024 06:00:02 +0000 ROA not before: Tue 19 Nov 2024 05:55:02 +0000 ROA not after: Tue 18 Nov 2025 06:00:02 +0000 asID: 140469 IP address blocks: 2406:4940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:6c:83:1c:fc:89:cc:34:58:d6:a6:dd:02:56:29:4d:36:30:e4:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10C3E17639C8B193629F97DCBD1EF4332CC9A8AD Validity Not Before: Nov 19 05:55:02 2024 GMT Not After : Nov 18 06:00:02 2025 GMT Subject: CN=142FA43F8454CAA8625B4B0969FDF2963013F783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:36:88:ba:bb:6b:9f:63:05:4e:c1:1a:d4:5f: 66:88:e5:9a:6e:8b:59:f3:9f:1f:32:f7:be:c3:ca: f6:10:f6:a8:ab:bb:16:e8:ba:34:a1:17:7a:bd:33: f2:35:83:71:49:a8:f4:10:c5:fa:ee:3c:87:ca:76: 3a:37:9a:8e:f2:50:4b:7b:5d:36:de:13:a5:3e:3d: a1:6f:0d:03:c7:7b:0d:c3:aa:b4:67:a0:02:c0:d8: 84:e5:db:ee:95:86:82:e3:b3:ff:03:4f:3b:6e:cd: de:1a:c9:d5:06:d9:5a:73:9b:19:1e:00:ba:98:c7: 98:a9:af:6d:85:b5:3d:49:d0:bc:6d:bd:93:19:6c: 0d:34:4b:ab:0f:42:09:d2:6d:d6:ec:d2:d3:db:d3: b2:27:9e:bd:ef:83:c7:f7:a0:1d:ed:cb:a0:cf:76: 5d:48:a5:50:8e:d6:10:91:30:92:2e:f0:e7:11:b9: a7:ee:34:6d:35:47:b6:b9:1d:9a:7e:09:dd:e4:36: 4c:6c:5d:09:e6:1b:6e:a5:94:0c:38:a5:c0:bf:ee: 0d:12:d3:29:bc:42:53:93:16:3b:d1:d0:32:ec:35: 87:6c:b3:be:c4:c6:00:81:0e:f1:46:3d:56:4b:9c: c7:cb:57:8f:5c:3e:50:76:75:bf:c1:28:be:0c:00: 1e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2F:A4:3F:84:54:CA:A8:62:5B:4B:09:69:FD:F2:96:30:13:F7:83 X509v3 Authority Key Identifier: keyid:10:C3:E1:76:39:C8:B1:93:62:9F:97:DC:BD:1E:F4:33:2C:C9:A8:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10C3E17639C8B193629F97DCBD1EF4332CC9A8AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc568b5b-b6ae-453e-8e16-d55dd635460b/0/323430363a343934303a3a2f33322d3332203d3e20313430343639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4940::/32 Signature Algorithm: sha256WithRSAEncryption 54:03:07:e8:20:ca:5e:11:4f:dd:34:c9:98:1e:98:ab:d8:28: be:da:52:15:2b:c7:fb:33:dd:45:2b:36:c4:28:2a:b1:7f:d5: f8:9b:71:80:c1:30:0a:0d:3d:f3:b0:76:f8:46:cd:32:68:0b: 6f:07:97:27:f2:8a:dc:18:a8:bd:ae:b2:de:cb:0a:ce:ab:66: 37:70:12:97:24:22:23:76:11:0e:84:56:84:6b:bf:9d:04:3a: b3:65:df:fd:a2:b5:f1:ea:30:44:0d:13:07:ce:a7:fb:f5:41: cf:7b:ae:7b:dc:9f:ec:01:10:56:d5:68:21:b3:9d:48:08:55: 78:f8:79:4f:c6:6b:bd:04:7e:6d:19:16:80:84:2b:5e:9e:90: 1b:1e:a1:c3:82:b0:1e:34:2b:78:ca:9a:90:17:f9:a5:5f:7f: 0d:50:8c:50:be:f9:10:6c:44:68:d7:c6:86:fd:72:4b:47:5d: c6:5d:50:39:87:9d:2a:06:e9:4d:1e:44:a3:90:ad:22:41:3d: 00:fa:b4:78:c1:a5:f5:1d:32:58:ac:ae:5a:42:f8:99:49:ba: 07:86:61:61:8c:5e:63:ae:57:3d:cb:59:71:a2:13:c7:e3:60: 25:79:25:23:a0:47:dd:a3:9c:62:67:49:b8:a3:31:85:c2:77: e5:16:6c:4e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUT2yDHPyJzDRY1qbdAlYpTTYw5G4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMy Q0M5QThBRDAeFw0yNDExMTkwNTU1MDJaFw0yNTExMTgwNjAwMDJaMDMxMTAvBgNV BAMTKDE0MkZBNDNGODQ1NENBQTg2MjVCNEIwOTY5RkRGMjk2MzAxM0Y3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXNoi6u2ufYwVOwRrUX2aI5Zpu i1nznx8y977DyvYQ9qiruxboujShF3q9M/I1g3FJqPQQxfruPIfKdjo3mo7yUEt7 XTbeE6U+PaFvDQPHew3DqrRnoALA2ITl2+6VhoLjs/8DTztuzd4aydUG2Vpzmxke ALqYx5ipr22FtT1J0LxtvZMZbA00S6sPQgnSbdbs0tPb07Innr3vg8f3oB3ty6DP dl1IpVCO1hCRMJIu8OcRuafuNG01R7a5HZp+Cd3kNkxsXQnmG26llAw4pcC/7g0S 0ym8QlOTFjvR0DLsNYdss77ExgCBDvFGPVZLnMfLV49cPlB2db/BKL4MAB55AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUFC+kP4RUyqhiW0sJaf3yljAT94MwHwYDVR0j BBgwFoAUEMPhdjnIsZNin5fcvR70MyzJqK0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzU2OGI1Yi1iNmFlLTQ1M2UtOGUxNi1kNTVkZDYzNTQ2MGIvMC8xMEMzRTE3NjM5 QzhCMTkzNjI5Rjk3RENCRDFFRjQzMzJDQzlBOEFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDM0UxNzYzOUM4QjE5MzYyOUY5N0RDQkQxRUY0MzMyQ0M5 QThBRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNTY4YjViLWI2YWUtNDUzZS04 ZTE2LWQ1NWRkNjM1NDYwYi8wLzMyMzQzMDM2M2EzNDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGSUAwDQYJKoZI hvcNAQELBQADggEBAFQDB+ggyl4RT900yZgemKvYKL7aUhUrx/sz3UUrNsQoKrF/ 1fibcYDBMAoNPfOwdvhGzTJoC28HlyfyitwYqL2ust7LCs6rZjdwEpckIiN2EQ6E VoRrv50EOrNl3/2itfHqMEQNEwfOp/v1Qc97rnvcn+wBEFbVaCGznUgIVXj4eU/G a70Efm0ZFoCEK16ekBseocOCsB40K3jKmpAX+aVffw1QjFC++RBsRGjXxob9cktH XcZdUDmHnSoG6U0eRKOQrSJBPQD6tHjBpfUdMlisrlpC+JlJugeGYWGMXmOuVz3L WXGiE8fjYCV5JSOgR92jnGJnSbijMYXCd+UWbE4= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org