$ rpki-client -vvf repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa File: 323430363a373663303a3a2f33322d3438203d3e203538383231.roa (raw, json) Hash identifier: vrRICHKdrX5bsoj+V7upbCct/K0FWIRbEMdPjprjMe8= Subject key identifier: 80:F6:CD:48:1C:DE:22:9B:02:E3:F8:5B:5B:A0:35:F5:F5:15:B6:40 Certificate issuer: /CN=58BB439F406646053DA2029A1FDBBE942B381419 Certificate serial: 2AAAC42C91F9A1EEA2168DE513552760F3568882 Authority key identifier: 58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa Signing time: Sat 12 Oct 2024 06:02:22 +0000 ROA not before: Sat 12 Oct 2024 05:57:22 +0000 ROA not after: Sat 11 Oct 2025 06:02:22 +0000 asID: 58821 IP address blocks: 2406:76c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:aa:c4:2c:91:f9:a1:ee:a2:16:8d:e5:13:55:27:60:f3:56:88:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58BB439F406646053DA2029A1FDBBE942B381419 Validity Not Before: Oct 12 05:57:22 2024 GMT Not After : Oct 11 06:02:22 2025 GMT Subject: CN=80F6CD481CDE229B02E3F85B5BA035F5F515B640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:66:36:f9:71:84:59:72:de:43:b1:e3:65: d9:72:e8:82:47:5d:5a:aa:84:21:db:e3:fa:04:2c: 4c:cc:d9:82:c7:17:ca:f5:3d:20:d6:cc:9e:6a:3e: 5a:ed:71:60:c6:45:1e:16:95:7d:39:93:67:f8:a0: e3:22:0a:28:09:fc:49:05:18:41:9b:07:38:8a:e3: 65:c9:31:e8:70:b4:a9:b3:16:f0:a2:a0:5f:db:7d: 62:4a:9d:2e:9f:40:00:a1:ff:7a:06:74:9f:61:93: 76:b1:b5:4f:ce:df:e2:ac:72:25:78:a1:0b:ae:ad: c2:30:cc:a7:d4:11:7f:70:b5:85:c9:cf:99:74:6e: fa:6e:d7:5a:84:75:a6:75:96:a2:fc:99:7a:d8:e3: 2f:af:04:df:24:96:3f:34:1e:b7:d5:8a:23:cb:0f: 60:7c:64:97:39:ba:19:23:94:8b:ea:1e:44:95:40: cf:38:ab:2c:af:7a:02:e4:a7:91:f0:7c:46:d9:81: 23:8d:6e:af:42:a4:af:43:b5:e2:cc:58:49:d4:ab: 18:91:52:fe:32:a3:25:9b:e6:a7:57:61:20:69:0f: 3c:ab:ca:8b:ba:7b:ab:eb:83:6f:d7:79:a5:7e:14: e3:d4:c2:b0:ab:db:49:51:ed:8f:fa:87:04:cf:44: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F6:CD:48:1C:DE:22:9B:02:E3:F8:5B:5B:A0:35:F5:F5:15:B6:40 X509v3 Authority Key Identifier: keyid:58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/323430363a373663303a3a2f33322d3438203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:76c0::/32 Signature Algorithm: sha256WithRSAEncryption d1:86:fd:ce:79:8c:7a:6e:fb:41:b6:9f:3f:51:af:c0:f5:02: 21:bb:15:e9:97:d1:72:40:23:94:5d:51:81:66:fc:d7:12:ef: a6:76:85:65:b7:99:d2:5a:67:98:ef:75:53:bc:27:b3:2a:b2: d7:30:b8:da:49:0d:b1:42:c3:54:a6:af:de:d6:cc:aa:92:67: c3:36:6d:55:c1:d7:18:5e:0b:b6:83:ab:6d:66:71:25:a2:10: 98:2e:89:81:27:02:17:23:d5:e6:74:5c:68:a0:da:46:27:9a: 88:b0:94:42:f5:dc:c0:44:4f:31:99:a0:f6:71:83:ab:6c:44: 6f:52:bb:07:77:4a:99:c4:d6:59:4e:b9:cf:b5:67:e5:9a:3c: cd:f8:01:1d:bd:48:4f:bc:df:29:ed:0e:f6:be:dc:3e:91:6f: 9a:1a:57:c2:1a:2d:c7:db:ad:fc:5b:03:06:a7:db:c0:35:d6: 06:b6:35:dd:76:91:6b:d4:3f:b7:bc:f4:d2:b0:a6:c7:8c:3c: f0:23:08:f9:43:99:42:bf:ed:5a:d5:b5:8a:29:72:fe:0e:95: 22:27:3c:18:97:47:fd:25:e2:2a:71:11:fd:bc:82:4f:96:50: 2a:04:69:84:3f:fd:69:db:cd:54:15:d3:34:a7:d0:cd:f4:f1: f6:f8:14:eb -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKqrELJH5oe6iFo3lE1UnYPNWiIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQy QjM4MTQxOTAeFw0yNDEwMTIwNTU3MjJaFw0yNTEwMTEwNjAyMjJaMDMxMTAvBgNV BAMTKDgwRjZDRDQ4MUNERTIyOUIwMkUzRjg1QjVCQTAzNUY1RjUxNUI2NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz4WY2+XGEWXLeQ7HjZdly6IJH XVqqhCHb4/oELEzM2YLHF8r1PSDWzJ5qPlrtcWDGRR4WlX05k2f4oOMiCigJ/EkF GEGbBziK42XJMehwtKmzFvCioF/bfWJKnS6fQACh/3oGdJ9hk3axtU/O3+KsciV4 oQuurcIwzKfUEX9wtYXJz5l0bvpu11qEdaZ1lqL8mXrY4y+vBN8klj80HrfViiPL D2B8ZJc5uhkjlIvqHkSVQM84qyyvegLkp5HwfEbZgSONbq9CpK9DteLMWEnUqxiR Uv4yoyWb5qdXYSBpDzyryou6e6vrg2/XeaV+FOPUwrCr20lR7Y/6hwTPRJ4XAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUgPbNSBzeIpsC4/hbW6A19fUVtkAwHwYDVR0j BBgwFoAUWLtDn0BmRgU9ogKaH9u+lCs4FBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZjI1MDZiMS0zOTZkLTQ5OWUtYjdmNS01ZDlmOGU3ZTBiZWUvMC81OEJCNDM5RjQw NjY0NjA1M0RBMjAyOUExRkRCQkU5NDJCMzgxNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThCQjQzOUY0MDY2NDYwNTNEQTIwMjlBMUZEQkJFOTQyQjM4 MTQxOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZmMjUwNmIxLTM5NmQtNDk5ZS1i N2Y1LTVkOWY4ZTdlMGJlZS8wLzMyMzQzMDM2M2EzNzM2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBnbAMA0GCSqGSIb3 DQEBCwUAA4IBAQDRhv3OeYx6bvtBtp8/Ua/A9QIhuxXpl9FyQCOUXVGBZvzXEu+m doVlt5nSWmeY73VTvCezKrLXMLjaSQ2xQsNUpq/e1syqkmfDNm1VwdcYXgu2g6tt ZnElohCYLomBJwIXI9XmdFxooNpGJ5qIsJRC9dzARE8xmaD2cYOrbERvUrsHd0qZ xNZZTrnPtWflmjzN+AEdvUhPvN8p7Q72vtw+kW+aGlfCGi3H2638WwMGp9vANdYG tjXddpFr1D+3vPTSsKbHjDzwIwj5Q5lCv+1a1bWKKXL+DpUiJzwYl0f9JeIqcRH9 vIJPllAqBGmEP/1p281UFdM0p9DN9PH2+BTr -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org