$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa File: 323430303a393134303a3a2f33322d3332203d3e203535363632.roa (raw, json) Hash identifier: 0hFlZ7fplBnjhpvQ2rtjlp/hS8tlJFaTBMFE7R6GDgM= Subject key identifier: 86:E3:44:DC:14:96:F1:6A:87:E3:0A:F5:0D:E9:C3:4B:B1:EE:EC:0A Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Certificate serial: 6D1EF76EE35114E45C5BD2F1BAD9788C835F974E Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa Signing time: Tue 14 May 2024 08:02:08 +0000 ROA not before: Tue 14 May 2024 07:57:08 +0000 ROA not after: Tue 13 May 2025 08:02:08 +0000 asID: 55662 IP address blocks: 2400:9140::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1e:f7:6e:e3:51:14:e4:5c:5b:d2:f1:ba:d9:78:8c:83:5f:97:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9 Validity Not Before: May 14 07:57:08 2024 GMT Not After : May 13 08:02:08 2025 GMT Subject: CN=86E344DC1496F16A87E30AF50DE9C34BB1EEEC0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:92:cb:ba:22:fc:c4:6f:22:fb:e7:a2:0d:32: a4:d2:f0:93:23:55:f6:d9:e3:5d:17:84:5f:32:92: 87:16:13:24:2f:61:b5:c8:6f:ee:e4:51:f9:3c:00: ee:26:85:b2:65:6a:63:c2:a9:07:a1:c2:84:17:f7: 53:d4:4f:ed:d1:e4:cb:4b:68:e8:2e:ae:09:00:22: df:4c:64:92:34:06:8c:fd:08:42:87:69:b6:e7:71: 1b:be:a2:57:5d:be:e8:46:26:36:87:c9:26:a5:c8: 45:b7:2f:2a:8c:63:b0:a9:7e:4c:5b:a4:e7:0d:8c: 86:71:db:94:0d:29:0e:5f:89:53:bb:87:17:e0:13: 7d:88:ee:cc:82:9f:db:27:02:14:3e:53:7e:b0:be: 62:5c:27:61:d2:fe:18:f4:df:74:fe:bd:01:e2:53: de:d3:b5:c8:94:37:63:8a:49:c9:97:c9:2f:d3:bb: 7b:13:8d:c9:40:81:b0:d5:bb:5a:33:32:92:8a:6f: ef:0c:87:0e:ee:62:8e:7a:4e:07:5c:dc:ad:cf:ac: b5:9e:02:48:27:ee:85:e1:ac:97:b5:d9:7e:3a:90: 40:af:74:6c:9a:ab:32:05:c3:b8:89:ed:4b:b2:93: a8:b9:6f:d6:17:de:4f:e5:b1:ba:0b:27:6c:00:5d: f4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E3:44:DC:14:96:F1:6A:87:E3:0A:F5:0D:E9:C3:4B:B1:EE:EC:0A X509v3 Authority Key Identifier: keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/323430303a393134303a3a2f33322d3332203d3e203535363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9140::/32 Signature Algorithm: sha256WithRSAEncryption 3d:e4:0a:cd:c7:d7:83:c9:0e:83:88:5e:86:cf:30:44:48:e3: f2:2a:ae:c8:77:ff:fe:b7:05:ec:37:a9:1e:af:f4:24:3c:92: cd:6c:8b:5c:09:c7:9c:66:a4:7a:f4:c0:76:bb:04:3d:61:fe: 16:ca:bb:a5:c0:52:6d:60:cd:3b:b5:76:b5:25:82:ce:43:3c: 52:5f:8e:c8:0a:6a:d4:aa:d0:65:b4:fc:35:1d:e2:19:d6:2c: 26:77:1d:2c:8a:99:9b:08:ad:f5:60:4d:0c:f5:ea:a1:7e:94: 1f:1b:63:f0:42:67:88:35:90:e1:fd:b6:e6:5a:3d:72:3a:64: 6c:dd:58:e6:89:f0:49:9d:28:78:f0:c2:bc:0e:7b:ae:cd:a2: 70:07:62:db:10:7c:ce:23:2e:22:c8:f1:a2:71:ee:91:81:db: 0f:91:8a:c4:ac:3c:33:38:9c:84:4e:db:78:1d:d8:24:28:f3: f6:44:58:bc:a6:c9:24:0a:a5:f2:3a:cf:fc:8b:bb:0b:fb:06: 49:fc:fc:1e:32:de:81:14:eb:8b:12:90:a1:c6:bc:0e:d5:2d: 55:fc:3d:1a:8d:6c:6a:fe:b7:d4:ae:c5:a5:60:92:3b:55:4d: 0a:6d:30:b5:db:73:0c:39:d8:30:ad:c8:22:00:f6:00:a9:f1: b2:a6:6a:c7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUbR73buNRFORcW9Lxutl4jINfl04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZD NkYzQjJGOTAeFw0yNDA1MTQwNzU3MDhaFw0yNTA1MTMwODAyMDhaMDMxMTAvBgNV BAMTKDg2RTM0NERDMTQ5NkYxNkE4N0UzMEFGNTBERTlDMzRCQjFFRUVDMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQksu6IvzEbyL756INMqTS8JMj VfbZ410XhF8ykocWEyQvYbXIb+7kUfk8AO4mhbJlamPCqQehwoQX91PUT+3R5MtL aOgurgkAIt9MZJI0Boz9CEKHabbncRu+olddvuhGJjaHySalyEW3LyqMY7Cpfkxb pOcNjIZx25QNKQ5fiVO7hxfgE32I7syCn9snAhQ+U36wvmJcJ2HS/hj033T+vQHi U97TtciUN2OKScmXyS/Tu3sTjclAgbDVu1ozMpKKb+8Mhw7uYo56Tgdc3K3PrLWe Akgn7oXhrJe12X46kECvdGyaqzIFw7iJ7Uuyk6i5b9YX3k/lsboLJ2wAXfR7AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUhuNE3BSW8WqH4wr1DenDS7Hu7AowHwYDVR0j BBgwFoAUh85mcAcg+wsx6h6jKVr2NsbzsvkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTQ5NjA4Mi1hMGFhLTQ4MzYtYjU4Ny05NzNkZDdlMjk3YWYvMC84N0NFNjY3MDA3 MjBGQjBCMzFFQTFFQTMyOTVBRjYzNkM2RjNCMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDRTY2NzAwNzIwRkIwQjMxRUExRUEzMjk1QUY2MzZDNkYz QjJGOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNDk2MDgyLWEwYWEtNDgzNi1i NTg3LTk3M2RkN2UyOTdhZi8wLzMyMzQzMDMwM2EzOTMxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzUzNjM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAJFAMA0GCSqGSIb3 DQEBCwUAA4IBAQA95ArNx9eDyQ6DiF6GzzBESOPyKq7Id//+twXsN6ker/QkPJLN bItcCcecZqR69MB2uwQ9Yf4WyrulwFJtYM07tXa1JYLOQzxSX47ICmrUqtBltPw1 HeIZ1iwmdx0sipmbCK31YE0M9eqhfpQfG2PwQmeINZDh/bbmWj1yOmRs3VjmifBJ nSh48MK8DnuuzaJwB2LbEHzOIy4iyPGice6RgdsPkYrErDwzOJyETtt4HdgkKPP2 RFi8pskkCqXyOs/8i7sL+wZJ/PweMt6BFOuLEpChxrwO1S1V/D0ajWxq/rfUrsWl YJI7VU0KbTC123MMOdgwrcgiAPYAqfGypmrH -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org