$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: da6VPzKks75GP7axUBrN1Ezhq6y+B/pfersv+H6tZ8s= Subject key identifier: 5D:2B:79:FD:29:BC:54:61:7D:24:7B:A8:3B:31:F7:DC:B6:57:EE:FF Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 393BACD63B9BE4251267222BCE1ED1E3CAF8B711 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 01 Jul 2024 01:03:24 +0000 ROA not before: Mon 01 Jul 2024 00:58:24 +0000 ROA not after: Mon 30 Jun 2025 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:3b:ac:d6:3b:9b:e4:25:12:67:22:2b:ce:1e:d1:e3:ca:f8:b7:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jul 1 00:58:24 2024 GMT Not After : Jun 30 01:03:24 2025 GMT Subject: CN=5D2B79FD29BC54617D247BA83B31F7DCB657EEFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:85:7b:cf:0b:87:d1:76:83:7f:66:58:d6: a1:41:4d:0c:b2:ba:83:8a:8e:22:64:aa:a0:9a:15: 41:75:c9:8d:e3:d0:10:9d:ad:96:a8:20:f1:65:eb: 13:31:7f:3a:d8:5f:a7:25:c3:9e:d6:66:08:96:ab: d6:e3:30:c5:80:31:c3:f1:9f:a2:45:65:4a:41:9f: 2e:7c:8c:d8:d4:77:d5:50:02:35:9f:01:09:c2:15: e3:f1:0e:14:79:22:4d:bb:59:47:11:f9:05:9d:3e: 96:a1:7d:f5:54:50:d3:45:6f:e0:14:c1:ec:d0:2e: a7:8b:2d:da:ea:8f:03:46:76:35:36:f9:c7:b9:aa: 45:74:20:37:0d:c4:37:4e:b8:36:16:30:96:6a:d1: 8b:3c:49:94:da:10:f3:dd:51:e8:2b:4c:32:02:ca: b3:3b:f5:f0:4c:9f:32:8c:0a:8d:2c:51:46:57:f2: bd:a1:ae:63:4d:e6:bf:fe:f9:f0:d7:c3:88:14:b1: bc:98:a2:b4:c0:c7:f6:c7:fe:f0:45:a6:d3:7b:f5: 22:44:79:c6:ec:27:dd:c5:d3:17:e5:60:28:62:be: 45:ad:74:d5:19:2b:d4:1a:57:dd:fd:f3:e5:95:d2: 3c:c8:be:50:b8:72:9d:a0:21:1e:fb:d7:81:cf:72: ba:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2B:79:FD:29:BC:54:61:7D:24:7B:A8:3B:31:F7:DC:B6:57:EE:FF X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:4000::/34 Signature Algorithm: sha256WithRSAEncryption 6a:eb:41:2b:0b:e5:7e:06:99:5c:91:40:2c:22:f1:d7:df:0f: 56:f8:ba:21:61:7c:72:8e:85:b6:a6:19:d0:64:12:dd:a4:6e: 95:6b:7d:94:a2:c1:06:4e:c6:81:49:25:d4:4c:e3:b9:49:dd: 1d:d6:bc:d5:b4:78:4f:88:89:00:84:49:bf:00:4c:fb:20:3b: 3a:9b:70:fc:ee:d7:80:fa:7b:c8:57:cf:d1:c5:f9:ed:5f:d0: c1:8b:90:6f:28:9d:0b:46:aa:67:ca:75:c7:93:21:7f:9f:07: a2:cd:2f:43:40:2d:5d:75:f4:f6:7e:96:f5:55:b3:4b:4b:39: e6:79:d5:41:2c:b8:0f:9d:17:38:c0:ea:5d:8a:d1:0f:13:94: c5:e8:6a:3c:37:21:81:a4:c5:94:92:f5:b4:9e:6c:4f:95:13: c7:7d:25:6b:e7:3a:76:2d:8d:6c:5f:74:92:2e:3a:ae:82:ff: 30:fa:08:01:bb:2d:65:b7:29:dc:31:99:01:18:b4:11:e9:99: 2b:00:ba:50:cb:29:09:07:9e:b9:43:05:46:8f:8b:32:72:6a: b6:82:b3:7e:bf:f7:ee:2f:53:44:28:19:e1:43:19:ce:47:c0: f2:73:35:5f:df:35:2f:63:31:b1:08:ea:58:10:ef:40:17:50: 7d:0d:0b:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOTus1jub5CUSZyIrzh7R48r4txEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDA3MDEwMDU4MjRaFw0yNTA2MzAwMTAzMjRaMDMxMTAvBgNV BAMTKDVEMkI3OUZEMjlCQzU0NjE3RDI0N0JBODNCMzFGN0RDQjY1N0VFRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBhoV7zwuH0XaDf2ZY1qFBTQyy uoOKjiJkqqCaFUF1yY3j0BCdrZaoIPFl6xMxfzrYX6clw57WZgiWq9bjMMWAMcPx n6JFZUpBny58jNjUd9VQAjWfAQnCFePxDhR5Ik27WUcR+QWdPpahffVUUNNFb+AU wezQLqeLLdrqjwNGdjU2+ce5qkV0IDcNxDdOuDYWMJZq0Ys8SZTaEPPdUegrTDIC yrM79fBMnzKMCo0sUUZX8r2hrmNN5r/++fDXw4gUsbyYorTAx/bH/vBFptN79SJE ecbsJ93F0xflYChivkWtdNUZK9QaV9398+WV0jzIvlC4cp2gIR7714HPcrrlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXSt5/Sm8VGF9JHuoOzH33LZX7v8wHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AEAwDQYJKoZIhvcNAQELBQADggEBAGrrQSsL5X4GmVyRQCwi8dffD1b4uiFhfHKO hbamGdBkEt2kbpVrfZSiwQZOxoFJJdRM47lJ3R3WvNW0eE+IiQCESb8ATPsgOzqb cPzu14D6e8hXz9HF+e1f0MGLkG8onQtGqmfKdceTIX+fB6LNL0NALV119PZ+lvVV s0tLOeZ51UEsuA+dFzjA6l2K0Q8TlMXoajw3IYGkxZSS9bSebE+VE8d9JWvnOnYt jWxfdJIuOq6C/zD6CAG7LWW3KdwxmQEYtBHpmSsAulDLKQkHnrlDBUaPizJyaraC s36/9+4vU0QoGeFDGc5HwPJzNV/fNS9jMbEI6lgQ70AXUH0NC4c= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org