$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: tDWHyBWQyv76eGBvUmmlMgh4YlyJb04q9W1lGaYrzss= Subject key identifier: EA:F4:9A:73:C7:59:15:66:44:48:C1:C2:1E:C2:9F:DC:7D:25:DF:10 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 7532830150778D765B93550ABA119F4909EB4FB8 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 01 Jul 2024 01:03:24 +0000 ROA not before: Mon 01 Jul 2024 00:58:24 +0000 ROA not after: Mon 30 Jun 2025 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:32:83:01:50:77:8d:76:5b:93:55:0a:ba:11:9f:49:09:eb:4f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jul 1 00:58:24 2024 GMT Not After : Jun 30 01:03:24 2025 GMT Subject: CN=EAF49A73C75915664448C1C21EC29FDC7D25DF10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b0:dc:59:3f:68:38:3c:3b:0e:1e:4b:ce:10: ed:d5:28:4a:2f:85:fd:7e:9d:55:eb:a3:1a:75:a8: 94:47:54:24:a9:06:20:92:bb:7e:90:06:f2:0b:b5: 8e:e0:58:0f:1c:44:16:ca:fe:5d:6e:93:0c:23:bd: 37:f9:40:77:e2:4d:bf:fa:30:43:06:20:f0:b3:1c: 61:d7:dc:67:4f:53:ad:14:9d:d7:56:e2:2e:d8:97: bb:01:4c:d0:7f:36:f7:b6:6d:b1:17:74:02:58:c4: 6e:84:4e:37:5e:c6:55:f2:b0:4c:81:d6:4d:f9:ac: da:09:61:8e:0f:96:c8:4d:aa:9f:07:14:f3:38:bf: 17:ef:d6:df:41:56:e7:67:20:63:e1:be:d3:6a:89: 07:5b:56:5e:c0:62:f2:6c:d3:ec:6a:5f:78:bb:33: 0b:03:45:ef:51:c7:fd:03:1b:64:32:9a:d0:3e:70: 41:91:da:52:77:e4:93:84:9d:f1:68:a5:10:2c:4e: 10:79:b8:28:d4:4f:c4:6d:56:ea:1e:9c:78:74:02: d8:92:d8:9f:6d:86:d9:df:62:ee:d0:69:bd:58:2e: 09:c0:d2:39:bf:dd:95:1d:f0:b7:46:fc:2f:a3:f0: 96:a1:1f:b2:88:29:61:54:f4:b3:30:6f:fd:ff:bd: 00:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F4:9A:73:C7:59:15:66:44:48:C1:C2:1E:C2:9F:DC:7D:25:DF:10 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:8000::/34 Signature Algorithm: sha256WithRSAEncryption 10:22:34:90:98:ee:c1:15:39:bd:1f:60:16:c0:30:b4:bf:23: eb:e5:d0:1b:de:f9:5b:ec:46:14:6c:76:62:23:de:02:c6:b3: 57:07:c9:b9:ed:1b:c8:f5:18:75:ed:59:ce:e2:93:8d:ab:80: 4d:08:15:80:60:e1:e5:b6:3f:61:55:56:d4:fb:e2:fe:79:82: d4:98:4d:46:3e:dc:a8:62:78:59:79:fd:c4:9f:b0:7b:4c:f7: 88:6a:85:5c:1f:68:a1:c7:30:0b:8c:f9:2c:87:72:59:9d:5e: dc:83:15:f9:d8:08:ed:fa:a5:93:7d:6d:9e:bf:14:21:42:c3: 53:12:3c:f6:72:16:5b:06:5e:0b:f1:63:c9:79:7f:ce:fa:82: a8:42:a2:68:0e:cc:c5:28:ae:a9:25:9e:88:ba:bf:66:b5:f9: 2d:77:ab:dd:e3:09:e6:46:6e:30:38:cd:3e:1f:1d:5c:ad:a5: e2:60:52:68:4f:ac:90:c5:d3:bb:21:2f:66:9d:62:46:f8:c4: e7:75:3d:4e:55:ae:35:6e:eb:b7:04:a6:de:b5:dd:de:29:58: c5:6c:99:d1:4d:70:9a:95:46:70:1b:0c:1f:b0:34:1f:07:e8: 4d:00:2c:97:9b:c9:b7:11:03:cf:75:d6:35:13:83:30:63:81: 5d:ee:01:62 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdTKDAVB3jXZbk1UKuhGfSQnrT7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDA3MDEwMDU4MjRaFw0yNTA2MzAwMTAzMjRaMDMxMTAvBgNV BAMTKEVBRjQ5QTczQzc1OTE1NjY0NDQ4QzFDMjFFQzI5RkRDN0QyNURGMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgsNxZP2g4PDsOHkvOEO3VKEov hf1+nVXroxp1qJRHVCSpBiCSu36QBvILtY7gWA8cRBbK/l1ukwwjvTf5QHfiTb/6 MEMGIPCzHGHX3GdPU60UnddW4i7Yl7sBTNB/Nve2bbEXdAJYxG6ETjdexlXysEyB 1k35rNoJYY4PlshNqp8HFPM4vxfv1t9BVudnIGPhvtNqiQdbVl7AYvJs0+xqX3i7 MwsDRe9Rx/0DG2QymtA+cEGR2lJ35JOEnfFopRAsThB5uCjUT8RtVuoenHh0AtiS 2J9thtnfYu7Qab1YLgnA0jm/3ZUd8LdG/C+j8JahH7KIKWFU9LMwb/3/vQB/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6vSac8dZFWZESMHCHsKf3H0l3xAwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AIAwDQYJKoZIhvcNAQELBQADggEBABAiNJCY7sEVOb0fYBbAMLS/I+vl0Bve+Vvs RhRsdmIj3gLGs1cHybntG8j1GHXtWc7ik42rgE0IFYBg4eW2P2FVVtT74v55gtSY TUY+3KhieFl5/cSfsHtM94hqhVwfaKHHMAuM+SyHclmdXtyDFfnYCO36pZN9bZ6/ FCFCw1MSPPZyFlsGXgvxY8l5f876gqhComgOzMUorqklnoi6v2a1+S13q93jCeZG bjA4zT4fHVytpeJgUmhPrJDF07shL2adYkb4xOd1PU5VrjVu67cEpt613d4pWMVs mdFNcJqVRnAbDB+wNB8H6E0ALJebybcRA8911jUTgzBjgV3uAWI= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org