$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: rnq9VA9UYxMUHx8T910m/pq5BuKXy74cv5MKvie9m3M= Subject key identifier: 02:2F:64:50:50:8B:25:3E:11:01:D3:85:FD:D8:0B:E0:FC:7C:78:F5 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 2900CD6FCCA7D58F52B8739ED71B0A8EFEACB2E3 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 01 Jul 2024 01:03:24 +0000 ROA not before: Mon 01 Jul 2024 00:58:24 +0000 ROA not after: Mon 30 Jun 2025 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:00:cd:6f:cc:a7:d5:8f:52:b8:73:9e:d7:1b:0a:8e:fe:ac:b2:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jul 1 00:58:24 2024 GMT Not After : Jun 30 01:03:24 2025 GMT Subject: CN=022F6450508B253E1101D385FDD80BE0FC7C78F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b5:a7:f1:f4:d2:65:d3:ac:d9:aa:bf:e9:49: 77:ec:03:c7:4f:23:5f:06:38:15:7b:6e:a9:d6:72: 30:03:04:0e:9d:1e:c0:dc:bc:c3:5f:15:59:e1:b0: c6:96:47:02:8d:f2:9c:cd:90:16:68:ec:30:cb:5d: 06:87:a2:53:38:00:69:67:df:f0:84:e7:01:05:0e: 5a:59:0d:6b:51:61:6c:98:47:31:51:2f:16:07:48: 66:98:d3:43:49:35:e7:b7:e1:e1:f4:50:af:72:96: 98:ce:4b:75:91:5e:47:ce:fe:a8:3f:13:b8:f3:5f: 52:79:39:81:0a:d5:e2:23:4f:d6:80:9e:dc:c8:9f: 24:ed:80:43:81:00:87:b9:40:80:ba:bc:b3:f2:a9: a6:30:bf:87:ba:ae:48:48:e4:bf:aa:83:1f:3f:43: fb:28:94:b4:53:11:e4:21:3f:ea:c9:f6:1e:91:e9: d8:e9:23:94:1d:6c:3d:b5:07:b9:9a:f1:09:79:2c: 46:e8:c5:92:d1:dd:fe:a7:82:3e:69:74:29:97:a1: 89:dd:51:54:1c:01:09:6c:97:43:09:58:23:25:be: 61:2d:9b:b4:b4:8d:5c:b4:a2:93:c4:6a:09:b7:84: 19:e2:7e:c6:a9:85:2b:70:90:57:db:e6:6d:1b:27: 5b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2F:64:50:50:8B:25:3E:11:01:D3:85:FD:D8:0B:E0:FC:7C:78:F5 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:c000::/34 Signature Algorithm: sha256WithRSAEncryption 17:b1:c9:ab:64:ba:41:08:2e:31:ac:a1:19:0f:ac:00:1a:b0: fd:84:47:c5:c3:00:c6:57:f3:56:5e:5d:52:0c:89:6b:fa:fa: 7f:d9:21:43:74:5c:0d:f4:0b:1f:f0:57:e0:d1:12:9b:5d:78: e0:af:14:a5:77:57:13:cc:12:3d:af:73:69:14:1c:2c:7b:42: bc:f5:c5:13:cb:b0:7f:bd:15:38:b3:67:d5:7a:dd:2c:fc:df: 88:9d:cf:ab:25:ea:89:74:b2:81:41:c9:e0:ce:41:4d:da:13: f7:bc:6e:79:07:5d:9c:f0:46:c4:06:16:e4:67:48:87:42:1b: 32:39:2c:99:d3:ec:70:7e:de:6e:46:93:e6:a1:5b:e0:c8:15: 75:23:14:32:96:aa:eb:39:cc:ee:b5:ff:47:de:7c:46:67:f1: 5f:13:7e:45:12:76:f8:b7:72:08:14:e5:d6:bc:1d:90:2c:b8: 92:87:46:d7:13:a2:85:d4:00:ca:84:84:6f:11:bb:c9:97:0d: da:a7:a7:d2:c1:5d:2d:d4:9a:1c:61:97:00:9a:20:8b:0c:f5: 90:5b:29:dd:45:43:4e:86:9e:20:50:57:77:f9:c4:e5:11:0f: 3f:63:eb:c7:98:55:f9:75:55:90:75:06:e2:38:e2:3a:47:87: 29:c4:06:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKQDNb8yn1Y9SuHOe1xsKjv6ssuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDA3MDEwMDU4MjRaFw0yNTA2MzAwMTAzMjRaMDMxMTAvBgNV BAMTKDAyMkY2NDUwNTA4QjI1M0UxMTAxRDM4NUZERDgwQkUwRkM3Qzc4RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCstafx9NJl06zZqr/pSXfsA8dP I18GOBV7bqnWcjADBA6dHsDcvMNfFVnhsMaWRwKN8pzNkBZo7DDLXQaHolM4AGln 3/CE5wEFDlpZDWtRYWyYRzFRLxYHSGaY00NJNee34eH0UK9ylpjOS3WRXkfO/qg/ E7jzX1J5OYEK1eIjT9aAntzInyTtgEOBAIe5QIC6vLPyqaYwv4e6rkhI5L+qgx8/ Q/solLRTEeQhP+rJ9h6R6djpI5QdbD21B7ma8Ql5LEboxZLR3f6ngj5pdCmXoYnd UVQcAQlsl0MJWCMlvmEtm7S0jVy0opPEagm3hBnifsaphStwkFfb5m0bJ1uRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAi9kUFCLJT4RAdOF/dgL4Px8ePUwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AMAwDQYJKoZIhvcNAQELBQADggEBABexyatkukEILjGsoRkPrAAasP2ER8XDAMZX 81ZeXVIMiWv6+n/ZIUN0XA30Cx/wV+DREptdeOCvFKV3VxPMEj2vc2kUHCx7Qrz1 xRPLsH+9FTizZ9V63Sz834idz6sl6ol0soFByeDOQU3aE/e8bnkHXZzwRsQGFuRn SIdCGzI5LJnT7HB+3m5Gk+ahW+DIFXUjFDKWqus5zO61/0fefEZn8V8TfkUSdvi3 cggU5da8HZAsuJKHRtcTooXUAMqEhG8Ru8mXDdqnp9LBXS3UmhxhlwCaIIsM9ZBb Kd1FQ06GniBQV3f5xOURDz9j68eYVfl1VZB1BuI44jpHhynEBmE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org