$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa File: 323430323a3630303a3a2f33322d3438203d3e203338353135.roa (raw, json) Hash identifier: ff8501ZPkr7KlYGUXPEp2Ubjto55pXXgmuYMIxAXR0I= Subject key identifier: 02:85:D6:9A:7E:1F:FA:FC:42:84:47:D1:30:A8:08:4E:D8:C5:4D:CB Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 4EBC3543A3CD2A1614529E3E38C2FCCE55B416E1 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa Signing time: Mon 01 Jul 2024 01:03:16 +0000 ROA not before: Mon 01 Jul 2024 00:58:16 +0000 ROA not after: Mon 30 Jun 2025 01:03:16 +0000 asID: 38515 IP address blocks: 2402:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:bc:35:43:a3:cd:2a:16:14:52:9e:3e:38:c2:fc:ce:55:b4:16:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Jul 1 00:58:16 2024 GMT Not After : Jun 30 01:03:16 2025 GMT Subject: CN=0285D69A7E1FFAFC428447D130A8084ED8C54DCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:c0:15:7d:45:94:e6:d6:f9:ed:cf:9b:2c: 19:e6:ab:c7:8a:fc:0d:c9:0f:3b:98:b8:1c:ac:b8: 29:14:6b:2e:18:7b:16:98:7d:f3:79:d7:35:92:3b: 83:13:44:7b:a8:8e:a8:47:0d:e8:3d:31:a1:98:08: 8c:24:8c:9e:24:29:99:90:38:0a:99:04:b3:cb:2e: bd:13:28:0a:43:42:f9:75:06:8b:cb:02:ad:4e:67: 64:3b:f5:d4:37:38:34:13:de:1d:37:2e:4c:08:52: ee:b5:96:fe:0b:85:b6:89:fb:8d:4c:3f:07:4e:86: 3d:b6:3b:6d:bb:4d:be:97:df:17:56:a0:ef:c8:0a: 09:30:99:35:13:d2:b9:b7:0a:86:ef:e7:7b:ad:26: 6a:90:8d:aa:e4:43:27:68:fe:b9:a5:cd:52:73:4d: b3:44:c8:32:96:04:8b:fb:2b:2f:14:c1:02:1c:0a: 36:67:ba:ca:fc:0e:a0:9f:f7:9b:33:b5:ea:65:40: 7f:71:5b:6c:70:89:43:83:27:ac:29:4e:93:5c:67: c6:e4:35:11:77:31:e0:8d:38:77:c6:26:d5:ec:66: af:bf:66:ab:f2:98:2f:7f:f9:3b:38:8e:fb:7f:be: 2a:63:52:ea:9e:16:36:b9:3e:cf:0b:0f:99:3a:04: f6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:85:D6:9A:7E:1F:FA:FC:42:84:47:D1:30:A8:08:4E:D8:C5:4D:CB X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600::/32 Signature Algorithm: sha256WithRSAEncryption 94:66:2e:d6:e2:5d:5e:50:ea:33:88:29:c4:ba:36:27:30:73: 05:b5:43:88:d1:0b:a7:2d:4b:05:d9:f4:1f:a4:fd:25:35:04: d0:ea:e7:82:e9:2b:11:5d:d6:94:88:e6:a3:ea:37:63:09:0d: 8e:1b:5e:59:67:f1:13:3d:ee:de:53:5c:6a:27:23:1b:f1:01: ce:2b:5f:06:cf:da:c0:d6:51:4b:73:49:00:e8:94:9c:31:05: 01:d3:6e:8c:10:22:b5:07:62:0c:fd:f9:3a:5f:50:7d:46:77: 89:7c:45:23:13:17:da:36:78:75:f0:37:21:9e:49:1d:53:e4: 89:f3:4f:b2:71:7a:bb:0a:1e:00:f0:16:bf:a5:dc:bc:b2:dd: fb:ac:f9:34:c0:3a:62:a2:06:9b:52:e0:40:bf:b7:aa:db:28: 4f:88:05:19:7c:7f:5e:67:d2:28:a8:9b:3f:ea:04:e2:e3:52: 32:11:1a:c1:be:4a:9d:2b:c1:34:cf:32:3e:69:d2:78:07:48: 00:81:bb:cc:62:f7:b4:a5:a6:3d:3c:81:13:1f:50:a6:fa:ea: c5:8d:98:8d:7c:0f:4d:89:77:1a:62:b5:a0:11:0d:85:ed:14: 05:58:c2:56:18:89:22:58:e4:47:34:5b:2f:88:82:dd:08:35: 8f:e2:95:20 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUTrw1Q6PNKhYUUp4+OML8zlW0FuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNDA3MDEwMDU4MTZaFw0yNTA2MzAwMTAzMTZaMDMxMTAvBgNV BAMTKDAyODVENjlBN0UxRkZBRkM0Mjg0NDdEMTMwQTgwODRFRDhDNTREQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+bMAVfUWU5tb57c+bLBnmq8eK /A3JDzuYuBysuCkUay4YexaYffN51zWSO4MTRHuojqhHDeg9MaGYCIwkjJ4kKZmQ OAqZBLPLLr0TKApDQvl1BovLAq1OZ2Q79dQ3ODQT3h03LkwIUu61lv4LhbaJ+41M PwdOhj22O227Tb6X3xdWoO/ICgkwmTUT0rm3Cobv53utJmqQjarkQydo/rmlzVJz TbNEyDKWBIv7Ky8UwQIcCjZnusr8DqCf95szteplQH9xW2xwiUODJ6wpTpNcZ8bk NRF3MeCNOHfGJtXsZq+/ZqvymC9/+Ts4jvt/vipjUuqeFja5Ps8LD5k6BPY1AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUAoXWmn4f+vxChEfRMKgITtjFTcswHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmM0YzY0YTktMzUzNy00YmM3LTg2 MTMtOGU5ODE2MjllNGNhLzAvMzIzNDMwMzIzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMzMzgzNTMxMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgYAMA0GCSqGSIb3DQEB CwUAA4IBAQCUZi7W4l1eUOoziCnEujYnMHMFtUOI0QunLUsF2fQfpP0lNQTQ6ueC 6SsRXdaUiOaj6jdjCQ2OG15ZZ/ETPe7eU1xqJyMb8QHOK18Gz9rA1lFLc0kA6JSc MQUB026MECK1B2IM/fk6X1B9RneJfEUjExfaNnh18DchnkkdU+SJ80+ycXq7Ch4A 8Ba/pdy8st37rPk0wDpiogabUuBAv7eq2yhPiAUZfH9eZ9IoqJs/6gTi41IyERrB vkqdK8E0zzI+adJ4B0gAgbvMYve0paY9PIETH1Cm+urFjZiNfA9NiXcaYrWgEQ2F 7RQFWMJWGIkiWORHNFsviILdCDWP4pUg -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org