$ rpki-client -vvf repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa File: 323430353a373763303a3a2f33322d3438203d3e20313339343439.roa (raw, json) Hash identifier: gXzARok/5J23t+Trs1wBl4Hn9pwRx9Y3wfHaLXIgo2k= Subject key identifier: F6:B1:BB:2E:D4:11:20:36:F7:3C:61:39:19:F1:64:8C:9C:98:7D:70 Certificate issuer: /CN=D681DB990E904642A480AE9546646329FF5D0162 Certificate serial: 649B70ABB108B99824A43474B04373A28650109D Authority key identifier: D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa Signing time: Thu 11 Jan 2024 08:00:55 +0000 ROA not before: Thu 11 Jan 2024 07:55:55 +0000 ROA not after: Thu 09 Jan 2025 08:00:55 +0000 asID: 139449 IP address blocks: 2405:77c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.crl rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9b:70:ab:b1:08:b9:98:24:a4:34:74:b0:43:73:a2:86:50:10:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D681DB990E904642A480AE9546646329FF5D0162 Validity Not Before: Jan 11 07:55:55 2024 GMT Not After : Jan 9 08:00:55 2025 GMT Subject: CN=F6B1BB2ED4112036F73C613919F1648C9C987D70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:19:4e:90:03:d3:06:47:d6:e7:ee:d1:d6:80: 30:7d:92:a5:e0:75:e5:11:84:db:0d:6b:32:f1:7f: c4:b9:4a:05:d6:e2:87:11:be:30:ff:bc:36:3d:36: c6:4b:f6:9f:59:83:f1:9f:f7:f4:46:99:08:ab:e5: b1:31:5e:40:5e:dd:85:0c:f5:8d:26:11:2c:d7:a8: e2:c1:32:de:3d:14:c4:fd:fe:fe:24:1d:f1:85:af: a6:58:92:e0:99:fe:f3:67:81:be:26:cf:fb:68:60: 04:07:da:4a:90:eb:41:24:70:82:76:9f:f1:dd:05: 95:00:ee:6b:79:9d:9b:a8:7a:36:5a:63:9b:9d:90: b5:3a:0b:95:93:aa:8a:b0:3c:23:40:73:09:ed:e2: 6d:fc:b9:d0:c8:c8:66:50:14:0f:cb:db:18:d8:99: 73:4f:17:c7:dd:5a:91:88:f6:7f:3f:fb:0e:f6:ce: 12:e5:65:4f:a4:b3:ae:c3:56:9a:8a:d9:00:59:7b: a0:08:60:49:50:81:11:af:21:fb:3b:f7:7c:61:25: 52:a5:6b:7f:27:68:04:87:6c:e0:d5:e4:e5:58:ed: 05:a3:f5:a9:8c:25:74:95:74:50:3e:83:6d:3d:96: ce:b1:cc:10:32:3f:bc:05:34:9d:63:a9:f7:6d:73: 02:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B1:BB:2E:D4:11:20:36:F7:3C:61:39:19:F1:64:8C:9C:98:7D:70 X509v3 Authority Key Identifier: keyid:D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 8b:b0:2c:ef:c6:d3:f5:79:8f:cb:c3:d5:a2:dc:34:71:27:8b: 72:fa:92:2b:2e:e2:e2:67:53:06:28:e7:18:3e:96:85:6a:e7: 17:80:f5:72:e2:1f:93:6f:c2:98:e8:e2:f3:97:7b:07:8c:a2: 39:8b:76:9c:1e:36:a1:6d:7b:0c:8e:49:53:c6:7f:4e:ec:f5: e9:11:b3:45:b5:92:bd:8a:79:7e:c7:6e:85:a8:6b:c0:1c:5d: 5e:c4:1f:97:87:fe:41:4d:3c:a0:3a:98:dc:aa:e5:1e:1d:8c: 70:00:03:80:1f:b9:c8:72:4f:e7:7e:37:a1:f1:db:75:62:52: c9:38:c6:64:5a:d1:7c:18:e3:12:49:57:3f:04:34:f9:3d:f3: 4e:72:34:d5:14:81:a1:51:b1:2a:82:3c:9e:e8:b3:d1:97:02: 5b:8e:a6:7e:24:3c:af:3c:2f:e5:5b:b9:34:e3:3e:e4:4b:c8: ae:42:65:16:eb:02:3b:1f:33:b0:44:8e:2c:73:7b:e6:80:a7: fc:3e:68:98:d1:ea:b5:23:2f:72:24:9f:81:47:11:d1:67:eb: a8:12:e6:50:02:7a:e2:70:c4:f7:19:79:a7:bb:91:55:27:7e: 02:f0:0a:54:f5:b0:52:70:80:d6:21:d3:da:bf:ea:e1:48:fd: 1f:5c:42:5a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZJtwq7EIuZgkpDR0sENzooZQEJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MURCOTkwRTkwNDY0MkE0ODBBRTk1NDY2NDYzMjlG RjVEMDE2MjAeFw0yNDAxMTEwNzU1NTVaFw0yNTAxMDkwODAwNTVaMDMxMTAvBgNV BAMTKEY2QjFCQjJFRDQxMTIwMzZGNzNDNjEzOTE5RjE2NDhDOUM5ODdENzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjGU6QA9MGR9bn7tHWgDB9kqXg deURhNsNazLxf8S5SgXW4ocRvjD/vDY9NsZL9p9Zg/Gf9/RGmQir5bExXkBe3YUM 9Y0mESzXqOLBMt49FMT9/v4kHfGFr6ZYkuCZ/vNngb4mz/toYAQH2kqQ60EkcIJ2 n/HdBZUA7mt5nZuoejZaY5udkLU6C5WTqoqwPCNAcwnt4m38udDIyGZQFA/L2xjY mXNPF8fdWpGI9n8/+w72zhLlZU+ks67DVpqK2QBZe6AIYElQgRGvIfs793xhJVKl a38naASHbODV5OVY7QWj9amMJXSVdFA+g209ls6xzBAyP7wFNJ1jqfdtcwIxAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9rG7LtQRIDb3PGE5GfFkjJyYfXAwHwYDVR0j BBgwFoAU1oHbmQ6QRkKkgK6VRmRjKf9dAWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWZiZTA4OC0wZDg0LTQ3ODktYjQwNS0yNWMyZTc2OTM3ZjYvMC9ENjgxREI5OTBF OTA0NjQyQTQ4MEFFOTU0NjY0NjMyOUZGNUQwMTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4MURCOTkwRTkwNDY0MkE0ODBBRTk1NDY2NDYzMjlGRjVE MDE2Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5ZmJlMDg4LTBkODQtNDc4OS1i NDA1LTI1YzJlNzY5MzdmNi8wLzMyMzQzMDM1M2EzNzM3NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM0MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFd8AwDQYJKoZI hvcNAQELBQADggEBAIuwLO/G0/V5j8vD1aLcNHEni3L6kisu4uJnUwYo5xg+loVq 5xeA9XLiH5Nvwpjo4vOXeweMojmLdpweNqFtewyOSVPGf07s9ekRs0W1kr2KeX7H boWoa8AcXV7EH5eH/kFNPKA6mNyq5R4djHAAA4AfuchyT+d+N6Hx23ViUsk4xmRa 0XwY4xJJVz8ENPk9805yNNUUgaFRsSqCPJ7os9GXAluOpn4kPK88L+VbuTTjPuRL yK5CZRbrAjsfM7BEjixze+aAp/w+aJjR6rUjL3Ikn4FHEdFn66gS5lACeuJwxPcZ eae7kVUnfgLwClT1sFJwgNYh09q/6uFI/R9cQlo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org