$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: PlfH7UbvODJdhBqQCeDEBD0cdQGHiJrjYh/m0qQkurg= Subject key identifier: 9C:98:51:D5:EB:B4:E3:EB:6F:DC:C1:96:59:0E:4E:A2:F8:1E:BF:8C Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 7142C3F93A5B5D8BE0FCEFF59476743C0ACE8E86 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:16:43 +0000 ROA not before: Thu 12 Sep 2024 05:11:43 +0000 ROA not after: Thu 11 Sep 2025 05:16:43 +0000 asID: 63862 IP address blocks: 2401:f980:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:42:c3:f9:3a:5b:5d:8b:e0:fc:ef:f5:94:76:74:3c:0a:ce:8e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:11:43 2024 GMT Not After : Sep 11 05:16:43 2025 GMT Subject: CN=9C9851D5EBB4E3EB6FDCC196590E4EA2F81EBF8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:18:25:47:96:7c:e2:f1:86:dc:0b:fd:c4:65: 73:36:42:80:55:42:a6:1d:51:05:62:bd:1b:d1:bb: a9:f5:11:40:3d:59:29:b6:99:00:4c:d5:19:75:ea: 33:a5:5e:60:75:69:ba:4f:f8:6b:84:54:e0:0d:6f: 0b:04:14:c1:dd:55:ee:d6:0f:e7:93:0b:ba:a6:88: a4:45:5f:a3:3e:97:82:8f:fe:91:c4:18:25:42:e9: e1:61:cf:1a:93:c6:45:db:ad:74:49:48:86:22:5f: af:fb:48:9f:cb:62:cb:a8:9e:66:4b:8d:53:83:e8: 1a:88:5a:cf:94:b2:62:b0:45:b2:30:64:64:c2:c6: 4b:77:55:51:ac:2d:ba:16:c2:ac:4e:52:1a:00:63: c6:d1:f6:f6:40:42:c7:90:2d:20:7d:87:5f:b4:5e: 24:3b:96:d1:21:e4:ee:ab:1d:51:33:e0:2f:55:d3: 0e:65:2f:e8:23:4f:1e:b6:92:78:e0:e5:51:7e:da: d7:6a:d5:fc:f8:9f:ab:fb:d6:71:87:df:3b:95:ba: e5:ab:dc:ea:d3:c2:16:07:b0:a0:e2:92:4b:5c:b3: cb:1c:af:0c:df:ec:d4:62:51:47:98:ca:58:31:77: cc:35:46:56:38:08:52:a5:45:a7:55:8d:00:b0:0d: ed:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:98:51:D5:EB:B4:E3:EB:6F:DC:C1:96:59:0E:4E:A2:F8:1E:BF:8C X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a313030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:1000::/36 Signature Algorithm: sha256WithRSAEncryption 41:93:66:c2:db:04:ce:4b:6d:e4:5a:10:27:f3:3f:3f:b9:fb: 52:b2:6d:7b:f9:9d:61:2a:b7:93:2a:9e:e3:65:11:38:38:80: d9:6c:ab:c8:e2:42:3a:89:92:f5:26:91:bb:1f:9e:bd:0a:d3: f1:a8:da:0f:b8:5d:a0:a5:8a:f7:84:b7:e2:63:54:f2:cb:66: 78:b0:a7:72:73:73:70:a0:74:b9:32:ca:9d:f4:3b:72:85:90: 8f:02:55:8e:12:ff:b2:b6:3c:f4:7d:94:ff:bb:a8:16:d1:72: f2:13:85:0c:b1:f6:d0:19:69:e3:3d:bb:f4:bc:7f:2e:d7:bc: 5e:17:31:b2:05:3c:30:4c:3a:bb:ba:6a:5c:c4:d3:47:29:60: 44:a5:e8:a5:64:4b:21:1a:bf:ab:87:49:9d:16:d1:49:db:a8: db:6e:bb:61:5f:c8:6f:4d:cf:f7:32:bb:fe:b0:22:61:d6:0f: 36:3c:05:ff:6f:14:da:df:27:97:41:21:bd:6c:ce:5e:06:6b: 74:93:45:9e:7d:05:03:c1:59:ba:be:38:83:b8:f4:a5:d3:51: a2:f7:4f:8b:fe:87:92:00:c1:56:58:d3:12:21:3a:85:81:c6: e4:30:70:25:88:a9:aa:57:c2:41:f1:a8:c1:98:89:1a:fb:0d: 1b:8d:9c:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcULD+TpbXYvg/O/1lHZ0PArOjoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTExNDNaFw0yNTA5MTEwNTE2NDNaMDMxMTAvBgNV BAMTKDlDOTg1MUQ1RUJCNEUzRUI2RkRDQzE5NjU5MEU0RUEyRjgxRUJGOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYGCVHlnzi8YbcC/3EZXM2QoBV QqYdUQVivRvRu6n1EUA9WSm2mQBM1Rl16jOlXmB1abpP+GuEVOANbwsEFMHdVe7W D+eTC7qmiKRFX6M+l4KP/pHEGCVC6eFhzxqTxkXbrXRJSIYiX6/7SJ/LYsuonmZL jVOD6BqIWs+UsmKwRbIwZGTCxkt3VVGsLboWwqxOUhoAY8bR9vZAQseQLSB9h1+0 XiQ7ltEh5O6rHVEz4C9V0w5lL+gjTx62knjg5VF+2tdq1fz4n6v71nGH3zuVuuWr 3OrTwhYHsKDikktcs8scrwzf7NRiUUeYylgxd8w1RlY4CFKlRadVjQCwDe3pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnJhR1eu04+tv3MGWWQ5Oovgev4wwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gBAwDQYJKoZIhvcNAQELBQADggEBAEGTZsLbBM5LbeRaECfzPz+5+1KybXv5nWEq t5MqnuNlETg4gNlsq8jiQjqJkvUmkbsfnr0K0/Go2g+4XaCliveEt+JjVPLLZniw p3Jzc3CgdLkyyp30O3KFkI8CVY4S/7K2PPR9lP+7qBbRcvIThQyx9tAZaeM9u/S8 fy7XvF4XMbIFPDBMOru6alzE00cpYESl6KVkSyEav6uHSZ0W0UnbqNtuu2FfyG9N z/cyu/6wImHWDzY8Bf9vFNrfJ5dBIb1szl4Ga3STRZ59BQPBWbq+OIO49KXTUaL3 T4v+h5IAwVZY0xIhOoWBxuQwcCWIqapXwkHxqMGYiRr7DRuNnEg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org