$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: GRccJGdt2VqiwtdMT74/xSQWVG633aHz9pNCU8BJneE= Subject key identifier: DD:F0:1B:56:F6:32:98:4C:63:68:D8:8C:B7:40:22:9A:E6:06:E9:EB Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 34BB707CB489BDA01B791F1D0D190F70104C9767 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:17:08 +0000 ROA not before: Thu 12 Sep 2024 05:12:08 +0000 ROA not after: Thu 11 Sep 2025 05:17:08 +0000 asID: 63862 IP address blocks: 2401:f980:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:bb:70:7c:b4:89:bd:a0:1b:79:1f:1d:0d:19:0f:70:10:4c:97:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:12:08 2024 GMT Not After : Sep 11 05:17:08 2025 GMT Subject: CN=DDF01B56F632984C6368D88CB740229AE606E9EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:9e:ff:99:8b:31:d0:14:6c:93:07:4e:8f: 95:a9:34:9b:2d:d2:dc:e1:7b:bb:c7:85:4a:75:66: d5:f5:b5:81:4c:a2:89:61:30:51:50:4c:9a:77:27: cf:a9:99:3b:b4:44:7f:ab:47:26:09:24:97:fd:21: 82:e8:1a:70:73:bc:e1:32:61:73:f2:12:7f:ef:41: c9:f6:e8:06:63:92:38:ee:3f:1a:5b:c1:9d:7f:f1: 31:d0:15:5e:57:8d:8e:77:27:b1:dd:c7:b2:23:21: 22:43:5d:e5:b4:4b:07:f7:8b:56:01:8e:b2:60:dd: 74:b7:17:7b:fd:8a:51:7b:df:9d:31:40:e4:63:58: c5:79:94:23:1c:70:63:20:49:cc:7e:30:a3:69:35: 0e:a9:3d:a6:5d:a6:82:a2:b7:76:22:8e:3a:4f:d8: 2b:51:5d:05:ab:a0:6f:60:db:78:27:d5:da:d2:48: 5b:7b:4d:63:f8:5c:28:26:0d:42:82:ab:c5:1c:8f: ed:16:2f:90:8f:2a:39:fa:5a:9d:5f:1b:73:32:03: df:96:a1:97:c1:6b:8e:fd:9c:ab:36:84:fd:71:2f: 02:3a:1d:24:4b:e7:08:b3:36:03:b6:69:af:e0:ff: 9f:08:e3:bc:8e:bb:e5:fc:00:19:05:7a:b0:6b:ab: 48:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F0:1B:56:F6:32:98:4C:63:68:D8:8C:B7:40:22:9A:E6:06:E9:EB X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a323030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:2000::/36 Signature Algorithm: sha256WithRSAEncryption 03:23:4d:84:12:5e:5f:50:b8:66:28:84:e1:75:99:10:01:98: a3:77:ef:b8:58:8b:f0:b0:b4:ed:f1:04:cf:ed:b6:b1:f6:49: ff:52:8d:37:1b:53:c0:15:fa:19:4c:ee:a4:25:37:ba:05:ee: 9e:f4:13:5c:b2:84:d6:45:d2:b5:81:8a:af:fb:e0:70:d9:4f: d6:a2:bf:b4:54:92:2a:29:3b:9a:4e:af:23:9e:a3:e8:1b:15: 5c:47:1f:0b:b8:a3:d2:87:69:cc:b3:83:8e:67:28:d8:38:73: 3f:1c:88:03:43:73:4b:e3:d8:93:8c:1f:d0:bd:d0:4b:26:55: 8b:68:eb:a3:90:12:3a:b8:0e:c6:da:fa:1c:b7:5e:35:1b:70: 7c:c9:63:d5:e0:d2:3e:f0:9d:eb:32:d0:29:b0:70:70:c2:96: e8:c2:59:bf:31:cd:a6:f0:e4:a0:4b:7b:3e:39:96:71:bf:2a: db:eb:ff:13:c6:1b:5a:92:ef:6a:77:28:5e:8c:c0:f0:9f:bf: 7e:ba:4d:c7:cc:9c:2f:57:38:89:eb:c7:15:87:c6:76:89:46: 2e:ea:86:69:a6:c0:72:64:00:6f:6d:3c:9f:f1:0c:11:43:14: 05:61:9d:f7:56:b5:0a:78:88:87:4b:ed:a2:75:ad:cb:12:db: 62:15:a1:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNLtwfLSJvaAbeR8dDRkPcBBMl2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTEyMDhaFw0yNTA5MTEwNTE3MDhaMDMxMTAvBgNV BAMTKERERjAxQjU2RjYzMjk4NEM2MzY4RDg4Q0I3NDAyMjlBRTYwNkU5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy+p7/mYsx0BRskwdOj5WpNJst 0tzhe7vHhUp1ZtX1tYFMoolhMFFQTJp3J8+pmTu0RH+rRyYJJJf9IYLoGnBzvOEy YXPyEn/vQcn26AZjkjjuPxpbwZ1/8THQFV5XjY53J7Hdx7IjISJDXeW0Swf3i1YB jrJg3XS3F3v9ilF7350xQORjWMV5lCMccGMgScx+MKNpNQ6pPaZdpoKit3YijjpP 2CtRXQWroG9g23gn1drSSFt7TWP4XCgmDUKCq8Ucj+0WL5CPKjn6Wp1fG3MyA9+W oZfBa479nKs2hP1xLwI6HSRL5wizNgO2aa/g/58I47yOu+X8ABkFerBrq0i9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3fAbVvYymExjaNiMt0AimuYG6eswHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gCAwDQYJKoZIhvcNAQELBQADggEBAAMjTYQSXl9QuGYohOF1mRABmKN377hYi/Cw tO3xBM/ttrH2Sf9SjTcbU8AV+hlM7qQlN7oF7p70E1yyhNZF0rWBiq/74HDZT9ai v7RUkiopO5pOryOeo+gbFVxHHwu4o9KHacyzg45nKNg4cz8ciANDc0vj2JOMH9C9 0EsmVYto66OQEjq4Dsba+hy3XjUbcHzJY9Xg0j7wnesy0CmwcHDClujCWb8xzabw 5KBLez45lnG/Ktvr/xPGG1qS72p3KF6MwPCfv366TcfMnC9XOInrxxWHxnaJRi7q hmmmwHJkAG9tPJ/xDBFDFAVhnfdWtQp4iIdL7aJ1rcsS22IVoeU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org