$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: vtG256SoFMtzg0QTb8Yvz1dXGkwcdDw++JgFcejSFOs= Subject key identifier: 23:02:6B:8D:E6:34:85:76:03:E0:55:06:51:6E:78:92:9D:90:67:43 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 07562D583902BFA05A0B5FD22AE7E26AD44D682D Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:17:51 +0000 ROA not before: Thu 12 Sep 2024 05:12:51 +0000 ROA not after: Thu 11 Sep 2025 05:17:51 +0000 asID: 63862 IP address blocks: 2401:f980:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:56:2d:58:39:02:bf:a0:5a:0b:5f:d2:2a:e7:e2:6a:d4:4d:68:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:12:51 2024 GMT Not After : Sep 11 05:17:51 2025 GMT Subject: CN=23026B8DE634857603E05506516E78929D906743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2c:fc:c0:75:eb:f9:d1:d2:87:9a:a4:70:f3: 2f:c5:90:dd:7f:c6:ba:69:32:4c:ab:e3:01:2a:1a: 08:15:e0:64:ff:6d:db:0c:67:fe:6c:3d:df:9c:f8: 12:94:f4:76:87:ce:e6:0b:23:3f:fe:af:c9:d2:4f: 68:55:9e:db:83:7a:f2:36:76:a4:fb:7e:db:6d:35: 59:81:41:0e:1c:06:25:d5:34:d7:de:a9:d8:59:82: ca:15:8c:53:66:f7:83:27:27:68:d6:1f:b0:29:d8: be:59:60:a3:d0:61:7b:21:07:df:96:bd:1c:28:2e: 74:f8:ca:e2:1e:3e:8b:e9:48:ae:37:54:4c:17:dc: 83:c3:eb:ea:d3:99:d2:d5:c2:34:62:e8:b1:4f:f4: b2:42:ba:2c:89:22:ef:7b:21:f4:84:85:09:e2:bd: 4a:ed:10:43:70:1d:d7:4c:da:b9:a0:94:84:d0:7f: 00:52:ae:33:64:0b:b5:a0:67:f9:c9:f8:ba:3b:38: c6:fb:f5:33:3c:29:5e:a8:28:3a:dc:41:85:a0:71: 48:e1:7a:c1:f3:d5:dc:79:38:6e:07:9d:56:98:7e: 47:34:d9:4c:e9:74:a3:b6:c3:a6:f2:54:58:8d:ed: 1d:57:70:a0:2b:9e:28:a5:78:54:6f:80:bd:1d:11: 4b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:02:6B:8D:E6:34:85:76:03:E0:55:06:51:6E:78:92:9D:90:67:43 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a343030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:4000::/36 Signature Algorithm: sha256WithRSAEncryption 52:62:d7:0a:53:7a:11:28:c8:09:2f:87:f8:a1:4d:eb:c4:c3: b2:72:ae:a0:bf:cb:58:b3:ed:ed:5a:3f:8c:6a:39:2a:9d:2a: c0:b4:8f:57:f2:a0:46:ce:81:6a:d3:ba:14:da:3f:27:83:ad: cb:3d:83:91:d7:72:8e:d3:17:5d:bf:a6:de:a3:2c:74:48:05: ab:ff:35:f7:b5:92:2b:ba:8f:f3:71:54:31:e1:f8:ab:8d:ab: 05:56:7c:53:fa:36:2d:a0:07:9b:f0:b0:a7:e2:f1:ca:6f:70: f9:99:79:15:b1:68:74:4b:fc:66:6d:f1:55:2b:98:66:46:03: ef:04:62:42:83:a3:0c:fc:3a:7a:47:db:81:64:c5:44:bd:d1: 06:84:96:fe:c1:6d:c4:89:6a:fa:99:39:af:eb:a8:96:0d:f4: 0b:94:c4:4c:ef:5c:cf:37:8d:21:f3:ae:07:80:57:7f:55:42: c1:73:e5:91:2a:59:27:df:12:bd:b2:72:1e:2d:ef:63:4f:5c: ca:b4:9c:0e:04:71:05:c5:d5:c7:46:0d:81:7e:0c:29:fa:a5: a5:38:34:b6:c9:86:a4:16:28:f4:bb:bd:2c:cf:db:db:f4:60: 17:98:40:04:42:51:f8:b4:c4:9b:77:4f:d0:3c:b6:f1:4a:53: 69:50:49:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB1YtWDkCv6BaC1/SKufiatRNaC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTEyNTFaFw0yNTA5MTEwNTE3NTFaMDMxMTAvBgNV BAMTKDIzMDI2QjhERTYzNDg1NzYwM0UwNTUwNjUxNkU3ODkyOUQ5MDY3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVLPzAdev50dKHmqRw8y/FkN1/ xrppMkyr4wEqGggV4GT/bdsMZ/5sPd+c+BKU9HaHzuYLIz/+r8nST2hVntuDevI2 dqT7ftttNVmBQQ4cBiXVNNfeqdhZgsoVjFNm94MnJ2jWH7Ap2L5ZYKPQYXshB9+W vRwoLnT4yuIePovpSK43VEwX3IPD6+rTmdLVwjRi6LFP9LJCuiyJIu97IfSEhQni vUrtEENwHddM2rmglITQfwBSrjNkC7WgZ/nJ+Lo7OMb79TM8KV6oKDrcQYWgcUjh esHz1dx5OG4HnVaYfkc02UzpdKO2w6byVFiN7R1XcKArniileFRvgL0dEUulAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIwJrjeY0hXYD4FUGUW54kp2QZ0MwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gEAwDQYJKoZIhvcNAQELBQADggEBAFJi1wpTehEoyAkvh/ihTevEw7JyrqC/y1iz 7e1aP4xqOSqdKsC0j1fyoEbOgWrTuhTaPyeDrcs9g5HXco7TF12/pt6jLHRIBav/ Nfe1kiu6j/NxVDHh+KuNqwVWfFP6Ni2gB5vwsKfi8cpvcPmZeRWxaHRL/GZt8VUr mGZGA+8EYkKDowz8OnpH24FkxUS90QaElv7BbcSJavqZOa/rqJYN9AuUxEzvXM83 jSHzrgeAV39VQsFz5ZEqWSffEr2ych4t72NPXMq0nA4EcQXF1cdGDYF+DCn6paU4 NLbJhqQWKPS7vSzP29v0YBeYQARCUfi0xJt3T9A8tvFKU2lQSWc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:24 2024 by rpki-client on console-ams.rpki-client.org