$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a353030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a353030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: r5+VPFvOJpFF7HHN8bAQDPdplLOwlHXuH2ibtLZ7or0= Subject key identifier: 86:19:10:53:A1:3E:A3:5F:99:90:AE:6F:14:87:7B:1B:87:F4:B2:77 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 62FCE1730BB6365F1BA1DD527108E9F95E3E7AA6 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a353030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:18:07 +0000 ROA not before: Thu 12 Sep 2024 05:13:07 +0000 ROA not after: Thu 11 Sep 2025 05:18:07 +0000 asID: 63862 IP address blocks: 2401:f980:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fc:e1:73:0b:b6:36:5f:1b:a1:dd:52:71:08:e9:f9:5e:3e:7a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:13:07 2024 GMT Not After : Sep 11 05:18:07 2025 GMT Subject: CN=86191053A13EA35F9990AE6F14877B1B87F4B277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:34:65:8d:0e:a1:a6:39:d3:cc:4a:37:70: 9e:ea:d0:6b:84:af:d6:0b:ed:c0:ce:14:37:a1:8d: d8:4c:85:b0:6c:50:c6:ce:38:e0:bd:73:6e:27:71: e9:99:23:bc:84:5c:e2:a0:91:17:7d:cc:d8:e1:de: 04:7d:1c:b6:f1:e0:52:42:be:e4:4c:9c:4b:a0:a8: 52:61:67:34:3b:c8:cd:7d:df:4c:05:b3:3f:db:d9: 2a:a5:4c:1d:95:57:0a:7c:4b:31:4a:6e:6e:c3:0d: 2b:45:56:34:e8:a9:40:11:c3:d8:ee:1c:ae:a2:1c: e6:08:18:f6:b2:e5:06:99:c2:3e:d1:04:16:3f:9c: aa:b7:77:58:61:ad:3a:9d:db:f2:b0:e7:41:f5:83: dc:97:84:33:e1:fa:e9:a8:63:df:d0:ed:68:e4:81: 60:cf:30:a3:cd:92:36:3e:4e:57:d1:b1:2e:8b:e1: 36:4f:ae:ea:27:6c:b3:7c:53:99:a7:d0:26:6e:b2: 03:82:67:f4:18:86:1a:3f:58:f2:7b:14:18:db:4d: 19:ee:a4:ac:34:0b:17:90:26:b2:c7:b3:d3:e8:36: 51:2e:cb:6d:71:0a:18:e8:4a:6a:a6:f0:8b:68:7b: 21:3f:74:20:a7:ff:71:62:d1:3c:05:00:37:7c:75: 9c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:19:10:53:A1:3E:A3:5F:99:90:AE:6F:14:87:7B:1B:87:F4:B2:77 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a353030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:5000::/36 Signature Algorithm: sha256WithRSAEncryption 05:cb:9b:f2:22:8e:05:5c:57:fa:e6:a0:98:66:f0:a8:d4:6d: e2:43:21:e6:eb:78:82:11:a6:38:6f:0d:f6:e4:1e:86:a1:f8: 27:36:ed:92:e0:1e:a2:77:97:92:11:58:50:b4:c5:bd:b7:33: 8c:8d:8d:75:6a:d3:03:51:61:5c:a1:91:24:7e:4a:76:48:ed: 41:fe:45:c8:87:74:12:a2:ee:68:1d:b5:79:63:ac:23:f5:12: de:45:96:cd:c4:b7:08:51:95:cb:52:1d:b8:47:89:f3:93:a5: 8f:e5:b5:bb:8c:68:4f:1b:d3:4f:d1:39:0b:81:83:05:b1:2e: 32:b9:91:e5:21:8f:87:3b:9d:38:56:94:3c:d3:30:fe:16:6c: d0:80:ec:8b:04:51:df:6b:9e:e4:0a:d7:00:c9:b9:fa:8a:25: 7a:97:ba:1e:7a:5e:27:b5:20:b1:19:50:a5:c5:a2:a4:33:f2: 33:61:8f:50:c2:2a:7a:c1:19:d8:ed:2f:e4:cd:0e:64:ed:2c: 41:33:15:67:93:42:9a:dc:8f:2a:71:80:3e:98:32:18:da:cb: 69:72:66:ab:10:30:d0:44:19:f0:f6:3a:83:a4:24:a0:7f:1d: 9b:c2:1d:e3:d4:39:f9:23:02:01:2a:5b:c7:e3:6e:11:af:b3: 8b:36:b0:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYvzhcwu2Nl8bod1ScQjp+V4+eqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTEzMDdaFw0yNTA5MTEwNTE4MDdaMDMxMTAvBgNV BAMTKDg2MTkxMDUzQTEzRUEzNUY5OTkwQUU2RjE0ODc3QjFCODdGNEIyNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hTRljQ6hpjnTzEo3cJ7q0GuE r9YL7cDOFDehjdhMhbBsUMbOOOC9c24ncemZI7yEXOKgkRd9zNjh3gR9HLbx4FJC vuRMnEugqFJhZzQ7yM1930wFsz/b2SqlTB2VVwp8SzFKbm7DDStFVjToqUARw9ju HK6iHOYIGPay5QaZwj7RBBY/nKq3d1hhrTqd2/Kw50H1g9yXhDPh+umoY9/Q7Wjk gWDPMKPNkjY+TlfRsS6L4TZPruonbLN8U5mn0CZusgOCZ/QYhho/WPJ7FBjbTRnu pKw0CxeQJrLHs9PoNlEuy21xChjoSmqm8ItoeyE/dCCn/3Fi0TwFADd8dZwbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhhkQU6E+o1+ZkK5vFId7G4f0sncwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzUzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gFAwDQYJKoZIhvcNAQELBQADggEBAAXLm/IijgVcV/rmoJhm8KjUbeJDIebreIIR pjhvDfbkHoah+Cc27ZLgHqJ3l5IRWFC0xb23M4yNjXVq0wNRYVyhkSR+SnZI7UH+ RciHdBKi7mgdtXljrCP1Et5Fls3EtwhRlctSHbhHifOTpY/ltbuMaE8b00/ROQuB gwWxLjK5keUhj4c7nThWlDzTMP4WbNCA7IsEUd9rnuQK1wDJufqKJXqXuh56Xie1 ILEZUKXFoqQz8jNhj1DCKnrBGdjtL+TNDmTtLEEzFWeTQprcjypxgD6YMhjay2ly ZqsQMNBEGfD2OoOkJKB/HZvCHePUOfkjAgEqW8fjbhGvs4s2sDw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org