$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: DxRHbV9vq06eySWFy+SbfeSlfdJ6CHSZY535/jNssuc= Subject key identifier: 63:99:32:C1:FC:3A:C0:1A:89:3F:3A:83:42:7D:7E:2E:93:0D:88:E3 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 43E3C7E65408D33F1F798E14DF6B42BA33082564 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:19:28 +0000 ROA not before: Thu 12 Sep 2024 05:14:28 +0000 ROA not after: Thu 11 Sep 2025 05:19:28 +0000 asID: 63862 IP address blocks: 2401:f980:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e3:c7:e6:54:08:d3:3f:1f:79:8e:14:df:6b:42:ba:33:08:25:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:14:28 2024 GMT Not After : Sep 11 05:19:28 2025 GMT Subject: CN=639932C1FC3AC01A893F3A83427D7E2E930D88E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8b:46:08:d9:f3:8d:b3:95:cd:98:84:48:c0: 64:b3:0b:dc:9d:72:70:f6:b4:56:09:cb:4a:b2:2d: c6:b7:b1:9c:3b:ee:0b:27:de:d9:a8:30:ff:86:a8: 91:89:f3:95:0d:3d:15:40:61:4f:07:42:b2:cc:b7: be:cc:d5:1f:c4:1a:40:90:4f:fe:97:6a:5b:e1:8e: 9f:d3:a1:8b:e4:aa:1a:66:e8:71:98:4a:b9:53:d7: ce:8a:9f:7e:ed:49:91:2f:cd:60:44:c0:4d:c6:b0: 74:36:11:8e:35:ae:6c:e6:13:e7:d7:31:ff:04:90: 9a:c7:98:86:a9:ad:69:23:24:0b:ff:d9:19:21:70: 61:ac:64:4a:32:66:6d:12:37:6f:07:49:83:7e:68: 48:0a:d7:65:a3:f9:92:ea:21:e8:5b:f5:1b:20:7f: c0:f5:3a:9c:86:e9:fc:a5:20:08:02:c5:7e:6f:de: b3:b3:5a:1d:31:21:26:ec:5c:13:fb:4f:5e:fe:ca: 43:12:3a:d6:a9:e6:36:24:64:89:64:2c:5e:4c:0a: 15:39:0f:b0:ff:f2:0a:76:60:22:b9:ba:ff:39:0f: 84:06:f9:0d:69:e9:51:2a:ab:ee:bb:a4:fc:19:d2: 76:24:26:56:d6:aa:0e:7e:e4:e5:bc:40:8d:ee:f9: 47:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:99:32:C1:FC:3A:C0:1A:89:3F:3A:83:42:7D:7E:2E:93:0D:88:E3 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a373030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:7000::/36 Signature Algorithm: sha256WithRSAEncryption aa:0e:42:55:b2:07:14:df:79:6c:a6:08:54:46:64:49:7b:b2: cb:c2:2a:e5:93:7b:71:5b:56:de:52:fd:1f:58:8e:6e:b5:bf: 17:f6:32:a5:5d:20:30:9c:bd:3d:76:1b:1b:e1:d1:fc:c7:fe: 61:0d:2d:f2:97:60:a3:63:b8:08:a8:a6:62:44:6a:51:6e:9f: 7c:00:66:ca:52:d1:f6:25:f2:3d:e0:3b:42:27:01:9e:86:6b: 34:c3:77:9f:a1:36:de:f9:d3:8a:41:23:02:5d:b2:bd:e3:74: 2a:c2:60:20:ee:68:aa:a1:c1:07:0d:c5:e3:c7:a6:01:87:71: c2:0f:79:aa:06:74:e7:9d:01:3f:e6:1d:98:9a:98:c6:4b:3b: d5:79:ac:d2:9a:37:47:d6:a5:38:10:88:1d:42:f1:43:7e:97: a2:29:28:02:4e:85:15:51:e4:57:a6:f3:5c:85:21:1e:21:11: bc:b4:76:70:41:d1:d9:82:21:81:58:18:05:3e:3f:f6:f4:e7: 1f:af:f1:c1:6f:65:f8:11:02:31:45:63:5e:4b:a7:e3:23:dc: 83:66:e4:51:88:36:32:2f:72:e1:dd:b3:ff:71:58:a0:e5:ee: 03:6f:3b:77:62:25:54:77:52:77:30:c7:6e:0e:99:d7:1c:54: 21:8a:32:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ+PH5lQI0z8feY4U32tCujMIJWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTE0MjhaFw0yNTA5MTEwNTE5MjhaMDMxMTAvBgNV BAMTKDYzOTkzMkMxRkMzQUMwMUE4OTNGM0E4MzQyN0Q3RTJFOTMwRDg4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwi0YI2fONs5XNmIRIwGSzC9yd cnD2tFYJy0qyLca3sZw77gsn3tmoMP+GqJGJ85UNPRVAYU8HQrLMt77M1R/EGkCQ T/6Xalvhjp/ToYvkqhpm6HGYSrlT186Kn37tSZEvzWBEwE3GsHQ2EY41rmzmE+fX Mf8EkJrHmIaprWkjJAv/2RkhcGGsZEoyZm0SN28HSYN+aEgK12Wj+ZLqIehb9Rsg f8D1OpyG6fylIAgCxX5v3rOzWh0xISbsXBP7T17+ykMSOtap5jYkZIlkLF5MChU5 D7D/8gp2YCK5uv85D4QG+Q1p6VEqq+67pPwZ0nYkJlbWqg5+5OW8QI3u+UdfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUY5kywfw6wBqJPzqDQn1+LpMNiOMwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gHAwDQYJKoZIhvcNAQELBQADggEBAKoOQlWyBxTfeWymCFRGZEl7ssvCKuWTe3Fb Vt5S/R9Yjm61vxf2MqVdIDCcvT12Gxvh0fzH/mENLfKXYKNjuAiopmJEalFun3wA ZspS0fYl8j3gO0InAZ6GazTDd5+hNt7504pBIwJdsr3jdCrCYCDuaKqhwQcNxePH pgGHccIPeaoGdOedAT/mHZiamMZLO9V5rNKaN0fWpTgQiB1C8UN+l6IpKAJOhRVR 5Fem81yFIR4hEby0dnBB0dmCIYFYGAU+P/b05x+v8cFvZfgRAjFFY15Lp+Mj3INm 5FGINjIvcuHds/9xWKDl7gNvO3diJVR3Uncwx24OmdccVCGKMko= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org