$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: p33/TuvqAA8fV7Ue2LQPUHbIg64u73SNbvYzc2Y1EQQ= Subject key identifier: 82:D4:81:EB:F2:23:E9:72:2A:6F:C9:5C:D2:B8:F8:63:F1:48:59:F8 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 61EEB91FDB1581F641603D841D16096A71F51B36 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 06:04:54 +0000 ROA not before: Thu 12 Sep 2024 05:59:54 +0000 ROA not after: Thu 11 Sep 2025 06:04:54 +0000 asID: 63862 IP address blocks: 2401:f980:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ee:b9:1f:db:15:81:f6:41:60:3d:84:1d:16:09:6a:71:f5:1b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:59:54 2024 GMT Not After : Sep 11 06:04:54 2025 GMT Subject: CN=82D481EBF223E9722A6FC95CD2B8F863F14859F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cd:f8:cb:6a:74:21:bf:f3:c7:7d:1f:14:d3: a0:92:00:ad:a6:b4:c7:d8:bc:6a:d5:4d:af:c8:de: 61:57:1b:e9:f1:5a:51:57:41:6a:d6:2f:e0:e3:06: 38:4c:f7:ab:91:46:77:2d:8b:1f:d2:38:b8:34:f5: 16:e1:da:72:07:55:aa:15:3f:16:cc:73:42:59:0f: 71:5f:62:84:da:e6:88:5d:c4:d6:09:6d:21:3f:51: dd:d8:64:e9:17:34:96:5c:35:8e:bd:af:f7:e6:e1: fa:31:36:01:30:a5:e4:17:55:c0:e7:3c:bb:a3:4b: 96:b8:2b:1c:b1:39:97:b8:c9:fd:e8:69:04:c6:27: 87:73:7a:dd:73:fb:36:7d:58:7b:37:0d:17:0e:da: ff:03:99:8f:c1:e6:37:11:f5:2e:46:03:88:c2:32: cd:45:d4:22:85:93:9c:e8:d4:37:5b:57:f9:e6:c8: f3:90:31:76:af:ba:38:e3:b0:51:e7:34:aa:1d:b7: 7a:f9:33:30:7f:4d:80:d0:cd:d3:31:d2:35:6e:6a: 8f:52:82:20:66:01:91:32:bb:54:1d:86:5e:76:97: 66:4b:df:cf:fb:f7:24:5c:05:16:36:76:d2:38:e8: 60:95:86:e9:ca:b7:4c:9a:a1:7b:46:74:c6:35:b5: 3a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D4:81:EB:F2:23:E9:72:2A:6F:C9:5C:D2:B8:F8:63:F1:48:59:F8 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a393030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:9000::/36 Signature Algorithm: sha256WithRSAEncryption 73:64:04:36:ff:84:57:fd:77:50:6b:69:9c:46:a5:1b:fb:49: b2:5d:18:a4:0e:2c:e1:17:79:ec:31:d5:fe:b2:bd:e5:f0:f3: 88:6e:c5:1c:40:13:04:cf:fb:e5:63:f0:54:f1:70:71:4d:0d: 54:80:ee:ee:e5:6e:ac:3e:86:2a:67:1a:96:28:9a:39:fc:1e: ed:5e:80:9e:75:37:d4:aa:6a:c0:20:cf:0a:51:49:91:5e:3b: 1b:8c:15:e8:64:f2:da:61:04:60:43:9b:69:1f:90:6b:f9:ed: de:ec:6b:1d:ef:c7:87:82:fb:30:92:fc:95:69:eb:1b:17:09: 2e:68:40:36:08:f8:9f:1a:04:16:2f:ec:cd:24:96:62:7f:34: 73:9c:e0:1b:b4:c2:86:4c:d0:52:bf:a5:2c:91:bf:96:f8:48: f6:6c:9d:d0:53:bd:d7:40:4b:d9:45:3a:62:5f:85:42:38:12: b8:d3:4d:c1:1b:04:09:51:59:07:c5:e6:c4:90:f6:9a:71:f6: 44:0d:7b:8a:ff:b1:6b:52:55:7a:74:81:20:80:4e:35:1f:40: 92:e0:44:45:d6:13:80:96:4e:36:c0:7f:b7:82:b2:c5:6d:c7: fa:ea:0b:25:e4:51:8a:90:ac:79:f7:cb:d7:06:6c:10:5e:18: e9:dc:0a:9e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYe65H9sVgfZBYD2EHRYJanH1GzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTU5NTRaFw0yNTA5MTEwNjA0NTRaMDMxMTAvBgNV BAMTKDgyRDQ4MUVCRjIyM0U5NzIyQTZGQzk1Q0QyQjhGODYzRjE0ODU5RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHzfjLanQhv/PHfR8U06CSAK2m tMfYvGrVTa/I3mFXG+nxWlFXQWrWL+DjBjhM96uRRnctix/SOLg09Rbh2nIHVaoV PxbMc0JZD3FfYoTa5ohdxNYJbSE/Ud3YZOkXNJZcNY69r/fm4foxNgEwpeQXVcDn PLujS5a4KxyxOZe4yf3oaQTGJ4dzet1z+zZ9WHs3DRcO2v8DmY/B5jcR9S5GA4jC Ms1F1CKFk5zo1DdbV/nmyPOQMXavujjjsFHnNKodt3r5MzB/TYDQzdMx0jVuao9S giBmAZEyu1Qdhl52l2ZL38/79yRcBRY2dtI46GCVhunKt0yaoXtGdMY1tTrnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgtSB6/Ij6XIqb8lc0rj4Y/FIWfgwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhMzkzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gJAwDQYJKoZIhvcNAQELBQADggEBAHNkBDb/hFf9d1BraZxGpRv7SbJdGKQOLOEX eewx1f6yveXw84huxRxAEwTP++Vj8FTxcHFNDVSA7u7lbqw+hipnGpYomjn8Hu1e gJ51N9SqasAgzwpRSZFeOxuMFehk8tphBGBDm2kfkGv57d7sax3vx4eC+zCS/JVp 6xsXCS5oQDYI+J8aBBYv7M0klmJ/NHOc4Bu0woZM0FK/pSyRv5b4SPZsndBTvddA S9lFOmJfhUI4ErjTTcEbBAlRWQfF5sSQ9ppx9kQNe4r/sWtSVXp0gSCATjUfQJLg REXWE4CWTjbAf7eCssVtx/rqCyXkUYqQrHn3y9cGbBBeGOncCp4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:24 2024 by rpki-client on console-ams.rpki-client.org