$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa File: 323430313a663938303a3a2f33322d3332203d3e203633383632.roa (raw, json) Hash identifier: AN3nTzuauT9LpBPYQFbG8pD3kbKaCbtYNqPfEG4RIE8= Subject key identifier: B4:C4:DB:7E:F4:60:34:F2:7C:27:28:63:4B:0A:09:4B:88:01:1C:57 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 397B6BECBAC61AF7D7C6BAE90A75057CCA878D70 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa Signing time: Mon 01 Jul 2024 01:06:08 +0000 ROA not before: Mon 01 Jul 2024 01:01:08 +0000 ROA not after: Mon 30 Jun 2025 01:06:08 +0000 asID: 63862 IP address blocks: 2401:f980::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7b:6b:ec:ba:c6:1a:f7:d7:c6:ba:e9:0a:75:05:7c:ca:87:8d:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 1 01:01:08 2024 GMT Not After : Jun 30 01:06:08 2025 GMT Subject: CN=B4C4DB7EF46034F27C2728634B0A094B88011C57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c0:68:63:49:92:12:ac:90:3d:2a:40:e7:2a: c8:28:b4:d6:55:de:bb:fa:bb:8e:e9:da:bf:34:58: 78:45:ea:fe:a9:4f:3f:55:ae:35:6f:c1:03:a5:d7: 2c:3a:29:fb:78:1a:10:3f:ac:62:de:3e:17:26:67: 70:f6:64:01:fd:bb:eb:05:90:c4:a2:ff:8c:e5:6e: fd:07:ad:22:99:b9:76:a1:d0:4b:c6:c9:2b:e7:52: 3d:39:9e:ca:16:e3:05:f2:51:f6:6a:56:7c:da:8b: 08:09:5e:d6:95:aa:ea:89:ae:35:03:d2:dd:1e:c5: cd:66:82:0f:01:01:f2:64:e1:dd:1a:b0:7b:da:19: 9e:fb:aa:a3:20:4c:2d:4d:24:e0:cb:0b:a6:ad:5f: 94:ca:59:4c:dc:34:7d:71:82:6d:f2:e6:76:84:bf: d3:fc:d0:8b:96:03:62:1a:2b:40:ef:d0:6b:91:37: f3:6b:34:51:89:8a:fc:98:ff:85:e6:30:98:51:b0: bd:d6:6a:d9:44:c4:7a:65:10:f2:be:4a:ce:4e:11: 65:cf:a3:28:42:d6:5e:47:e7:cd:a1:ab:c0:fc:a9: 0e:dd:a8:e7:84:af:e6:1a:ed:0e:c2:70:49:8c:9e: 0f:0f:a9:59:cb:88:21:e7:6f:00:1b:99:a4:f8:c7: 61:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C4:DB:7E:F4:60:34:F2:7C:27:28:63:4B:0A:09:4B:88:01:1C:57 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980::/32 Signature Algorithm: sha256WithRSAEncryption 38:0e:5a:94:66:24:f3:64:7c:56:b8:e2:28:9d:07:2f:60:e7: f0:0a:79:34:7c:b9:53:48:29:ba:a8:06:51:de:5d:38:d7:32: bf:52:fc:0d:4d:95:86:d5:50:ba:65:70:3f:23:6c:66:6d:00: 8d:35:c0:72:f8:fc:98:ba:fd:f1:52:9a:78:13:eb:36:0a:a3: ea:30:11:77:a0:25:2a:4d:78:6b:09:c3:2b:a3:66:f9:5c:11: 06:9e:c1:3d:69:ab:cb:6f:e8:91:d3:10:3d:27:d2:65:3e:8b: 3b:f0:a1:29:f8:fd:a4:37:94:e1:47:7f:a2:1c:eb:11:24:85: 28:a2:52:c2:e9:7b:8e:a2:62:25:3e:fa:53:39:04:db:e7:7d: f4:1b:f1:30:b7:2a:35:18:dd:95:14:53:2b:ef:77:9f:be:9d: dc:5e:87:3c:9b:e4:98:05:63:89:0a:f4:53:59:23:f9:0d:e5: 1a:22:5b:2a:67:36:69:62:6f:98:70:9e:04:2a:14:91:c7:e4: 69:c9:3f:2a:f7:7d:bb:a1:f1:aa:76:44:5c:a0:dc:31:2f:51: 4d:fa:8f:34:fd:e4:af:74:06:2f:ee:e2:d1:c4:be:53:3a:ac: 12:10:56:42:76:43:27:8c:a2:a7:ac:f6:0a:f0:5d:07:0e:86: 17:e0:50:ff -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUOXtr7LrGGvfXxrrpCnUFfMqHjXAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA3MDEwMTAxMDhaFw0yNTA2MzAwMTA2MDhaMDMxMTAvBgNV BAMTKEI0QzREQjdFRjQ2MDM0RjI3QzI3Mjg2MzRCMEEwOTRCODgwMTFDNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvwGhjSZISrJA9KkDnKsgotNZV 3rv6u47p2r80WHhF6v6pTz9VrjVvwQOl1yw6Kft4GhA/rGLePhcmZ3D2ZAH9u+sF kMSi/4zlbv0HrSKZuXah0EvGySvnUj05nsoW4wXyUfZqVnzaiwgJXtaVquqJrjUD 0t0exc1mgg8BAfJk4d0asHvaGZ77qqMgTC1NJODLC6atX5TKWUzcNH1xgm3y5naE v9P80IuWA2IaK0Dv0GuRN/NrNFGJivyY/4XmMJhRsL3WatlExHplEPK+Ss5OEWXP oyhC1l5H582hq8D8qQ7dqOeEr+Ya7Q7CcEmMng8PqVnLiCHnbwAbmaT4x2E1AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUtMTbfvRgNPJ8JyhjSwoJS4gBHFcwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAfmAMA0GCSqGSIb3 DQEBCwUAA4IBAQA4DlqUZiTzZHxWuOIonQcvYOfwCnk0fLlTSCm6qAZR3l041zK/ UvwNTZWG1VC6ZXA/I2xmbQCNNcBy+PyYuv3xUpp4E+s2CqPqMBF3oCUqTXhrCcMr o2b5XBEGnsE9aavLb+iR0xA9J9JlPos78KEp+P2kN5ThR3+iHOsRJIUoolLC6XuO omIlPvpTOQTb5330G/Ewtyo1GN2VFFMr73efvp3cXoc8m+SYBWOJCvRTWSP5DeUa IlsqZzZpYm+YcJ4EKhSRx+RpyT8q9327ofGqdkRcoNwxL1FN+o80/eSvdAYv7uLR xL5TOqwSEFZCdkMnjKKnrPYK8F0HDoYX4FD/ -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:24 2024 by rpki-client on console-ams.rpki-client.org