$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: GivF/TsE49eBNIN/uyR4qtqXb9wCuoY6ebMmKnK3mZE= Subject key identifier: 37:6A:5D:A3:1A:C4:D2:0E:97:A5:8F:C5:97:3C:E1:40:32:D1:87:BC Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 2E54DD95B9880AD5ACA1C00DAC620DE6968A657A Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 05:16:02 +0000 ROA not before: Thu 12 Sep 2024 05:11:02 +0000 ROA not after: Thu 11 Sep 2025 05:16:02 +0000 asID: 63862 IP address blocks: 2401:f980::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:54:dd:95:b9:88:0a:d5:ac:a1:c0:0d:ac:62:0d:e6:96:8a:65:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 05:11:02 2024 GMT Not After : Sep 11 05:16:02 2025 GMT Subject: CN=376A5DA31AC4D20E97A58FC5973CE14032D187BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:21:80:de:a0:47:f9:64:ba:dd:32:df:8b:2c: e2:30:dc:cc:ad:2d:fb:fa:b8:13:04:ab:27:ac:9a: 6c:8c:10:37:e5:47:95:ee:0b:3e:02:45:db:f4:b8: a5:08:11:75:fe:a8:ad:8d:4c:e4:f7:73:e8:f9:c4: 81:b6:92:0b:ea:10:a9:61:3b:f2:a1:bd:3d:c1:33: f4:c7:b0:56:5a:14:ae:17:b9:cc:6e:5c:12:5c:cf: 51:51:81:14:13:a9:fd:c3:d3:74:f9:6f:6c:9e:34: 5d:da:4e:1b:4f:32:c5:2e:c8:a3:19:fb:33:b3:28: c0:19:2d:36:65:54:96:22:a9:4c:84:f7:6e:4f:e0: e6:f4:37:0b:46:c2:80:7e:4a:c3:f6:51:58:7e:8e: 34:d7:38:ae:89:80:aa:01:d2:4a:d6:97:b6:d5:14: c0:29:b3:6f:4e:14:77:f2:f5:95:c9:f3:2c:2b:6d: 79:fc:88:24:fb:21:a4:b6:70:1a:96:44:58:8e:ae: b3:fd:25:2c:11:ce:9f:28:a0:b5:10:2c:13:1c:12: 5d:1c:d2:c1:06:db:d2:3c:d0:d9:cd:b5:c9:1c:d9: cd:02:26:1f:4d:11:1d:6e:ee:3c:38:5b:b9:6c:a2: d7:8c:e8:de:ed:b9:7c:1f:63:33:7a:66:b6:d1:3a: 04:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6A:5D:A3:1A:C4:D2:0E:97:A5:8F:C5:97:3C:E1:40:32:D1:87:BC X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980::/36 Signature Algorithm: sha256WithRSAEncryption 1e:98:6e:eb:e1:c6:ef:3a:77:07:9c:b7:da:cf:b6:ea:fe:99: a1:5a:e5:39:5e:3f:55:a4:1f:7b:a3:6e:49:32:c8:af:83:c1: 1f:97:f9:65:be:ff:63:92:2c:94:22:e7:e4:51:41:af:07:c7: 3a:72:7d:c0:d1:a9:ae:7b:7f:1c:0f:6c:3c:76:f5:d9:53:58: d5:06:e8:e9:1f:ae:20:c2:1a:f3:3b:03:a9:66:9b:cf:f7:11: e0:e5:bc:64:f8:6f:e3:65:6d:23:df:72:65:ee:ad:d2:76:fa: 47:e1:89:bd:68:f8:3f:29:8d:a2:93:1a:f5:aa:c8:c4:ee:2c: 87:d7:a5:6e:2c:24:a2:85:af:da:ba:fd:f7:2c:86:f8:5e:a1: 01:46:2b:02:a1:5c:33:0f:10:54:41:5a:d6:17:48:0e:51:31: 71:38:ae:fe:30:7a:90:f8:f1:28:46:ba:54:e0:41:2b:fc:44: 66:8a:d7:34:8c:2b:3d:bb:5a:92:ad:19:bf:59:14:b4:25:66: 59:36:82:f9:d5:59:11:65:77:0f:9f:8c:b8:be:5f:52:35:78: f3:75:11:9c:3f:f2:8f:9f:bb:93:fa:1f:c8:ef:a0:4d:25:0e: b8:0a:48:d2:07:38:8f:18:ef:00:e2:11:83:f1:29:0c:dd:04: 19:ae:b6:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULlTdlbmICtWsocANrGIN5paKZXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNTExMDJaFw0yNTA5MTEwNTE2MDJaMDMxMTAvBgNV BAMTKDM3NkE1REEzMUFDNEQyMEU5N0E1OEZDNTk3M0NFMTQwMzJEMTg3QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRIYDeoEf5ZLrdMt+LLOIw3Myt Lfv6uBMEqyesmmyMEDflR5XuCz4CRdv0uKUIEXX+qK2NTOT3c+j5xIG2kgvqEKlh O/KhvT3BM/THsFZaFK4XucxuXBJcz1FRgRQTqf3D03T5b2yeNF3aThtPMsUuyKMZ +zOzKMAZLTZlVJYiqUyE925P4Ob0NwtGwoB+SsP2UVh+jjTXOK6JgKoB0krWl7bV FMAps29OFHfy9ZXJ8ywrbXn8iCT7IaS2cBqWRFiOrrP9JSwRzp8ooLUQLBMcEl0c 0sEG29I80NnNtckc2c0CJh9NER1u7jw4W7lsoteM6N7tuXwfYzN6ZrbROgTJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN2pdoxrE0g6XpY/FlzzhQDLRh7wwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkAfmAADANBgkqhkiG 9w0BAQsFAAOCAQEAHphu6+HG7zp3B5y32s+26v6ZoVrlOV4/VaQfe6NuSTLIr4PB H5f5Zb7/Y5IslCLn5FFBrwfHOnJ9wNGprnt/HA9sPHb12VNY1Qbo6R+uIMIa8zsD qWabz/cR4OW8ZPhv42VtI99yZe6t0nb6R+GJvWj4PymNopMa9arIxO4sh9elbiwk ooWv2rr99yyG+F6hAUYrAqFcMw8QVEFa1hdIDlExcTiu/jB6kPjxKEa6VOBBK/xE ZorXNIwrPbtakq0Zv1kUtCVmWTaC+dVZEWV3D5+MuL5fUjV483URnD/yj5+7k/of yO+gTSUOuApI0gc4jxjvAOIRg/EpDN0EGa62QA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:24 2024 by rpki-client on console-ams.rpki-client.org