$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: cfT/J/lhheqBrQBqjSeTTXPTwO+0JBUmuo8E1goRdRY= Subject key identifier: 12:06:5E:09:72:8B:53:83:D2:ED:24:81:CD:2F:3E:EC:8B:33:DF:E1 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 0EBF834973BC7F3DC3F871EBFE2EC71047971BC6 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 06:06:17 +0000 ROA not before: Thu 12 Sep 2024 06:01:17 +0000 ROA not after: Thu 11 Sep 2025 06:06:17 +0000 asID: 63862 IP address blocks: 2401:f980:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:bf:83:49:73:bc:7f:3d:c3:f8:71:eb:fe:2e:c7:10:47:97:1b:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 06:01:17 2024 GMT Not After : Sep 11 06:06:17 2025 GMT Subject: CN=12065E09728B5383D2ED2481CD2F3EEC8B33DFE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:77:b6:6d:bf:dd:50:4b:3a:1c:81:50:2f:08: 89:3c:5f:b9:af:19:07:e6:38:8f:90:e9:b7:e8:5d: e5:01:fa:d6:a8:69:e0:b6:a5:46:90:ab:5c:1f:1f: 4b:63:ed:2d:80:d6:cd:e0:7b:1f:3f:6c:79:f9:e4: 88:c6:3a:36:25:1c:d8:99:25:ee:36:dd:25:32:a6: e8:d1:cb:b1:ad:99:3f:6f:9c:e6:9e:e8:76:8d:90: 16:17:91:a9:96:de:f3:88:a4:05:f0:9f:bf:6c:87: 9c:87:15:15:46:bf:d6:60:40:05:78:29:85:2c:30: 83:1a:a3:bb:98:32:39:19:26:bc:cf:4b:44:14:c1: ca:a7:ea:cb:d4:0b:9f:b1:6e:1a:2e:53:7a:41:6c: f3:fc:90:07:6b:0d:83:04:01:8b:a0:f1:38:5e:a0: 55:67:43:bd:50:91:0f:6c:f6:42:89:45:ff:51:1a: 81:74:70:0a:03:b8:0c:3c:51:9f:2a:81:aa:bd:3a: 57:07:bb:2c:ca:fa:89:08:23:49:bd:3d:29:e8:e7: e5:e9:8f:08:7f:41:b2:8b:4e:48:1f:66:86:8e:74: 77:88:53:f9:24:c5:e1:cf:38:9f:b9:77:e0:df:1a: 95:95:d3:75:8b:0d:67:bc:e7:66:1c:30:97:83:3b: 11:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:06:5E:09:72:8B:53:83:D2:ED:24:81:CD:2F:3E:EC:8B:33:DF:E1 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a623030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:b000::/36 Signature Algorithm: sha256WithRSAEncryption a7:bf:52:a0:f1:fb:b4:28:2f:3f:b5:85:1f:a8:c5:74:20:56: 8b:4d:6f:60:88:55:40:49:ff:b1:8a:4d:b6:f5:1b:5a:cc:26: 02:60:5e:2d:4d:6e:af:41:8f:44:07:49:30:2a:1c:79:c8:fa: 52:c7:c7:2a:ed:c1:8e:6e:dd:b6:e9:ab:9c:6b:fe:ca:75:a9: 9d:d4:72:2c:33:0b:a5:e3:96:96:9b:27:6b:c1:83:fa:c7:b9: bb:02:25:ac:87:7c:a8:8a:62:68:fa:77:74:cf:9f:04:b7:81: b5:27:b9:65:d1:16:19:ed:72:15:e4:1c:41:f0:66:ea:6a:ae: ed:a0:38:33:9f:9d:fe:35:90:37:eb:60:6e:c5:97:2b:9e:fd: d8:1d:2a:db:11:0c:7a:c6:b8:85:9f:83:5a:a5:73:52:52:16: 7e:df:41:53:e7:23:4e:44:47:a4:b4:8f:c3:6f:05:6c:7d:fc: 02:e3:f5:7d:8c:1c:6d:56:d5:5a:49:c0:ac:20:c6:3e:18:e2: b3:fa:d5:a1:0c:0f:ed:56:1b:f6:a7:b2:93:40:f3:83:00:0b: e3:fe:97:83:a1:98:ca:f8:db:17:da:7b:d1:a9:88:df:62:bc: d7:d6:f0:13:ad:30:33:40:68:54:21:b6:20:2f:3c:bb:c2:7e: 95:48:02:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDr+DSXO8fz3D+HHr/i7HEEeXG8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNjAxMTdaFw0yNTA5MTEwNjA2MTdaMDMxMTAvBgNV BAMTKDEyMDY1RTA5NzI4QjUzODNEMkVEMjQ4MUNEMkYzRUVDOEIzM0RGRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZd7Ztv91QSzocgVAvCIk8X7mv GQfmOI+Q6bfoXeUB+taoaeC2pUaQq1wfH0tj7S2A1s3gex8/bHn55IjGOjYlHNiZ Je423SUypujRy7GtmT9vnOae6HaNkBYXkamW3vOIpAXwn79sh5yHFRVGv9ZgQAV4 KYUsMIMao7uYMjkZJrzPS0QUwcqn6svUC5+xbhouU3pBbPP8kAdrDYMEAYug8The oFVnQ71QkQ9s9kKJRf9RGoF0cAoDuAw8UZ8qgaq9OlcHuyzK+okII0m9PSno5+Xp jwh/QbKLTkgfZoaOdHeIU/kkxeHPOJ+5d+DfGpWV03WLDWe852YcMJeDOxGpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEgZeCXKLU4PS7SSBzS8+7Isz3+EwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gLAwDQYJKoZIhvcNAQELBQADggEBAKe/UqDx+7QoLz+1hR+oxXQgVotNb2CIVUBJ /7GKTbb1G1rMJgJgXi1Nbq9Bj0QHSTAqHHnI+lLHxyrtwY5u3bbpq5xr/sp1qZ3U ciwzC6XjlpabJ2vBg/rHubsCJayHfKiKYmj6d3TPnwS3gbUnuWXRFhntchXkHEHw Zupqru2gODOfnf41kDfrYG7Flyue/dgdKtsRDHrGuIWfg1qlc1JSFn7fQVPnI05E R6S0j8NvBWx9/ALj9X2MHG1W1VpJwKwgxj4Y4rP61aEMD+1WG/anspNA84MAC+P+ l4OhmMr42xfae9GpiN9ivNfW8BOtMDNAaFQhtiAvPLvCfpVIAog= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org