$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: XbSyKzezilK98U6GXiO7ROlNfbhKCJ4w8a5pnIy9G4I= Subject key identifier: DC:4B:3E:1D:E2:7D:F4:CF:FE:CC:63:36:3C:09:8B:56:6F:0B:96:FC Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 342CCD542C3925B335AEE8C6C3DEFCC3D032B486 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 06:06:53 +0000 ROA not before: Thu 12 Sep 2024 06:01:53 +0000 ROA not after: Thu 11 Sep 2025 06:06:53 +0000 asID: 63862 IP address blocks: 2401:f980:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2c:cd:54:2c:39:25:b3:35:ae:e8:c6:c3:de:fc:c3:d0:32:b4:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 06:01:53 2024 GMT Not After : Sep 11 06:06:53 2025 GMT Subject: CN=DC4B3E1DE27DF4CFFECC63363C098B566F0B96FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b7:64:66:26:8e:70:77:16:e7:3a:e5:7f:4a: 4e:75:ec:f8:ea:cc:96:31:24:c4:11:08:48:54:9e: 8a:05:a6:21:c3:5d:bf:94:37:b7:0d:09:ac:07:a6: d9:e6:26:b3:bb:5e:e7:c6:a7:5a:36:27:e6:d2:7b: 6a:d1:3f:36:b0:29:6a:be:18:93:6a:f1:df:96:74: 37:84:f7:9b:b6:0e:b5:1c:7c:3c:7c:e8:ab:c9:07: bd:e8:26:2a:67:99:5f:72:69:53:82:ca:60:58:72: e2:b6:b0:e7:bf:69:04:12:6f:7c:d3:5b:85:8f:96: 36:5c:c8:b5:04:27:78:e1:71:22:78:f3:cd:77:47: 5d:78:fd:a6:7b:0c:f7:9a:9e:59:8a:87:68:b8:bc: a4:0b:9d:86:5a:de:c3:52:85:de:ab:f3:44:16:45: b1:87:a6:b9:ca:b4:60:f6:f6:84:da:3f:4a:4e:c2: a3:8b:dd:22:0f:3b:db:e7:0d:9d:ce:90:26:f4:6c: de:74:69:c3:92:e7:13:06:97:51:d2:65:e3:b3:f6: 86:b3:a0:aa:5f:a2:8e:9d:cc:43:81:53:29:7a:65: 7b:93:2c:7d:c9:b8:18:75:10:6d:7d:b8:4e:03:da: 33:e1:ec:60:e4:f9:60:f8:e5:ef:2a:05:61:86:42: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4B:3E:1D:E2:7D:F4:CF:FE:CC:63:36:3C:09:8B:56:6F:0B:96:FC X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a653030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:e000::/36 Signature Algorithm: sha256WithRSAEncryption 04:8e:09:f0:42:ea:e0:cb:09:54:03:8c:a2:31:2a:71:4d:12: 86:0d:78:4f:eb:d0:79:84:dc:43:16:1e:ec:a7:40:7d:53:77: f0:23:e3:d0:17:70:e3:2b:03:d6:a0:60:80:e8:10:93:0a:13: 0e:01:df:27:aa:98:5d:84:f9:84:ac:56:36:49:0b:44:df:6a: f1:e3:1a:86:ab:be:d7:5e:72:64:39:13:2c:73:a1:01:0a:ea: ec:e1:0b:97:f3:ab:3e:5a:68:2c:a5:86:90:04:9a:ea:e2:6a: a4:ff:d0:c1:35:b4:06:58:fe:86:dc:43:b1:1f:de:75:52:4b: f9:0d:ea:75:35:24:19:3f:5f:21:6d:84:b3:4c:50:3f:ca:71: e9:bd:b0:cc:0a:d1:f0:93:81:79:d1:c9:5e:bc:08:53:a3:28: 72:5c:69:07:f4:53:db:d4:bf:62:94:80:51:32:77:c6:4a:c0: 33:c7:10:0b:64:c3:0e:e6:83:ca:09:c5:4d:ea:65:3a:5a:13: fe:40:23:6d:d1:27:78:a1:74:e6:74:2d:f8:42:fc:2b:b2:78: b4:de:3b:6f:89:8f:03:81:1a:f7:3a:2b:cf:bf:c2:95:84:95: 39:cc:92:43:1a:15:d7:75:89:ba:a7:e9:67:23:65:1e:ce:7d: 8b:a7:78:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNCzNVCw5JbM1rujGw978w9AytIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNjAxNTNaFw0yNTA5MTEwNjA2NTNaMDMxMTAvBgNV BAMTKERDNEIzRTFERTI3REY0Q0ZGRUNDNjMzNjNDMDk4QjU2NkYwQjk2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGt2RmJo5wdxbnOuV/Sk517Pjq zJYxJMQRCEhUnooFpiHDXb+UN7cNCawHptnmJrO7XufGp1o2J+bSe2rRPzawKWq+ GJNq8d+WdDeE95u2DrUcfDx86KvJB73oJipnmV9yaVOCymBYcuK2sOe/aQQSb3zT W4WPljZcyLUEJ3jhcSJ48813R114/aZ7DPeanlmKh2i4vKQLnYZa3sNShd6r80QW RbGHprnKtGD29oTaP0pOwqOL3SIPO9vnDZ3OkCb0bN50acOS5xMGl1HSZeOz9oaz oKpfoo6dzEOBUyl6ZXuTLH3JuBh1EG19uE4D2jPh7GDk+WD45e8qBWGGQrYVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3Es+HeJ99M/+zGM2PAmLVm8LlvwwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjUzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gOAwDQYJKoZIhvcNAQELBQADggEBAASOCfBC6uDLCVQDjKIxKnFNEoYNeE/r0HmE 3EMWHuynQH1Td/Aj49AXcOMrA9agYIDoEJMKEw4B3yeqmF2E+YSsVjZJC0TfavHj GoarvtdecmQ5EyxzoQEK6uzhC5fzqz5aaCylhpAEmuriaqT/0ME1tAZY/obcQ7Ef 3nVSS/kN6nU1JBk/XyFthLNMUD/Kcem9sMwK0fCTgXnRyV68CFOjKHJcaQf0U9vU v2KUgFEyd8ZKwDPHEAtkww7mg8oJxU3qZTpaE/5AI23RJ3ihdOZ0LfhC/CuyeLTe O2+JjwOBGvc6K8+/wpWElTnMkkMaFdd1ibqn6WcjZR7OfYuneKU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org