$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa File: 323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa (raw, json) Hash identifier: Inp7+4GZ1dJPt/n8/t1gev5zUyJchIjGwyDkoQ5QSBE= Subject key identifier: 7E:52:64:0F:92:C6:69:53:2B:4D:E8:5E:9F:2F:44:7D:BF:F4:54:02 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 7FDE4D8153BDD137D48C2BB0B2085D4F8E522C89 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa Signing time: Thu 12 Sep 2024 06:07:03 +0000 ROA not before: Thu 12 Sep 2024 06:02:03 +0000 ROA not after: Thu 11 Sep 2025 06:07:03 +0000 asID: 63862 IP address blocks: 2401:f980:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:de:4d:81:53:bd:d1:37:d4:8c:2b:b0:b2:08:5d:4f:8e:52:2c:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Sep 12 06:02:03 2024 GMT Not After : Sep 11 06:07:03 2025 GMT Subject: CN=7E52640F92C669532B4DE85E9F2F447DBFF45402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8d:17:a3:9c:86:d2:a2:5c:9e:42:db:65:c3: 37:20:7f:14:41:46:01:8f:a0:5f:f7:58:22:5e:09: e6:6e:39:16:07:88:78:a1:e6:ef:57:49:e2:34:02: ea:5a:dc:df:27:4e:39:a2:dc:be:a9:a7:10:7a:fc: 6b:4d:b0:4f:62:f7:ec:3a:ca:97:a6:63:6e:20:01: 11:46:10:14:9b:0b:cd:28:d6:16:b4:45:bc:b6:ec: 49:33:f3:cc:5d:1c:d1:47:fa:b3:1d:64:2d:c8:b6: 44:ca:c3:e5:d2:ae:9f:b9:19:a6:2d:11:b9:65:13: 87:e3:85:b8:57:03:f5:c1:8f:07:90:3e:27:7f:35: 58:21:45:42:a1:46:48:aa:c2:b8:aa:75:d8:18:66: 95:5a:ea:b8:14:5c:35:43:f4:37:9d:fe:e7:b0:8a: 50:92:61:d6:56:ec:fe:a3:5e:fa:ef:b9:93:55:07: 96:2f:28:6f:85:cd:af:74:fc:0f:08:a4:b7:05:31: 21:eb:d4:4c:c9:63:08:49:8c:ad:25:21:c4:d9:b1: de:b8:17:40:3e:e4:7e:b6:e5:63:ca:6d:59:a4:2f: ad:b4:3e:97:98:68:31:d8:09:72:76:6c:2c:c1:26: dd:09:dd:15:38:5c:e1:9e:8d:fa:16:1b:e9:64:b9: b1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:52:64:0F:92:C6:69:53:2B:4D:E8:5E:9F:2F:44:7D:BF:F4:54:02 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a663030303a3a2f33362d3336203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980:f000::/36 Signature Algorithm: sha256WithRSAEncryption 48:62:0f:5c:6c:3c:a1:1e:fd:c2:f3:6e:e5:70:fe:05:3f:f1: 3d:ba:6e:b4:7e:ba:07:9d:84:47:d8:e2:ac:0d:a4:40:0c:51: 8a:d5:c4:54:e8:f4:6c:90:78:34:59:7e:90:a9:87:ff:74:2b: ee:af:0e:8e:89:ea:f3:f4:71:be:a4:50:ec:1f:28:03:f4:8c: f4:14:c7:74:ca:0d:e3:f7:3b:76:06:bc:90:9a:de:2e:32:26: cf:0c:1e:22:bc:c3:01:54:20:82:b9:17:ac:d4:ca:00:8a:9f: 16:f1:1c:87:d9:28:24:26:7b:e7:1f:c3:13:ca:2e:d1:d6:57: 68:64:71:5c:7f:dc:22:2a:3a:ac:3f:68:52:97:94:bb:fc:d8: c2:08:e2:eb:7a:8d:17:c6:eb:52:e4:d0:f6:8d:75:fd:54:e6: eb:a4:76:db:6e:b3:48:e0:49:69:cb:56:39:82:be:63:aa:c0: e0:8c:0d:98:98:78:7e:35:3a:8e:87:0b:7b:73:7d:8d:9f:1e: af:0c:dc:e4:60:f9:df:ae:1b:3f:14:73:69:34:9d:df:93:93: 2b:ab:62:d4:2c:9a:3d:d7:b2:e6:2f:77:35:c6:cc:d2:d0:e5: 6c:95:fa:fb:42:0a:51:6f:82:df:cc:c7:40:33:34:da:28:0a: e4:2f:c4:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf95NgVO90TfUjCuwsghdT45SLIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA5MTIwNjAyMDNaFw0yNTA5MTEwNjA3MDNaMDMxMTAvBgNV BAMTKDdFNTI2NDBGOTJDNjY5NTMyQjRERTg1RTlGMkY0NDdEQkZGNDU0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJjRejnIbSolyeQttlwzcgfxRB RgGPoF/3WCJeCeZuORYHiHih5u9XSeI0Aupa3N8nTjmi3L6ppxB6/GtNsE9i9+w6 ypemY24gARFGEBSbC80o1ha0Rby27Ekz88xdHNFH+rMdZC3ItkTKw+XSrp+5GaYt EbllE4fjhbhXA/XBjweQPid/NVghRUKhRkiqwriqddgYZpVa6rgUXDVD9Ded/uew ilCSYdZW7P6jXvrvuZNVB5YvKG+Fza90/A8IpLcFMSHr1EzJYwhJjK0lIcTZsd64 F0A+5H625WPKbVmkL620PpeYaDHYCXJ2bCzBJt0J3RU4XOGejfoWG+lkubGpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUflJkD5LGaVMrTeheny9Efb/0VAIwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhNjYzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNjMzMzgzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAH5 gPAwDQYJKoZIhvcNAQELBQADggEBAEhiD1xsPKEe/cLzbuVw/gU/8T26brR+uged hEfY4qwNpEAMUYrVxFTo9GyQeDRZfpCph/90K+6vDo6J6vP0cb6kUOwfKAP0jPQU x3TKDeP3O3YGvJCa3i4yJs8MHiK8wwFUIIK5F6zUygCKnxbxHIfZKCQme+cfwxPK LtHWV2hkcVx/3CIqOqw/aFKXlLv82MII4ut6jRfG61Lk0PaNdf1U5uukdttus0jg SWnLVjmCvmOqwOCMDZiYeH41Oo6HC3tzfY2fHq8M3ORg+d+uGz8Uc2k0nd+Tkyur YtQsmj3XsuYvdzXGzNLQ5WyV+vtCClFvgt/Mx0AzNNooCuQvxEw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org