$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63869.roa File: AS63869.roa (raw, json) Hash identifier: wtI90rB2SW2pTo9WbY6Ry4LLl2/3xrhO/+RLaMD38C8= Subject key identifier: E8:F6:4C:24:2E:77:5D:75:A7:4D:40:28:96:45:3A:32:2A:A1:3F:5F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 310E99D097753277E758EC0AC8C2B643DF7B9AE5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63869.roa Signing time: Thu 18 Jul 2024 02:35:36 +0000 ROA not before: Thu 18 Jul 2024 02:30:36 +0000 ROA not after: Thu 17 Jul 2025 02:35:36 +0000 asID: 63869 IP address blocks: 2401:b0a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:0e:99:d0:97:75:32:77:e7:58:ec:0a:c8:c2:b6:43:df:7b:9a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 18 02:30:36 2024 GMT Not After : Jul 17 02:35:36 2025 GMT Subject: CN=E8F64C242E775D75A74D402896453A322AA13F5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:83:8e:b2:69:fe:9b:d4:1d:1b:35:ae:c9:10: 84:aa:3a:83:79:b2:73:f0:40:9b:e8:da:59:e5:cf: b9:1e:6f:8d:7d:26:69:20:e2:53:60:32:74:aa:dd: be:42:40:0f:c1:20:ab:b2:ac:dd:7f:2b:f5:58:d3: 14:94:59:e1:01:76:db:bb:00:0e:07:b2:76:8b:53: 3b:c8:08:cc:18:14:ee:dc:59:ee:7c:3b:64:77:3a: 66:e2:bb:19:7d:26:5e:e5:56:1f:4c:04:3d:39:b1: 7c:6f:97:0b:19:eb:e1:c6:59:f3:ca:a8:fe:08:77: 97:c5:73:f1:ed:97:29:3c:2b:64:18:60:fc:09:bc: 58:f9:7a:84:a0:aa:3d:a5:db:1d:13:2a:8e:44:86: f9:34:af:db:29:04:3d:cb:b8:31:f6:4e:ab:42:25: 18:1d:3d:20:c3:ba:ef:ef:78:ad:4f:78:cf:89:3f: 4f:f0:a7:a0:55:1f:5f:34:69:10:72:f4:7e:fe:61: fe:9c:22:f4:bd:c5:a3:e7:f5:ac:ef:40:6e:7d:65: 27:f1:fc:2c:d6:5a:2e:1e:f6:aa:c6:8a:b7:1b:5a: 96:0c:d3:13:e5:73:b8:d2:c9:f1:91:86:84:bf:5e: f7:0f:76:93:d3:34:05:86:b6:8f:6e:30:b9:04:08: b4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F6:4C:24:2E:77:5D:75:A7:4D:40:28:96:45:3A:32:2A:A1:3F:5F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS63869.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:b0a0::/32 Signature Algorithm: sha256WithRSAEncryption 35:29:3b:3e:28:00:00:ec:b4:30:77:21:52:12:16:1e:cb:65: 35:c3:a7:4e:e2:fa:88:6b:66:52:08:f2:3f:ce:2c:ab:9a:12: af:1a:d0:33:15:1f:94:cc:2d:94:7e:bf:6b:18:b2:a6:94:ec: c1:fd:56:11:ad:b5:62:37:ed:18:f9:5d:95:9b:e0:08:ee:8d: 7f:92:30:c4:d6:a2:b7:5c:e2:6d:0f:2e:1c:e6:14:24:eb:a9: c6:8a:a4:86:9d:66:ab:ad:79:8f:c6:7a:6a:7e:c4:bd:17:61: 74:f0:07:5b:5d:83:64:a5:d0:4f:df:9a:c9:c1:d9:a3:2b:41: 7d:47:23:35:10:04:b9:29:64:e5:10:12:fe:28:88:60:53:67: f0:27:69:9c:65:31:3e:88:e6:63:62:02:68:d4:38:34:07:2b: 90:2d:af:13:cf:74:3c:6c:07:e3:50:7e:04:7e:76:37:de:7a: aa:9b:34:99:6f:24:c6:5a:45:17:39:02:2a:76:8f:6e:43:e8: db:28:4d:74:bf:84:84:9a:28:4a:57:21:3a:6e:99:fd:f3:94: 2f:17:d8:23:4d:51:4e:aa:96:26:10:d9:6b:9e:5c:7a:1d:3a: 93:27:7d:76:b8:92:cb:cc:76:17:32:58:7c:9b:f9:ca:02:c8: 42:97:18:6f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMQ6Z0Jd1MnfnWOwKyMK2Q997muUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxODAyMzAzNloX DTI1MDcxNzAyMzUzNlowMzExMC8GA1UEAxMoRThGNjRDMjQyRTc3NUQ3NUE3NEQ0 MDI4OTY0NTNBMzIyQUExM0Y1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGDjrJp/pvUHRs1rskQhKo6g3myc/BAm+jaWeXPuR5vjX0maSDiU2AydKrd vkJAD8Egq7Ks3X8r9VjTFJRZ4QF227sADgeydotTO8gIzBgU7txZ7nw7ZHc6ZuK7 GX0mXuVWH0wEPTmxfG+XCxnr4cZZ88qo/gh3l8Vz8e2XKTwrZBhg/Am8WPl6hKCq PaXbHRMqjkSG+TSv2ykEPcu4MfZOq0IlGB09IMO67+94rU94z4k/T/CnoFUfXzRp EHL0fv5h/pwi9L3Fo+f1rO9Abn1lJ/H8LNZaLh72qsaKtxtalgzTE+VzuNLJ8ZGG hL9e9w92k9M0BYa2j24wuQQItGUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTo9kwk LndddadNQCiWRToyKqE/XzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzYzODY5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAGwoDANBgkqhkiG9w0BAQsFAAOCAQEANSk7PigAAOy0MHchUhIW HstlNcOnTuL6iGtmUgjyP84sq5oSrxrQMxUflMwtlH6/axiyppTswf1WEa21Yjft GPldlZvgCO6Nf5IwxNait1zibQ8uHOYUJOupxoqkhp1mq615j8Z6an7EvRdhdPAH W12DZKXQT9+aycHZoytBfUcjNRAEuSlk5RAS/iiIYFNn8CdpnGUxPojmY2ICaNQ4 NAcrkC2vE890PGwH41B+BH52N956qps0mW8kxlpFFzkCKnaPbkPo2yhNdL+EhJoo SlchOm6Z/fOULxfYI01RTqqWJhDZa55ceh06kyd9driSy8x2FzJYfJv5ygLIQpcY bw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org