$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa File: 323430323a616230303a3a2f33322d3332203d3e203234323036.roa (raw, json) Hash identifier: gDE9/OhZHSWK8pSq7uGqk744ZfgEp48VY/AnfNVTHcA= Subject key identifier: B8:B2:D5:05:4A:CD:D6:BF:5A:B8:5C:C6:3C:E2:A3:BB:3D:6D:F5:71 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 2CC9F09D6C0D9C74D5FF5CA02E528D2FEA93C1EC Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa Signing time: Wed 10 Jul 2024 09:00:00 +0000 ROA not before: Wed 10 Jul 2024 08:55:00 +0000 ROA not after: Wed 09 Jul 2025 09:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c9:f0:9d:6c:0d:9c:74:d5:ff:5c:a0:2e:52:8d:2f:ea:93:c1:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 10 08:55:00 2024 GMT Not After : Jul 9 09:00:00 2025 GMT Subject: CN=B8B2D5054ACDD6BF5AB85CC63CE2A3BB3D6DF571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:c0:ad:c7:87:fb:c7:6e:25:e0:e5:c4:b8: 0e:d2:65:84:54:df:2a:07:89:24:7b:37:39:d3:b2: 2e:19:a9:18:92:63:aa:c2:dc:1d:5f:4a:8a:88:be: 3b:0e:31:ea:e0:01:7d:4b:ca:cf:d7:8d:80:89:7d: bf:5b:a9:88:78:18:f4:4c:a7:50:6e:bd:d1:5b:6b: 61:ab:c6:0f:4b:75:61:8e:d7:6f:a7:49:17:a0:d3: bf:af:3b:dd:93:0b:64:f0:40:ca:df:68:a0:10:ad: 4b:5c:20:fa:24:8b:8d:19:b5:31:5e:46:d6:22:5c: c7:93:9c:57:21:c1:90:5d:23:b9:0d:1b:b6:ab:7e: 3b:c4:b5:0f:66:15:2c:53:8b:6a:65:ed:67:c8:9c: e4:67:1b:2b:8f:d8:ac:f9:2c:32:78:a4:1d:8a:cd: 6c:9f:ea:19:8c:87:8d:06:c7:75:f2:c0:8a:03:fa: b5:98:43:d6:81:5f:ce:ff:70:67:e3:74:be:bf:3a: f2:f0:db:57:a0:b4:d7:4f:c3:48:6b:8a:55:fc:62: e4:2c:e8:cf:53:50:8b:83:1e:a5:0a:e4:ac:70:20: e2:10:ff:ff:29:45:e6:48:31:d8:01:f6:aa:c3:47: ce:37:7b:79:67:38:53:5c:59:4c:bd:a6:d6:f0:71: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B2:D5:05:4A:CD:D6:BF:5A:B8:5C:C6:3C:E2:A3:BB:3D:6D:F5:71 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f33322d3332203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00::/32 Signature Algorithm: sha256WithRSAEncryption b3:10:e9:b8:20:fb:ac:57:6a:07:bf:4d:5e:f3:50:8f:9e:00: d4:05:21:c6:de:cd:e9:5c:6c:cd:e6:79:66:b2:29:b4:b3:b5: 24:ca:52:83:85:c1:28:ce:e0:24:3c:ea:28:0b:42:00:8c:82: b5:4d:aa:b8:df:b2:3a:29:c9:63:53:03:98:d9:9d:72:cd:4f: 18:e1:ef:b9:31:e4:28:bd:e4:23:f4:91:3b:b4:04:d6:eb:74: 4d:ff:04:a3:0d:fc:2a:48:cf:a0:78:d1:38:b4:1d:f8:0c:da: eb:d6:e1:ff:99:fb:c5:2d:98:4a:7b:a6:c1:3d:f7:b5:ef:3a: d6:66:cb:4b:96:e9:fd:e6:50:7e:9a:38:7a:41:85:ae:7e:1e: 1d:58:72:f3:d7:24:d4:cc:68:bc:2d:96:e4:89:67:ce:b7:31: 0b:81:d6:b2:fd:b0:0c:3a:c9:5c:ed:72:2f:58:b2:c2:4d:d6: 7e:a1:22:17:21:37:b6:73:20:3b:16:18:1c:60:ef:b8:a4:aa: 03:a7:8a:eb:f2:7a:a4:2d:6c:56:f1:d3:2f:c1:d4:7e:21:60: f4:f4:cd:a3:76:b7:0b:77:36:41:05:44:c2:af:33:0a:ff:ba: 3d:6e:00:59:f0:f1:0c:bd:2a:9c:51:35:f7:70:f7:2a:e6:0e: c9:97:5c:4b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULMnwnWwNnHTV/1ygLlKNL+qTwewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MTAwODU1MDBaFw0yNTA3MDkwOTAwMDBaMDMxMTAvBgNV BAMTKEI4QjJENTA1NEFDREQ2QkY1QUI4NUNDNjNDRTJBM0JCM0Q2REY1NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UcCtx4f7x24l4OXEuA7SZYRU 3yoHiSR7NznTsi4ZqRiSY6rC3B1fSoqIvjsOMergAX1Lys/XjYCJfb9bqYh4GPRM p1BuvdFba2Grxg9LdWGO12+nSReg07+vO92TC2TwQMrfaKAQrUtcIPoki40ZtTFe RtYiXMeTnFchwZBdI7kNG7arfjvEtQ9mFSxTi2pl7WfInORnGyuP2Kz5LDJ4pB2K zWyf6hmMh40Gx3XywIoD+rWYQ9aBX87/cGfjdL6/OvLw21egtNdPw0hrilX8YuQs 6M9TUIuDHqUK5KxwIOIQ//8pReZIMdgB9qrDR843e3lnOFNcWUy9ptbwcZsxAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUuLLVBUrN1r9auFzGPOKjuz1t9XEwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqsAMA0GCSqGSIb3 DQEBCwUAA4IBAQCzEOm4IPusV2oHv01e81CPngDUBSHG3s3pXGzN5nlmsim0s7Uk ylKDhcEozuAkPOooC0IAjIK1Taq437I6KcljUwOY2Z1yzU8Y4e+5MeQoveQj9JE7 tATW63RN/wSjDfwqSM+geNE4tB34DNrr1uH/mfvFLZhKe6bBPfe17zrWZstLlun9 5lB+mjh6QYWufh4dWHLz1yTUzGi8LZbkiWfOtzELgday/bAMOslc7XIvWLLCTdZ+ oSIXITe2cyA7FhgcYO+4pKoDp4rr8nqkLWxW8dMvwdR+IWD09M2jdrcLdzZBBUTC rzMK/7o9bgBZ8PEMvSqcUTX3cPcq5g7Jl1xL -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org