$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: mYxf6C6pLjXmVFDLfOQlsOJY104hPXXJrDn5WUaMTOY= Subject key identifier: 90:9A:51:3F:5D:EB:7B:38:D6:32:DC:13:BE:3F:D2:58:22:FB:2A:13 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 23725C688CC8083C2CA05575125402DD329D8D02 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 11 Jul 2024 09:00:00 +0000 ROA not before: Thu 11 Jul 2024 08:55:00 +0000 ROA not after: Thu 10 Jul 2025 09:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:72:5c:68:8c:c8:08:3c:2c:a0:55:75:12:54:02:dd:32:9d:8d:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 11 08:55:00 2024 GMT Not After : Jul 10 09:00:00 2025 GMT Subject: CN=909A513F5DEB7B38D632DC13BE3FD25822FB2A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:77:b8:aa:34:95:e1:c2:dc:e0:07:c2:ed: 27:2e:8f:0f:19:77:6b:b9:dd:89:bb:21:0b:e4:90: f6:09:52:74:c8:92:74:e4:d7:34:13:44:6b:ee:a3: 3b:f8:c5:38:36:74:98:ec:f2:88:94:af:a7:b1:3a: fd:4d:5c:c6:d7:7c:b3:b5:c5:cf:30:f9:0a:7f:ba: 1a:4d:9c:f5:90:3b:43:84:3d:89:54:56:8a:8b:6f: a2:a4:b3:a7:10:ac:50:4e:50:33:be:4d:ca:b4:0f: b2:8f:3f:a2:1e:51:54:23:7e:c4:c8:da:c0:ea:3e: 23:20:65:53:c9:27:61:90:e8:3a:09:5f:3e:28:66: 5c:4c:55:30:70:60:48:2f:0b:04:f2:4f:77:df:e4: ba:62:bd:f0:17:ac:9c:73:a4:18:34:e5:34:06:96: b2:6f:2e:c4:9b:aa:8f:f6:19:cb:a8:4b:1c:58:6f: 1a:79:6d:e5:c9:6b:a4:30:4d:8b:05:d9:54:99:5b: 6b:42:ba:49:72:a0:59:30:e9:4b:bc:54:7e:89:b5: f2:2a:cb:be:fe:73:86:1a:79:56:d8:a3:be:60:22: f7:80:06:3e:47:df:7d:f3:72:0b:98:f3:fb:c5:3d: 21:f3:b3:44:f9:e2:5a:ac:3d:80:71:f3:e9:56:3a: b5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9A:51:3F:5D:EB:7B:38:D6:32:DC:13:BE:3F:D2:58:22:FB:2A:13 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00::/48 Signature Algorithm: sha256WithRSAEncryption 22:7f:23:e2:c8:60:f4:0a:0f:9c:50:fa:72:b6:e0:13:5d:d0: 52:4d:6c:65:1b:f1:08:ff:7c:48:08:60:c3:45:8b:45:37:61: d4:ee:02:5d:90:98:25:a2:02:d2:61:c5:53:84:bc:86:44:24: ec:9a:b6:8e:61:86:37:7e:be:b1:50:ad:b7:2b:f2:86:3b:a9: 2c:53:bd:b2:55:48:00:4a:b0:ac:0d:42:28:54:1e:bf:e9:32: 85:3c:ae:bc:7b:96:b4:3d:9e:cf:a2:a7:88:eb:09:1d:e0:00: 2f:a4:8b:68:f7:49:a0:9a:0a:b5:c3:14:d2:7b:3a:98:e9:e0: 67:88:28:a5:8c:aa:e0:be:bd:04:39:17:78:81:3b:94:d5:68: fa:90:ce:24:b1:2b:c4:01:64:bc:f2:0d:12:9e:81:95:59:69: 4c:42:60:d9:e1:e0:18:3c:1e:fe:70:62:81:ff:b6:ff:ed:b9: 36:1b:1e:5c:e3:4e:3c:96:38:6e:23:68:d3:38:e5:f3:94:fb: d5:39:d2:96:f1:ef:e9:76:92:7d:2f:4c:94:39:c0:aa:ba:87: 79:5f:29:01:d9:e4:77:2d:c1:48:21:db:79:7a:f6:d4:30:c3: 5f:7a:d7:fd:70:28:5f:7f:78:ff:a3:08:db:f8:df:59:55:35: 62:f0:11:fe -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUI3JcaIzICDwsoFV1ElQC3TKdjQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MTEwODU1MDBaFw0yNTA3MTAwOTAwMDBaMDMxMTAvBgNV BAMTKDkwOUE1MTNGNURFQjdCMzhENjMyREMxM0JFM0ZEMjU4MjJGQjJBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC79He4qjSV4cLc4AfC7Scujw8Z d2u53Ym7IQvkkPYJUnTIknTk1zQTRGvuozv4xTg2dJjs8oiUr6exOv1NXMbXfLO1 xc8w+Qp/uhpNnPWQO0OEPYlUVoqLb6Kks6cQrFBOUDO+Tcq0D7KPP6IeUVQjfsTI 2sDqPiMgZVPJJ2GQ6DoJXz4oZlxMVTBwYEgvCwTyT3ff5LpivfAXrJxzpBg05TQG lrJvLsSbqo/2GcuoSxxYbxp5beXJa6QwTYsF2VSZW2tCuklyoFkw6Uu8VH6JtfIq y77+c4YaeVbYo75gIveABj5H333zcguY8/vFPSHzs0T54lqsPYBx8+lWOrWxAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkJpRP13rezjWMtwTvj/SWCL7KhMwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAAAwDQYJKoZI hvcNAQELBQADggEBACJ/I+LIYPQKD5xQ+nK24BNd0FJNbGUb8Qj/fEgIYMNFi0U3 YdTuAl2QmCWiAtJhxVOEvIZEJOyato5hhjd+vrFQrbcr8oY7qSxTvbJVSABKsKwN QihUHr/pMoU8rrx7lrQ9ns+ip4jrCR3gAC+ki2j3SaCaCrXDFNJ7Opjp4GeIKKWM quC+vQQ5F3iBO5TVaPqQziSxK8QBZLzyDRKegZVZaUxCYNnh4Bg8Hv5wYoH/tv/t uTYbHlzjTjyWOG4jaNM45fOU+9U50pbx7+l2kn0vTJQ5wKq6h3lfKQHZ5HctwUgh 23l69tQww1961/1wKF9/eP+jCNv431lVNWLwEf4= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org