$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: uR6D5Vottqw3UGMrbavLqGe0RHF7yIauRiSRYUAqjK4= Subject key identifier: 28:35:19:94:D0:DA:9C:AC:52:4D:A1:51:C4:AA:7B:DA:5E:CA:4A:40 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 7800326C7408CA9257E29F9196FB7DF4BB68B158 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 25 Jul 2024 19:00:00 +0000 ROA not before: Thu 25 Jul 2024 18:55:00 +0000 ROA not after: Thu 24 Jul 2025 19:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:00:32:6c:74:08:ca:92:57:e2:9f:91:96:fb:7d:f4:bb:68:b1:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 25 18:55:00 2024 GMT Not After : Jul 24 19:00:00 2025 GMT Subject: CN=28351994D0DA9CAC524DA151C4AA7BDA5ECA4A40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:55:19:24:3d:47:3a:c3:a0:87:60:1c:6f:da: 5a:91:a5:1a:99:8e:0a:6e:d0:32:41:d7:20:9b:ff: c4:e7:6d:c9:09:fb:7e:15:39:ec:86:47:ac:9c:01: d8:55:f6:d0:e2:27:61:44:ca:5f:10:6a:95:ed:5f: 56:a7:e9:2f:8b:fe:82:2f:a0:16:28:84:7d:a1:fc: 97:c5:fb:bf:3e:44:86:f5:65:c3:27:08:9a:af:2a: 7e:40:ee:e1:d4:da:ca:cc:18:6b:ff:db:ae:28:26: fe:40:f0:11:dc:e6:3a:1f:40:8b:42:71:8d:f9:ef: f9:1e:b3:b2:23:6d:55:41:f4:89:8a:cb:25:16:8c: f0:da:ad:59:ce:bb:83:40:b2:77:e1:f2:8d:5e:cb: c1:3e:f2:46:ba:d2:17:3b:3d:a1:49:09:7b:d3:ab: 5d:4f:46:5b:95:6c:51:c8:2d:17:d4:cf:a1:3c:a9: a3:c0:0e:de:71:94:39:83:10:7f:99:0c:52:bd:5f: 41:15:91:be:d0:4e:5c:ae:ef:1c:cc:20:1e:90:7a: 19:c6:40:43:11:f9:59:aa:ab:64:71:80:9c:e9:df: 8e:e8:55:a0:15:9d:6a:40:d0:e0:6e:51:ed:3e:f3: f1:97:be:cd:5e:26:61:2f:fc:11:71:0d:d4:e8:7e: 7d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:35:19:94:D0:DA:9C:AC:52:4D:A1:51:C4:AA:7B:DA:5E:CA:4A:40 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a613a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:a::/48 Signature Algorithm: sha256WithRSAEncryption 3a:f4:6d:2a:02:24:93:2c:d7:f5:7b:a3:9a:79:7f:c9:3a:5e: 16:7a:3e:2b:70:1b:bf:8a:1d:34:ec:de:30:1c:08:a4:5e:7d: 95:51:be:00:8b:a1:eb:42:74:2d:10:60:51:22:47:10:0a:0b: c7:84:34:12:eb:eb:f9:90:4a:88:04:bf:19:4c:ea:30:88:f9: dc:0e:54:b2:77:2d:fb:01:71:58:dc:87:4e:ce:39:1c:0b:a4: 31:83:97:d0:5f:23:a4:02:ad:f8:63:2f:57:2b:be:ab:f7:6c: 41:5a:6d:b3:15:38:91:61:de:01:21:ea:ef:35:97:90:4e:7d: d2:fd:1f:ab:6d:4e:67:38:e6:bd:dd:63:5d:30:2d:4c:8a:c6: 7d:bf:6f:18:4c:d7:69:f0:a5:d4:08:ab:fd:8c:33:ed:35:5e: 28:00:0b:00:8c:40:90:4b:41:6e:0c:b4:53:ae:a6:88:59:87: 7b:51:61:e0:43:a1:4a:0f:88:c8:3c:8f:ef:d4:e9:49:6f:d7: fe:ba:db:1c:23:ea:8a:3d:d6:c5:c0:47:14:1d:92:2f:c7:f2: 16:af:d1:54:4c:c3:b2:e0:8f:d7:fa:e3:01:d6:8f:5f:88:11: 18:b9:62:5f:f6:ec:b1:df:60:f6:db:4b:35:e4:d1:d4:62:93: 09:d0:ff:84 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUeAAybHQIypJX4p+Rlvt99LtosVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MjUxODU1MDBaFw0yNTA3MjQxOTAwMDBaMDMxMTAvBgNV BAMTKDI4MzUxOTk0RDBEQTlDQUM1MjREQTE1MUM0QUE3QkRBNUVDQTRBNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOVRkkPUc6w6CHYBxv2lqRpRqZ jgpu0DJB1yCb/8TnbckJ+34VOeyGR6ycAdhV9tDiJ2FEyl8QapXtX1an6S+L/oIv oBYohH2h/JfF+78+RIb1ZcMnCJqvKn5A7uHU2srMGGv/264oJv5A8BHc5jofQItC cY357/kes7IjbVVB9ImKyyUWjPDarVnOu4NAsnfh8o1ey8E+8ka60hc7PaFJCXvT q11PRluVbFHILRfUz6E8qaPADt5xlDmDEH+ZDFK9X0EVkb7QTlyu7xzMIB6QehnG QEMR+Vmqq2RxgJzp347oVaAVnWpA0OBuUe0+8/GXvs1eJmEv/BFxDdTofn3vAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUKDUZlNDanKxSTaFRxKp72l7KSkAwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMjM0MzIzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKrAAAKMA0G CSqGSIb3DQEBCwUAA4IBAQA69G0qAiSTLNf1e6OaeX/JOl4Wej4rcBu/ih007N4w HAikXn2VUb4Ai6HrQnQtEGBRIkcQCgvHhDQS6+v5kEqIBL8ZTOowiPncDlSydy37 AXFY3IdOzjkcC6Qxg5fQXyOkAq34Yy9XK76r92xBWm2zFTiRYd4BIervNZeQTn3S /R+rbU5nOOa93WNdMC1MisZ9v28YTNdp8KXUCKv9jDPtNV4oAAsAjECQS0FuDLRT rqaIWYd7UWHgQ6FKD4jIPI/v1OlJb9f+utscI+qKPdbFwEcUHZIvx/IWr9FUTMOy 4I/X+uMB1o9fiBEYuWJf9uyx32D220s15NHUYpMJ0P+E -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org