$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: wY7j8i9zu++H9T6ZLDCPK1Z2w5DNTPZDFyXfJpAgkz0= Subject key identifier: 7E:5A:27:15:9F:C8:81:8C:C7:82:5C:13:87:46:82:04:BC:69:C4:87 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 7F6D89A3FBBC1688AD20DF98381606A47B8E1932 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa Signing time: Tue 09 Apr 2024 11:00:00 +0000 ROA not before: Tue 09 Apr 2024 10:55:00 +0000 ROA not after: Tue 08 Apr 2025 11:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:af::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6d:89:a3:fb:bc:16:88:ad:20:df:98:38:16:06:a4:7b:8e:19:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Apr 9 10:55:00 2024 GMT Not After : Apr 8 11:00:00 2025 GMT Subject: CN=7E5A27159FC8818CC7825C1387468204BC69C487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1f:30:0a:e9:8b:29:c0:b1:e9:8e:8d:9b:0b: 8f:cf:1b:36:b3:a8:7e:d8:4a:d6:8b:7e:d9:5b:e5: 20:2f:e2:e7:54:6c:90:d8:73:04:40:b1:fd:3c:c3: 38:93:06:77:fc:21:4a:c7:8a:cb:88:8d:92:0a:4d: 74:aa:b9:9a:be:3c:8a:73:bc:02:1c:4e:e7:85:45: b0:f4:d9:5c:51:c9:ab:d4:d9:3a:98:0d:f1:39:08: 45:a3:ec:5d:ab:50:fd:e3:20:23:94:39:f0:bc:73: c4:68:75:a7:21:6b:dc:dc:8b:68:52:a7:98:20:7b: cb:ac:57:68:d4:b9:95:06:c6:74:79:49:cc:71:a3: 7e:28:f6:86:22:7a:fa:4e:af:38:c2:16:12:25:80: 2c:77:be:9f:78:25:98:79:40:9d:1f:69:97:82:3b: e3:3d:74:fc:63:57:b6:2d:0b:66:4b:25:45:e0:20: 60:39:be:01:44:ed:34:2e:e3:f4:16:bb:db:fd:35: dd:9f:16:dd:3f:82:a1:df:2b:a6:08:bb:22:a7:d4: 9b:fc:79:68:8e:5b:c0:b3:56:d3:9c:e5:cf:65:3c: 09:f5:47:ff:77:ae:8d:6b:46:ac:b2:d7:d3:7a:a8: ad:51:9d:a7:fc:6c:44:d8:0d:86:6c:96:37:61:19: 5c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5A:27:15:9F:C8:81:8C:C7:82:5C:13:87:46:82:04:BC:69:C4:87 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:af::/48 Signature Algorithm: sha256WithRSAEncryption 5e:c4:61:cb:34:3f:c5:0a:d8:ba:c2:13:73:17:df:59:46:20: bb:b4:9b:16:d3:dd:e7:1e:4f:26:f1:60:ea:72:b1:2c:75:0b: b8:56:55:7f:e0:89:24:88:56:f8:33:90:07:19:a7:93:c3:db: 8a:b2:6e:9f:6c:5d:4a:c9:c3:b5:c7:9f:91:e3:53:27:c2:f1: ea:a9:3e:e9:4a:0b:76:14:e0:4e:b1:9a:4b:55:7b:cf:36:0b: d3:fb:4e:a4:7d:b6:16:e6:42:c7:be:44:22:8c:d6:28:69:58: 2e:53:3e:87:17:cd:6b:dc:e6:7d:9f:9b:86:44:5d:42:18:2c: 99:46:e7:57:cb:ad:1d:ce:ca:e4:39:d6:b0:3f:c0:66:6b:04: 0e:fd:81:40:0b:48:2f:83:14:f9:fe:bb:de:7b:45:00:c5:b2: 91:ac:27:d1:d7:b5:d4:4b:84:64:2e:cb:aa:d5:4a:bb:76:49: 97:ca:5b:ea:e0:13:6e:ea:96:bf:57:60:f5:9a:ee:d3:5c:19: bf:50:79:16:e5:97:ea:4d:75:7e:91:b1:b8:0e:2f:39:ce:8c: b0:49:60:74:3b:8f:e4:89:38:74:9e:de:33:4d:30:58:9f:54: 11:54:a6:7f:3e:e3:47:07:5e:b4:61:ae:d7:f3:7e:ba:74:89: e9:c2:33:3f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUf22Jo/u8FoitIN+YOBYGpHuOGTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA0MDkxMDU1MDBaFw0yNTA0MDgxMTAwMDBaMDMxMTAvBgNV BAMTKDdFNUEyNzE1OUZDODgxOENDNzgyNUMxMzg3NDY4MjA0QkM2OUM0ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0HzAK6YspwLHpjo2bC4/PGzaz qH7YStaLftlb5SAv4udUbJDYcwRAsf08wziTBnf8IUrHisuIjZIKTXSquZq+PIpz vAIcTueFRbD02VxRyavU2TqYDfE5CEWj7F2rUP3jICOUOfC8c8Rodacha9zci2hS p5gge8usV2jUuZUGxnR5Scxxo34o9oYievpOrzjCFhIlgCx3vp94JZh5QJ0faZeC O+M9dPxjV7YtC2ZLJUXgIGA5vgFE7TQu4/QWu9v9Nd2fFt0/gqHfK6YIuyKn1Jv8 eWiOW8CzVtOc5c9lPAn1R/93ro1rRqyy19N6qK1Rnaf8bETYDYZsljdhGVx5AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUflonFZ/IgYzHglwTh0aCBLxpxIcwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjE2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAK8w DQYJKoZIhvcNAQELBQADggEBAF7EYcs0P8UK2LrCE3MX31lGILu0mxbT3eceTybx YOpysSx1C7hWVX/giSSIVvgzkAcZp5PD24qybp9sXUrJw7XHn5HjUyfC8eqpPulK C3YU4E6xmktVe882C9P7TqR9thbmQse+RCKM1ihpWC5TPocXzWvc5n2fm4ZEXUIY LJlG51fLrR3OyuQ51rA/wGZrBA79gUALSC+DFPn+u957RQDFspGsJ9HXtdRLhGQu y6rVSrt2SZfKW+rgE27qlr9XYPWa7tNcGb9QeRbll+pNdX6RsbgOLznOjLBJYHQ7 j+SJOHSe3jNNMFifVBFUpn8+40cHXrRhrtfzfrp0ienCMz8= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org