$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: 27UeUaEQQTlGBzMMtig9mrxqvsFGGYiXFECx86HP9vw= Subject key identifier: D2:E4:E9:CF:63:39:4A:86:F9:3E:67:F6:66:7D:AE:25:EF:7C:5E:D0 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 2DAC883165C905E4A61A0FA7CFE74B808AB72423 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 11 Jul 2024 09:00:01 +0000 ROA not before: Thu 11 Jul 2024 08:55:01 +0000 ROA not after: Thu 10 Jul 2025 09:00:01 +0000 asID: 24206 IP address blocks: 2402:ab00:df::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ac:88:31:65:c9:05:e4:a6:1a:0f:a7:cf:e7:4b:80:8a:b7:24:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 11 08:55:01 2024 GMT Not After : Jul 10 09:00:01 2025 GMT Subject: CN=D2E4E9CF63394A86F93E67F6667DAE25EF7C5ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:86:bb:14:d6:11:c1:fb:21:5c:f1:f9:96: 82:ad:b6:84:8b:a3:41:eb:6c:ca:58:ec:22:d5:ea: 32:bd:db:5c:26:56:41:44:4a:9d:e6:0d:3a:04:e0: 33:3d:76:ff:cf:7b:f6:cf:34:6e:21:67:f3:d9:ef: 8c:0c:9d:9e:c0:24:ca:7b:bd:c9:e9:cc:a5:d7:35: 79:ac:69:d5:8f:4a:8d:c2:6b:9d:a1:39:0c:70:26: fa:12:63:20:35:2b:d3:28:df:ed:11:f6:88:e6:3e: ef:f7:35:71:33:8e:99:90:e8:0c:33:a6:0e:53:ee: aa:d1:3b:64:4d:b0:e0:52:8d:1e:0f:6a:4f:80:7e: ec:a5:d0:dc:9a:d7:e2:62:c0:73:bf:8d:c0:99:0b: 37:7e:37:5d:24:11:17:8c:ff:6d:48:9f:45:b6:ed: 99:b4:64:ca:0a:80:0f:10:1c:6c:03:7a:ab:21:e5: 53:16:5b:f5:48:47:0e:ca:41:3f:a3:73:d4:3b:57: d1:f0:7e:e2:ee:d9:b9:f4:9b:ae:4a:9e:aa:5e:a7: 7e:64:d7:e2:b9:86:28:4f:b0:43:b4:5a:28:4b:ad: 5a:30:90:56:fa:27:9b:2f:85:eb:71:63:fb:ca:c4: 3f:f2:55:32:a2:3c:02:52:bd:3a:59:d8:b0:97:84: f7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E4:E9:CF:63:39:4A:86:F9:3E:67:F6:66:7D:AE:25:EF:7C:5E:D0 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:df::/48 Signature Algorithm: sha256WithRSAEncryption ae:aa:5b:e3:56:d6:b7:9a:09:11:1c:24:c5:8f:6f:8b:58:63: f3:a0:0a:fc:9b:eb:47:24:35:dc:bf:de:b2:a3:60:b4:84:cb: 58:10:a8:1a:55:35:15:31:26:94:0d:74:ba:26:9e:e2:0a:86: 17:f9:02:5b:96:c2:cb:0a:82:3e:31:dc:7d:4c:2b:17:b2:dc: 8f:49:27:cf:1d:16:71:58:7c:55:bc:f6:93:cd:17:d8:34:b7: ea:22:08:d2:29:b8:34:83:6d:62:ad:28:5c:c5:f5:73:30:d5: 27:40:4f:48:3c:c3:e3:a0:05:06:10:c6:05:2d:64:1a:88:67: 4a:2f:64:a4:9c:4b:e2:fd:01:69:ff:45:66:d8:59:4c:36:21: 70:a2:9a:6c:04:b4:7f:2d:82:42:e9:3f:c5:84:15:c2:f8:be: 26:f1:bd:e8:26:b5:a9:14:c6:83:2f:e4:ae:a4:e8:10:c4:8a: f1:09:55:d9:76:ac:bc:d9:76:89:a3:60:69:ca:fc:b3:ff:ac: 55:9f:0c:f7:1a:73:7a:67:c1:84:fa:a9:af:14:be:d0:03:9e: 56:ec:bf:c2:5e:e8:7b:0e:d0:76:01:b1:22:16:f2:5b:cd:38: e6:a2:53:a8:67:bd:d8:15:65:3d:e6:a6:8b:2a:d7:5d:41:bd: 73:5b:8a:c7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULayIMWXJBeSmGg+nz+dLgIq3JCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MTEwODU1MDFaFw0yNTA3MTAwOTAwMDFaMDMxMTAvBgNV BAMTKEQyRTRFOUNGNjMzOTRBODZGOTNFNjdGNjY2N0RBRTI1RUY3QzVFRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsX4a7FNYRwfshXPH5loKttoSL o0HrbMpY7CLV6jK921wmVkFESp3mDToE4DM9dv/Pe/bPNG4hZ/PZ74wMnZ7AJMp7 vcnpzKXXNXmsadWPSo3Ca52hOQxwJvoSYyA1K9Mo3+0R9ojmPu/3NXEzjpmQ6Awz pg5T7qrRO2RNsOBSjR4Pak+Afuyl0Nya1+JiwHO/jcCZCzd+N10kEReM/21In0W2 7Zm0ZMoKgA8QHGwDeqsh5VMWW/VIRw7KQT+jc9Q7V9HwfuLu2bn0m65Knqpep35k 1+K5hihPsEO0WihLrVowkFb6J5svhetxY/vKxD/yVTKiPAJSvTpZ2LCXhPcvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU0uTpz2M5Sob5Pmf2Zn2uJe98XtAwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjQ2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAN8w DQYJKoZIhvcNAQELBQADggEBAK6qW+NW1reaCREcJMWPb4tYY/OgCvyb60ckNdy/ 3rKjYLSEy1gQqBpVNRUxJpQNdLomnuIKhhf5AluWwssKgj4x3H1MKxey3I9JJ88d FnFYfFW89pPNF9g0t+oiCNIpuDSDbWKtKFzF9XMw1SdAT0g8w+OgBQYQxgUtZBqI Z0ovZKScS+L9AWn/RWbYWUw2IXCimmwEtH8tgkLpP8WEFcL4vibxvegmtakUxoMv 5K6k6BDEivEJVdl2rLzZdomjYGnK/LP/rFWfDPcac3pnwYT6qa8UvtADnlbsv8Je 6HsO0HYBsSIW8lvNOOaiU6hnvdgVZT3mposq111BvXNbisc= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org