$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: 8V+Zya7yK3fEGLmUtkhLrEpRvGEZWoHeCqz3YLbVbVU= Subject key identifier: 3C:D8:20:25:C5:62:48:3F:1F:1D:8C:B8:32:DE:53:C1:2D:92:32:1A Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 3E583A5609B1149C33AAC20869CE6D8C5C5DF370 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 11 Jul 2024 17:00:00 +0000 ROA not before: Thu 11 Jul 2024 16:55:00 +0000 ROA not after: Thu 10 Jul 2025 17:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:ef::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:58:3a:56:09:b1:14:9c:33:aa:c2:08:69:ce:6d:8c:5c:5d:f3:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jul 11 16:55:00 2024 GMT Not After : Jul 10 17:00:00 2025 GMT Subject: CN=3CD82025C562483F1F1D8CB832DE53C12D92321A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:bf:1d:b2:0d:a1:b5:f4:f9:53:3b:90:95: 93:4a:a9:94:dc:96:46:be:6c:7f:e2:e6:e8:62:33: 3b:45:32:23:b7:a1:4a:74:09:81:a6:ff:be:66:f3: da:ca:1f:74:14:94:0e:30:c7:4f:2a:09:b7:1e:71: 6c:e0:1d:52:99:b8:96:d8:ca:d3:9f:87:15:43:e2: 5a:ca:07:1b:9a:02:2a:89:4a:ed:2e:8c:40:19:99: 4e:70:a8:f4:61:fe:e7:c3:75:1a:38:dc:0b:31:df: ff:58:b1:d8:57:87:f8:be:7b:fe:18:ce:6f:51:97: e2:79:1c:5c:51:1c:2a:80:31:c7:1d:c4:22:33:be: fc:0b:08:35:64:93:7f:e3:4a:96:42:74:ed:c7:44: aa:5f:08:4f:96:22:48:40:7b:7b:d2:e9:50:25:32: 16:9e:54:13:d2:70:41:15:c6:b2:43:0b:03:37:a7: f8:fc:45:70:aa:29:68:d4:10:ac:9a:6b:a1:27:86: ad:42:21:82:0e:bf:02:05:16:79:2b:ef:5b:fe:65: 38:af:da:9e:09:e1:e6:6f:22:24:a1:76:aa:bc:ca: 63:15:be:2b:94:43:84:2b:00:75:2f:05:6b:de:22: 6f:83:e3:2d:4b:98:a4:6b:d8:31:82:c7:fd:69:28: 35:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D8:20:25:C5:62:48:3F:1F:1D:8C:B8:32:DE:53:C1:2D:92:32:1A X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:ef::/48 Signature Algorithm: sha256WithRSAEncryption 4c:b7:4e:bd:10:0f:8d:58:a4:e7:1b:71:a6:8b:ca:50:43:7c: 7f:b8:e6:24:fc:40:3d:aa:fe:31:3d:3a:5c:09:b1:1e:79:14: 2a:f2:4f:81:29:d3:7b:80:fb:05:8d:86:6b:98:ee:50:24:4f: d6:eb:d6:20:bb:a4:46:4c:d1:3f:89:a5:37:46:60:27:ff:18: d9:85:5c:aa:c2:5c:5a:d1:29:4b:2b:2f:35:a0:f8:89:87:76: d0:0f:23:9a:5e:f5:70:f3:85:0d:1c:6f:d2:c7:c0:0f:cd:ca: b8:bb:51:fd:05:d7:81:ca:20:b4:ec:e1:5b:4c:40:5b:64:5d: ce:c0:91:b3:cf:70:ac:41:f5:7a:c5:2b:d6:28:c7:35:60:6b: d7:16:c3:6b:56:52:2a:1f:92:f5:cd:c8:5c:c5:a6:02:81:cf: 20:50:04:06:07:29:c9:1c:d8:aa:30:1b:9d:7a:85:74:3a:40: db:f9:d0:82:b0:90:0c:09:77:2c:6b:54:91:a4:3b:32:36:fe: c5:ef:d9:d2:e4:48:e5:7e:9f:3d:c5:76:61:10:5e:dc:1b:07: 7e:30:6c:51:bd:3e:cf:a4:47:73:55:26:b5:db:ce:af:61:5e: 6f:38:80:f7:1a:08:5d:b6:cb:82:03:9c:32:c6:e0:f1:b4:70: 79:b6:fc:38 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPlg6VgmxFJwzqsIIac5tjFxd83AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNDA3MTExNjU1MDBaFw0yNTA3MTAxNzAwMDBaMDMxMTAvBgNV BAMTKDNDRDgyMDI1QzU2MjQ4M0YxRjFEOENCODMyREU1M0MxMkQ5MjMyMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3s78dsg2htfT5UzuQlZNKqZTc lka+bH/i5uhiMztFMiO3oUp0CYGm/75m89rKH3QUlA4wx08qCbcecWzgHVKZuJbY ytOfhxVD4lrKBxuaAiqJSu0ujEAZmU5wqPRh/ufDdRo43Asx3/9YsdhXh/i+e/4Y zm9Rl+J5HFxRHCqAMccdxCIzvvwLCDVkk3/jSpZCdO3HRKpfCE+WIkhAe3vS6VAl MhaeVBPScEEVxrJDCwM3p/j8RXCqKWjUEKyaa6Enhq1CIYIOvwIFFnkr71v+ZTiv 2p4J4eZvIiShdqq8ymMVviuUQ4QrAHUvBWveIm+D4y1LmKRr2DGCx/1pKDXNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUPNggJcViSD8fHYy4Mt5TwS2SMhowHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjU2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAO8w DQYJKoZIhvcNAQELBQADggEBAEy3Tr0QD41YpOcbcaaLylBDfH+45iT8QD2q/jE9 OlwJsR55FCryT4Ep03uA+wWNhmuY7lAkT9br1iC7pEZM0T+JpTdGYCf/GNmFXKrC XFrRKUsrLzWg+ImHdtAPI5pe9XDzhQ0cb9LHwA/Nyri7Uf0F14HKILTs4VtMQFtk Xc7AkbPPcKxB9XrFK9YoxzVga9cWw2tWUiofkvXNyFzFpgKBzyBQBAYHKckc2Kow G516hXQ6QNv50IKwkAwJdyxrVJGkOzI2/sXv2dLkSOV+nz3FdmEQXtwbB34wbFG9 Ps+kR3NVJrXbzq9hXm84gPcaCF22y4IDnDLG4PG0cHm2/Dg= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org