$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa File: 323430373a366638303a3a2f33322d3438203d3e20313335343737.roa (raw, json) Hash identifier: GGTZ8ZWEqHxChvcJE8MjjNJMuF3dWYhHR2I8858Cz0U= Subject key identifier: BE:B3:6A:47:CC:76:27:93:3E:5E:0B:73:6D:22:08:FB:1A:D8:F3:B8 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 2160F89405A31B771ADC6EC87BE4EFC5AEBE5739 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa Signing time: Thu 29 Aug 2024 06:00:01 +0000 ROA not before: Thu 29 Aug 2024 05:55:01 +0000 ROA not after: Thu 28 Aug 2025 06:00:01 +0000 asID: 135477 IP address blocks: 2407:6f80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:60:f8:94:05:a3:1b:77:1a:dc:6e:c8:7b:e4:ef:c5:ae:be:57:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Aug 29 05:55:01 2024 GMT Not After : Aug 28 06:00:01 2025 GMT Subject: CN=BEB36A47CC7627933E5E0B736D2208FB1AD8F3B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:7d:92:6d:2f:50:f1:ae:67:95:b9:18:7b: fd:62:ee:04:22:f6:27:ad:54:b1:7b:1c:7d:31:f2: 42:58:9a:18:67:08:a4:f4:f7:19:7a:36:7a:43:6a: 01:81:85:8e:2f:13:82:2b:e3:00:f0:b8:49:74:bb: b5:ac:a2:ec:f4:85:c4:01:cb:e0:e5:a7:bb:76:d8: b1:a0:7c:79:9a:b2:c1:e2:1e:76:f2:2b:7e:94:ca: 62:79:5a:57:8a:b5:b1:1b:1f:47:92:ce:3f:3a:59: 79:5f:97:a6:e0:98:24:05:9e:09:05:ff:65:33:7f: 50:55:2e:3a:f5:07:2b:14:41:46:89:4a:15:88:5d: e4:0a:54:3e:de:8b:e1:41:18:88:d6:85:6c:46:ed: d8:16:51:33:cb:5c:44:67:92:7c:6b:f5:e7:4b:02: 21:a1:07:29:e7:35:73:2d:51:b0:ce:48:40:e6:a6: 1e:5e:8f:bc:a8:fd:ae:63:1f:c9:73:c1:33:ab:50: 12:33:7e:4f:20:3f:b7:70:34:99:02:65:d9:9e:76: 3c:ef:83:43:86:1b:3a:9a:af:24:f1:0e:e8:a6:9a: 77:eb:d8:b3:94:6d:af:2e:36:77:4b:94:10:c9:ee: 42:a5:ea:d3:ac:5f:1f:36:d1:c1:2b:34:76:8f:fe: f1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B3:6A:47:CC:76:27:93:3E:5E:0B:73:6D:22:08:FB:1A:D8:F3:B8 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6f80::/32 Signature Algorithm: sha256WithRSAEncryption 36:bd:87:23:36:ed:4d:d4:1d:7c:53:52:ca:ab:ff:12:aa:62: 65:a8:89:e9:c8:5b:af:80:2c:2a:30:65:71:55:c2:41:2b:4a: a4:23:6b:d9:1a:9c:20:60:60:b7:f2:0d:1e:8b:ba:f8:23:6e: 36:78:86:65:c0:c6:8d:ef:24:a6:ff:89:22:3d:dd:ca:e0:dc: c3:5c:27:2d:10:3a:e5:a0:db:77:bf:e3:80:29:59:86:e9:7e: bd:e7:6b:02:95:c6:4d:0e:55:3f:89:ca:62:21:47:36:bb:ea: 28:f2:ad:0e:a6:bd:13:74:b5:67:79:ac:92:9e:6e:5a:e3:4b: 4a:58:cb:e2:9b:6b:ac:1a:9d:09:ef:39:53:13:4b:93:57:b7: 2c:5b:99:be:d8:85:8b:ad:76:54:e1:cb:50:6f:d1:27:02:2e: 0c:5f:46:58:81:91:ce:76:47:3c:2d:56:95:ee:2b:b9:49:40: c9:ae:05:1b:34:2e:ad:bd:2c:26:75:ce:78:5d:ec:ff:20:00: 0e:69:6f:bb:00:7b:a4:9a:6f:84:d1:d0:fb:41:1c:51:22:b6: b1:dc:79:1d:2c:dd:98:cf:53:9b:2c:88:df:25:e6:b4:e9:2a: d4:02:57:49:35:34:23:0c:46:c4:4b:33:3c:a6:c9:32:52:c8: a7:55:5d:c6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIWD4lAWjG3ca3G7Ie+Tvxa6+VzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDA4MjkwNTU1MDFaFw0yNTA4MjgwNjAwMDFaMDMxMTAvBgNV BAMTKEJFQjM2QTQ3Q0M3NjI3OTMzRTVFMEI3MzZEMjIwOEZCMUFEOEYzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLd32SbS9Q8a5nlbkYe/1i7gQi 9ietVLF7HH0x8kJYmhhnCKT09xl6NnpDagGBhY4vE4Ir4wDwuEl0u7Wsouz0hcQB y+Dlp7t22LGgfHmassHiHnbyK36UymJ5WleKtbEbH0eSzj86WXlfl6bgmCQFngkF /2Uzf1BVLjr1BysUQUaJShWIXeQKVD7ei+FBGIjWhWxG7dgWUTPLXERnknxr9edL AiGhBynnNXMtUbDOSEDmph5ej7yo/a5jH8lzwTOrUBIzfk8gP7dwNJkCZdmedjzv g0OGGzqaryTxDuimmnfr2LOUba8uNndLlBDJ7kKl6tOsXx820cErNHaP/vHlAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvrNqR8x2J5M+XgtzbSII+xrY87gwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMyMzQzMDM3M2EzNjY2MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHb4AwDQYJKoZI hvcNAQELBQADggEBADa9hyM27U3UHXxTUsqr/xKqYmWoienIW6+ALCowZXFVwkEr SqQja9kanCBgYLfyDR6LuvgjbjZ4hmXAxo3vJKb/iSI93crg3MNcJy0QOuWg23e/ 44ApWYbpfr3nawKVxk0OVT+JymIhRza76ijyrQ6mvRN0tWd5rJKeblrjS0pYy+Kb a6wanQnvOVMTS5NXtyxbmb7YhYutdlThy1Bv0ScCLgxfRliBkc52RzwtVpXuK7lJ QMmuBRs0Lq29LCZ1znhd7P8gAA5pb7sAe6Sab4TR0PtBHFEitrHceR0s3ZjPU5ss iN8l5rTpKtQCV0k1NCMMRsRLMzymyTJSyKdVXcY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org