$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: nGOhkS+SCCrJt9wmjNL7Gorc9U1h3Xuifw+uaNxyRl4= Subject key identifier: 5B:73:17:1E:D5:C2:E3:48:27:3B:16:99:04:3D:9A:8C:7C:1B:2B:A3 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 717A75AD8F5F50192AA6E709F7252C2E45574E7F Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 01 Aug 2024 06:00:03 +0000 ROA not before: Thu 01 Aug 2024 05:55:03 +0000 ROA not after: Thu 31 Jul 2025 06:00:03 +0000 asID: 59278 IP address blocks: 2402:6980:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7a:75:ad:8f:5f:50:19:2a:a6:e7:09:f7:25:2c:2e:45:57:4e:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 1 05:55:03 2024 GMT Not After : Jul 31 06:00:03 2025 GMT Subject: CN=5B73171ED5C2E348273B1699043D9A8C7C1B2BA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:c0:70:a9:fa:56:4f:58:95:7f:ef:ab:e4: c9:9e:97:69:a1:b6:c4:74:94:45:98:5f:48:d3:32: ae:0a:8b:86:ef:9e:d4:85:3c:59:61:62:90:73:66: 6d:ef:95:b9:89:e0:ca:6e:6e:a6:c2:78:7b:3b:17: ee:1c:f4:1c:dc:1b:82:b6:f5:83:89:c2:cb:ac:8b: 10:16:3a:6c:e2:c1:c0:68:ec:a9:70:93:4b:ed:e2: 19:69:fe:a7:50:7d:55:61:2b:58:c8:bc:41:05:df: 61:b3:82:39:e2:a3:f0:0f:9a:98:0a:47:3d:56:a9: 16:07:8b:5b:06:62:ee:81:fd:4c:b1:a2:0d:e3:1e: 0d:a3:fa:50:76:1d:9d:e8:4a:a7:3a:02:a8:d2:6e: 78:16:1e:0f:57:17:35:a6:e1:bd:b6:f9:32:96:c3: 7b:09:a8:f8:b3:51:25:5b:73:86:c6:4d:ed:59:e9: ea:3b:2b:73:2e:e3:9c:16:53:f1:8a:02:de:66:cc: 83:14:77:d0:f5:2c:ff:0b:45:5d:c2:de:f9:78:71: 45:11:1b:4a:53:78:62:25:51:36:19:7b:53:73:02: 7a:e1:f5:4c:34:30:3b:86:d8:aa:e6:ae:ca:32:eb: 9e:7c:dd:e9:1e:77:3f:2b:7a:b8:a8:5e:c8:04:59: 3d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:73:17:1E:D5:C2:E3:48:27:3B:16:99:04:3D:9A:8C:7C:1B:2B:A3 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:1000::/48 Signature Algorithm: sha256WithRSAEncryption 26:d9:69:d9:6a:52:68:51:b0:17:37:ce:49:63:be:67:78:3a: f6:75:bd:72:a6:9b:92:46:61:09:2c:4b:aa:3b:6d:d8:fb:9a: 9f:e0:3d:30:a4:11:4e:dd:ae:8d:23:ff:e8:74:73:9f:49:e6: b5:56:c0:fc:d1:74:66:5e:5c:08:f8:93:7f:57:04:a5:e7:b0: da:1e:2e:8d:5a:01:12:a6:d6:23:29:f6:21:40:9e:34:58:1b: eb:c5:56:ab:6c:79:b5:d5:7c:a0:a0:09:23:a7:27:f8:9c:93: d2:7e:01:26:7f:32:84:64:71:b0:3f:14:79:d6:9f:8c:43:fc: e2:d6:45:bd:a2:c6:44:84:88:52:23:04:a6:cf:fd:ef:0c:95: 32:7c:87:95:62:17:ff:05:1a:c0:fa:5b:9e:20:19:d1:ed:42: 3a:23:2b:5c:48:be:1c:b0:04:9b:19:75:d0:8b:1b:a1:06:b1: 27:7f:7e:f6:61:8d:5d:91:c9:f9:a5:da:de:50:cc:24:08:a4: ba:b2:47:aa:32:46:f1:6d:20:7d:6b:2a:bf:48:fb:6e:f2:4e: f9:83:f6:90:a5:a2:13:fd:94:56:01:b0:70:47:a5:88:2d:76: 08:52:b1:41:91:33:16:35:ac:6d:79:65:4c:1c:76:95:ec:7b: 30:65:c5:65 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcXp1rY9fUBkqpucJ9yUsLkVXTn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNDA4MDEwNTU1MDNaFw0yNTA3MzEwNjAwMDNaMDMxMTAvBgNV BAMTKDVCNzMxNzFFRDVDMkUzNDgyNzNCMTY5OTA0M0Q5QThDN0MxQjJCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKX8BwqfpWT1iVf++r5Mmel2mh tsR0lEWYX0jTMq4Ki4bvntSFPFlhYpBzZm3vlbmJ4MpubqbCeHs7F+4c9BzcG4K2 9YOJwsusixAWOmziwcBo7Klwk0vt4hlp/qdQfVVhK1jIvEEF32Gzgjnio/APmpgK Rz1WqRYHi1sGYu6B/Uyxog3jHg2j+lB2HZ3oSqc6AqjSbngWHg9XFzWm4b22+TKW w3sJqPizUSVbc4bGTe1Z6eo7K3Mu45wWU/GKAt5mzIMUd9D1LP8LRV3C3vl4cUUR G0pTeGIlUTYZe1NzAnrh9Uw0MDuG2Krmrsoy65583ekedz8rerioXsgEWT3lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUW3MXHtXC40gnOxaZBD2ajHwbK6MwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gBAAMA0GCSqGSIb3DQEBCwUAA4IBAQAm2WnZalJoUbAXN85JY75neDr2db1yppuS RmEJLEuqO23Y+5qf4D0wpBFO3a6NI//odHOfSea1VsD80XRmXlwI+JN/VwSl57Da Hi6NWgESptYjKfYhQJ40WBvrxVarbHm11XygoAkjpyf4nJPSfgEmfzKEZHGwPxR5 1p+MQ/zi1kW9osZEhIhSIwSmz/3vDJUyfIeVYhf/BRrA+lueIBnR7UI6IytcSL4c sASbGXXQixuhBrEnf372YY1dkcn5pdreUMwkCKS6skeqMkbxbSB9ayq/SPtu8k75 g/aQpaIT/ZRWAbBwR6WILXYIUrFBkTMWNaxteWVMHHaV7HswZcVl -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org