$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: BuvczQEbe/bdskV+ebbMfwgi2QgHhXaT52MUJAQ4Uu4= Subject key identifier: 13:85:26:05:29:F5:BB:8B:B5:BD:67:E0:4F:F3:DE:CF:72:23:15:DC Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 487279435D43278CD07FCF257DE9D90BAB051647 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 01 Aug 2024 06:00:03 +0000 ROA not before: Thu 01 Aug 2024 05:55:03 +0000 ROA not after: Thu 31 Jul 2025 06:00:03 +0000 asID: 59278 IP address blocks: 2402:6980:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:72:79:43:5d:43:27:8c:d0:7f:cf:25:7d:e9:d9:0b:ab:05:16:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 1 05:55:03 2024 GMT Not After : Jul 31 06:00:03 2025 GMT Subject: CN=1385260529F5BB8BB5BD67E04FF3DECF722315DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:31:da:3f:ec:70:56:6d:d9:ce:51:59:83:ab: 72:b1:5d:e7:32:a6:79:a9:6f:2a:73:e4:a1:1d:bf: c1:7e:ff:d7:ef:66:8b:8a:79:26:9f:7c:1a:cb:7f: 5a:90:d6:e7:96:5c:bb:44:1c:c4:9f:d5:ad:b4:b7: 47:c0:44:77:d5:97:ed:23:48:52:b3:0b:69:55:9c: f9:a0:7f:ba:44:dc:ac:ae:c1:0d:49:5b:51:1d:72: d1:2c:a5:15:9a:29:b0:e1:f2:16:23:af:eb:d3:22: 0d:d9:af:e7:71:4d:ea:e8:19:44:a7:9b:39:0f:96: 0b:77:25:61:24:43:8f:0b:f4:73:26:e0:6e:53:34: ec:c8:7a:b1:23:aa:02:3f:af:2d:fc:d2:f6:1c:f4: 8a:30:11:1e:fe:d5:9b:df:c0:d9:48:f4:44:5b:af: 9c:a5:ff:7c:ff:22:b3:c6:10:3d:c7:95:83:b6:e9: 89:0a:c4:89:eb:b5:46:de:1d:36:75:ce:52:43:6b: 1c:54:67:f5:63:02:5d:6a:17:d6:62:f3:a8:30:79: 2c:f3:54:36:d9:a4:ba:ef:2f:32:41:30:56:6e:ba: 9f:27:e2:23:2d:71:6b:5b:06:f9:0e:e2:2e:d0:9e: ad:89:ee:39:44:7e:16:86:48:97:49:30:43:b5:26: 44:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:85:26:05:29:F5:BB:8B:B5:BD:67:E0:4F:F3:DE:CF:72:23:15:DC X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:2000::/48 Signature Algorithm: sha256WithRSAEncryption 8f:bf:ec:44:93:fb:5a:05:73:37:94:49:74:9b:c6:e1:e5:61: 53:26:ca:c3:46:93:31:d9:0b:d5:8e:8a:d5:d0:50:ce:3b:13: d4:a0:db:ac:18:96:45:1e:ac:d2:d8:ed:8d:27:b2:95:10:98: d2:5f:e1:0f:35:1c:03:1b:cf:fd:60:d9:02:9a:64:78:21:5a: ef:0b:f3:4d:7c:55:95:05:d5:7a:00:b1:b0:94:17:0b:16:a7: be:0e:54:7b:ef:de:0f:33:42:98:31:d4:e4:48:ff:df:b1:9f: f3:92:0e:f9:33:81:cd:69:49:44:d6:27:79:86:a1:cd:3e:0c: 30:93:07:2f:5d:3a:f8:b7:21:89:d5:2b:d5:60:3e:03:75:77: fe:aa:99:09:94:53:84:f2:48:e7:c6:18:30:79:16:db:ce:84: c8:b0:9f:56:ca:7f:27:f4:3b:5f:2d:0f:32:e7:43:9f:16:a8: 08:ac:7f:13:e5:f2:9f:c2:67:52:bd:9e:ad:f7:4a:1e:c7:23: 9b:67:00:ef:7e:8c:3a:ed:71:e7:0d:52:b9:f9:0f:cb:86:c4: 7f:00:8f:24:7b:76:eb:0e:8f:73:84:0c:86:ce:e3:64:44:23: a1:b6:e3:6c:aa:4a:23:2c:60:8f:bf:29:e6:97:3f:3b:34:be: 96:9e:d2:73 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSHJ5Q11DJ4zQf88lfenZC6sFFkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNDA4MDEwNTU1MDNaFw0yNTA3MzEwNjAwMDNaMDMxMTAvBgNV BAMTKDEzODUyNjA1MjlGNUJCOEJCNUJENjdFMDRGRjNERUNGNzIyMzE1REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBMdo/7HBWbdnOUVmDq3KxXecy pnmpbypz5KEdv8F+/9fvZouKeSaffBrLf1qQ1ueWXLtEHMSf1a20t0fARHfVl+0j SFKzC2lVnPmgf7pE3KyuwQ1JW1EdctEspRWaKbDh8hYjr+vTIg3Zr+dxTeroGUSn mzkPlgt3JWEkQ48L9HMm4G5TNOzIerEjqgI/ry380vYc9IowER7+1ZvfwNlI9ERb r5yl/3z/IrPGED3HlYO26YkKxInrtUbeHTZ1zlJDaxxUZ/VjAl1qF9Zi86gweSzz VDbZpLrvLzJBMFZuup8n4iMtcWtbBvkO4i7Qnq2J7jlEfhaGSJdJMEO1JkQhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUE4UmBSn1u4u1vWfgT/Pez3IjFdwwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzIzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gCAAMA0GCSqGSIb3DQEBCwUAA4IBAQCPv+xEk/taBXM3lEl0m8bh5WFTJsrDRpMx 2QvVjorV0FDOOxPUoNusGJZFHqzS2O2NJ7KVEJjSX+EPNRwDG8/9YNkCmmR4IVrv C/NNfFWVBdV6ALGwlBcLFqe+DlR7794PM0KYMdTkSP/fsZ/zkg75M4HNaUlE1id5 hqHNPgwwkwcvXTr4tyGJ1SvVYD4DdXf+qpkJlFOE8kjnxhgweRbbzoTIsJ9Wyn8n 9DtfLQ8y50OfFqgIrH8T5fKfwmdSvZ6t90oexyObZwDvfow67XHnDVK5+Q/LhsR/ AI8ke3brDo9zhAyGzuNkRCOhtuNsqkojLGCPvynmlz87NL6WntJz -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org