$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: mAylxMr8+d8mR8LWIKVq/3AjBIk2gwxyYbF7kLOA17c= Subject key identifier: DB:4E:CB:BF:56:36:BA:D0:48:7B:1D:98:FE:1B:C8:FD:08:0B:40:47 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 751E5A676F4A191EE16BAF005A54E4355BF8C7D9 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 01 Aug 2024 06:00:03 +0000 ROA not before: Thu 01 Aug 2024 05:55:03 +0000 ROA not after: Thu 31 Jul 2025 06:00:03 +0000 asID: 59278 IP address blocks: 2402:6980:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1e:5a:67:6f:4a:19:1e:e1:6b:af:00:5a:54:e4:35:5b:f8:c7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 1 05:55:03 2024 GMT Not After : Jul 31 06:00:03 2025 GMT Subject: CN=DB4ECBBF5636BAD0487B1D98FE1BC8FD080B4047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:95:c6:70:58:4c:55:3d:2f:61:13:82:a7: f5:c3:2b:ec:00:4f:62:b1:72:40:3d:8b:64:43:5a: 55:d7:f5:63:02:a7:e3:2a:cf:9e:3d:cf:3f:e2:78: 7c:00:9a:da:2f:b5:71:c7:c9:5c:e9:1e:c5:54:0a: c7:be:26:73:68:3b:68:f9:63:4a:63:ed:ad:64:e8: 05:82:52:37:05:e7:e7:e4:00:09:4f:e7:2b:71:64: fa:50:cc:ad:02:49:02:02:5f:3b:ef:c8:7b:4a:74: 37:1a:27:da:85:34:7c:65:8d:d6:43:f6:ef:77:47: 39:85:f3:93:5a:43:c4:47:7b:75:5f:ae:44:44:dc: 6c:ec:fb:42:da:5f:8b:8a:3c:b8:50:48:db:d2:99: 07:15:87:01:bb:f7:6b:60:0d:3d:e8:c0:15:b0:56: cf:09:c3:b8:5e:aa:55:33:5f:e4:59:25:bc:c9:3e: 10:ac:92:7c:81:f1:4f:97:e5:de:d0:fc:5f:ae:3a: ae:94:b2:78:14:69:09:65:96:8a:9f:28:c1:0d:49: b9:1e:fd:6c:de:b8:26:99:35:d3:b8:6f:84:c0:f5: 9c:1c:3f:ab:da:4b:0f:81:54:a7:07:11:19:af:c4: ff:e2:00:37:b5:0b:3b:eb:e7:93:de:2d:31:b3:cf: e9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4E:CB:BF:56:36:BA:D0:48:7B:1D:98:FE:1B:C8:FD:08:0B:40:47 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:3000::/48 Signature Algorithm: sha256WithRSAEncryption 0c:4c:ea:08:4b:8b:81:12:65:b8:fc:bf:7e:71:a0:bc:49:76: 70:3a:4e:b5:4b:27:45:a4:c7:ad:c5:2a:2a:96:13:39:57:9b: 79:e8:13:ae:38:44:6c:05:0f:9c:14:bf:ad:46:24:34:03:20: d9:4a:e6:a1:f8:26:ae:97:a3:d6:56:da:a9:1f:be:b5:c5:f3: 34:ae:24:28:80:cd:25:d7:6a:34:99:91:b1:f7:64:b4:eb:26: 25:56:c5:fb:af:76:e2:24:3b:06:5b:6b:bb:96:40:23:7b:0a: 6f:a2:fb:de:94:85:10:bc:7b:50:19:da:1d:87:dc:47:1a:5d: 8e:52:2c:19:2c:a5:67:7e:29:53:78:66:9f:f0:98:9d:95:7e: 15:90:07:da:96:13:16:04:9c:53:4a:90:8a:5a:bd:78:87:84: f7:87:78:f0:8b:c5:58:c5:dc:a7:3d:6b:b3:57:c9:02:2c:8c: 9b:38:4e:e2:ab:45:ef:7f:b0:1d:37:f9:1a:1f:bf:2b:d1:1b: 1e:9f:9c:2b:56:ab:cb:27:ee:02:21:c3:d1:22:08:9c:1d:2c: d0:f1:c1:e6:e6:c0:fa:91:46:fb:cd:13:43:f3:45:8f:2f:23: 09:9d:dd:3d:63:36:21:1e:31:61:42:c1:6c:75:49:ff:35:57: d5:5c:7a:ca -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdR5aZ29KGR7ha68AWlTkNVv4x9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNDA4MDEwNTU1MDNaFw0yNTA3MzEwNjAwMDNaMDMxMTAvBgNV BAMTKERCNEVDQkJGNTYzNkJBRDA0ODdCMUQ5OEZFMUJDOEZEMDgwQjQwNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mJXGcFhMVT0vYROCp/XDK+wA T2KxckA9i2RDWlXX9WMCp+Mqz549zz/ieHwAmtovtXHHyVzpHsVUCse+JnNoO2j5 Y0pj7a1k6AWCUjcF5+fkAAlP5ytxZPpQzK0CSQICXzvvyHtKdDcaJ9qFNHxljdZD 9u93RzmF85NaQ8RHe3VfrkRE3Gzs+0LaX4uKPLhQSNvSmQcVhwG792tgDT3owBWw Vs8Jw7heqlUzX+RZJbzJPhCsknyB8U+X5d7Q/F+uOq6UsngUaQllloqfKMENSbke /WzeuCaZNdO4b4TA9ZwcP6vaSw+BVKcHERmvxP/iADe1Czvr55PeLTGzz+nFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU207Lv1Y2utBIex2Y/hvI/QgLQEcwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gDAAMA0GCSqGSIb3DQEBCwUAA4IBAQAMTOoIS4uBEmW4/L9+caC8SXZwOk61SydF pMetxSoqlhM5V5t56BOuOERsBQ+cFL+tRiQ0AyDZSuah+Caul6PWVtqpH761xfM0 riQogM0l12o0mZGx92S06yYlVsX7r3biJDsGW2u7lkAjewpvovvelIUQvHtQGdod h9xHGl2OUiwZLKVnfilTeGaf8JidlX4VkAfalhMWBJxTSpCKWr14h4T3h3jwi8VY xdynPWuzV8kCLIybOE7iq0Xvf7AdN/kaH78r0Rsen5wrVqvLJ+4CIcPRIgicHSzQ 8cHm5sD6kUb7zRND80WPLyMJnd09YzYhHjFhQsFsdUn/NVfVXHrK -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org