$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa File: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (raw, json) Hash identifier: b3QtB4OgqdRWfaRrhbvsm6gH1TsKPXL5Yz9+wyHqUXg= Subject key identifier: B9:14:EF:6B:2A:34:92:B7:6A:AC:F3:02:17:61:BD:7E:51:00:27:64 Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 3427130ED067D1EF5300D7FED1DB85D222680354 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa Signing time: Thu 01 Aug 2024 06:00:03 +0000 ROA not before: Thu 01 Aug 2024 05:55:03 +0000 ROA not after: Thu 31 Jul 2025 06:00:03 +0000 asID: 59278 IP address blocks: 2402:6980:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:27:13:0e:d0:67:d1:ef:53:00:d7:fe:d1:db:85:d2:22:68:03:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Aug 1 05:55:03 2024 GMT Not After : Jul 31 06:00:03 2025 GMT Subject: CN=B914EF6B2A3492B76AACF3021761BD7E51002764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:91:a0:00:43:7d:c2:5f:4c:58:0e:89:95: 95:aa:b9:79:1d:24:7f:8a:93:68:d1:01:ff:57:ee: ca:6b:db:4c:a2:8f:3a:22:7c:03:35:a4:be:60:4b: df:8a:7c:a0:63:cf:5a:fe:b9:29:4c:0e:6b:5c:a5: 9f:00:35:0b:25:ee:fa:15:8e:56:35:43:d0:d7:00: 05:8a:30:f4:a8:86:92:73:11:91:27:c2:51:55:b4: ac:86:cb:ec:d2:4c:e7:e6:4e:84:4d:f3:a4:a4:b0: 7b:95:cb:6c:5e:26:1b:00:16:9d:0a:26:16:07:55: 24:24:d4:95:2a:69:e4:be:e3:00:b2:d2:2f:aa:71: a2:f4:9b:28:43:08:2b:08:14:b8:2e:25:bb:af:e8: 1f:bb:91:81:a4:da:e4:1f:d1:91:63:5b:30:1a:b2: 7c:2f:58:ba:0f:dc:8b:6e:8a:8c:6c:fb:1f:4a:26: 49:36:86:08:1d:40:63:e4:26:93:3d:4b:f0:28:b6: 35:d6:96:7e:9a:e4:21:5a:9f:7f:01:79:36:dc:a1: 98:4f:af:14:7d:eb:0d:5c:d9:48:6b:6c:e1:e0:b0: b1:30:f2:c3:47:48:f1:c9:67:e0:fd:96:c6:67:b3: b2:3d:69:22:aa:bf:da:e0:f7:a4:9e:47:97:bf:a8: 98:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:EF:6B:2A:34:92:B7:6A:AC:F3:02:17:61:BD:7E:51:00:27:64 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:6980:4000::/48 Signature Algorithm: sha256WithRSAEncryption 0d:79:2b:10:b4:cc:b7:11:bf:33:53:e2:34:be:bd:63:b4:f9: d5:63:13:82:63:fa:52:f3:f5:bd:ae:49:70:ab:6e:aa:e4:bd: e9:92:10:08:c5:58:fa:7a:49:ee:c6:aa:ca:97:47:7d:cb:1d: 4b:1b:e2:05:53:71:f6:72:15:2a:04:4d:e5:0f:a9:a0:89:11: d0:eb:5b:c1:f1:3e:33:92:93:b8:a1:9d:19:c8:ba:8e:17:89: b6:81:a9:d0:dc:5e:8f:fd:50:8c:70:7f:29:15:ce:09:ba:b9: 19:d8:23:4b:88:2b:9c:f2:65:ca:e5:e8:59:6f:af:92:f1:16: 25:a6:c8:97:91:fb:ec:a6:43:63:6a:2e:56:c2:1a:ac:8e:a4: da:b9:c1:4a:4d:e3:0b:8a:c2:63:3a:9f:01:58:82:c9:50:10: d6:b7:6c:56:43:71:13:5a:66:fb:a9:b8:59:62:5a:0e:38:e7: 29:52:3d:0a:da:7f:83:c6:78:b6:8e:bb:04:40:2c:37:96:b0: 8b:28:d4:6d:e6:8a:8d:87:b9:bb:b7:ed:9f:20:8a:74:5f:c4: 68:a2:0e:b9:99:e3:5d:88:ae:c4:38:cf:31:38:e1:62:6b:8c: 18:f8:63:a8:bc:30:c0:4d:54:61:04:8a:9b:36:54:f5:68:f5: 1c:b9:b5:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNCcTDtBn0e9TANf+0duF0iJoA1QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNDA4MDEwNTU1MDNaFw0yNTA3MzEwNjAwMDNaMDMxMTAvBgNV BAMTKEI5MTRFRjZCMkEzNDkyQjc2QUFDRjMwMjE3NjFCRDdFNTEwMDI3NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjZpGgAEN9wl9MWA6JlZWquXkd JH+Kk2jRAf9X7spr20yijzoifAM1pL5gS9+KfKBjz1r+uSlMDmtcpZ8ANQsl7voV jlY1Q9DXAAWKMPSohpJzEZEnwlFVtKyGy+zSTOfmToRN86SksHuVy2xeJhsAFp0K JhYHVSQk1JUqaeS+4wCy0i+qcaL0myhDCCsIFLguJbuv6B+7kYGk2uQf0ZFjWzAa snwvWLoP3Ituioxs+x9KJkk2hggdQGPkJpM9S/AotjXWln6a5CFan38BeTbcoZhP rxR96w1c2UhrbOHgsLEw8sNHSPHJZ+D9lsZns7I9aSKqv9rg96SeR5e/qJibAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuRTvayo0krdqrPMCF2G9flEAJ2QwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmMWM3OWYxLTI2NGUtNDIzZi05 ZTA4LTBiMjkwMGRhNjk0OS8wLzMyMzQzMDMyM2EzNjM5MzgzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzNzM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJp gEAAMA0GCSqGSIb3DQEBCwUAA4IBAQANeSsQtMy3Eb8zU+I0vr1jtPnVYxOCY/pS 8/W9rklwq26q5L3pkhAIxVj6eknuxqrKl0d9yx1LG+IFU3H2chUqBE3lD6mgiRHQ 61vB8T4zkpO4oZ0ZyLqOF4m2ganQ3F6P/VCMcH8pFc4JurkZ2CNLiCuc8mXK5ehZ b6+S8RYlpsiXkfvspkNjai5WwhqsjqTaucFKTeMLisJjOp8BWILJUBDWt2xWQ3ET Wmb7qbhZYloOOOcpUj0K2n+Dxni2jrsEQCw3lrCLKNRt5oqNh7m7t+2fIIp0X8Ro og65meNdiK7EOM8xOOFia4wY+GOovDDATVRhBIqbNlT1aPUcubUK -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org