$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa File: 323430303a623138303a3a2f33322d3438203d3e203539323736.roa (raw, json) Hash identifier: crOVEgCgm8Ew1MqWiIikyqPFfpnVH7kp+H/fQfPdFIk= Subject key identifier: 24:97:B5:AF:44:47:76:75:20:CD:1D:7A:62:30:73:5C:7C:88:90:6E Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Certificate serial: 76A932F5078A92D07A40A81464F347B39E528B34 Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa Signing time: Thu 19 Sep 2024 21:50:13 +0000 ROA not before: Thu 19 Sep 2024 21:45:13 +0000 ROA not after: Thu 18 Sep 2025 21:50:13 +0000 asID: 59276 IP address blocks: 2400:b180::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a9:32:f5:07:8a:92:d0:7a:40:a8:14:64:f3:47:b3:9e:52:8b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Validity Not Before: Sep 19 21:45:13 2024 GMT Not After : Sep 18 21:50:13 2025 GMT Subject: CN=2497B5AF4447767520CD1D7A6230735C7C88906E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4a:5f:e3:4f:da:2e:56:13:c5:14:1e:36:31: 05:91:46:7e:d0:d6:5c:92:39:b7:88:77:ee:f1:44: dd:e0:8a:ed:49:2a:fc:7d:25:7d:d2:d6:38:f4:99: 69:db:7b:0c:59:1d:78:65:36:7b:93:0c:c9:6d:9a: 75:0d:9f:2f:50:5d:3b:dc:5c:ff:ba:4c:be:aa:5f: 24:db:55:d8:a6:45:2b:d8:d3:e6:1a:47:06:9e:dd: c3:84:5d:6d:b3:6f:2d:b0:43:fe:12:bd:12:8e:b0: 02:44:f7:02:e8:4e:b3:8a:b3:2f:ea:d7:fd:ac:13: b0:fb:60:a5:c0:67:c5:75:d5:14:3a:00:0d:28:0b: 31:c3:83:8d:c2:00:e1:ae:4a:16:49:e5:11:df:6b: 8d:ce:93:b9:0b:8e:17:31:32:03:fb:c7:57:1e:e5: f0:91:8e:35:24:e3:b1:1c:cd:f5:11:da:56:fd:06: 3f:93:ac:31:f7:69:2e:46:03:e3:c8:db:02:78:cf: be:3b:7d:f3:bd:24:7d:29:14:35:9f:14:e9:f6:bf: 91:64:c1:5e:00:6d:c8:18:8b:b6:fa:49:f7:ef:d7: 6b:c9:07:92:fd:d0:7b:d2:59:ed:d3:0d:d6:71:38: 76:de:ca:d1:11:4f:12:54:d6:3d:89:48:42:b4:6d: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:97:B5:AF:44:47:76:75:20:CD:1D:7A:62:30:73:5C:7C:88:90:6E X509v3 Authority Key Identifier: keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b180::/32 Signature Algorithm: sha256WithRSAEncryption 51:38:75:4c:6e:ae:0a:67:b0:92:1d:8a:59:e6:81:5c:f9:5e: 33:26:63:23:ce:3c:bc:ed:43:f7:bc:55:24:d2:c6:d2:14:ba: a3:1f:fe:ae:12:14:5d:06:35:5c:cd:bf:1f:5e:b1:9a:52:2e: cd:2c:fc:31:06:66:df:8b:e1:d1:29:db:0e:bc:da:c9:6a:28: 18:4e:ec:6d:19:78:14:a3:a4:ce:c4:75:0b:37:37:64:00:03: 0a:a1:d7:cc:66:79:54:1d:10:d9:21:1f:96:cc:51:8e:ad:d1: 27:1b:8d:00:c9:f9:49:02:d5:fc:05:f3:dd:b3:26:05:0d:0f: bb:cb:f2:db:fe:2c:f6:73:54:37:d7:8d:df:5d:92:7c:e8:c3: 57:69:9e:de:9d:74:10:6f:b9:dd:84:6f:d2:2a:13:13:f3:78: 0a:88:2b:f7:f3:69:4f:d9:fd:6b:4c:20:fb:7b:46:2c:0b:7f: c7:a9:e3:d4:7d:14:62:82:3f:82:5c:b3:8f:81:d3:1e:3d:8a: 7f:83:9d:05:c0:80:6a:26:7d:66:22:f6:b0:53:44:d2:9a:a3: 83:f4:32:1d:44:2e:98:5f:ab:9f:9c:70:65:05:43:83:97:1d: e5:44:0a:40:66:83:11:8e:04:b7:9a:15:62:b6:64:79:f8:13: e4:93:aa:8c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUdqky9QeKktB6QKgUZPNHs55SizQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4 NzlBNzRFNTAeFw0yNDA5MTkyMTQ1MTNaFw0yNTA5MTgyMTUwMTNaMDMxMTAvBgNV BAMTKDI0OTdCNUFGNDQ0Nzc2NzUyMENEMUQ3QTYyMzA3MzVDN0M4ODkwNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkSl/jT9ouVhPFFB42MQWRRn7Q 1lySObeId+7xRN3giu1JKvx9JX3S1jj0mWnbewxZHXhlNnuTDMltmnUNny9QXTvc XP+6TL6qXyTbVdimRSvY0+YaRwae3cOEXW2zby2wQ/4SvRKOsAJE9wLoTrOKsy/q 1/2sE7D7YKXAZ8V11RQ6AA0oCzHDg43CAOGuShZJ5RHfa43Ok7kLjhcxMgP7x1ce 5fCRjjUk47EczfUR2lb9Bj+TrDH3aS5GA+PI2wJ4z747ffO9JH0pFDWfFOn2v5Fk wV4AbcgYi7b6Sffv12vJB5L90HvSWe3TDdZxOHbeytERTxJU1j2JSEK0bZIBAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJJe1r0RHdnUgzR16YjBzXHyIkG4wHwYDVR0j BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4 RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB NzRFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMyMzQzMDMwM2E2MjMxMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALGAMA0GCSqGSIb3 DQEBCwUAA4IBAQBROHVMbq4KZ7CSHYpZ5oFc+V4zJmMjzjy87UP3vFUk0sbSFLqj H/6uEhRdBjVczb8fXrGaUi7NLPwxBmbfi+HRKdsOvNrJaigYTuxtGXgUo6TOxHUL NzdkAAMKodfMZnlUHRDZIR+WzFGOrdEnG40AyflJAtX8BfPdsyYFDQ+7y/Lb/iz2 c1Q3143fXZJ86MNXaZ7enXQQb7ndhG/SKhMT83gKiCv382lP2f1rTCD7e0YsC3/H qePUfRRigj+CXLOPgdMePYp/g50FwIBqJn1mIvawU0TSmqOD9DIdRC6YX6ufnHBl BUODlx3lRApAZoMRjgS3mhVitmR5+BPkk6qM -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org