$ rpki-client -vvf repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa File: 323430303a393163303a3a2f33322d3438203d3e20313336303738.roa (raw, json) Hash identifier: 9Qq9nGAg7vTOcr7lz/i/AMHp0f1G534wHtpDft2fpT0= Subject key identifier: 85:BD:8F:8C:6A:BF:32:5F:16:AC:D3:3D:3F:FA:F9:A6:B5:76:1D:12 Certificate issuer: /CN=798D703C19A93E4E19F716304D78F20AA3261B8A Certificate serial: 16180D839C6AD45A4C0C27D1C6D5A5DC77C25F78 Authority key identifier: 79:8D:70:3C:19:A9:3E:4E:19:F7:16:30:4D:78:F2:0A:A3:26:1B:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798D703C19A93E4E19F716304D78F20AA3261B8A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa Signing time: Mon 15 Jul 2024 07:59:13 +0000 ROA not before: Mon 15 Jul 2024 07:54:13 +0000 ROA not after: Mon 14 Jul 2025 07:59:13 +0000 asID: 136078 IP address blocks: 2400:91c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/798D703C19A93E4E19F716304D78F20AA3261B8A.crl rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/798D703C19A93E4E19F716304D78F20AA3261B8A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798D703C19A93E4E19F716304D78F20AA3261B8A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:18:0d:83:9c:6a:d4:5a:4c:0c:27:d1:c6:d5:a5:dc:77:c2:5f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798D703C19A93E4E19F716304D78F20AA3261B8A Validity Not Before: Jul 15 07:54:13 2024 GMT Not After : Jul 14 07:59:13 2025 GMT Subject: CN=85BD8F8C6ABF325F16ACD33D3FFAF9A6B5761D12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:19:f2:fc:4c:4d:86:bd:91:b1:c3:c5:7d:85: 26:b9:1c:cd:2c:6b:02:09:3b:88:2f:d5:c2:bc:cf: ab:c0:33:f0:35:cb:5f:b6:ec:c4:e9:5a:43:38:7d: 04:46:c9:eb:26:ef:69:0f:75:4e:3c:bd:32:8f:f6: 84:86:5c:a0:39:9e:1c:7c:62:2f:e5:d6:53:b2:86: d1:ee:c3:e9:a3:cf:7c:1e:7b:ee:c0:b3:27:c1:ce: 40:61:15:26:d4:bc:a8:f9:e3:51:6d:70:5f:a2:ab: c5:dc:73:68:0f:fe:8e:58:31:26:19:86:36:e0:42: ac:cc:80:62:ec:ea:e1:00:05:62:16:e6:09:f0:aa: a5:33:64:c6:70:21:f6:80:5e:48:1f:09:6b:86:31: 22:ea:a7:75:96:6d:47:cf:8e:ff:c3:ef:f7:ad:c9: f4:d7:29:1f:91:ee:2a:b8:f8:b9:d3:77:2e:ac:8c: f9:b5:9b:bf:e7:48:e5:04:bc:5c:72:5b:99:52:2c: 8a:a6:b6:eb:5f:46:55:27:87:c1:5a:c5:11:ca:1a: e7:5e:0f:3c:60:16:07:80:71:31:46:62:af:26:f1: d9:6e:de:08:7b:d9:d0:0a:ae:eb:3f:96:08:fa:f4: 38:d0:ec:5f:a0:7e:68:31:00:89:cd:d2:81:2e:d0: bc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BD:8F:8C:6A:BF:32:5F:16:AC:D3:3D:3F:FA:F9:A6:B5:76:1D:12 X509v3 Authority Key Identifier: keyid:79:8D:70:3C:19:A9:3E:4E:19:F7:16:30:4D:78:F2:0A:A3:26:1B:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/798D703C19A93E4E19F716304D78F20AA3261B8A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798D703C19A93E4E19F716304D78F20AA3261B8A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6ec35ed-0f36-43d7-b537-06db314c90d5/0/323430303a393163303a3a2f33322d3438203d3e20313336303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:91c0::/32 Signature Algorithm: sha256WithRSAEncryption 62:61:e8:aa:cf:fe:0d:4b:3b:bb:39:e5:f0:b4:77:74:38:b6: 7d:d9:09:a6:63:43:2b:ee:78:ec:5a:f2:8e:7d:41:64:0f:99: 91:5e:22:4b:25:43:3f:33:18:3b:ac:0a:8c:27:5f:fb:a6:e2: bd:65:b0:08:d8:08:a8:65:26:de:21:d0:c3:0b:91:1d:1a:8e: 5a:f8:66:d7:ee:88:da:3b:c5:4b:b2:ad:0a:0b:59:d4:c0:4c: a4:30:b9:42:cf:8c:98:65:f8:bf:10:4b:bd:ea:ec:55:20:1c: 76:89:87:f5:94:97:93:76:ea:27:02:c0:23:ce:f0:60:a4:65: fb:52:cc:a1:ff:37:b6:ba:69:83:d2:54:fc:a1:a6:98:3c:2a: 6e:5f:e5:d4:76:ee:f6:e7:9b:5c:09:3b:bc:89:de:6e:14:c5: b3:ed:4f:d7:4b:49:5f:86:95:52:4e:9d:11:8f:a4:d9:f6:f6: b3:f9:63:fd:e8:9f:ce:a8:36:23:b7:29:8e:21:6c:32:54:4f: 26:09:4e:5c:46:ea:94:13:bb:8b:96:31:20:21:90:6d:3f:0c: 3b:23:b9:84:ce:c4:fc:b9:df:c9:8b:46:05:96:1f:46:7a:79: 75:06:8e:f4:46:44:81:c7:bf:63:58:ec:36:6e:4f:71:51:6a: 6b:76:47:2a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUFhgNg5xq1FpMDCfRxtWl3HfCX3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4RDcwM0MxOUE5M0U0RTE5RjcxNjMwNEQ3OEYyMEFB MzI2MUI4QTAeFw0yNDA3MTUwNzU0MTNaFw0yNTA3MTQwNzU5MTNaMDMxMTAvBgNV BAMTKDg1QkQ4RjhDNkFCRjMyNUYxNkFDRDMzRDNGRkFGOUE2QjU3NjFEMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFGfL8TE2GvZGxw8V9hSa5HM0s awIJO4gv1cK8z6vAM/A1y1+27MTpWkM4fQRGyesm72kPdU48vTKP9oSGXKA5nhx8 Yi/l1lOyhtHuw+mjz3wee+7AsyfBzkBhFSbUvKj541FtcF+iq8Xcc2gP/o5YMSYZ hjbgQqzMgGLs6uEABWIW5gnwqqUzZMZwIfaAXkgfCWuGMSLqp3WWbUfPjv/D7/et yfTXKR+R7iq4+LnTdy6sjPm1m7/nSOUEvFxyW5lSLIqmtutfRlUnh8FaxRHKGude DzxgFgeAcTFGYq8m8dlu3gh72dAKrus/lgj69DjQ7F+gfmgxAInN0oEu0Lz9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUhb2PjGq/Ml8WrNM9P/r5prV2HRIwHwYDVR0j BBgwFoAUeY1wPBmpPk4Z9xYwTXjyCqMmG4owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmVjMzVlZC0wZjM2LTQzZDctYjUzNy0wNmRiMzE0YzkwZDUvMC83OThENzAzQzE5 QTkzRTRFMTlGNzE2MzA0RDc4RjIwQUEzMjYxQjhBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4RDcwM0MxOUE5M0U0RTE5RjcxNjMwNEQ3OEYyMEFBMzI2 MUI4QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2ZWMzNWVkLTBmMzYtNDNkNy1i NTM3LTA2ZGIzMTRjOTBkNS8wLzMyMzQzMDMwM2EzOTMxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAkcAwDQYJKoZI hvcNAQELBQADggEBAGJh6KrP/g1LO7s55fC0d3Q4tn3ZCaZjQyvueOxa8o59QWQP mZFeIkslQz8zGDusCownX/um4r1lsAjYCKhlJt4h0MMLkR0ajlr4ZtfuiNo7xUuy rQoLWdTATKQwuULPjJhl+L8QS73q7FUgHHaJh/WUl5N26icCwCPO8GCkZftSzKH/ N7a6aYPSVPyhppg8Km5f5dR27vbnm1wJO7yJ3m4UxbPtT9dLSV+GlVJOnRGPpNn2 9rP5Y/3on86oNiO3KY4hbDJUTyYJTlxG6pQTu4uWMSAhkG0/DDsjuYTOxPy538mL RgWWH0Z6eXUGjvRGRIHHv2NY7DZuT3FRamt2Ryo= -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org