$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: ISJzDfKrAb8weDvR3CstyG+HWmc3nGlwRfwFSEjRDTA= Subject key identifier: D2:12:18:4F:9C:82:18:A4:91:96:37:41:89:FA:75:BA:3D:E7:26:92 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 78A0CEE6F77A5D92F8E0234F33D4D1350172277A Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa Signing time: Mon 01 Apr 2024 04:32:57 +0000 ROA not before: Mon 01 Apr 2024 04:27:57 +0000 ROA not after: Mon 31 Mar 2025 04:32:57 +0000 asID: 38526 IP address blocks: 2405:3740:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a0:ce:e6:f7:7a:5d:92:f8:e0:23:4f:33:d4:d1:35:01:72:27:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Apr 1 04:27:57 2024 GMT Not After : Mar 31 04:32:57 2025 GMT Subject: CN=D212184F9C8218A49196374189FA75BA3DE72692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:df:97:e2:79:eb:fe:df:b9:6a:1a:4d:91:6e: 88:40:e4:3f:93:79:92:5c:58:62:54:73:f9:4c:61: 02:73:35:46:18:fa:99:35:2c:3e:5c:52:a3:3d:62: 25:58:63:6b:08:17:66:8f:ab:07:d3:ce:28:14:cd: c5:b0:b8:03:91:67:59:14:f6:c8:d8:c7:2e:2a:e6: 01:8e:4f:a0:30:a0:bd:55:d0:cb:f1:7a:35:e8:64: 0a:95:d9:50:c4:09:19:82:81:b7:be:a1:e9:33:7d: f5:fc:40:68:22:49:ca:bb:d0:19:14:39:70:a5:b6: 16:f9:b4:f5:86:9e:e7:11:c3:cd:bc:65:cb:20:2d: e1:ed:11:9d:e7:0d:70:b5:1a:7e:60:df:15:1a:36: 3c:97:0f:1b:af:42:fd:bd:a7:97:a9:b3:7b:0e:ee: d8:76:71:4e:8e:80:3c:80:54:ac:25:73:db:cd:17: b7:4b:d1:01:34:a5:6a:4a:bb:fb:85:ea:ec:f8:46: f8:80:b7:ad:b0:98:b7:7a:f2:c1:31:17:e1:ff:ad: 4f:8b:0e:8a:d6:5e:bd:6c:0f:2f:a0:86:82:c8:7b: 60:95:8b:69:57:55:93:87:95:46:75:78:1e:ba:af: f2:7f:78:08:1a:bf:e6:5c:da:a5:71:38:3e:f3:2e: 61:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:12:18:4F:9C:82:18:A4:91:96:37:41:89:FA:75:BA:3D:E7:26:92 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a313a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:1::/48 Signature Algorithm: sha256WithRSAEncryption 51:62:92:ab:76:ef:0d:91:8d:b3:88:f3:22:d0:76:cd:25:65: 0e:3c:7a:ac:0c:89:ca:d8:d1:4e:56:60:22:f0:a1:c1:73:d3: ac:90:cc:fd:6a:37:3a:1d:93:8d:c8:73:74:1a:50:14:26:25: 81:da:fc:ee:df:ba:0e:7b:c2:a8:ce:72:2e:2e:42:65:ad:31: 67:10:93:8e:eb:10:bf:34:b5:86:9b:7b:43:94:3d:a0:05:b8: 74:6a:da:96:0a:d3:c9:9d:0f:96:f9:f8:8e:ca:55:8e:27:2a: 52:b5:c0:e7:02:55:08:dc:c8:da:e4:2f:7c:b9:dc:08:6d:76: d5:a8:49:7b:e5:c4:b3:22:a9:f5:ec:c3:de:f3:fd:ef:3b:f4: 29:2e:cc:3d:84:92:19:96:bf:ae:54:3e:12:9b:d2:a1:47:36: 0c:a6:b1:39:dd:81:d0:a0:d9:69:10:23:4b:38:11:a0:d0:e8: 57:5b:20:7f:6d:27:57:a8:4b:dd:be:e8:11:6c:73:3f:7e:f5: 09:3c:c3:d8:63:ff:aa:f2:3d:0d:12:28:f5:87:19:f2:32:e0: 2c:3b:66:0a:8d:b8:b9:32:c7:0e:fd:5b:ba:48:16:69:e6:42: dd:0d:95:e6:56:46:98:18:92:e7:45:b1:63:86:55:2f:6a:a7: 54:9b:85:bf -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUeKDO5vd6XZL44CNPM9TRNQFyJ3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDA0MDEwNDI3NTdaFw0yNTAzMzEwNDMyNTdaMDMxMTAvBgNV BAMTKEQyMTIxODRGOUM4MjE4QTQ5MTk2Mzc0MTg5RkE3NUJBM0RFNzI2OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ35fieev+37lqGk2RbohA5D+T eZJcWGJUc/lMYQJzNUYY+pk1LD5cUqM9YiVYY2sIF2aPqwfTzigUzcWwuAORZ1kU 9sjYxy4q5gGOT6AwoL1V0MvxejXoZAqV2VDECRmCgbe+oekzffX8QGgiScq70BkU OXClthb5tPWGnucRw828ZcsgLeHtEZ3nDXC1Gn5g3xUaNjyXDxuvQv29p5eps3sO 7th2cU6OgDyAVKwlc9vNF7dL0QE0pWpKu/uF6uz4RviAt62wmLd68sExF+H/rU+L DorWXr1sDy+ghoLIe2CVi2lXVZOHlUZ1eB66r/J/eAgav+Zc2qVxOD7zLmEhAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU0hIYT5yCGKSRljdBifp1uj3nJpIwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3QAABMA0G CSqGSIb3DQEBCwUAA4IBAQBRYpKrdu8NkY2ziPMi0HbNJWUOPHqsDInK2NFOVmAi 8KHBc9OskMz9ajc6HZONyHN0GlAUJiWB2vzu37oOe8KoznIuLkJlrTFnEJOO6xC/ NLWGm3tDlD2gBbh0atqWCtPJnQ+W+fiOylWOJypStcDnAlUI3Mja5C98udwIbXbV qEl75cSzIqn17MPe8/3vO/QpLsw9hJIZlr+uVD4Sm9KhRzYMprE53YHQoNlpECNL OBGg0OhXWyB/bSdXqEvdvugRbHM/fvUJPMPYY/+q8j0NEij1hxnyMuAsO2YKjbi5 MscO/Vu6SBZp5kLdDZXmVkaYGJLnRbFjhlUvaqdUm4W/ -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org