$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: C14gZi335zvqdxHDq/z8jc7QrOhWXEmj+VgizI0LWKo= Subject key identifier: 3D:B7:E6:DB:95:19:F0:55:51:5C:37:BF:A2:BB:7E:86:04:6D:C3:40 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 3D18F99A02F5102D434A2B389FBF1554415AAA33 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Feb 2024 05:00:01 +0000 ROA not before: Wed 28 Feb 2024 04:55:01 +0000 ROA not after: Wed 26 Feb 2025 05:00:01 +0000 asID: 38526 IP address blocks: 2405:3740:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:18:f9:9a:02:f5:10:2d:43:4a:2b:38:9f:bf:15:54:41:5a:aa:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 28 04:55:01 2024 GMT Not After : Feb 26 05:00:01 2025 GMT Subject: CN=3DB7E6DB9519F055515C37BFA2BB7E86046DC340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f8:82:09:ee:4b:46:2f:c8:f0:d0:c6:67:9e: c4:52:2b:07:53:f3:fd:83:46:ca:52:14:3c:b6:07: 49:95:39:30:be:a4:3d:e0:3f:c4:75:2b:c9:0e:ae: 72:92:ef:0d:91:d3:a4:ce:e2:99:42:cb:98:2c:e1: 60:4d:6d:d4:d6:c5:ca:2e:9f:ef:a3:6a:ad:a2:37: 50:be:fb:21:30:73:b1:22:91:56:93:b6:3b:da:56: 08:39:51:b9:f7:3f:e7:e6:2d:b3:6f:2d:94:4a:9e: e8:10:79:99:fb:5b:8e:1e:8c:f2:cb:4c:1b:0b:fa: b7:7b:d3:d5:df:3f:f2:d7:2c:df:5a:d5:e1:7b:d7: 93:61:c8:0f:8e:96:7c:1e:11:a5:de:bd:b2:aa:9e: 4e:0f:d3:e1:e6:cd:d0:84:10:d1:ad:8f:ab:b9:cd: cd:b9:9e:4f:b3:55:1c:bf:74:e7:b0:66:62:b8:80: 8f:c2:25:1c:6a:2b:42:b7:46:0c:ec:13:4a:08:39: c1:fd:db:5c:59:ce:e7:9d:4e:56:f7:d1:11:71:92: 9f:b7:17:ea:c3:bc:ed:80:c5:01:03:91:4c:43:38: eb:61:e9:89:47:ec:9d:8f:a5:11:af:a5:74:e1:76: a5:cf:f5:a6:49:38:0f:1c:ae:29:09:2b:29:a2:9e: e6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B7:E6:DB:95:19:F0:55:51:5C:37:BF:A2:BB:7E:86:04:6D:C3:40 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8000::/48 Signature Algorithm: sha256WithRSAEncryption d6:1b:e4:56:64:f1:25:7d:30:f5:f9:4a:34:80:ff:f4:f9:2d: e1:37:26:81:16:e6:a2:9b:1c:a4:20:a0:d5:40:31:6f:a9:0e: 82:82:76:03:10:61:e3:c5:21:2c:f8:85:76:05:23:5c:ea:db: 86:90:0e:64:1e:91:2b:bb:d9:6a:13:2c:94:e1:af:8d:fb:a6: f4:f0:d5:ee:28:eb:28:03:e9:2d:62:25:cd:e8:90:2f:56:18: 74:5d:6d:31:83:0d:73:de:4a:94:93:97:63:89:b4:00:7f:b4: 85:09:49:b5:ef:9f:e1:73:5e:98:ca:23:fd:12:84:ad:d9:04: 1d:2c:5f:13:97:88:7f:4b:48:bb:03:d9:7b:0c:84:7e:9b:7f: aa:96:5c:74:2a:f7:d7:c0:21:96:79:e2:bd:7d:bb:72:93:d2: 01:5d:83:17:9d:64:28:3c:0c:76:27:d9:76:65:74:4a:11:85: 63:6a:94:13:b7:74:51:96:8c:a9:60:2b:b2:00:9f:54:12:db: 3a:05:6e:8e:a7:55:7e:ba:b8:35:68:81:20:09:58:74:68:10: 3f:f6:75:6a:45:08:75:95:94:51:03:b3:94:8e:19:e2:99:85: 2d:51:82:e7:a2:cb:68:f1:4e:94:c0:95:f7:f8:36:af:7a:41: 86:04:d3:86 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPRj5mgL1EC1DSis4n78VVEFaqjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAyMjgwNDU1MDFaFw0yNTAyMjYwNTAwMDFaMDMxMTAvBgNV BAMTKDNEQjdFNkRCOTUxOUYwNTU1MTVDMzdCRkEyQkI3RTg2MDQ2REMzNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy+IIJ7ktGL8jw0MZnnsRSKwdT 8/2DRspSFDy2B0mVOTC+pD3gP8R1K8kOrnKS7w2R06TO4plCy5gs4WBNbdTWxcou n++jaq2iN1C++yEwc7EikVaTtjvaVgg5Ubn3P+fmLbNvLZRKnugQeZn7W44ejPLL TBsL+rd709XfP/LXLN9a1eF715NhyA+OlnweEaXevbKqnk4P0+HmzdCEENGtj6u5 zc25nk+zVRy/dOewZmK4gI/CJRxqK0K3RgzsE0oIOcH921xZzuedTlb30RFxkp+3 F+rDvO2AxQEDkUxDOOth6YlH7J2PpRGvpXThdqXP9aZJOA8crikJKyminuanAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPbfm25UZ8FVRXDe/ort+hgRtw0AwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIAAMA0GCSqGSIb3DQEBCwUAA4IBAQDWG+RWZPElfTD1+Uo0gP/0+S3hNyaBFuai mxykIKDVQDFvqQ6CgnYDEGHjxSEs+IV2BSNc6tuGkA5kHpEru9lqEyyU4a+N+6b0 8NXuKOsoA+ktYiXN6JAvVhh0XW0xgw1z3kqUk5djibQAf7SFCUm175/hc16YyiP9 EoSt2QQdLF8Tl4h/S0i7A9l7DIR+m3+qllx0KvfXwCGWeeK9fbtyk9IBXYMXnWQo PAx2J9l2ZXRKEYVjapQTt3RRloypYCuyAJ9UEts6BW6Op1V+urg1aIEgCVh0aBA/ 9nVqRQh1lZRRA7OUjhnimYUtUYLnosto8U6UwJX3+DavekGGBNOG -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org