$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: Il82sFQ4vq0fednCJxc71j1DV6zC9t3yBfr4WTE3AW0= Subject key identifier: 07:73:FB:E5:51:E2:29:17:9E:DF:E8:8C:3A:2E:41:C4:9A:7C:87:34 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1FADC4F4976778ACB252C79134535A5FC08F4F42 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa Signing time: Mon 02 Sep 2024 08:00:01 +0000 ROA not before: Mon 02 Sep 2024 07:55:01 +0000 ROA not after: Mon 01 Sep 2025 08:00:01 +0000 asID: 38526 IP address blocks: 2405:3740:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ad:c4:f4:97:67:78:ac:b2:52:c7:91:34:53:5a:5f:c0:8f:4f:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Sep 2 07:55:01 2024 GMT Not After : Sep 1 08:00:01 2025 GMT Subject: CN=0773FBE551E229179EDFE88C3A2E41C49A7C8734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:26:97:6c:55:ff:08:6d:f9:87:71:74:9d:50: 3a:b4:91:f3:18:d1:b1:a7:a5:aa:b8:0b:d1:c1:3f: 9d:40:d7:08:de:0e:e2:2f:d8:d6:b6:2d:24:3f:da: b0:34:2b:e3:81:d4:9d:27:77:fc:22:66:7c:5d:bb: f8:ee:9c:5e:bf:0e:c2:1a:cf:6a:38:1c:c2:9c:07: 2a:70:42:74:2e:7e:36:c3:63:c0:43:ba:ea:94:f7: 0d:52:6b:d1:c1:e1:33:8f:39:d2:63:1a:30:8a:be: 09:b2:51:a2:f0:9b:73:4b:a9:70:bf:20:1d:c6:b0: 0f:46:68:8e:e5:b5:67:84:51:00:2d:0a:07:a2:d5: 77:6d:dc:36:68:f1:6d:55:6d:17:38:9c:00:05:93: a1:02:fa:76:40:93:fd:8b:ae:22:4a:49:4e:04:50: 39:cf:a2:4d:03:55:36:6f:70:e7:1c:bc:51:c6:fe: 5f:df:1e:ad:ec:8f:a3:54:17:de:7b:03:e8:6d:37: 37:cc:44:62:89:ff:49:33:6b:2b:a5:ac:86:2e:bc: 99:94:cf:0d:0c:1a:37:ef:eb:88:35:b7:99:41:2a: 06:98:e3:8b:ef:b9:b1:b9:3e:f4:1b:42:a9:6d:0e: f3:26:ce:77:f2:8d:24:0b:eb:48:ac:db:09:79:4c: 6e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:73:FB:E5:51:E2:29:17:9E:DF:E8:8C:3A:2E:41:C4:9A:7C:87:34 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030323a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8002::/48 Signature Algorithm: sha256WithRSAEncryption ce:4a:c4:c5:a8:22:e0:4a:cf:e0:2d:46:28:bf:c0:1f:1a:ff: 82:f2:49:1f:b7:a9:e8:13:6e:fc:a8:b2:08:ac:92:ad:d3:c2: e1:b1:ae:f5:12:cf:ef:cf:cf:00:14:28:06:2f:68:e4:4d:b7: 0d:bb:53:1c:36:4d:b3:7e:02:c7:7b:c7:75:83:37:6a:07:98: 9c:28:7d:48:41:ac:76:5c:5c:c2:6a:2d:1b:e6:45:f5:e5:ec: 7a:6f:08:93:f7:7b:fc:b6:8b:07:91:71:ac:aa:e6:a7:85:72: f9:ef:12:3c:9b:86:88:2f:f1:f7:45:6c:4e:b9:63:76:b8:8d: 8b:23:02:ad:30:c1:32:28:8c:b7:17:a7:4c:b6:7b:cb:76:8f: 7b:a3:5b:2d:63:bd:36:2f:d3:9d:55:7a:04:ba:5a:da:9f:a0: bf:b2:70:7c:10:4b:f9:c6:79:f6:1d:e0:85:12:bd:94:71:75: 60:65:f9:4d:79:e2:72:7b:e5:80:e1:b6:25:69:21:54:b7:f6: 74:de:d1:b4:80:d8:95:76:69:c4:ae:0d:4d:1b:5a:f7:40:98: f7:6e:74:e6:54:f1:cd:c3:77:ad:eb:36:7b:ee:86:e2:28:76: f1:17:af:7f:78:cd:2f:e5:03:76:76:ee:a5:dc:f0:62:7e:91: 9f:17:5d:ac -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH63E9JdneKyyUseRNFNaX8CPT0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDA5MDIwNzU1MDFaFw0yNTA5MDEwODAwMDFaMDMxMTAvBgNV BAMTKDA3NzNGQkU1NTFFMjI5MTc5RURGRTg4QzNBMkU0MUM0OUE3Qzg3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMJpdsVf8IbfmHcXSdUDq0kfMY 0bGnpaq4C9HBP51A1wjeDuIv2Na2LSQ/2rA0K+OB1J0nd/wiZnxdu/junF6/DsIa z2o4HMKcBypwQnQufjbDY8BDuuqU9w1Sa9HB4TOPOdJjGjCKvgmyUaLwm3NLqXC/ IB3GsA9GaI7ltWeEUQAtCgei1Xdt3DZo8W1VbRc4nAAFk6EC+nZAk/2LriJKSU4E UDnPok0DVTZvcOccvFHG/l/fHq3sj6NUF957A+htNzfMRGKJ/0kzayulrIYuvJmU zw0MGjfv64g1t5lBKgaY44vvubG5PvQbQqltDvMmznfyjSQL60is2wl5TG7dAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUB3P75VHiKRee3+iMOi5BxJp8hzQwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIACMA0GCSqGSIb3DQEBCwUAA4IBAQDOSsTFqCLgSs/gLUYov8AfGv+C8kkft6no E278qLIIrJKt08Lhsa71Es/vz88AFCgGL2jkTbcNu1McNk2zfgLHe8d1gzdqB5ic KH1IQax2XFzCai0b5kX15ex6bwiT93v8tosHkXGsquanhXL57xI8m4aIL/H3RWxO uWN2uI2LIwKtMMEyKIy3F6dMtnvLdo97o1stY702L9OdVXoEulran6C/snB8EEv5 xnn2HeCFEr2UcXVgZflNeeJye+WA4bYlaSFUt/Z03tG0gNiVdmnErg1NG1r3QJj3 bnTmVPHNw3et6zZ77obiKHbxF69/eM0v5QN2du6l3PBifpGfF12s -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org