$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 4D1nzE+1uhON8KYAR8Nm5w+m8tXOBq4LKNvOSn/vZFM= Subject key identifier: 2C:DE:C1:4B:DF:B5:C7:02:ED:A5:43:9D:D1:F5:53:9C:B9:35:64:4C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: DA79AF0DE546C320DD3B4A814166C33392AF92 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 18 Sep 2024 03:01:06 +0000 ROA not before: Wed 18 Sep 2024 02:56:06 +0000 ROA not after: Wed 17 Sep 2025 03:01:06 +0000 asID: 38526 IP address blocks: 2405:3740:8004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: da:79:af:0d:e5:46:c3:20:dd:3b:4a:81:41:66:c3:33:92:af:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Sep 18 02:56:06 2024 GMT Not After : Sep 17 03:01:06 2025 GMT Subject: CN=2CDEC14BDFB5C702EDA5439DD1F5539CB935644C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f0:52:65:e7:fa:b7:18:7f:91:52:03:25:00: 20:24:85:a0:6f:06:01:e2:71:60:c2:38:1e:ec:f8: b0:fb:2e:3f:fa:11:06:aa:a2:bc:77:69:31:10:36: 51:88:78:f9:99:32:95:c0:ab:f1:11:08:1c:37:d7: 15:c5:88:6e:96:fa:9e:af:7f:49:3d:b3:3a:6e:a0: 95:b5:2c:65:02:f4:22:56:09:f8:d7:5f:df:99:20: 69:81:c6:dd:09:cc:29:e3:37:54:d1:1d:7c:ad:ec: f7:0a:2c:4d:12:6c:41:89:a5:92:6a:3e:44:31:9c: 5d:6b:48:97:8f:e8:6b:93:99:19:3f:0f:d7:a5:4e: 3a:43:d4:f4:c0:40:8d:d9:9a:6b:8a:81:89:03:43: 4f:e7:53:c7:c9:b9:33:7b:00:81:07:07:d9:8e:24: d9:48:5e:d3:6a:d1:e4:49:b5:ef:b6:df:11:bb:28: 0b:c9:11:4e:34:18:a4:73:44:b4:ef:31:c1:bf:fd: fd:a4:4a:38:73:81:4c:8e:98:6e:e0:95:4f:5b:a1: 26:0b:f6:fd:e3:94:28:ff:34:c1:c9:19:a6:a4:1e: e1:5d:4b:2c:5a:e3:29:ed:10:b9:26:fb:63:e1:33: 8c:00:a2:9f:15:25:f9:a3:d0:fe:c0:ed:cb:77:36: c3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DE:C1:4B:DF:B5:C7:02:ED:A5:43:9D:D1:F5:53:9C:B9:35:64:4C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030343a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8004::/48 Signature Algorithm: sha256WithRSAEncryption 9f:47:32:40:12:e5:4f:b9:d6:a4:ab:ea:a0:4d:a9:7c:bb:89: 97:3e:03:0a:42:66:9c:35:db:3f:8d:fc:ac:b7:22:12:a4:28: 35:6b:fe:1a:69:08:45:c5:52:f6:7d:03:57:26:ca:f6:fc:2b: 65:25:f2:c3:46:03:fc:a8:2d:28:a8:8b:ac:a5:8d:00:a9:03: de:34:30:05:43:dd:fb:91:ee:e4:40:0f:ad:e6:e1:d8:02:05: aa:ec:3d:b5:66:b8:e2:81:0f:1f:18:e5:01:05:c8:ab:40:c1: b4:b6:23:70:bc:34:b9:31:a1:4d:68:17:a9:13:bb:68:6f:a6: e8:11:f3:8c:38:2d:95:94:ea:53:db:15:61:68:7e:f7:9c:83: ad:03:44:70:1c:02:74:a6:15:2a:52:b8:4c:aa:20:62:f0:93: 73:cd:62:14:98:72:90:3a:0a:3c:60:6b:30:8f:17:3a:e4:40: 9c:0f:8d:83:04:d7:54:49:a1:d2:86:32:c6:7d:fe:1d:c7:fa: 18:85:14:45:a7:b1:d8:0a:8a:d7:24:02:f3:ef:3e:4c:c8:88: 25:14:09:df:f4:fc:66:1e:2c:00:88:87:57:36:34:1a:dd:74: aa:f5:ef:ef:c4:b7:64:e6:65:99:64:dd:a9:5e:c2:7d:63:19: e6:a3:eb:b4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUANp5rw3lRsMg3TtKgUFmwzOSr5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDA5MTgwMjU2MDZaFw0yNTA5MTcwMzAxMDZaMDMxMTAvBgNV BAMTKDJDREVDMTRCREZCNUM3MDJFREE1NDM5REQxRjU1MzlDQjkzNTY0NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt8FJl5/q3GH+RUgMlACAkhaBv BgHicWDCOB7s+LD7Lj/6EQaqorx3aTEQNlGIePmZMpXAq/ERCBw31xXFiG6W+p6v f0k9szpuoJW1LGUC9CJWCfjXX9+ZIGmBxt0JzCnjN1TRHXyt7PcKLE0SbEGJpZJq PkQxnF1rSJeP6GuTmRk/D9elTjpD1PTAQI3ZmmuKgYkDQ0/nU8fJuTN7AIEHB9mO JNlIXtNq0eRJte+23xG7KAvJEU40GKRzRLTvMcG//f2kSjhzgUyOmG7glU9boSYL 9v3jlCj/NMHJGaakHuFdSyxa4yntELkm+2PhM4wAop8VJfmj0P7A7ct3NsNvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULN7BS9+1xwLtpUOd0fVTnLk1ZEwwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIAEMA0GCSqGSIb3DQEBCwUAA4IBAQCfRzJAEuVPudakq+qgTal8u4mXPgMKQmac Nds/jfystyISpCg1a/4aaQhFxVL2fQNXJsr2/CtlJfLDRgP8qC0oqIuspY0AqQPe NDAFQ937ke7kQA+t5uHYAgWq7D21ZrjigQ8fGOUBBcirQMG0tiNwvDS5MaFNaBep E7tob6boEfOMOC2VlOpT2xVhaH73nIOtA0RwHAJ0phUqUrhMqiBi8JNzzWIUmHKQ Ogo8YGswjxc65ECcD42DBNdUSaHShjLGff4dx/oYhRRFp7HYCorXJALz7z5MyIgl FAnf9PxmHiwAiIdXNjQa3XSq9e/vxLdk5mWZZN2pXsJ9Yxnmo+u0 -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org