$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: h+5co0gsy9mmUBZ5iE9RFEjHVOQHnrKSsdrqyH0eGhw= Subject key identifier: FF:56:CC:EB:7C:BA:18:6E:A2:1F:4A:6E:6B:44:60:F6:38:4D:EB:21 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 7723ACEAF8F693602270502AA68762C1ECDFE429 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:29:46 +0000 ROA not before: Wed 27 Mar 2024 01:24:46 +0000 ROA not after: Wed 26 Mar 2025 01:29:46 +0000 asID: 38526 IP address blocks: 2405:3740:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:23:ac:ea:f8:f6:93:60:22:70:50:2a:a6:87:62:c1:ec:df:e4:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:24:46 2024 GMT Not After : Mar 26 01:29:46 2025 GMT Subject: CN=FF56CCEB7CBA186EA21F4A6E6B4460F6384DEB21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:51:5e:9f:e6:e7:67:59:b6:0f:24:20:5e:a5: 9c:56:34:4f:55:af:57:b0:14:8b:ee:41:20:6b:66: fa:bb:22:7a:a2:41:33:1c:19:48:72:56:e9:da:35: ce:00:81:d6:68:d5:eb:16:52:8d:d1:6a:8a:b1:cc: 83:7d:50:6a:a7:b1:12:42:eb:8e:72:15:1f:f3:42: 27:78:d4:21:f3:65:bf:f8:ca:a9:88:ff:09:0c:73: 3a:ac:e8:7e:5f:2b:a0:29:4a:c7:f2:0f:83:6c:b8: 84:7a:f3:32:a3:32:57:c9:21:e2:61:96:4e:d2:71: e6:d6:8e:8f:22:00:49:52:78:29:a9:35:f2:a6:e7: 86:90:12:43:1d:45:00:07:37:30:4d:c2:85:95:5d: ba:63:27:76:00:b7:22:46:37:d3:9f:27:ae:37:cc: 2b:48:b7:1b:8f:12:47:bb:85:75:99:95:ad:e8:a0: d0:34:ce:9c:50:02:b4:90:7a:c5:9d:64:9a:01:e3: 20:59:a8:75:5f:e4:d0:16:17:88:b1:2f:7f:00:7d: 10:ad:95:e1:ce:50:32:c8:12:1c:c4:34:16:7b:b9: 93:34:86:00:14:1b:95:ae:12:c8:b1:36:e4:48:0a: e7:61:ce:4a:49:ac:7d:63:95:e1:83:30:32:5b:db: 9e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:56:CC:EB:7C:BA:18:6E:A2:1F:4A:6E:6B:44:60:F6:38:4D:EB:21 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9000::/48 Signature Algorithm: sha256WithRSAEncryption 25:2d:aa:f0:a5:d8:15:e4:23:96:61:1a:f7:1a:61:07:10:08: 1f:5f:3e:1b:16:87:02:03:30:f6:a9:f7:16:ab:7d:5e:ae:80: d2:ad:f4:23:cb:db:34:a2:12:ce:16:04:7c:7c:21:35:4d:08: 3d:ad:18:53:31:5c:cf:e5:f1:bf:06:42:42:4b:99:84:c2:2d: df:56:71:63:81:8b:03:74:e7:c1:0e:ca:21:b2:99:9d:6a:37: 53:8a:63:a1:6a:98:eb:7d:8f:e8:49:3d:32:bb:84:fa:5b:32: 0e:8f:b9:f0:4f:bb:4e:da:c1:6d:bf:1a:f7:15:c6:bf:f6:31: 2a:ad:22:0e:76:14:66:76:6a:63:83:71:01:54:ba:2e:7e:cd: 7b:7a:bb:19:07:1c:7d:97:17:d1:bb:02:3b:50:cf:aa:cb:14: 64:97:d6:75:dc:17:1b:79:69:21:ba:cf:79:13:9c:f7:67:53: ee:35:f6:4e:de:27:fc:cd:6a:61:40:21:51:34:e9:74:22:68: 9d:4f:dd:cb:53:c9:2c:75:6a:b3:e5:1b:c1:fe:93:28:e0:18: d8:32:21:b4:a5:86:0e:83:3e:32:7f:f8:92:bd:f3:09:a5:c7: 98:84:a0:e1:fa:7d:39:ff:4e:33:0a:9f:15:a4:0c:13:41:21: 07:c5:05:2f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdyOs6vj2k2AicFAqpodiwezf5CkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTI0NDZaFw0yNTAzMjYwMTI5NDZaMDMxMTAvBgNV BAMTKEZGNTZDQ0VCN0NCQTE4NkVBMjFGNEE2RTZCNDQ2MEY2Mzg0REVCMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbUV6f5udnWbYPJCBepZxWNE9V r1ewFIvuQSBrZvq7InqiQTMcGUhyVunaNc4AgdZo1esWUo3RaoqxzIN9UGqnsRJC 645yFR/zQid41CHzZb/4yqmI/wkMczqs6H5fK6ApSsfyD4NsuIR68zKjMlfJIeJh lk7ScebWjo8iAElSeCmpNfKm54aQEkMdRQAHNzBNwoWVXbpjJ3YAtyJGN9OfJ643 zCtItxuPEke7hXWZla3ooNA0zpxQArSQesWdZJoB4yBZqHVf5NAWF4ixL38AfRCt leHOUDLIEhzENBZ7uZM0hgAUG5WuEsixNuRICudhzkpJrH1jleGDMDJb255VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/1bM63y6GG6iH0pua0Rg9jhN6yEwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAAMA0GCSqGSIb3DQEBCwUAA4IBAQAlLarwpdgV5COWYRr3GmEHEAgfXz4bFocC AzD2qfcWq31eroDSrfQjy9s0ohLOFgR8fCE1TQg9rRhTMVzP5fG/BkJCS5mEwi3f VnFjgYsDdOfBDsohspmdajdTimOhapjrfY/oST0yu4T6WzIOj7nwT7tO2sFtvxr3 Fca/9jEqrSIOdhRmdmpjg3EBVLoufs17ersZBxx9lxfRuwI7UM+qyxRkl9Z13Bcb eWkhus95E5z3Z1PuNfZO3if8zWphQCFRNOl0ImidT93LU8ksdWqz5RvB/pMo4BjY MiG0pYYOgz4yf/iSvfMJpceYhKDh+n05/04zCp8VpAwTQSEHxQUv -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org