$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: Ayi9rsdLresnd8MBFmH70b16ohJWA0EAR+7uD80QYzE= Subject key identifier: 2A:54:25:18:50:71:D0:D8:84:03:45:90:ED:4B:65:25:D9:97:1A:48 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6E90C683D516FA595FE1B6A4BB3C26FA19835671 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:54:31 +0000 ROA not before: Wed 27 Mar 2024 01:49:31 +0000 ROA not after: Wed 26 Mar 2025 01:54:31 +0000 asID: 38526 IP address blocks: 2405:3740:9009::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:90:c6:83:d5:16:fa:59:5f:e1:b6:a4:bb:3c:26:fa:19:83:56:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:49:31 2024 GMT Not After : Mar 26 01:54:31 2025 GMT Subject: CN=2A5425185071D0D884034590ED4B6525D9971A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:19:9d:9b:1a:ac:ef:50:93:87:74:a9:7f:38: e1:94:40:fd:fc:6e:68:25:5c:ae:c2:82:9e:1f:82: 3d:ba:f8:40:09:3d:3e:44:ed:e2:54:3d:96:09:33: 7e:b7:b7:65:59:06:16:16:89:ef:a7:b7:90:46:16: 9e:a6:bb:ad:3e:bb:5b:fd:15:82:36:a0:7d:77:b3: 1e:db:a2:82:f0:09:6a:7f:98:14:2a:a6:4c:e3:38: d2:33:dc:5c:82:44:03:5a:a9:bf:49:24:71:fd:4c: b2:f9:b0:b2:2b:1b:43:77:69:c2:ce:a1:d7:3c:c5: 8b:0d:f4:a3:c1:28:ce:ce:3d:f2:0f:de:b9:79:b4: ad:9a:ad:20:1c:42:2b:a8:fc:d3:28:72:c0:72:8d: 1e:35:05:56:20:2a:4f:dd:dc:b6:74:91:ed:6d:d3: aa:8e:32:e2:98:52:d7:30:fa:58:04:f3:e0:07:1d: 28:1b:c1:d5:06:83:a8:1d:93:52:a5:f3:fd:b0:8b: d2:47:fd:2c:4c:df:b4:02:88:46:e8:69:22:f0:36: 64:da:f5:92:03:74:e2:5a:07:65:48:fc:6c:ae:db: 8f:07:b8:f4:5c:a8:08:53:6f:0c:93:be:32:82:dc: cf:6e:87:e7:e8:57:61:16:6c:00:3c:11:cc:34:a9: d0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:54:25:18:50:71:D0:D8:84:03:45:90:ED:4B:65:25:D9:97:1A:48 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030393a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9009::/48 Signature Algorithm: sha256WithRSAEncryption 22:b8:ae:1e:cd:e6:b8:c9:59:41:3f:51:13:b8:a2:2c:46:51: 34:2a:45:70:63:7c:bd:82:07:c9:9b:a6:02:da:f8:18:69:4c: 25:b6:d8:a5:ca:4b:56:b6:e5:f8:85:29:5c:e5:8d:87:e9:82: 88:fd:0f:7d:ba:e1:6a:c8:48:a3:f8:a4:8d:47:88:de:9e:43: 3a:a8:95:d0:7f:d8:05:1a:fd:dc:85:c8:26:d8:85:79:3a:83: 16:2a:67:9c:04:2f:3c:9d:ae:d0:bc:8c:18:2d:33:37:91:bc: 52:f1:86:f5:bc:9e:67:79:67:26:02:71:f1:df:4f:3e:85:1f: 98:b5:ba:ac:e6:ff:6f:b2:ba:17:23:e5:8a:e6:94:de:d5:f0: b7:85:04:ae:74:93:92:ec:ba:4a:52:4a:f7:be:51:44:8b:37: 5d:49:c6:db:77:b6:2a:6c:01:80:31:5e:68:3d:a1:a6:6a:4e: 1a:3d:38:2a:c5:bb:4a:1b:e1:3e:d9:f9:ec:d7:c5:50:37:16: 99:fe:fc:06:eb:07:b8:a8:c2:d9:ff:84:e0:2c:02:2c:5b:37: 2d:1e:14:19:32:4e:26:0d:21:3c:b8:a1:b6:08:9f:fb:3b:16: ca:aa:bc:98:12:b5:fd:a4:2a:c8:d8:8c:53:54:73:cb:8a:a9: 35:7d:d7:4e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbpDGg9UW+llf4bakuzwm+hmDVnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTQ5MzFaFw0yNTAzMjYwMTU0MzFaMDMxMTAvBgNV BAMTKDJBNTQyNTE4NTA3MUQwRDg4NDAzNDU5MEVENEI2NTI1RDk5NzFBNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjGZ2bGqzvUJOHdKl/OOGUQP38 bmglXK7Cgp4fgj26+EAJPT5E7eJUPZYJM363t2VZBhYWie+nt5BGFp6mu60+u1v9 FYI2oH13sx7booLwCWp/mBQqpkzjONIz3FyCRANaqb9JJHH9TLL5sLIrG0N3acLO odc8xYsN9KPBKM7OPfIP3rl5tK2arSAcQiuo/NMocsByjR41BVYgKk/d3LZ0ke1t 06qOMuKYUtcw+lgE8+AHHSgbwdUGg6gdk1Kl8/2wi9JH/SxM37QCiEboaSLwNmTa 9ZIDdOJaB2VI/Gyu248HuPRcqAhTbwyTvjKC3M9uh+foV2EWbAA8Ecw0qdANAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKlQlGFBx0NiEA0WQ7UtlJdmXGkgwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAJMA0GCSqGSIb3DQEBCwUAA4IBAQAiuK4ezea4yVlBP1ETuKIsRlE0KkVwY3y9 ggfJm6YC2vgYaUwlttilyktWtuX4hSlc5Y2H6YKI/Q99uuFqyEij+KSNR4jenkM6 qJXQf9gFGv3chcgm2IV5OoMWKmecBC88na7QvIwYLTM3kbxS8Yb1vJ5neWcmAnHx 308+hR+Ytbqs5v9vsroXI+WK5pTe1fC3hQSudJOS7LpKUkr3vlFEizddScbbd7Yq bAGAMV5oPaGmak4aPTgqxbtKG+E+2fns18VQNxaZ/vwG6we4qMLZ/4TgLAIsWzct HhQZMk4mDSE8uKG2CJ/7OxbKqryYErX9pCrI2IxTVHPLiqk1fddO -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org