$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: kzB5f6l0WHNQRwo78bA2OTW9y+NQHjiVvIRBvhdo9uA= Subject key identifier: 4E:16:2B:25:89:6E:A4:89:D5:1E:9E:61:33:6E:BE:92:E9:E9:F5:28 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 085EF2364C3D820CF99971AEC9CF891DE3E79C4D Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:55:51 +0000 ROA not before: Wed 27 Mar 2024 01:50:51 +0000 ROA not after: Wed 26 Mar 2025 01:55:51 +0000 asID: 38526 IP address blocks: 2405:3740:900b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:5e:f2:36:4c:3d:82:0c:f9:99:71:ae:c9:cf:89:1d:e3:e7:9c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:50:51 2024 GMT Not After : Mar 26 01:55:51 2025 GMT Subject: CN=4E162B25896EA489D51E9E61336EBE92E9E9F528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:db:f9:f7:b9:16:8c:fd:73:8c:70:fe:31:f2: 25:f0:cb:74:0f:2d:f8:9b:9e:b7:64:1f:5c:fe:b3: 9a:c0:39:1f:15:86:a8:6f:97:f7:eb:bb:b2:1e:db: 5e:de:e7:22:5a:a3:53:72:dc:24:ba:25:37:9b:45: 28:de:03:1e:1e:cd:a6:8f:cc:1b:de:bf:d2:43:ef: d9:ba:7b:6b:ff:47:60:fe:fa:9c:c8:97:9b:71:62: 16:7e:9d:ba:f2:fc:b3:9f:82:5e:6c:c2:29:85:c6: 02:61:4b:06:20:80:52:96:a7:e5:94:2e:66:a2:93: 72:ee:ee:b1:70:9b:81:44:82:01:20:c2:15:b2:95: 87:7b:fc:92:f9:ec:63:d9:bb:cd:c4:73:94:f5:ce: 73:43:20:b5:fa:17:ef:fe:d9:cc:5f:39:52:e8:34: 65:d9:0a:8c:75:10:20:02:8f:ce:e5:f3:3a:3e:af: ce:c4:11:97:8b:97:b1:95:1c:e8:54:9a:9f:a5:3b: 3f:8f:49:52:0e:b4:ff:c5:80:b7:1f:0c:be:b8:d2: c1:9d:22:f3:17:45:38:e8:69:c6:da:c0:08:18:98: b5:60:97:ef:58:52:2a:bb:7e:4b:08:a5:82:75:9c: 33:d3:56:59:5b:d4:dc:eb:44:04:06:25:3b:9f:55: 6e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:16:2B:25:89:6E:A4:89:D5:1E:9E:61:33:6E:BE:92:E9:E9:F5:28 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900b::/48 Signature Algorithm: sha256WithRSAEncryption 70:5d:a1:b0:e8:ae:26:c4:58:dc:b9:3b:16:82:4a:a2:7f:d7: 1c:a5:24:9c:0d:f4:7d:f3:0f:0d:69:81:e5:67:8f:8c:00:5f: de:93:5b:8a:16:de:96:64:23:36:69:59:a6:3e:9b:c4:57:67: 27:90:46:c2:53:4b:26:f6:41:d3:2a:a9:87:de:32:77:74:9a: 13:e2:08:7e:35:4b:60:80:21:85:63:05:ab:c5:6d:20:51:d6: ee:c9:b0:e4:e5:41:ad:1a:87:4e:76:93:93:d1:3c:03:b6:38: a5:c9:6b:bd:77:39:9d:18:88:2c:2d:dd:a2:31:18:39:a4:31: a4:e1:55:05:b7:e8:01:7a:c3:b8:be:b1:ff:03:ea:38:e7:a5: dd:89:ae:6a:a1:59:b3:eb:1f:ca:8e:af:df:12:01:97:43:4c: a5:09:5a:c9:f2:48:b1:20:68:43:f4:d1:c5:fa:ef:16:09:8d: 74:07:d2:85:42:9f:b9:e4:32:27:3f:fb:4e:45:a2:e1:5b:7d: 67:49:87:0e:af:bf:37:5d:8c:14:f4:0b:19:c7:ab:b4:51:7f: 4e:33:88:20:35:7b:83:1f:c1:31:cf:71:28:43:20:f1:ba:ab: 63:f8:8c:6c:72:16:26:6f:58:27:66:7c:a9:72:f4:29:2e:50: 64:2b:10:f0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCF7yNkw9ggz5mXGuyc+JHePnnE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTUwNTFaFw0yNTAzMjYwMTU1NTFaMDMxMTAvBgNV BAMTKDRFMTYyQjI1ODk2RUE0ODlENTFFOUU2MTMzNkVCRTkyRTlFOUY1MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa2/n3uRaM/XOMcP4x8iXwy3QP LfibnrdkH1z+s5rAOR8Vhqhvl/fru7Ie217e5yJao1Ny3CS6JTebRSjeAx4ezaaP zBvev9JD79m6e2v/R2D++pzIl5txYhZ+nbry/LOfgl5swimFxgJhSwYggFKWp+WU Lmaik3Lu7rFwm4FEggEgwhWylYd7/JL57GPZu83Ec5T1znNDILX6F+/+2cxfOVLo NGXZCox1ECACj87l8zo+r87EEZeLl7GVHOhUmp+lOz+PSVIOtP/FgLcfDL640sGd IvMXRTjoacbawAgYmLVgl+9YUiq7fksIpYJ1nDPTVllb1NzrRAQGJTufVW5xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUThYrJYlupInVHp5hM26+kunp9SgwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJALMA0GCSqGSIb3DQEBCwUAA4IBAQBwXaGw6K4mxFjcuTsWgkqif9ccpSScDfR9 8w8NaYHlZ4+MAF/ek1uKFt6WZCM2aVmmPpvEV2cnkEbCU0sm9kHTKqmH3jJ3dJoT 4gh+NUtggCGFYwWrxW0gUdbuybDk5UGtGodOdpOT0TwDtjilyWu9dzmdGIgsLd2i MRg5pDGk4VUFt+gBesO4vrH/A+o456Xdia5qoVmz6x/Kjq/fEgGXQ0ylCVrJ8kix IGhD9NHF+u8WCY10B9KFQp+55DInP/tORaLhW31nSYcOr783XYwU9AsZx6u0UX9O M4ggNXuDH8Exz3EoQyDxuqtj+IxschYmb1gnZnypcvQpLlBkKxDw -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org