$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: sMIVtnMCM+c2G3h/Avw4m6iBF7g+Cg2E96AMQjdEu+g= Subject key identifier: 88:63:DF:B9:5C:79:76:64:BB:8E:1D:11:ED:99:F7:B1:38:1A:12:5B Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 254F27958F47A45C492672BC3A5766B13FA175E2 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:56:19 +0000 ROA not before: Wed 27 Mar 2024 01:51:19 +0000 ROA not after: Wed 26 Mar 2025 01:56:19 +0000 asID: 38526 IP address blocks: 2405:3740:900c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4f:27:95:8f:47:a4:5c:49:26:72:bc:3a:57:66:b1:3f:a1:75:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:51:19 2024 GMT Not After : Mar 26 01:56:19 2025 GMT Subject: CN=8863DFB95C797664BB8E1D11ED99F7B1381A125B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:7b:2a:e8:c3:cd:6e:64:b1:dc:63:d3:d1: f9:9b:3e:27:e3:d8:f2:90:ae:02:63:5c:8d:18:1c: d3:df:68:95:ab:09:cc:27:44:03:1d:de:8a:84:ea: 03:ec:f1:7e:ca:9e:81:fc:d5:aa:f9:4b:e4:97:6a: eb:cb:9c:a9:34:f7:46:b9:db:83:e6:72:e6:9c:a0: bb:71:60:2e:e1:04:80:bf:f3:3e:4f:9c:d3:43:1e: 37:32:2a:1d:55:ee:32:20:75:bf:3f:dc:83:c9:63: 99:f3:19:7e:7a:54:25:2e:27:8d:16:ca:ef:d7:30: 5d:64:23:e8:3d:da:d4:62:e7:3a:a1:fb:ed:49:33: 40:c8:61:9a:d6:43:af:c1:e7:dd:aa:bd:ca:ca:05: 99:12:b9:57:00:3d:3e:ef:5e:aa:95:6d:23:ee:d0: 4e:0c:fc:6e:84:cc:38:c4:e9:ff:fd:f2:f2:a1:f8: 3c:3f:d6:a7:1f:0c:7f:97:43:b5:a3:0f:64:dd:4b: c4:f8:09:f4:df:8f:7d:05:c2:77:e0:41:ce:18:4a: 2b:7b:5c:f4:fe:ff:7d:2c:fd:60:23:ec:95:59:0d: 23:19:5f:04:f3:f9:c9:87:83:2c:be:af:f2:e2:90: 1f:62:46:18:08:3a:f8:c2:27:23:e9:f3:16:6b:fc: 53:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:63:DF:B9:5C:79:76:64:BB:8E:1D:11:ED:99:F7:B1:38:1A:12:5B X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900c::/48 Signature Algorithm: sha256WithRSAEncryption 9c:66:23:ce:a4:0d:8e:02:e4:39:51:6a:96:9e:97:dd:88:eb: 76:12:a8:62:17:65:34:b9:70:d8:02:85:e0:fb:04:99:25:f5: 62:2e:5f:2c:57:09:5d:b0:54:05:4d:64:01:ab:e2:45:d3:38: 7b:db:53:81:8c:0e:ce:97:bf:1f:a3:89:bf:b9:08:87:30:13: 98:57:5e:1f:6e:3d:b5:b9:3d:94:1b:b3:71:fe:83:26:9a:dc: 46:8c:40:0c:dc:b0:0b:80:e4:0c:ef:39:1f:74:e1:b9:9b:d9: f3:fe:ab:93:75:85:fd:3d:db:5e:75:67:43:98:1d:60:4c:74: 63:f1:5c:a8:5b:7c:9e:1e:36:09:27:51:21:9a:be:35:29:d0: e3:a0:90:17:7d:2b:23:86:cc:74:42:21:42:ca:6e:83:84:c5: 31:71:7d:ce:57:f9:56:20:4d:32:6d:b4:69:7b:85:9f:0a:15: cb:0f:a6:c3:c3:a4:64:a3:ba:7a:3c:51:0f:07:8f:b1:9a:f1: 00:19:e6:39:c9:e1:38:1e:91:06:20:2b:54:a6:3b:de:c3:bc: 72:8f:d7:ea:a8:fa:ca:85:f0:e1:24:9d:7e:ab:fe:b4:ff:2e: 85:68:b9:37:0a:61:32:5f:97:14:af:ba:0b:5d:9b:56:3d:01: a7:b6:37:d4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJU8nlY9HpFxJJnK8OldmsT+hdeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTUxMTlaFw0yNTAzMjYwMTU2MTlaMDMxMTAvBgNV BAMTKDg4NjNERkI5NUM3OTc2NjRCQjhFMUQxMUVEOTlGN0IxMzgxQTEyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeL3sq6MPNbmSx3GPT0fmbPifj 2PKQrgJjXI0YHNPfaJWrCcwnRAMd3oqE6gPs8X7KnoH81ar5S+SXauvLnKk090a5 24PmcuacoLtxYC7hBIC/8z5PnNNDHjcyKh1V7jIgdb8/3IPJY5nzGX56VCUuJ40W yu/XMF1kI+g92tRi5zqh++1JM0DIYZrWQ6/B592qvcrKBZkSuVcAPT7vXqqVbSPu 0E4M/G6EzDjE6f/98vKh+Dw/1qcfDH+XQ7WjD2TdS8T4CfTfj30FwnfgQc4YSit7 XPT+/30s/WAj7JVZDSMZXwTz+cmHgyy+r/LikB9iRhgIOvjCJyPp8xZr/FPrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiGPfuVx5dmS7jh0R7Zn3sTgaElswHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAMMA0GCSqGSIb3DQEBCwUAA4IBAQCcZiPOpA2OAuQ5UWqWnpfdiOt2EqhiF2U0 uXDYAoXg+wSZJfViLl8sVwldsFQFTWQBq+JF0zh721OBjA7Ol78fo4m/uQiHMBOY V14fbj21uT2UG7Nx/oMmmtxGjEAM3LALgOQM7zkfdOG5m9nz/quTdYX9PdtedWdD mB1gTHRj8VyoW3yeHjYJJ1Ehmr41KdDjoJAXfSsjhsx0QiFCym6DhMUxcX3OV/lW IE0ybbRpe4WfChXLD6bDw6Rko7p6PFEPB4+xmvEAGeY5yeE4HpEGICtUpjvew7xy j9fqqPrKhfDhJJ1+q/60/y6FaLk3CmEyX5cUr7oLXZtWPQGntjfU -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org