$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: UEy/ddV+BzKAnH8X0r4ZEpmWH5YsGcctzBoudNjVD5w= Subject key identifier: B7:15:4A:4E:CB:9A:F6:41:1D:42:7B:4E:71:DB:45:1A:43:58:0D:EF Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1202622C7D5C7D60FAFEBD162794973C12671AA3 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:56:45 +0000 ROA not before: Wed 27 Mar 2024 01:51:45 +0000 ROA not after: Wed 26 Mar 2025 01:56:45 +0000 asID: 38526 IP address blocks: 2405:3740:900d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:02:62:2c:7d:5c:7d:60:fa:fe:bd:16:27:94:97:3c:12:67:1a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:51:45 2024 GMT Not After : Mar 26 01:56:45 2025 GMT Subject: CN=B7154A4ECB9AF6411D427B4E71DB451A43580DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:f7:56:5c:6d:41:31:f7:a8:c7:98:83:fb: f9:24:15:7b:9c:1f:2b:47:e6:09:56:bb:9e:06:1f: 68:10:82:d8:c1:9b:19:f3:88:36:4d:07:2a:55:ef: 30:db:ec:06:9e:aa:82:2d:e0:21:3b:29:05:56:1c: bd:23:3c:04:e8:8a:ea:3d:10:2a:72:70:e9:d5:03: bd:00:f0:df:d6:51:31:22:a4:51:62:10:7d:87:9d: 34:66:5e:f1:86:31:ee:bb:f6:12:0b:d5:d8:ef:d2: 76:b9:2f:74:6a:9a:c3:45:a5:00:17:ea:a4:d2:6c: ef:39:10:f5:1d:b7:57:32:80:22:6d:7b:bc:ba:3f: 8a:ca:0a:2a:1e:9e:50:fe:c5:a7:cd:d6:09:1a:27: 22:19:9a:74:1a:89:a3:55:38:ec:18:76:c8:61:d9: ce:eb:c1:22:1e:21:47:a3:43:98:2c:ec:cf:e3:a3: 44:8e:6b:5f:eb:d5:3a:c0:83:7e:f3:a0:81:15:8b: 0a:84:e5:5e:dd:ed:38:55:bc:d0:d7:e4:9f:37:f9: 28:f7:6d:2a:71:05:f1:f2:46:e0:a5:c0:b3:24:6c: dd:42:3d:c7:d6:68:83:11:9c:3c:d4:de:56:d3:5d: f5:91:32:58:5a:97:0f:70:f3:07:d1:f7:5d:ed:2a: 98:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:15:4A:4E:CB:9A:F6:41:1D:42:7B:4E:71:DB:45:1A:43:58:0D:EF X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900d::/48 Signature Algorithm: sha256WithRSAEncryption 70:02:14:1b:e6:a8:46:1f:86:79:fb:17:1e:33:36:80:4d:62: ff:0f:b1:61:2b:8b:69:50:25:54:46:a6:ee:af:78:68:d9:d3: 77:b6:1c:f7:bc:98:21:52:06:9a:87:b9:e0:c5:d4:d4:10:e5: 83:f2:cb:19:39:f8:f8:87:7e:f9:5d:ed:1a:0d:15:12:b1:f8: 84:e2:09:a9:38:5f:3c:0c:89:ff:0b:11:d7:f8:55:ce:42:c5: a8:ab:d4:28:35:33:6e:92:38:d4:56:ae:ec:3d:26:2f:6b:4c: 74:82:ec:54:13:73:7f:49:5b:f6:9c:03:8d:2e:5c:43:b3:28: b6:c8:52:b1:8e:c3:2c:72:37:a7:55:e1:94:79:5d:15:3d:14: e3:53:d2:c1:d8:4e:ac:6a:a7:d6:6e:a9:2f:1a:89:c8:f6:6c: 2d:a4:9a:81:82:37:f6:7b:9b:c1:78:67:a7:94:74:83:19:a9: 64:e0:3f:10:b0:cc:f0:88:2e:9d:77:8e:a2:7a:3c:e9:a8:5b: d3:c7:ae:d9:19:1d:d4:80:1c:18:5a:8a:b3:a7:ce:8e:6b:bd: 22:dc:6e:1e:1c:b5:a3:61:8f:90:f5:2f:90:ab:40:bd:d3:ef: c6:5f:68:1d:ca:db:14:46:b0:91:4b:1b:1e:7f:33:3d:61:6f: 67:2b:8b:e7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEgJiLH1cfWD6/r0WJ5SXPBJnGqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTUxNDVaFw0yNTAzMjYwMTU2NDVaMDMxMTAvBgNV BAMTKEI3MTU0QTRFQ0I5QUY2NDExRDQyN0I0RTcxREI0NTFBNDM1ODBERUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9RfdWXG1BMfeox5iD+/kkFXuc HytH5glWu54GH2gQgtjBmxnziDZNBypV7zDb7AaeqoIt4CE7KQVWHL0jPAToiuo9 ECpycOnVA70A8N/WUTEipFFiEH2HnTRmXvGGMe679hIL1djv0na5L3RqmsNFpQAX 6qTSbO85EPUdt1cygCJte7y6P4rKCioenlD+xafN1gkaJyIZmnQaiaNVOOwYdshh 2c7rwSIeIUejQ5gs7M/jo0SOa1/r1TrAg37zoIEViwqE5V7d7ThVvNDX5J83+Sj3 bSpxBfHyRuClwLMkbN1CPcfWaIMRnDzU3lbTXfWRMlhalw9w8wfR913tKphbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtxVKTsua9kEdQntOcdtFGkNYDe8wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJANMA0GCSqGSIb3DQEBCwUAA4IBAQBwAhQb5qhGH4Z5+xceMzaATWL/D7FhK4tp UCVURqbur3ho2dN3thz3vJghUgaah7ngxdTUEOWD8ssZOfj4h375Xe0aDRUSsfiE 4gmpOF88DIn/CxHX+FXOQsWoq9QoNTNukjjUVq7sPSYva0x0guxUE3N/SVv2nAON LlxDsyi2yFKxjsMscjenVeGUeV0VPRTjU9LB2E6saqfWbqkvGonI9mwtpJqBgjf2 e5vBeGenlHSDGalk4D8QsMzwiC6dd46iejzpqFvTx67ZGR3UgBwYWoqzp86Oa70i 3G4eHLWjYY+Q9S+Qq0C90+/GX2gdytsURrCRSxsefzM9YW9nK4vn -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org