$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: SmXYGgtp0Tk4f+mGFn9Julp3lFViABOlKx1fsvmm460= Subject key identifier: 08:AC:88:6E:3B:31:58:75:3E:27:23:9B:2E:A5:F0:32:10:91:BA:AC Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 449A85BC1922BC24C4A0995A71C92DAEA4B77116 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:57:40 +0000 ROA not before: Wed 27 Mar 2024 01:52:40 +0000 ROA not after: Wed 26 Mar 2025 01:57:40 +0000 asID: 38526 IP address blocks: 2405:3740:900f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:9a:85:bc:19:22:bc:24:c4:a0:99:5a:71:c9:2d:ae:a4:b7:71:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:52:40 2024 GMT Not After : Mar 26 01:57:40 2025 GMT Subject: CN=08AC886E3B3158753E27239B2EA5F0321091BAAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:d7:94:b7:5e:25:60:e1:ac:82:56:b4:cd: 4d:e0:de:39:6a:e3:78:29:1d:ae:cc:45:13:7b:e9: 57:72:62:a8:d5:4c:05:57:c0:e4:65:c5:5a:2d:73: aa:1c:28:f1:82:4c:6d:8e:eb:fe:7f:0f:b0:7a:f1: 7f:eb:9b:d5:5f:9e:c1:37:40:3f:33:12:17:a4:c3: 55:a5:d5:2b:2b:c8:47:6d:1c:9c:31:2d:fe:5b:37: c3:ea:ce:f6:54:0f:61:e8:dd:56:61:2d:04:f4:c5: a4:ff:01:9b:dc:46:2d:f1:e6:7d:5c:57:d8:ab:2d: 5b:79:ee:4d:57:45:66:bb:c9:6c:2e:a3:05:20:e0: f0:85:6e:cd:4c:db:95:83:8e:55:07:ce:31:67:92: 51:2a:bf:5e:91:8a:02:23:6e:13:5b:39:d7:cf:b3: 73:ad:d4:00:72:8f:c5:c1:77:6c:5e:55:0d:ce:99: 65:46:5d:cc:f9:77:8f:e4:98:01:af:84:aa:ff:09: 94:29:2b:63:2f:20:58:86:bf:58:1b:c2:9c:b7:91: 3a:62:bf:a8:e3:85:68:2a:6d:37:c8:9f:b5:50:50: 0e:cd:78:ed:b0:8f:e9:8b:8b:91:53:17:ed:55:26: cd:c9:d0:10:ac:95:6b:e4:fd:b1:65:80:26:14:c8: 05:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:AC:88:6E:3B:31:58:75:3E:27:23:9B:2E:A5:F0:32:10:91:BA:AC X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900f::/48 Signature Algorithm: sha256WithRSAEncryption 38:3b:b4:e0:48:30:f4:10:95:b6:67:50:da:05:d2:2b:d4:33: ce:86:d9:04:ef:b8:c6:3e:71:eb:ef:90:49:11:c4:69:ac:f7: 5a:67:08:39:f1:44:45:aa:f0:13:10:c5:6f:a9:41:22:d9:c4: 79:2d:cd:a3:b1:3e:bb:74:8d:c3:0f:ff:29:50:62:09:9b:a0: 55:3c:39:51:3a:37:a3:58:f1:f0:e7:46:af:37:f7:c1:22:6e: 09:6e:a4:d5:51:94:3b:e8:7f:bb:49:62:a2:7e:82:89:22:9e: c9:28:f9:63:d7:d1:38:bf:f8:5c:da:81:81:2f:fa:9e:ca:1c: 79:80:9c:6d:9e:18:f8:56:a7:71:5d:d0:0d:a9:ff:53:36:f1: 80:50:65:c8:74:3f:6f:a6:09:fe:56:51:5f:23:4d:85:6f:d6: ee:da:00:b1:b8:eb:92:cf:e9:04:b3:56:62:d9:21:76:20:d0: ea:0a:4a:f1:7d:c3:db:3c:9c:cb:c1:17:27:4d:df:1c:7f:68: 65:77:21:9f:76:da:a0:ee:1c:e6:cc:cf:59:73:4e:e7:a2:d3: 02:98:7a:41:48:8e:b3:a6:8b:cb:ee:44:db:17:3b:c5:8d:c8: 1d:95:62:db:ea:17:92:a9:bb:b1:e5:2a:6a:a6:cb:0a:e0:0c: 13:ea:f0:ac -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURJqFvBkivCTEoJlaccktrqS3cRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTUyNDBaFw0yNTAzMjYwMTU3NDBaMDMxMTAvBgNV BAMTKDA4QUM4ODZFM0IzMTU4NzUzRTI3MjM5QjJFQTVGMDMyMTA5MUJBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAINeUt14lYOGsgla0zU3g3jlq 43gpHa7MRRN76VdyYqjVTAVXwORlxVotc6ocKPGCTG2O6/5/D7B68X/rm9VfnsE3 QD8zEhekw1Wl1SsryEdtHJwxLf5bN8PqzvZUD2Ho3VZhLQT0xaT/AZvcRi3x5n1c V9irLVt57k1XRWa7yWwuowUg4PCFbs1M25WDjlUHzjFnklEqv16RigIjbhNbOdfP s3Ot1AByj8XBd2xeVQ3OmWVGXcz5d4/kmAGvhKr/CZQpK2MvIFiGv1gbwpy3kTpi v6jjhWgqbTfIn7VQUA7NeO2wj+mLi5FTF+1VJs3J0BCslWvk/bFlgCYUyAXBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCKyIbjsxWHU+JyObLqXwMhCRuqwwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAPMA0GCSqGSIb3DQEBCwUAA4IBAQA4O7TgSDD0EJW2Z1DaBdIr1DPOhtkE77jG PnHr75BJEcRprPdaZwg58URFqvATEMVvqUEi2cR5Lc2jsT67dI3DD/8pUGIJm6BV PDlROjejWPHw50avN/fBIm4JbqTVUZQ76H+7SWKifoKJIp7JKPlj19E4v/hc2oGB L/qeyhx5gJxtnhj4VqdxXdANqf9TNvGAUGXIdD9vpgn+VlFfI02Fb9bu2gCxuOuS z+kEs1Zi2SF2INDqCkrxfcPbPJzLwRcnTd8cf2hldyGfdtqg7hzmzM9Zc07notMC mHpBSI6zpovL7kTbFzvFjcgdlWLb6heSqbux5SpqpssK4AwT6vCs -----END CERTIFICATE-----Generated at Sat Jun 1 22:08:22 2024 by rpki-client on console-fra.rpki-client.org