$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: XXDxubtEfaN0q3NayqMxjoMG5ACVuCXpbsazK1mXU4g= Subject key identifier: 71:14:BB:00:B5:C7:53:C3:07:39:7E:1A:BA:EE:BE:AD:6C:FB:4D:F1 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 0103AB49B07A5BD6821645C890C7627C7DFCD12E Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 27 Mar 2024 01:59:59 +0000 ROA not before: Wed 27 Mar 2024 01:54:59 +0000 ROA not after: Wed 26 Mar 2025 01:59:59 +0000 asID: 38526 IP address blocks: 2405:3740:9012::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:03:ab:49:b0:7a:5b:d6:82:16:45:c8:90:c7:62:7c:7d:fc:d1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Mar 27 01:54:59 2024 GMT Not After : Mar 26 01:59:59 2025 GMT Subject: CN=7114BB00B5C753C307397E1ABAEEBEAD6CFB4DF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:83:e9:d1:1b:5f:2d:59:c1:8b:07:e5:b2: f9:77:b3:12:2d:23:c2:6c:f5:2f:af:08:c5:d5:3b: c2:ef:6c:89:3c:4b:83:4e:5e:57:1a:8f:18:8f:2b: a5:cf:ee:ba:11:81:56:b9:c8:8f:51:47:f4:de:29: f4:83:ea:e0:67:86:0e:8b:fc:dd:7f:18:d1:bf:10: 82:16:14:1c:15:44:1d:64:15:49:a4:1b:b0:cf:22: 3d:36:25:86:18:d3:4e:94:6c:d8:5a:22:e8:00:f5: 45:34:64:4c:83:ed:9a:03:f1:8a:9a:13:d6:03:6f: a5:f1:b3:86:b2:fc:8b:55:73:d4:68:e3:73:60:27: 80:cb:e9:a3:d5:60:94:28:6a:48:5f:b6:e4:66:62: a1:32:a8:3d:ec:02:59:85:8e:c0:68:9b:66:66:fb: 06:fa:bf:c4:b3:b2:22:f1:e1:55:8f:a4:c1:c6:d1: 71:85:0a:64:7b:2b:55:fe:84:6f:a7:e8:2f:92:d0: 31:8b:3c:6a:a6:bc:52:d4:c8:83:7b:b8:70:71:7a: 8c:a4:13:90:88:92:ec:73:76:be:40:3d:d9:ab:4d: e4:3d:8c:e7:67:40:76:b1:74:bd:c9:c4:cc:fd:e2: fc:13:45:ba:a7:49:05:5a:78:78:df:64:ef:aa:0d: db:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:14:BB:00:B5:C7:53:C3:07:39:7E:1A:BA:EE:BE:AD:6C:FB:4D:F1 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9012::/48 Signature Algorithm: sha256WithRSAEncryption 97:6d:be:4e:1f:6d:43:c8:95:ad:58:7a:1f:6b:2b:0b:97:00: 17:3c:f7:b2:0e:13:fa:08:a1:b3:2e:5a:ea:12:76:c4:43:68: 7e:02:04:c2:09:48:4b:dc:d4:ab:24:bd:b3:3d:b9:f4:a9:d9: 55:1d:94:a7:29:f4:39:98:49:ed:49:b7:ca:5c:83:bf:10:06: c7:6a:5a:d2:6d:52:7f:a0:08:1d:46:c8:86:8c:13:e0:a0:e7: 89:c5:10:fe:5a:e4:de:61:ae:e9:4a:5c:29:d9:15:51:83:7e: c0:e9:8b:01:f3:f8:26:2c:c5:ce:93:43:a0:90:b6:54:7b:54: 5d:77:33:46:80:c0:e1:60:2f:42:84:31:b1:4e:80:e5:73:45: 72:4b:40:21:99:8f:d7:a4:72:27:3f:9c:a1:d6:43:85:18:63: 5b:e8:dc:5d:23:86:2a:f5:a6:b4:39:e9:7e:b3:4c:6f:17:ae: b8:8b:1d:30:37:f7:b7:2a:f8:c5:a2:b6:68:92:3c:fb:38:39: 84:71:66:79:7d:4e:c1:a0:36:c8:70:cd:30:5c:ba:35:e3:d0: bd:3c:7e:3f:ed:ca:74:bc:c4:59:a6:c3:34:6c:a3:70:ce:fe: 28:7b:7b:dd:14:bc:c8:fc:bf:49:d1:9c:b5:81:a6:fc:b0:35: 6c:7a:45:47 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAQOrSbB6W9aCFkXIkMdifH380S4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDAzMjcwMTU0NTlaFw0yNTAzMjYwMTU5NTlaMDMxMTAvBgNV BAMTKDcxMTRCQjAwQjVDNzUzQzMwNzM5N0UxQUJBRUVCRUFENkNGQjRERjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDTIPp0RtfLVnBiwflsvl3sxIt I8Js9S+vCMXVO8LvbIk8S4NOXlcajxiPK6XP7roRgVa5yI9RR/TeKfSD6uBnhg6L /N1/GNG/EIIWFBwVRB1kFUmkG7DPIj02JYYY006UbNhaIugA9UU0ZEyD7ZoD8Yqa E9YDb6Xxs4ay/ItVc9Ro43NgJ4DL6aPVYJQoakhftuRmYqEyqD3sAlmFjsBom2Zm +wb6v8SzsiLx4VWPpMHG0XGFCmR7K1X+hG+n6C+S0DGLPGqmvFLUyIN7uHBxeoyk E5CIkuxzdr5APdmrTeQ9jOdnQHaxdL3JxMz94vwTRbqnSQVaeHjfZO+qDduNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcRS7ALXHU8MHOX4auu6+rWz7TfEwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJASMA0GCSqGSIb3DQEBCwUAA4IBAQCXbb5OH21DyJWtWHofaysLlwAXPPeyDhP6 CKGzLlrqEnbEQ2h+AgTCCUhL3NSrJL2zPbn0qdlVHZSnKfQ5mEntSbfKXIO/EAbH alrSbVJ/oAgdRsiGjBPgoOeJxRD+WuTeYa7pSlwp2RVRg37A6YsB8/gmLMXOk0Og kLZUe1RddzNGgMDhYC9ChDGxToDlc0VyS0AhmY/XpHInP5yh1kOFGGNb6NxdI4Yq 9aa0Oel+s0xvF664ix0wN/e3KvjForZokjz7ODmEcWZ5fU7BoDbIcM0wXLo149C9 PH4/7cp0vMRZpsM0bKNwzv4oe3vdFLzI/L9J0Zy1gab8sDVsekVH -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org