$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa File: 323430353a333734303a3a2f33322d3438203d3e203338353236.roa (raw, json) Hash identifier: VFuBujDwFKtgDnIgA8PAM7SmTkEnjdQI6TBZdMgh70A= Subject key identifier: AB:54:67:EB:35:7B:F2:BC:C0:93:2D:64:72:E9:06:70:28:02:9D:F7 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 20D060A4BA39591911DB4A3519F3C23A9CA085A8 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa Signing time: Sat 27 Jul 2024 03:17:51 +0000 ROA not before: Sat 27 Jul 2024 03:12:51 +0000 ROA not after: Sat 26 Jul 2025 03:17:51 +0000 asID: 38526 IP address blocks: 2405:3740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d0:60:a4:ba:39:59:19:11:db:4a:35:19:f3:c2:3a:9c:a0:85:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jul 27 03:12:51 2024 GMT Not After : Jul 26 03:17:51 2025 GMT Subject: CN=AB5467EB357BF2BCC0932D6472E9067028029DF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:a1:99:35:bf:3b:85:ab:66:d1:ba:2a:85: 9c:c2:5f:cf:de:1c:0e:71:a7:c8:18:fe:4f:0d:c6: 5c:62:07:c2:cc:0f:af:eb:3c:6a:00:8f:4e:8a:cf: 18:45:80:96:17:28:bc:a2:88:9b:82:51:6c:cd:04: 4f:31:94:4a:52:2d:0b:3f:ae:2e:7b:59:16:68:16: 4b:77:5b:fc:64:f2:31:c3:4f:7c:52:9b:b8:e5:e4: 8e:0c:61:e5:3c:b0:30:2b:57:0d:3e:4a:0d:b9:db: e3:b0:56:e6:68:b8:86:fd:89:f0:42:d3:56:99:b8: c5:c3:2f:21:5b:92:bc:6a:7b:53:4a:4b:09:64:53: 6c:5b:5c:59:cd:18:29:26:ca:de:ed:42:ba:72:02: 25:e7:50:65:89:3d:4d:dd:b6:75:e4:66:30:83:02: 81:e2:1e:b6:36:94:fb:85:3e:9e:63:8c:9f:36:e8: d0:30:85:5c:f4:8f:33:17:ee:27:b7:da:d7:d8:91: f7:49:2b:53:a6:41:56:d9:b4:8e:6e:c7:2d:9a:0b: c3:58:fb:2d:4c:34:4b:de:a2:d7:d3:a9:70:3f:bd: 64:0b:05:7c:a3:6f:21:0a:db:c7:08:0f:57:d0:71: 50:d3:45:f6:78:c2:59:e4:90:87:31:81:83:87:9d: 0e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:54:67:EB:35:7B:F2:BC:C0:93:2D:64:72:E9:06:70:28:02:9D:F7 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740::/32 Signature Algorithm: sha256WithRSAEncryption 85:92:eb:b2:84:6d:55:8b:f0:7c:45:a0:5a:7b:63:fe:44:6f: 54:35:23:37:a7:43:15:7d:03:31:d5:64:9e:4f:24:65:33:ce: 50:e8:07:62:60:74:76:6c:9c:fb:3c:53:1f:10:24:01:0b:e8: 82:d8:02:33:b9:8b:48:51:55:f4:e7:f9:a0:b9:81:2f:44:50: 12:46:bf:e8:b6:62:63:07:d6:b7:76:ee:ab:9b:72:3a:50:87: 1b:5b:33:a4:c0:1e:c6:85:40:79:37:ca:03:02:72:da:e6:b4: 4a:aa:1a:27:a6:ab:8e:7e:84:0c:ee:5b:5e:f1:80:2a:44:99: 77:c6:50:b0:ec:61:18:72:a0:9f:c1:4f:72:4b:bb:39:59:2e: f4:aa:32:e9:ec:c2:2f:2f:c1:80:fa:f6:5c:01:0a:ab:9b:09: 07:a5:68:07:a7:6f:09:f7:d7:8e:e9:0f:cd:e1:0d:5d:6c:89: 29:cd:3a:61:f4:b2:5c:c9:99:c3:8d:b2:36:73:59:34:f4:a8: 7d:d2:79:cf:bb:62:43:f4:cd:f2:21:f0:9c:88:cc:94:5c:62: 72:b0:ef:5f:94:3f:4c:20:0a:1f:e0:81:b9:d3:e0:0c:33:dc: 63:9d:df:0f:ab:11:e8:10:1c:ab:63:d0:42:de:c6:10:c9:be: 89:c4:b4:3b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUINBgpLo5WRkR20o1GfPCOpyghagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNDA3MjcwMzEyNTFaFw0yNTA3MjYwMzE3NTFaMDMxMTAvBgNV BAMTKEFCNTQ2N0VCMzU3QkYyQkNDMDkzMkQ2NDcyRTkwNjcwMjgwMjlERjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaG6GZNb87hatm0boqhZzCX8/e HA5xp8gY/k8NxlxiB8LMD6/rPGoAj06KzxhFgJYXKLyiiJuCUWzNBE8xlEpSLQs/ ri57WRZoFkt3W/xk8jHDT3xSm7jl5I4MYeU8sDArVw0+Sg252+OwVuZouIb9ifBC 01aZuMXDLyFbkrxqe1NKSwlkU2xbXFnNGCkmyt7tQrpyAiXnUGWJPU3dtnXkZjCD AoHiHrY2lPuFPp5jjJ826NAwhVz0jzMX7ie32tfYkfdJK1OmQVbZtI5uxy2aC8NY +y1MNEveotfTqXA/vWQLBXyjbyEK28cID1fQcVDTRfZ4wlnkkIcxgYOHnQ65AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUq1Rn6zV78rzAky1kcukGcCgCnfcwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNTMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBTdAMA0GCSqGSIb3 DQEBCwUAA4IBAQCFkuuyhG1Vi/B8RaBae2P+RG9UNSM3p0MVfQMx1WSeTyRlM85Q 6AdiYHR2bJz7PFMfECQBC+iC2AIzuYtIUVX05/mguYEvRFASRr/otmJjB9a3du6r m3I6UIcbWzOkwB7GhUB5N8oDAnLa5rRKqhonpquOfoQM7lte8YAqRJl3xlCw7GEY cqCfwU9yS7s5WS70qjLp7MIvL8GA+vZcAQqrmwkHpWgHp28J99eO6Q/N4Q1dbIkp zTph9LJcyZnDjbI2c1k09Kh90nnPu2JD9M3yIfCciMyUXGJysO9flD9MIAof4IG5 0+AMM9xjnd8PqxHoEByrY9BC3sYQyb6JxLQ7 -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:49 2024 by rpki-client on console-fra.rpki-client.org