$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a3130303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: NRuK0tW2ONQV0pPJEnqiTKqcq4KsZF4xfEmzDU+soxA= Subject key identifier: 45:B7:CF:5B:6B:FC:F1:D0:D8:08:33:25:FE:35:4C:54:18:82:C9:44 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 0B8EC5793FBB929B724D4E9A69B208132AE3BA14 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34302d3430203d3e203233363739.roa Signing time: Wed 20 Mar 2024 08:02:39 +0000 ROA not before: Wed 20 Mar 2024 07:57:39 +0000 ROA not after: Wed 19 Mar 2025 08:02:39 +0000 asID: 23679 IP address blocks: 2401:2900:100::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:8e:c5:79:3f:bb:92:9b:72:4d:4e:9a:69:b2:08:13:2a:e3:ba:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Mar 20 07:57:39 2024 GMT Not After : Mar 19 08:02:39 2025 GMT Subject: CN=45B7CF5B6BFCF1D0D8083325FE354C541882C944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f6:3b:ad:4d:b0:88:8a:5b:b7:a1:7d:f7:e1: d4:72:22:f7:8f:a1:3c:ba:39:d8:f6:a2:8d:dc:f7: 72:f8:9b:f4:1a:90:f0:eb:35:8c:ef:75:73:66:a5: d8:ff:78:ba:a1:1c:90:a7:74:fb:54:ed:70:de:d4: 0b:54:cb:5a:00:ae:5b:9d:cf:3d:9f:44:e9:d8:f0: 6c:64:3a:24:e0:b9:78:59:a5:e0:37:24:73:ef:8c: 0f:8e:a1:81:03:b0:de:92:75:78:ed:0b:95:55:22: 42:b3:d8:a7:c0:bc:87:41:ed:b2:7d:f1:ac:92:b1: 01:48:b7:bb:11:56:41:c2:b5:9c:03:c5:0a:9e:2d: 19:92:e3:43:77:30:2a:17:ea:86:64:ee:0e:f4:35: af:29:40:6f:0e:87:30:4a:41:30:d9:3c:0d:68:3d: 98:da:26:bd:f2:2c:4b:f0:c4:b6:6b:74:2b:40:19: 9a:3c:a5:08:dd:61:36:2c:e4:bb:4e:4d:96:b0:24: e0:9e:63:c2:3a:dc:6e:24:df:e2:33:73:fd:66:79: d5:db:54:22:1f:fa:5f:75:ef:53:a0:8a:29:3d:3e: 84:0f:34:65:e2:37:70:1c:bc:2f:ef:63:02:71:2c: 2d:5c:35:29:49:48:2b:51:60:e5:59:17:d6:4c:eb: 73:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B7:CF:5B:6B:FC:F1:D0:D8:08:33:25:FE:35:4C:54:18:82:C9:44 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:100::/40 Signature Algorithm: sha256WithRSAEncryption 19:55:f3:90:f1:61:60:8e:bc:d7:6a:1f:76:20:57:9a:1f:ea: 16:0b:5d:73:11:4c:ad:81:ab:56:26:d7:27:22:34:8c:da:fc: 4e:e3:1d:ee:7a:35:d8:e6:50:8f:4f:78:33:3e:5d:e6:ab:f1: c9:d2:e0:76:db:76:0f:03:5c:37:6a:46:79:64:01:3b:91:98: f3:42:a4:f6:5d:a7:a4:6d:db:59:44:96:f4:b9:88:a6:c2:b5: a4:b9:ca:6b:7b:25:26:08:da:c7:cd:0b:d9:af:aa:17:c5:20: bf:4d:d3:36:5c:0a:e8:84:de:bc:ab:6e:cc:2d:de:7b:de:12: 29:92:20:27:cb:0c:d0:eb:38:56:38:0c:af:e1:5b:1e:31:6c: bb:66:bd:f1:aa:03:53:8d:ab:1a:61:38:14:40:35:18:29:b5: a3:70:21:1d:72:95:75:bc:26:9b:96:96:87:ef:52:b8:b1:af: b4:aa:60:f3:c1:87:89:89:34:6e:3c:81:ba:cb:76:41:de:44: c6:05:37:ec:a1:84:fb:29:7d:cb:9d:c7:93:63:71:56:a0:41: b7:07:88:33:43:98:f2:c9:85:6b:fa:f7:e8:35:ea:ab:3b:15: 6b:0d:db:7e:da:d8:0d:e0:6e:1c:17:1b:53:95:d7:38:7e:e0: a5:23:80:29 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUC47FeT+7kptyTU6aabIIEyrjuhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAzMjAwNzU3MzlaFw0yNTAzMTkwODAyMzlaMDMxMTAvBgNV BAMTKDQ1QjdDRjVCNkJGQ0YxRDBEODA4MzMyNUZFMzU0QzU0MTg4MkM5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV9jutTbCIilu3oX334dRyIveP oTy6Odj2oo3c93L4m/QakPDrNYzvdXNmpdj/eLqhHJCndPtU7XDe1AtUy1oArlud zz2fROnY8GxkOiTguXhZpeA3JHPvjA+OoYEDsN6SdXjtC5VVIkKz2KfAvIdB7bJ9 8aySsQFIt7sRVkHCtZwDxQqeLRmS40N3MCoX6oZk7g70Na8pQG8OhzBKQTDZPA1o PZjaJr3yLEvwxLZrdCtAGZo8pQjdYTYs5LtOTZawJOCeY8I63G4k3+Izc/1medXb VCIf+l9171Ogiik9PoQPNGXiN3AcvC/vYwJxLC1cNSlJSCtRYOVZF9ZM63N7AgMB AAGjggI6MIICNjAdBgNVHQ4EFgQURbfPW2v88dDYCDMl/jVMVBiCyUQwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzEzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQBKQAB MA0GCSqGSIb3DQEBCwUAA4IBAQAZVfOQ8WFgjrzXah92IFeaH+oWC11zEUytgatW JtcnIjSM2vxO4x3uejXY5lCPT3gzPl3mq/HJ0uB223YPA1w3akZ5ZAE7kZjzQqT2 XaekbdtZRJb0uYimwrWkucpreyUmCNrHzQvZr6oXxSC/TdM2XArohN68q27MLd57 3hIpkiAnywzQ6zhWOAyv4VseMWy7Zr3xqgNTjasaYTgUQDUYKbWjcCEdcpV1vCab lpaH71K4sa+0qmDzwYeJiTRuPIG6y3ZB3kTGBTfsoYT7KX3LnceTY3FWoEG3B4gz Q5jyyYVr+vfoNeqrOxVrDdt+2tgN4G4cFxtTldc4fuClI4Ap -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org