$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030303a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: JE3AtVJu22dOCZ5XesobNgA8Y8FnRgzuxWlljzd1vdc= Subject key identifier: 1C:05:BD:11:7C:2F:53:B4:1D:C8:11:53:1D:AC:65:7E:30:AF:71:5F Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 5C69166BE9F141D0F280DF938564838DE7D6A587 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:55:13 +0000 ROA not before: Wed 31 Jan 2024 03:50:13 +0000 ROA not after: Wed 29 Jan 2025 03:55:13 +0000 asID: 23679 IP address blocks: 2401:2900:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:69:16:6b:e9:f1:41:d0:f2:80:df:93:85:64:83:8d:e7:d6:a5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:50:13 2024 GMT Not After : Jan 29 03:55:13 2025 GMT Subject: CN=1C05BD117C2F53B41DC811531DAC657E30AF715F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:36:b2:ba:2c:09:d8:90:fd:03:24:a2:c2: ef:74:51:bb:47:ee:70:e7:02:1c:91:71:8f:32:4b: 1c:23:0f:b9:d8:ba:b2:28:ff:05:91:b1:88:35:50: 3f:18:71:88:73:b7:68:4b:a3:3c:2f:ed:00:2a:7e: 01:a0:28:bf:19:4d:fb:13:b1:77:07:54:70:2c:9c: 04:19:25:e8:c0:29:24:9e:ec:da:a5:d1:81:c1:a8: 06:aa:95:b4:84:ce:46:2b:a1:5f:60:31:a0:9b:19: 09:e3:40:4b:b2:c1:66:72:45:42:40:9e:13:2e:d4: 96:37:76:c6:7e:1f:85:4f:10:4e:6d:94:f0:52:dc: a5:63:5f:9a:6c:f5:c4:85:f8:1e:d6:b4:e5:4c:21: 02:b4:56:e7:d1:82:34:6b:16:26:c1:d7:08:40:3a: e8:be:cb:57:a7:80:2d:81:e3:3b:2c:cd:63:4b:f1: 19:26:78:be:7a:c5:9e:3e:3d:29:ea:3f:04:a7:0f: cd:a3:34:2c:d8:01:9c:54:fa:96:af:e6:9b:26:22: 7d:91:46:60:f2:c1:05:e9:c7:dd:4a:b7:d8:ee:b7: e4:8a:64:f0:cc:aa:5f:a2:dc:73:31:d4:11:12:ae: 94:fe:e3:b9:2d:e9:1b:99:9f:c7:0e:bf:5a:7e:8e: da:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:05:BD:11:7C:2F:53:B4:1D:C8:11:53:1D:AC:65:7E:30:AF:71:5F X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8000::/48 Signature Algorithm: sha256WithRSAEncryption b4:22:76:50:e0:9a:d7:c5:48:e6:08:64:bb:1d:c8:6f:2c:91: 9f:ca:5f:5a:4a:93:d8:12:fe:4d:4d:5b:1b:30:b1:b4:0a:e3: 17:7c:dc:31:cc:f6:67:f1:43:15:02:0b:f3:22:ca:d5:54:83: 96:8d:6c:fb:7c:a8:49:0a:03:02:7c:d0:7f:5c:86:aa:d0:d3: 7a:67:06:aa:7f:97:95:d8:61:83:38:e6:3f:17:8e:65:a9:97: 6b:57:81:0b:54:0a:e3:5c:b0:4e:68:12:27:cd:01:58:2a:db: b9:1c:24:7e:d8:0e:36:02:da:78:13:ca:c6:fc:eb:6e:fe:67: 24:aa:48:2f:2d:b8:2a:cf:9c:98:3c:74:1d:3d:44:f0:18:40: 10:db:f7:b7:9e:f7:ee:0f:5c:0f:bc:6f:09:cd:ee:bf:de:ad: d0:5d:2e:1a:e7:46:d5:5f:25:96:94:7f:a8:0e:55:6e:a4:a8: 69:73:6b:53:4b:19:5c:a8:d6:b9:bc:f2:62:db:8e:0c:3b:81: de:5a:ab:b3:fa:b9:d5:89:6f:48:6e:bb:63:5c:e6:74:31:c6: 15:b3:d7:7a:90:91:d4:08:bb:d9:ac:06:df:2b:2e:e8:23:ad: 44:17:1d:dd:2e:d8:ae:b9:fe:22:6b:b5:02:12:07:37:45:06: 9d:9e:b1:d7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXGkWa+nxQdDygN+ThWSDjefWpYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUwMTNaFw0yNTAxMjkwMzU1MTNaMDMxMTAvBgNV BAMTKDFDMDVCRDExN0MyRjUzQjQxREM4MTE1MzFEQUM2NTdFMzBBRjcxNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu3jayuiwJ2JD9AySiwu90UbtH 7nDnAhyRcY8ySxwjD7nYurIo/wWRsYg1UD8YcYhzt2hLozwv7QAqfgGgKL8ZTfsT sXcHVHAsnAQZJejAKSSe7Nql0YHBqAaqlbSEzkYroV9gMaCbGQnjQEuywWZyRUJA nhMu1JY3dsZ+H4VPEE5tlPBS3KVjX5ps9cSF+B7WtOVMIQK0VufRgjRrFibB1whA Oui+y1engC2B4zsszWNL8RkmeL56xZ4+PSnqPwSnD82jNCzYAZxU+pav5psmIn2R RmDywQXpx91Kt9jut+SKZPDMql+i3HMx1BESrpT+47kt6RuZn8cOv1p+jtqTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHAW9EXwvU7QdyBFTHaxlfjCvcV8wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAAMA0GCSqGSIb3DQEBCwUAA4IBAQC0InZQ4JrXxUjmCGS7HchvLJGfyl9aSpPY Ev5NTVsbMLG0CuMXfNwxzPZn8UMVAgvzIsrVVIOWjWz7fKhJCgMCfNB/XIaq0NN6 Zwaqf5eV2GGDOOY/F45lqZdrV4ELVArjXLBOaBInzQFYKtu5HCR+2A42Atp4E8rG /Otu/mckqkgvLbgqz5yYPHQdPUTwGEAQ2/e3nvfuD1wPvG8Jze6/3q3QXS4a50bV XyWWlH+oDlVupKhpc2tTSxlcqNa5vPJi244MO4HeWquz+rnViW9IbrtjXOZ0McYV s9d6kJHUCLvZrAbfKy7oI61EFx3dLtiuuf4ia7UCEgc3RQadnrHX -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org