$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: xaLE8mxoqqzvbvHVJBa0U8mpfj0nHcL9BGIOBO2cbo4= Subject key identifier: EE:E6:E5:92:C7:6A:A3:F5:B7:91:BD:BE:18:EF:5F:AB:DD:41:11:92 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 20AD7AF4F9702CEA838B90A2716FD3969424F369 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:55:38 +0000 ROA not before: Wed 31 Jan 2024 03:50:38 +0000 ROA not after: Wed 29 Jan 2025 03:55:38 +0000 asID: 23679 IP address blocks: 2401:2900:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ad:7a:f4:f9:70:2c:ea:83:8b:90:a2:71:6f:d3:96:94:24:f3:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:50:38 2024 GMT Not After : Jan 29 03:55:38 2025 GMT Subject: CN=EEE6E592C76AA3F5B791BDBE18EF5FABDD411192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:25:20:0d:c2:45:3e:f3:9d:4d:0c:c7:2e:48: ed:9a:56:35:74:86:c6:4b:88:1a:32:5c:8a:00:d1: 5e:cb:18:13:5b:63:5d:c0:68:d3:8e:96:1d:0a:1d: 02:12:2f:9d:99:5f:01:85:d4:80:2d:f5:d3:96:95: b5:1b:18:d6:de:ec:f2:f2:6d:b2:bf:18:46:21:99: 8f:59:0f:78:93:9f:3a:92:21:47:4f:35:11:ee:03: 87:62:2a:cc:77:b5:c0:65:a8:71:92:74:95:e6:72: 34:45:d0:d0:88:76:83:c6:d7:0c:ef:bd:90:ef:35: 7a:72:e0:bf:c7:d0:83:40:0a:28:b9:cc:61:53:e6: 4f:b9:0d:fb:f7:31:d2:84:e2:47:0b:9f:48:85:b0: 3f:15:72:c6:f4:f0:9e:d3:1d:eb:41:88:17:fc:b9: 6a:04:52:46:3f:8a:79:52:27:7c:89:30:5b:2b:95: 3c:cf:25:31:bb:61:3c:73:fc:96:d4:64:ac:78:6a: 46:6f:96:37:ce:16:3f:c1:d1:c6:e1:99:80:b8:2d: 61:96:5a:63:dd:e0:6a:86:ab:ba:6d:1d:a7:a8:d9: 25:be:f8:ff:4d:cd:ba:13:a2:d4:7f:00:cd:8b:a4: 8a:e4:46:6e:f2:ff:e3:67:9d:4a:2b:70:a3:49:54: 50:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E6:E5:92:C7:6A:A3:F5:B7:91:BD:BE:18:EF:5F:AB:DD:41:11:92 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030313a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8001::/48 Signature Algorithm: sha256WithRSAEncryption 41:90:8e:bc:40:28:63:1b:9f:41:5a:bb:1d:9e:53:9a:e3:80: b8:eb:64:75:d8:87:1a:14:5c:5e:fe:63:ae:6a:30:2d:52:5f: 26:48:80:5c:b1:d6:52:39:64:d4:a4:07:59:38:fe:a6:78:08: e4:fa:70:3d:c4:dd:19:d4:f6:1d:67:e8:a7:16:38:82:50:f8: 11:88:ce:c6:46:07:6b:a1:90:ed:c2:72:ab:25:64:0a:c4:7d: 47:4c:ac:8e:6a:54:fe:09:7a:b6:50:58:67:7a:65:3b:32:f8: 3e:2d:c5:df:37:f7:d2:cb:0d:dc:25:41:9b:6d:d9:6a:d6:18: 7d:06:15:2d:b4:3c:c0:bc:ab:92:72:62:aa:58:38:72:ab:cc: 66:ae:bb:c9:ce:ee:71:eb:62:c3:37:16:bc:4b:33:db:05:8d: 8b:1d:3b:4f:da:b3:7f:47:86:8c:58:4f:cb:ce:8c:33:9b:1e: fb:75:4c:3e:67:36:8b:17:d8:59:a3:5a:57:76:7e:9a:7d:57: de:13:cd:e0:12:7a:02:09:31:34:d9:00:e0:88:5f:57:fc:6b: 05:27:68:1c:9a:a0:20:62:d9:89:84:b8:a6:2c:b0:80:1d:26: a0:86:a9:2a:dc:ff:5e:c7:15:ef:c2:c1:af:ab:44:31:19:0e: 4e:a1:73:bc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIK169PlwLOqDi5CicW/TlpQk82kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUwMzhaFw0yNTAxMjkwMzU1MzhaMDMxMTAvBgNV BAMTKEVFRTZFNTkyQzc2QUEzRjVCNzkxQkRCRTE4RUY1RkFCREQ0MTExOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpJSANwkU+851NDMcuSO2aVjV0 hsZLiBoyXIoA0V7LGBNbY13AaNOOlh0KHQISL52ZXwGF1IAt9dOWlbUbGNbe7PLy bbK/GEYhmY9ZD3iTnzqSIUdPNRHuA4diKsx3tcBlqHGSdJXmcjRF0NCIdoPG1wzv vZDvNXpy4L/H0INACii5zGFT5k+5Dfv3MdKE4kcLn0iFsD8Vcsb08J7THetBiBf8 uWoEUkY/inlSJ3yJMFsrlTzPJTG7YTxz/JbUZKx4akZvljfOFj/B0cbhmYC4LWGW WmPd4GqGq7ptHaeo2SW++P9NzboTotR/AM2LpIrkRm7y/+NnnUorcKNJVFCjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7ublksdqo/W3kb2+GO9fq91BEZIwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIABMA0GCSqGSIb3DQEBCwUAA4IBAQBBkI68QChjG59BWrsdnlOa44C462R12Ica FFxe/mOuajAtUl8mSIBcsdZSOWTUpAdZOP6meAjk+nA9xN0Z1PYdZ+inFjiCUPgR iM7GRgdroZDtwnKrJWQKxH1HTKyOalT+CXq2UFhnemU7Mvg+LcXfN/fSyw3cJUGb bdlq1hh9BhUttDzAvKuScmKqWDhyq8xmrrvJzu5x62LDNxa8SzPbBY2LHTtP2rN/ R4aMWE/Lzowzmx77dUw+ZzaLF9hZo1pXdn6afVfeE83gEnoCCTE02QDgiF9X/GsF J2gcmqAgYtmJhLimLLCAHSaghqkq3P9exxXvwsGvq0QxGQ5OoXO8 -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org