$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: lqLSoV6LYI+uXPyvBvznbBkA0pqjtjokFKjaMQR9lHA= Subject key identifier: A4:9C:B2:0D:65:49:2E:79:08:AA:16:5C:6F:28:28:2C:44:DE:C1:28 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 18DD22116D39CB21873D74377CED9237B65FBC47 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:56:39 +0000 ROA not before: Wed 31 Jan 2024 03:51:39 +0000 ROA not after: Wed 29 Jan 2025 03:56:39 +0000 asID: 23679 IP address blocks: 2401:2900:8004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:dd:22:11:6d:39:cb:21:87:3d:74:37:7c:ed:92:37:b6:5f:bc:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:51:39 2024 GMT Not After : Jan 29 03:56:39 2025 GMT Subject: CN=A49CB20D65492E7908AA165C6F28282C44DEC128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:2e:ca:55:7a:ce:b5:a3:d4:04:ca:8b:10: 95:9c:24:79:8e:a7:3b:f2:ae:93:d5:84:bf:69:af: ed:ec:02:dd:26:d3:6c:5b:ba:45:8e:76:7b:a2:31: 6b:4f:97:b1:65:cc:c9:72:cc:5c:f8:b1:04:f8:18: 7c:ce:92:48:a9:81:04:39:ba:56:28:b8:2a:63:a2: 81:05:09:5a:0d:30:b2:f1:ed:63:a7:ab:b3:9e:52: 99:c4:a3:8a:b6:f2:90:82:6a:48:0d:b6:b7:25:50: 6d:99:dc:b0:c6:d5:e0:74:24:65:de:de:39:69:f9: b7:b5:6b:6f:86:2b:d6:c6:2a:35:fc:69:d3:d8:0c: 6a:0d:4b:b9:46:05:1c:a2:42:42:ef:68:eb:0a:7d: d3:fb:2b:e6:2d:2b:55:17:52:a4:0e:0b:b6:89:61: c8:09:8d:11:ac:bc:fe:90:36:1d:15:4b:be:8b:da: c7:54:99:65:9e:46:a6:b0:7b:d1:c9:ee:b8:22:7f: 62:4c:9e:bb:4b:99:6c:da:c6:1f:d8:5b:46:8a:59: 37:a9:9c:17:d2:45:f4:23:33:04:e6:1a:53:2a:75: 7d:cd:f1:b9:27:ef:02:f9:09:9a:01:0a:2a:19:f2: 76:6a:6b:76:62:3a:d9:f5:17:bb:33:74:39:d6:6e: 64:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9C:B2:0D:65:49:2E:79:08:AA:16:5C:6F:28:28:2C:44:DE:C1:28 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030343a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8004::/48 Signature Algorithm: sha256WithRSAEncryption 35:97:53:cf:e2:ea:dc:73:4c:fa:1b:ab:d1:c3:b4:a1:74:16: 2e:aa:4a:77:34:21:4c:d7:ca:98:72:78:00:88:fb:d8:50:15: 5b:78:4f:3f:1d:08:c9:05:42:56:61:65:72:c1:bf:26:18:59: d2:ad:90:dd:78:0f:90:fe:91:1f:0c:dc:7d:29:75:58:6b:dc: 41:74:8a:75:a8:4a:de:64:7d:7a:e9:54:a3:de:b7:14:32:8c: 9c:e7:62:73:72:34:9d:15:30:d5:a1:db:22:56:9e:1f:ec:2c: 97:aa:a4:48:2b:99:8c:9d:26:a2:2d:74:87:ea:4d:bf:91:38: 9b:fe:f8:f7:a6:e1:0f:25:90:66:f5:25:56:cb:10:32:41:5f: 64:7b:e3:63:e5:54:21:c7:c9:e2:8b:a1:91:81:9d:04:12:63: 5d:75:e3:00:e0:c4:3f:5f:a6:eb:00:25:a8:0d:88:0a:6b:54: 72:d7:fa:00:45:20:2f:bf:6c:58:aa:87:74:0a:3b:3e:1c:f3: 3e:94:a6:95:a8:42:96:c7:fe:8d:05:f8:43:b0:12:fe:f6:14: c0:6b:f8:c9:99:2d:b0:05:2d:27:6e:84:83:9c:ab:85:7f:b8: 59:5b:12:7a:ba:ec:ab:4e:72:93:27:06:cb:c2:d8:3e:5e:13: 26:93:0a:06 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGN0iEW05yyGHPXQ3fO2SN7ZfvEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUxMzlaFw0yNTAxMjkwMzU2MzlaMDMxMTAvBgNV BAMTKEE0OUNCMjBENjU0OTJFNzkwOEFBMTY1QzZGMjgyODJDNDRERUMxMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMy7KVXrOtaPUBMqLEJWcJHmO pzvyrpPVhL9pr+3sAt0m02xbukWOdnuiMWtPl7FlzMlyzFz4sQT4GHzOkkipgQQ5 ulYouCpjooEFCVoNMLLx7WOnq7OeUpnEo4q28pCCakgNtrclUG2Z3LDG1eB0JGXe 3jlp+be1a2+GK9bGKjX8adPYDGoNS7lGBRyiQkLvaOsKfdP7K+YtK1UXUqQOC7aJ YcgJjRGsvP6QNh0VS76L2sdUmWWeRqawe9HJ7rgif2JMnrtLmWzaxh/YW0aKWTep nBfSRfQjMwTmGlMqdX3N8bkn7wL5CZoBCioZ8nZqa3ZiOtn1F7szdDnWbmRDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpJyyDWVJLnkIqhZcbygoLETewSgwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAEMA0GCSqGSIb3DQEBCwUAA4IBAQA1l1PP4urcc0z6G6vRw7ShdBYuqkp3NCFM 18qYcngAiPvYUBVbeE8/HQjJBUJWYWVywb8mGFnSrZDdeA+Q/pEfDNx9KXVYa9xB dIp1qEreZH166VSj3rcUMoyc52JzcjSdFTDVodsiVp4f7CyXqqRIK5mMnSaiLXSH 6k2/kTib/vj3puEPJZBm9SVWyxAyQV9ke+Nj5VQhx8nii6GRgZ0EEmNddeMA4MQ/ X6brACWoDYgKa1Ry1/oARSAvv2xYqod0Cjs+HPM+lKaVqEKWx/6NBfhDsBL+9hTA a/jJmS2wBS0nboSDnKuFf7hZWxJ6uuyrTnKTJwbLwtg+XhMmkwoG -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org