$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030363a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030363a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: B8RJjgiGrCwDwbCvqaOC/w0JNk3S8U0DYodxB7Uoxs8= Subject key identifier: 3F:4E:75:FF:C6:4C:F0:89:9A:7F:A6:06:C5:D5:51:9F:D5:9C:1B:AD Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 5F43805279C10A3B7E97E24D772A54A53E96EC62 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030363a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:57:16 +0000 ROA not before: Wed 31 Jan 2024 03:52:16 +0000 ROA not after: Wed 29 Jan 2025 03:57:16 +0000 asID: 23679 IP address blocks: 2401:2900:8006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:43:80:52:79:c1:0a:3b:7e:97:e2:4d:77:2a:54:a5:3e:96:ec:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:52:16 2024 GMT Not After : Jan 29 03:57:16 2025 GMT Subject: CN=3F4E75FFC64CF0899A7FA606C5D5519FD59C1BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:d6:25:37:e7:97:41:3e:6a:4b:d2:c3:fc: 0b:f3:e7:33:36:06:a3:91:00:9e:38:13:cb:b1:aa: 64:ac:a3:b1:31:93:3c:ed:f3:07:ed:6c:c6:da:86: 55:be:b4:5e:1e:b6:fc:f2:f9:29:a5:5d:9e:64:b1: 58:81:a5:00:a3:63:fc:40:f0:88:e5:b1:6e:d8:4b: 90:a7:41:0f:fa:64:fd:4d:4c:e9:26:be:3e:79:f8: ee:3c:0f:09:18:cf:d3:35:af:5d:55:75:82:cf:db: 5a:c4:92:7a:4c:c2:70:0d:84:db:cf:48:90:62:ca: e8:4b:0a:3d:ba:3d:14:3b:30:35:89:e2:ab:bf:67: 9d:22:15:be:98:26:cd:72:9d:1b:1f:1e:25:cf:aa: fb:ab:fd:96:11:9a:fa:8d:c0:6a:3e:80:33:e8:24: ce:14:16:35:36:63:4a:97:11:68:bc:9e:e4:78:0c: eb:90:d7:46:7f:c5:33:00:1c:2c:42:e8:68:7b:ea: 20:30:24:4d:71:e5:46:b7:94:e1:4e:7c:bb:9f:2a: e1:bc:c7:38:eb:aa:1f:b3:f3:79:b4:f6:fd:44:3e: a1:d3:ee:b8:69:6b:b6:54:35:26:3b:1b:6c:0f:ce: 34:06:56:0f:c1:2d:16:f1:3c:ed:2e:a1:67:63:ea: a8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4E:75:FF:C6:4C:F0:89:9A:7F:A6:06:C5:D5:51:9F:D5:9C:1B:AD X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030363a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8006::/48 Signature Algorithm: sha256WithRSAEncryption 9d:77:94:95:7b:24:39:71:8f:03:3b:23:57:f2:cf:b6:f7:1f: 17:98:ad:d5:21:b3:96:1d:c1:56:ba:28:85:0e:ac:42:60:48: 44:27:48:60:b5:e2:c7:0f:6d:e8:e0:3e:d1:ef:28:92:cb:d3: b0:36:1d:d3:af:8b:31:f9:47:fc:f6:17:2f:53:41:d1:51:f8: bc:88:c6:e8:f3:5c:b0:05:97:85:03:22:22:86:61:98:f4:3a: 9a:fd:89:13:4f:1c:81:6b:a6:7c:d4:15:3d:9d:2c:71:19:48: 26:1d:c0:95:fa:c9:f3:ad:e0:3e:23:03:31:2a:0d:c8:96:6f: 24:9a:e9:d4:5f:46:d3:e2:ce:85:a9:fc:03:84:12:a0:b4:df: c7:8a:05:6b:af:22:3a:b6:ad:99:e4:92:84:ae:e0:b7:61:8e: 0f:d5:2b:2d:f0:0d:0d:f2:10:77:94:60:8a:b5:37:13:4f:6c: 1a:a0:7f:37:dc:3c:b5:72:ca:1b:a2:d4:42:a4:0f:23:41:35: 3e:2c:50:89:3a:f2:f7:2e:41:81:2e:4a:8f:fd:11:72:b8:97: ed:32:0f:18:c4:6b:ab:84:7a:1a:5d:9f:65:77:b8:00:1e:8f: 7e:89:22:b4:a2:9d:a2:54:3b:2a:3e:25:dd:e8:61:e7:b8:3d: 3b:f3:28:37 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUX0OAUnnBCjt+l+JNdypUpT6W7GIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUyMTZaFw0yNTAxMjkwMzU3MTZaMDMxMTAvBgNV BAMTKDNGNEU3NUZGQzY0Q0YwODk5QTdGQTYwNkM1RDU1MTlGRDU5QzFCQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCof9YlN+eXQT5qS9LD/Avz5zM2 BqORAJ44E8uxqmSso7Exkzzt8wftbMbahlW+tF4etvzy+SmlXZ5ksViBpQCjY/xA 8IjlsW7YS5CnQQ/6ZP1NTOkmvj55+O48DwkYz9M1r11VdYLP21rEknpMwnANhNvP SJBiyuhLCj26PRQ7MDWJ4qu/Z50iFb6YJs1ynRsfHiXPqvur/ZYRmvqNwGo+gDPo JM4UFjU2Y0qXEWi8nuR4DOuQ10Z/xTMAHCxC6Gh76iAwJE1x5Ua3lOFOfLufKuG8 xzjrqh+z83m09v1EPqHT7rhpa7ZUNSY7G2wPzjQGVg/BLRbxPO0uoWdj6qiLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUP051/8ZM8Imaf6YGxdVRn9WcG60wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAGMA0GCSqGSIb3DQEBCwUAA4IBAQCdd5SVeyQ5cY8DOyNX8s+29x8XmK3VIbOW HcFWuiiFDqxCYEhEJ0hgteLHD23o4D7R7yiSy9OwNh3Tr4sx+Uf89hcvU0HRUfi8 iMbo81ywBZeFAyIihmGY9Dqa/YkTTxyBa6Z81BU9nSxxGUgmHcCV+snzreA+IwMx Kg3Ilm8kmunUX0bT4s6FqfwDhBKgtN/HigVrryI6tq2Z5JKEruC3YY4P1Sst8A0N 8hB3lGCKtTcTT2waoH833Dy1csobotRCpA8jQTU+LFCJOvL3LkGBLkqP/RFyuJft Mg8YxGurhHoaXZ9ld7gAHo9+iSK0op2iVDsqPiXd6GHnuD078yg3 -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org