$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: 6j1cdn6ZgfoL5zJXM8WdiUItc33nrLA1hx1lHExhYV0= Subject key identifier: 63:BD:35:D0:58:F9:86:39:70:80:C6:31:14:6F:43:D5:2D:84:82:6A Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 033F2C306981418CC4071029B19089ACF5E74B5A Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:57:56 +0000 ROA not before: Wed 31 Jan 2024 03:52:56 +0000 ROA not after: Wed 29 Jan 2025 03:57:56 +0000 asID: 23679 IP address blocks: 2401:2900:8888::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:3f:2c:30:69:81:41:8c:c4:07:10:29:b1:90:89:ac:f5:e7:4b:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:52:56 2024 GMT Not After : Jan 29 03:57:56 2025 GMT Subject: CN=63BD35D058F986397080C631146F43D52D84826A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a0:ab:ab:2f:77:ae:d3:b7:24:63:4e:72:53: 89:89:f8:54:55:36:4a:41:a0:1f:e3:a4:c6:62:ec: 51:04:85:c3:c5:c6:fe:d6:42:db:49:81:b8:52:bc: f1:9a:6e:43:84:40:99:4a:4c:d4:0e:7d:24:8b:f5: 08:bd:95:9a:94:eb:5f:24:53:0a:ab:db:28:52:21: 51:5b:21:76:bd:af:8a:38:68:85:80:72:9f:b6:f0: 9c:33:f5:41:38:a3:a7:0b:10:e5:c1:6f:56:2f:cc: e7:74:48:51:fc:5e:65:f8:0f:fe:ef:a0:37:fc:25: 32:31:9a:f8:a4:95:be:d9:03:da:84:ec:ab:85:54: ab:e3:d6:1a:70:47:13:37:e4:a9:0c:05:b5:ba:27: c2:ca:9a:cd:65:81:98:af:1a:94:c7:4f:16:17:19: a6:39:e3:14:93:a9:c1:53:06:7b:7d:48:c9:fa:32: 35:61:e1:ff:74:28:c1:be:91:b0:12:5b:87:1e:21: 24:8b:b7:fd:ae:aa:a0:fa:8a:57:84:af:cb:d4:7c: 5a:1b:ed:f7:93:c3:91:3d:ae:3a:83:7f:6a:6b:76: 78:1b:38:31:7e:76:ae:60:84:84:cf:47:11:d0:19: 6a:c8:5b:05:b5:63:eb:46:65:de:d9:01:9f:32:2b: 57:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BD:35:D0:58:F9:86:39:70:80:C6:31:14:6F:43:D5:2D:84:82:6A X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383838383a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8888::/48 Signature Algorithm: sha256WithRSAEncryption 15:d2:fc:29:37:b6:d8:8f:a0:12:24:1c:91:4a:09:ac:b4:2e: 32:9b:a5:fc:66:b4:6f:70:2a:ba:6d:2e:a2:6f:8e:33:03:93: 2a:9f:66:93:db:9c:0d:57:dd:57:04:c5:a2:52:1a:d1:86:3d: 14:34:0a:f7:13:b3:06:64:8a:ad:b3:24:c2:f4:ff:93:3c:cb: 8e:74:7d:4a:f6:4e:e3:7a:80:d4:06:c8:1c:16:59:87:53:56: ff:58:d1:c8:61:3c:60:9a:61:bc:df:02:e9:ed:f2:75:ff:6a: 48:d2:a7:75:6b:87:63:72:09:ca:1a:67:12:ff:a8:09:43:41: 7c:79:9a:cb:00:0c:df:56:8d:f8:2f:ca:dd:13:c9:77:fd:21: b7:c2:92:5f:be:48:51:d0:21:cf:15:03:7f:d9:45:2a:75:8b: 42:41:27:09:44:36:c7:34:c0:c8:74:0e:c7:4e:f7:ff:4d:a1: a1:88:f6:86:b5:fa:c7:73:60:a1:d1:ab:94:96:45:5a:44:b5: cb:ad:9e:cb:16:ee:ce:2a:57:c8:64:46:58:da:ff:a6:68:cc: b2:88:65:b2:b7:0e:96:8c:4e:46:e2:69:fc:6c:10:76:9f:e7: fb:ce:b5:93:33:cc:a6:07:28:ec:1c:45:58:64:62:9b:77:0d: eb:bc:fc:4d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAz8sMGmBQYzEBxApsZCJrPXnS1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUyNTZaFw0yNTAxMjkwMzU3NTZaMDMxMTAvBgNV BAMTKDYzQkQzNUQwNThGOTg2Mzk3MDgwQzYzMTE0NkY0M0Q1MkQ4NDgyNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIoKurL3eu07ckY05yU4mJ+FRV NkpBoB/jpMZi7FEEhcPFxv7WQttJgbhSvPGabkOEQJlKTNQOfSSL9Qi9lZqU618k Uwqr2yhSIVFbIXa9r4o4aIWAcp+28Jwz9UE4o6cLEOXBb1YvzOd0SFH8XmX4D/7v oDf8JTIxmviklb7ZA9qE7KuFVKvj1hpwRxM35KkMBbW6J8LKms1lgZivGpTHTxYX GaY54xSTqcFTBnt9SMn6MjVh4f90KMG+kbASW4ceISSLt/2uqqD6ileEr8vUfFob 7feTw5E9rjqDf2prdngbODF+dq5ghITPRxHQGWrIWwW1Y+tGZd7ZAZ8yK1cbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUY7010Fj5hjlwgMYxFG9D1S2EgmowHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzODM4Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIiIMA0GCSqGSIb3DQEBCwUAA4IBAQAV0vwpN7bYj6ASJByRSgmstC4ym6X8ZrRv cCq6bS6ib44zA5Mqn2aT25wNV91XBMWiUhrRhj0UNAr3E7MGZIqtsyTC9P+TPMuO dH1K9k7jeoDUBsgcFlmHU1b/WNHIYTxgmmG83wLp7fJ1/2pI0qd1a4djcgnKGmcS /6gJQ0F8eZrLAAzfVo34L8rdE8l3/SG3wpJfvkhR0CHPFQN/2UUqdYtCQScJRDbH NMDIdA7HTvf/TaGhiPaGtfrHc2Ch0auUlkVaRLXLrZ7LFu7OKlfIZEZY2v+maMyy iGWytw6WjE5G4mn8bBB2n+f7zrWTM8ymByjsHEVYZGKbdw3rvPxN -----END CERTIFICATE-----Generated at Fri May 3 12:58:05 2024 by rpki-client on console-ams.rpki-client.org