$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f33322d3332203d3e203233363739.roa File: 323430313a323930303a3a2f33322d3332203d3e203233363739.roa (raw, json) Hash identifier: Yhneh/lIpwi4vI3a5VPrCrJj4yZMDfKPR6Jj89++cRU= Subject key identifier: 5D:2D:88:84:4E:DA:B2:84:15:F9:2C:13:4E:5F:39:25:FE:66:FF:24 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 3C33B486C06BD91650380B17285EA548A5FB29CC Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f33322d3332203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:24:22 +0000 ROA not before: Wed 31 Jan 2024 03:19:22 +0000 ROA not after: Wed 29 Jan 2025 03:24:22 +0000 asID: 23679 IP address blocks: 2401:2900::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:33:b4:86:c0:6b:d9:16:50:38:0b:17:28:5e:a5:48:a5:fb:29:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:19:22 2024 GMT Not After : Jan 29 03:24:22 2025 GMT Subject: CN=5D2D88844EDAB28415F92C134E5F3925FE66FF24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:ee:50:5d:43:52:0c:72:74:5d:01:68:28: ed:d4:f2:70:99:00:08:3d:f4:02:72:d3:40:1d:33: 98:71:9f:95:a4:d3:e5:27:78:69:1b:4a:5a:58:d7: d3:6b:18:e4:57:43:d8:1d:71:4f:11:5a:7c:34:ec: 04:56:ff:03:f8:d6:e5:34:6b:c9:f6:a3:29:f8:3b: 81:9b:bc:0b:63:ca:24:3a:9b:97:d1:aa:84:ca:96: af:91:2f:06:12:10:d8:09:2a:0f:1f:e4:6a:52:e5: 0e:55:2a:0c:7c:c7:68:c7:9e:bd:57:ea:ba:07:1e: 79:7e:aa:40:3b:1a:b7:25:48:38:ad:06:28:80:2d: e8:3b:79:26:7c:69:4a:12:7c:72:32:46:5d:3d:c2: 54:a8:89:f1:5c:ff:30:3f:d1:c8:9f:75:55:86:a1: 99:fa:47:50:41:c5:48:b3:45:cd:bb:5a:d2:03:5a: a3:e7:d3:c6:f7:c8:65:8c:aa:3f:04:32:d7:02:c4: ad:dd:d7:2a:36:33:47:7a:80:6a:56:0e:0a:71:77: 73:4c:29:ea:db:d4:ad:3c:11:72:1a:f8:29:09:59: 60:a3:2d:23:cd:72:fc:3f:e4:e1:75:40:45:11:7e: 9f:ee:d8:6e:5b:cb:47:41:5e:f5:0c:12:3c:ee:a7: 53:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2D:88:84:4E:DA:B2:84:15:F9:2C:13:4E:5F:39:25:FE:66:FF:24 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3a2f33322d3332203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900::/32 Signature Algorithm: sha256WithRSAEncryption b5:72:e6:88:e3:72:fd:21:3b:65:3b:86:3d:eb:c9:e9:63:dc: 79:c7:48:2e:95:bb:62:0a:ea:71:04:49:b3:59:3d:3d:27:7a: 53:61:51:18:eb:1c:87:cb:79:29:af:55:dc:fa:d0:cc:b4:96: 18:18:d2:1b:96:d3:fc:40:6f:1b:c0:ed:ed:f3:8e:53:c9:64: fc:4c:7c:34:40:cc:c1:71:12:f2:94:a9:db:b5:1c:93:5c:0b: b5:df:bd:86:5d:7f:e2:29:8d:9c:96:fc:1c:57:eb:6d:9c:6d: 24:96:be:08:91:0a:4d:86:b2:05:f0:fe:e7:0b:dd:04:ee:00: 35:59:01:19:4d:98:37:0a:e4:07:3a:d9:78:8c:cc:65:d1:84: e9:99:d9:d2:fd:f3:38:4b:d0:18:38:a3:cf:74:a3:5e:43:7a: 48:dd:4d:49:e0:ea:67:32:8f:a2:da:09:62:0d:11:e4:de:33: b5:05:5a:08:29:54:8c:bb:00:29:cc:62:7a:78:e8:8e:64:0c: 15:99:12:a0:04:db:82:27:42:b9:95:4b:62:68:2b:e9:3d:29: 09:f3:c7:8e:f7:5e:54:c7:93:2a:71:ac:8a:3c:c5:25:0b:0f: d7:65:ca:ea:6c:ef:cf:5c:21:d4:31:d9:f3:29:06:63:79:8b: ec:f0:4c:a5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUPDO0hsBr2RZQOAsXKF6lSKX7KcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzE5MjJaFw0yNTAxMjkwMzI0MjJaMDMxMTAvBgNV BAMTKDVEMkQ4ODg0NEVEQUIyODQxNUY5MkMxMzRFNUYzOTI1RkU2NkZGMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJe5QXUNSDHJ0XQFoKO3U8nCZ AAg99AJy00AdM5hxn5Wk0+UneGkbSlpY19NrGORXQ9gdcU8RWnw07ARW/wP41uU0 a8n2oyn4O4GbvAtjyiQ6m5fRqoTKlq+RLwYSENgJKg8f5GpS5Q5VKgx8x2jHnr1X 6roHHnl+qkA7GrclSDitBiiALeg7eSZ8aUoSfHIyRl09wlSoifFc/zA/0cifdVWG oZn6R1BBxUizRc27WtIDWqPn08b3yGWMqj8EMtcCxK3d1yo2M0d6gGpWDgpxd3NM Kerb1K08EXIa+CkJWWCjLSPNcvw/5OF1QEURfp/u2G5by0dBXvUMEjzup1PvAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUXS2IhE7asoQV+SwTTl85Jf5m/yQwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzMzNjM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkASkAMA0GCSqGSIb3 DQEBCwUAA4IBAQC1cuaI43L9ITtlO4Y968npY9x5x0gulbtiCupxBEmzWT09J3pT YVEY6xyHy3kpr1Xc+tDMtJYYGNIbltP8QG8bwO3t845TyWT8THw0QMzBcRLylKnb tRyTXAu1372GXX/iKY2clvwcV+ttnG0klr4IkQpNhrIF8P7nC90E7gA1WQEZTZg3 CuQHOtl4jMxl0YTpmdnS/fM4S9AYOKPPdKNeQ3pI3U1J4OpnMo+i2gliDRHk3jO1 BVoIKVSMuwApzGJ6eOiOZAwVmRKgBNuCJ0K5lUtiaCvpPSkJ88eO915Ux5MqcayK PMUlCw/XZcrqbO/PXCHUMdnzKQZjeYvs8Eyl -----END CERTIFICATE-----Generated at Fri May 3 11:55:16 2024 by rpki-client on console-fra.rpki-client.org