$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: 1hpkse3VBKJlAmaodIYxiyzqZTimENYf4offz6rgEyY= Subject key identifier: B9:57:5D:18:6B:CA:35:B6:17:3B:5A:BC:BD:FF:AD:B0:71:1C:DC:32 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 2A2460FBABF7CF03D48C2B02DA1CD592C1192C1A Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa Signing time: Thu 01 Feb 2024 00:08:46 +0000 ROA not before: Thu 01 Feb 2024 00:03:46 +0000 ROA not after: Thu 30 Jan 2025 00:08:46 +0000 asID: 23679 IP address blocks: 2401:2900:200::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:24:60:fb:ab:f7:cf:03:d4:8c:2b:02:da:1c:d5:92:c1:19:2c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Feb 1 00:03:46 2024 GMT Not After : Jan 30 00:08:46 2025 GMT Subject: CN=B9575D186BCA35B6173B5ABCBDFFADB0711CDC32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d5:ab:b7:37:67:f6:d0:24:20:5a:fd:57:55: 6b:71:c1:11:7a:ae:19:21:75:65:0c:b6:7d:d3:02: cb:fa:ca:7b:c8:aa:0a:3e:e1:d1:ad:12:1a:72:1c: 57:20:6a:32:c0:0f:14:73:9b:2e:ef:d5:e2:39:5f: 62:51:ce:8c:b8:c6:ea:06:9a:0d:e9:de:23:d1:95: 5c:e2:bc:49:5f:8a:97:25:a8:b1:73:29:5a:72:2d: 92:80:b1:27:7f:0c:8a:c6:15:ab:96:0a:b0:be:e0: d4:f9:02:f2:94:82:f1:00:cb:3a:ea:bb:3e:c7:22: b4:0a:ca:ec:82:32:cd:01:6a:03:e6:34:34:af:51: f8:b1:5b:c9:8d:5a:d1:08:6c:e1:32:dd:16:45:c4: 54:41:69:a1:0f:5b:2c:f0:60:c4:76:6e:94:2f:6e: da:be:90:6a:87:3a:d7:b7:8f:b6:8a:1f:02:fd:df: 65:40:8c:8a:7e:79:44:ac:0a:f0:f0:a5:6b:6f:03: c4:18:7f:b0:d5:08:b4:41:30:02:78:44:3a:65:8e: 0f:18:5a:07:ea:3a:57:6c:c6:e7:55:6d:ed:4c:af: cc:cd:19:f9:22:50:7d:c3:35:31:42:d8:8e:75:10: 0a:91:7d:3a:a8:76:16:0d:13:ef:37:59:2a:0c:78: 16:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:57:5D:18:6B:CA:35:B6:17:3B:5A:BC:BD:FF:AD:B0:71:1C:DC:32 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:200::/40 Signature Algorithm: sha256WithRSAEncryption 85:9f:8f:ee:54:9e:55:a2:c4:63:75:09:25:98:7f:70:ce:c5: 85:5f:0f:25:00:2a:a5:ef:f5:d0:f6:79:95:ee:11:55:12:cb: e7:63:f0:d9:02:ec:d6:26:85:5b:04:a8:9e:0b:60:f9:b3:fa: 37:a3:0c:96:76:44:57:51:0e:63:ba:71:d7:32:3d:64:a5:01: 3c:e5:a6:46:96:e4:58:40:b2:5e:2e:ed:48:0e:9b:c4:d8:7d: 28:c5:e3:50:37:bd:9e:ba:92:1b:16:01:f6:7a:c8:61:76:7f: bd:04:a7:24:f8:7c:42:04:86:06:79:b8:20:3e:f5:de:f5:e6: 96:a8:88:05:bc:57:8f:53:72:fe:77:5a:a3:f9:a1:6d:0b:dd: 1b:5a:5c:0b:70:e3:77:aa:34:d4:e0:52:78:af:5f:e4:d0:65: f6:e3:1a:b9:96:58:8c:58:77:4e:96:7c:6e:8e:f2:22:b2:cb: 18:d9:4e:bb:09:de:1b:e4:83:2f:c0:6b:b4:85:39:1e:39:c0: 16:6f:e7:21:f3:14:a7:a4:99:4c:74:55:0d:96:34:d2:de:1e: 4c:68:3a:f7:16:ca:85:53:e3:98:81:cb:d2:f4:3f:ae:f3:97: 04:56:db:f9:99:a7:c4:3e:d3:ff:fa:e1:cc:fd:de:e2:49:33: 2f:f5:34:ee -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUKiRg+6v3zwPUjCsC2hzVksEZLBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAyMDEwMDAzNDZaFw0yNTAxMzAwMDA4NDZaMDMxMTAvBgNV BAMTKEI5NTc1RDE4NkJDQTM1QjYxNzNCNUFCQ0JERkZBREIwNzExQ0RDMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC51au3N2f20CQgWv1XVWtxwRF6 rhkhdWUMtn3TAsv6ynvIqgo+4dGtEhpyHFcgajLADxRzmy7v1eI5X2JRzoy4xuoG mg3p3iPRlVzivElfipclqLFzKVpyLZKAsSd/DIrGFauWCrC+4NT5AvKUgvEAyzrq uz7HIrQKyuyCMs0BagPmNDSvUfixW8mNWtEIbOEy3RZFxFRBaaEPWyzwYMR2bpQv btq+kGqHOte3j7aKHwL932VAjIp+eUSsCvDwpWtvA8QYf7DVCLRBMAJ4RDpljg8Y WgfqOldsxudVbe1Mr8zNGfkiUH3DNTFC2I51EAqRfTqodhYNE+83WSoMeBbzAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUuVddGGvKNbYXO1q8vf+tsHEc3DIwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzIzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQBKQAC MA0GCSqGSIb3DQEBCwUAA4IBAQCFn4/uVJ5VosRjdQklmH9wzsWFXw8lACql7/XQ 9nmV7hFVEsvnY/DZAuzWJoVbBKieC2D5s/o3owyWdkRXUQ5junHXMj1kpQE85aZG luRYQLJeLu1IDpvE2H0oxeNQN72eupIbFgH2eshhdn+9BKck+HxCBIYGebggPvXe 9eaWqIgFvFePU3L+d1qj+aFtC90bWlwLcON3qjTU4FJ4r1/k0GX24xq5lliMWHdO lnxujvIisssY2U67Cd4b5IMvwGu0hTkeOcAWb+ch8xSnpJlMdFUNljTS3h5MaDr3 FsqFU+OYgcvS9D+u85cEVtv5mafEPtP/+uHM/d7iSTMv9TTu -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org