$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: sYa4Zq05xy9RvsL3OOLImYIEIVRvW/7Z9wJ8uOVEkN8= Subject key identifier: A6:C2:86:31:7F:34:A1:30:FD:E0:65:8E:34:48:D4:7C:13:64:75:37 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 52F0058DF8AE052025D6976D16A0973CA4A36A22 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:54:02 +0000 ROA not before: Wed 31 Jan 2024 03:49:02 +0000 ROA not after: Wed 29 Jan 2025 03:54:02 +0000 asID: 23679 IP address blocks: 2401:2900:3f00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:f0:05:8d:f8:ae:05:20:25:d6:97:6d:16:a0:97:3c:a4:a3:6a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:49:02 2024 GMT Not After : Jan 29 03:54:02 2025 GMT Subject: CN=A6C286317F34A130FDE0658E3448D47C13647537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8e:3d:1e:37:ac:b3:b8:22:84:7a:e8:bc:ce: 89:24:5f:88:21:a6:63:ff:5e:3d:e3:49:5b:8e:b1: 67:54:7b:80:b6:ab:d0:fe:5c:28:86:aa:5a:0b:8d: 70:ce:0e:c1:76:e4:f3:ef:f2:b9:af:41:fb:d1:53: 0f:23:d2:9e:8c:04:ec:93:a6:bb:81:5c:9a:d9:46: c5:b6:30:a9:06:0d:60:72:9b:f5:03:f2:de:9b:37: 18:6d:ea:fd:5d:7e:57:ba:15:f6:38:26:3a:2e:15: cc:69:9d:c0:3b:c6:6a:8d:62:7d:05:13:d7:d5:85: 89:bb:62:71:e0:c3:23:71:06:0e:e7:9f:ad:de:fc: a2:6e:37:39:8c:35:ba:3f:59:a9:df:83:5f:8c:a8: 75:60:e0:ac:df:05:dc:33:85:1f:53:d2:c2:6b:cf: 79:95:a7:10:3a:d8:8d:33:ea:93:ef:04:ac:3a:90: 1f:31:c2:66:c7:5d:dc:0e:cf:54:8e:39:c9:0d:7f: 46:ba:f6:fc:06:f4:82:43:8b:37:11:a9:31:27:5c: 0e:5c:54:4c:84:d5:c4:d5:40:02:6d:84:02:80:a0: 0b:76:88:2e:22:3a:d5:79:3e:0e:9f:59:8d:6f:5a: 3d:f6:df:6f:1f:c7:1a:1e:0f:db:53:b4:64:e9:dd: 04:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C2:86:31:7F:34:A1:30:FD:E0:65:8E:34:48:D4:7C:13:64:75:37 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:3f00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:e8:7b:ec:72:2a:16:ce:7b:32:8d:0a:95:96:0e:87:b0:93: 70:a9:75:95:b5:10:c9:88:70:31:98:8b:1b:b7:e3:a0:1d:b3: 70:31:32:0e:82:a8:8a:7f:18:1e:a4:a0:8d:e6:40:96:12:14: b7:bf:a0:58:e4:a1:92:ef:bf:44:94:23:45:04:b1:97:cc:78: 9e:3a:f1:55:93:af:ba:5b:95:52:4d:b0:7f:3d:39:bc:7e:df: 9f:f3:8f:9e:3d:fa:a4:e2:b2:a7:ce:2d:01:c8:fd:ae:e9:64: 6f:56:25:00:78:f9:ec:ca:6a:09:1c:8b:3a:2a:d9:83:90:76: 50:43:f8:c0:ac:2a:18:f6:9d:7b:2f:4d:31:21:b7:2c:7c:a4: 52:4a:e3:96:f0:c1:0c:31:f0:57:a7:c8:8e:21:d7:03:32:1b: a9:0a:7d:54:71:0d:95:c4:88:21:da:10:d8:30:be:ee:36:a2: db:0b:14:00:a3:5d:5c:b7:60:7c:fd:cf:e1:16:26:ef:c3:11: 67:24:c0:83:4a:68:6f:d4:fb:4f:e1:e5:84:de:62:34:62:8e: 42:52:e0:ad:4a:1e:c0:6e:aa:25:b1:97:2f:98:fc:8c:b1:ea: 11:f6:fc:e7:f3:29:40:95:f5:b5:d2:e6:46:73:a8:35:aa:5c: 46:e6:d6:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUvAFjfiuBSAl1pdtFqCXPKSjaiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzQ5MDJaFw0yNTAxMjkwMzU0MDJaMDMxMTAvBgNV BAMTKEE2QzI4NjMxN0YzNEExMzBGREUwNjU4RTM0NDhENDdDMTM2NDc1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDijj0eN6yzuCKEeui8zokkX4gh pmP/Xj3jSVuOsWdUe4C2q9D+XCiGqloLjXDODsF25PPv8rmvQfvRUw8j0p6MBOyT pruBXJrZRsW2MKkGDWBym/UD8t6bNxht6v1dfle6FfY4JjouFcxpncA7xmqNYn0F E9fVhYm7YnHgwyNxBg7nn63e/KJuNzmMNbo/Wanfg1+MqHVg4KzfBdwzhR9T0sJr z3mVpxA62I0z6pPvBKw6kB8xwmbHXdwOz1SOOckNf0a69vwG9IJDizcRqTEnXA5c VEyE1cTVQAJthAKAoAt2iC4iOtV5Pg6fWY1vWj32328fxxoeD9tTtGTp3QT7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpsKGMX80oTD94GWONEjUfBNkdTcwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzM2NjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAEp AD8wDQYJKoZIhvcNAQELBQADggEBAAzoe+xyKhbOezKNCpWWDoewk3CpdZW1EMmI cDGYixu346Ads3AxMg6CqIp/GB6koI3mQJYSFLe/oFjkoZLvv0SUI0UEsZfMeJ46 8VWTr7pblVJNsH89Obx+35/zj549+qTisqfOLQHI/a7pZG9WJQB4+ezKagkcizoq 2YOQdlBD+MCsKhj2nXsvTTEhtyx8pFJK45bwwQwx8FenyI4h1wMyG6kKfVRxDZXE iCHaENgwvu42otsLFACjXVy3YHz9z+EWJu/DEWckwINKaG/U+0/h5YTeYjRijkJS 4K1KHsBuqiWxly+Y/Iyx6hH2/OfzKUCV9bXS5kZzqDWqXEbm1uU= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org