$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: ITLvMLlHe5Gloxcxq4jSlf85wnfwWNRBZk9otlKwJVI= Subject key identifier: 49:22:19:39:F3:58:0B:7D:5E:04:08:84:B3:22:12:1D:BF:FB:23:07 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 0B5BBB1472B42BCE4BBC44E443F82F183ABFE50F Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:54:40 +0000 ROA not before: Wed 31 Jan 2024 03:49:40 +0000 ROA not after: Wed 29 Jan 2025 03:54:40 +0000 asID: 23679 IP address blocks: 2401:2900:3f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:5b:bb:14:72:b4:2b:ce:4b:bc:44:e4:43:f8:2f:18:3a:bf:e5:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:49:40 2024 GMT Not After : Jan 29 03:54:40 2025 GMT Subject: CN=49221939F3580B7D5E040884B322121DBFFB2307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:ff:15:5c:a6:ce:e7:1d:3e:67:02:93:40: a2:ef:d4:3d:4a:c5:f5:2f:67:e1:75:76:ee:26:d3: 41:6c:90:14:ab:36:5d:77:9c:30:7f:a9:a1:8f:68: 19:2d:49:d5:1d:ed:04:86:ed:87:64:68:8b:8f:15: b5:92:11:02:ec:7d:02:98:99:e9:c1:83:83:ee:96: 12:86:e6:45:29:85:d5:65:de:d2:8a:ee:51:f1:9c: 15:29:ad:52:95:07:c6:f5:5e:22:86:8b:7c:fe:11: 1c:8e:41:e3:81:c8:c9:19:76:7c:90:74:5a:ff:a1: 6c:a8:1f:29:e1:88:21:68:fe:16:b6:5e:77:17:5a: c5:00:a4:f2:a0:c8:e9:cf:09:59:0c:c0:b0:06:49: 75:54:63:d4:c0:5c:5e:d9:b5:c2:a2:9b:49:2d:72: 6d:49:ec:67:b4:30:df:4b:17:04:74:1f:6e:ff:da: 2a:f2:7a:29:8f:83:a9:f1:49:ea:20:fe:6d:e0:f4: f7:db:92:10:d1:20:03:8f:67:c4:82:79:38:c0:70: c3:8f:1b:56:84:47:8f:ff:c4:fa:2e:ff:9b:f4:a8: ee:63:c4:96:2f:b6:7c:2f:3c:fc:34:94:fd:ce:83: d5:45:09:3d:74:0f:64:0b:9a:20:b8:0d:f4:41:55: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:22:19:39:F3:58:0B:7D:5E:04:08:84:B3:22:12:1D:BF:FB:23:07 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:3f00::/48 Signature Algorithm: sha256WithRSAEncryption 31:9f:c7:25:5a:a8:46:ee:39:84:ca:67:84:86:3d:e1:a5:22: fb:c1:9d:d0:a5:14:37:9c:cc:54:eb:44:78:a8:d6:52:1e:e0: 11:c2:67:a6:d0:94:77:03:9d:9b:d0:45:f5:d8:c0:66:d1:39: 2e:54:e1:d9:6b:26:d0:d7:c0:0a:f5:63:69:12:58:c0:4c:a7: d2:55:5e:e8:e7:8e:66:27:1a:48:f7:63:9e:cd:53:1a:65:11: 43:90:b1:95:ef:66:e5:6f:25:ff:9d:d6:3c:86:ef:bd:2a:bd: ae:18:32:30:8b:93:df:9b:c5:d0:f2:f8:af:1f:5c:0f:59:b9: b9:de:ce:f9:05:ef:c2:60:71:aa:be:52:0e:fb:c1:39:a7:32: bd:43:9d:af:1b:5c:c8:c3:29:a4:d2:17:a5:04:8e:e0:03:55: 5a:34:b5:e6:38:6f:57:e7:d8:69:d5:2b:41:0e:ba:06:c9:57: 5b:0e:41:4c:d9:1b:52:e1:3f:26:a3:d6:d3:f2:7f:f8:1a:5c: 9f:a6:7d:bf:47:68:01:75:81:a6:d3:ee:43:ec:3d:95:6c:5a: ac:8b:c5:75:c4:83:f2:6b:08:54:60:c1:44:c2:e3:55:92:30: c2:56:84:f7:13:45:39:0f:d3:1b:33:36:fd:c1:79:36:43:31: de:81:7e:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC1u7FHK0K85LvETkQ/gvGDq/5Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzQ5NDBaFw0yNTAxMjkwMzU0NDBaMDMxMTAvBgNV BAMTKDQ5MjIxOTM5RjM1ODBCN0Q1RTA0MDg4NEIzMjIxMjFEQkZGQjIzMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1SP8VXKbO5x0+ZwKTQKLv1D1K xfUvZ+F1du4m00FskBSrNl13nDB/qaGPaBktSdUd7QSG7YdkaIuPFbWSEQLsfQKY menBg4PulhKG5kUphdVl3tKK7lHxnBUprVKVB8b1XiKGi3z+ERyOQeOByMkZdnyQ dFr/oWyoHynhiCFo/ha2XncXWsUApPKgyOnPCVkMwLAGSXVUY9TAXF7ZtcKim0kt cm1J7Ge0MN9LFwR0H27/2iryeimPg6nxSeog/m3g9PfbkhDRIAOPZ8SCeTjAcMOP G1aER4//xPou/5v0qO5jxJYvtnwvPPw0lP3Og9VFCT10D2QLmiC4DfRBVSVzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUSSIZOfNYC31eBAiEsyISHb/7IwcwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzM2NjMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AD8AMA0GCSqGSIb3DQEBCwUAA4IBAQAxn8clWqhG7jmEymeEhj3hpSL7wZ3QpRQ3 nMxU60R4qNZSHuARwmem0JR3A52b0EX12MBm0TkuVOHZaybQ18AK9WNpEljATKfS VV7o545mJxpI92OezVMaZRFDkLGV72blbyX/ndY8hu+9Kr2uGDIwi5Pfm8XQ8viv H1wPWbm53s75Be/CYHGqvlIO+8E5pzK9Q52vG1zIwymk0helBI7gA1VaNLXmOG9X 59hp1StBDroGyVdbDkFM2RtS4T8mo9bT8n/4Glyfpn2/R2gBdYGm0+5D7D2VbFqs i8V1xIPyawhUYMFEwuNVkjDCVoT3E0U5D9MbMzb9wXk2QzHegX7W -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org