$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa File: 323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa (raw, json) Hash identifier: 7kKSv9eSVVI4ENXqQx1IXTFok9ax1XURahRUZ1wTW2w= Subject key identifier: 87:BE:DA:9D:26:0B:F3:04:AE:B0:DB:90:86:CD:6C:EC:7D:E6:8B:25 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 76CF721816150E94886719684581EFDCCE89B146 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:52:04 +0000 ROA not before: Wed 31 Jan 2024 03:47:04 +0000 ROA not after: Wed 29 Jan 2025 03:52:04 +0000 asID: 23679 IP address blocks: 2401:2900:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:cf:72:18:16:15:0e:94:88:67:19:68:45:81:ef:dc:ce:89:b1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:47:04 2024 GMT Not After : Jan 29 03:52:04 2025 GMT Subject: CN=87BEDA9D260BF304AEB0DB9086CD6CEC7DE68B25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c9:fb:d4:58:72:62:5d:48:f0:41:59:13:2d: 5c:17:b6:90:02:03:de:c9:6c:78:5e:58:cc:74:5d: a8:11:5a:2e:de:ab:c6:df:16:71:d1:0c:cd:91:a9: 38:2b:3f:0b:bf:a2:7f:ae:2d:40:6e:3d:af:a9:94: 26:0d:6a:ba:c7:df:28:fb:c9:d6:76:23:5c:06:48: 23:7f:2b:c9:73:db:20:9b:23:c9:28:54:09:37:ae: 69:c6:e8:fe:6e:04:54:20:0e:a2:10:39:4c:f5:38: 7c:f4:f2:ee:10:7f:8a:20:8d:31:d9:6d:ca:3b:45: 34:f8:e9:e2:b6:91:3f:d5:96:e2:8e:bf:8b:12:f5: f0:df:3a:e7:46:26:71:d6:ca:79:71:b9:47:58:cf: 21:65:ea:de:48:8a:2b:a0:85:8a:4c:e4:a0:00:76: 45:2c:7d:9e:59:10:5b:ff:60:5d:ea:f2:0d:2a:37: ea:23:c0:a2:50:bc:e6:fb:9f:8a:d3:80:39:17:fa: 18:4a:fa:f2:f5:c9:b8:60:f4:40:b7:65:f6:c4:b8: 59:fb:8a:e7:0c:0e:c1:66:ba:bc:66:59:3d:e6:01: 40:5a:4c:0f:d4:c5:7e:7e:f2:8b:b0:aa:a2:71:34: 84:69:8d:f8:9a:29:69:f6:81:2f:6b:d9:49:ec:9c: ea:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BE:DA:9D:26:0B:F3:04:AE:B0:DB:90:86:CD:6C:EC:7D:E6:8B:25 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030303a3a2f33332d3333203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8000::/33 Signature Algorithm: sha256WithRSAEncryption 36:06:c4:71:f7:25:ae:36:7e:8e:b0:3d:8d:e3:a4:ca:fa:59: 9c:be:24:de:2f:51:50:6c:0a:ea:3c:df:f4:c7:0d:2c:0d:82: 71:a0:75:27:f9:0c:5a:39:d1:90:47:16:2b:7d:71:de:a6:1d: 8b:6b:40:e7:5c:59:ba:63:bd:0d:2e:0d:5c:d8:76:46:d2:15: 5e:42:f4:6a:74:64:75:e0:a0:00:18:e6:c9:a5:15:5e:61:f9: 08:3a:13:b6:8a:42:f7:97:a9:5e:0e:5e:4f:76:07:a5:bc:d0: 5a:ad:87:e7:e5:19:55:21:6e:25:54:38:de:d8:8b:f2:d8:9f: 3b:11:93:46:7d:78:ca:a4:46:11:86:0d:39:ba:ca:84:e3:d9: 2f:c5:39:cf:84:5c:d3:cf:11:b8:1d:13:bd:37:10:60:0c:7d: 71:66:52:a0:77:90:fe:08:a2:13:29:6e:18:55:c7:c6:0e:84: d3:bd:22:66:90:ed:99:48:85:3d:21:76:fa:c0:68:a8:c4:50: 44:b3:e1:36:03:1d:a8:b1:3b:07:95:a9:5b:35:4a:8a:32:af: 50:2d:5c:7d:ea:f4:5b:a6:f6:64:08:23:51:48:17:a8:9f:8b: 35:3f:ef:67:43:4b:a0:4e:52:15:cf:2f:35:ff:d5:8a:85:a0: 10:48:6d:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUds9yGBYVDpSIZxloRYHv3M6JsUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzQ3MDRaFw0yNTAxMjkwMzUyMDRaMDMxMTAvBgNV BAMTKDg3QkVEQTlEMjYwQkYzMDRBRUIwREI5MDg2Q0Q2Q0VDN0RFNjhCMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIyfvUWHJiXUjwQVkTLVwXtpAC A97JbHheWMx0XagRWi7eq8bfFnHRDM2RqTgrPwu/on+uLUBuPa+plCYNarrH3yj7 ydZ2I1wGSCN/K8lz2yCbI8koVAk3rmnG6P5uBFQgDqIQOUz1OHz08u4Qf4ogjTHZ bco7RTT46eK2kT/VluKOv4sS9fDfOudGJnHWynlxuUdYzyFl6t5IiiughYpM5KAA dkUsfZ5ZEFv/YF3q8g0qN+ojwKJQvOb7n4rTgDkX+hhK+vL1ybhg9EC3ZfbEuFn7 iucMDsFmurxmWT3mAUBaTA/UxX5+8ouwqqJxNIRpjfiaKWn2gS9r2UnsnOonAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh77anSYL8wSusNuQhs1s7H3miyUwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJAEp AIAwDQYJKoZIhvcNAQELBQADggEBADYGxHH3Ja42fo6wPY3jpMr6WZy+JN4vUVBs Cuo83/THDSwNgnGgdSf5DFo50ZBHFit9cd6mHYtrQOdcWbpjvQ0uDVzYdkbSFV5C 9Gp0ZHXgoAAY5smlFV5h+Qg6E7aKQveXqV4OXk92B6W80Fqth+flGVUhbiVUON7Y i/LYnzsRk0Z9eMqkRhGGDTm6yoTj2S/FOc+EXNPPEbgdE703EGAMfXFmUqB3kP4I ohMpbhhVx8YOhNO9ImaQ7ZlIhT0hdvrAaKjEUESz4TYDHaixOweVqVs1Sooyr1At XH3q9Fum9mQII1FIF6ifizU/72dDS6BOUhXPLzX/1YqFoBBIbas= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org