$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: sjWosLEWgyo7eG/FHjd4fH021DkfATLKrxUc7Yh/5H0= Subject key identifier: 61:BC:05:F9:95:9D:49:82:32:38:2E:FA:56:C0:B2:4B:57:D0:98:D7 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 18295CE7614CF1EA33A6AA5C3B98AB394C4EA4AA Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:56:21 +0000 ROA not before: Wed 31 Jan 2024 03:51:21 +0000 ROA not after: Wed 29 Jan 2025 03:56:21 +0000 asID: 23679 IP address blocks: 2401:2900:8003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:29:5c:e7:61:4c:f1:ea:33:a6:aa:5c:3b:98:ab:39:4c:4e:a4:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:51:21 2024 GMT Not After : Jan 29 03:56:21 2025 GMT Subject: CN=61BC05F9959D498232382EFA56C0B24B57D098D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9e:de:1b:4f:44:10:d4:ea:b1:c7:fc:d5:c1: b5:14:d4:62:30:4f:dc:ee:12:84:cb:98:cf:2c:8c: 3c:9a:97:a9:64:1f:c5:65:ad:5c:96:3a:f1:47:c3: 5b:bc:8e:69:12:8d:cd:0a:bd:31:c7:39:4c:a0:0e: 06:44:da:d4:a6:d0:02:1b:d4:8c:d9:8b:9f:56:ed: 59:ec:73:bf:a1:30:90:d6:95:97:02:fa:0e:bc:b9: 26:81:88:5e:bc:5c:2c:e6:43:43:cb:ff:a3:b6:50: 10:07:38:9a:d8:87:71:5a:17:c1:ac:9c:b4:84:81: e9:a3:ba:26:3c:cf:b1:7e:f4:71:52:7e:48:a1:fb: 01:d9:46:4f:20:2a:48:ba:4d:1b:d1:a2:8d:57:51: cb:83:d2:d6:2a:ce:de:6f:1e:a2:b8:12:f0:b6:59: 3d:7a:25:53:a5:36:f4:9b:1e:e8:93:56:c4:5f:b5: 36:6e:80:57:e8:04:e1:57:ac:cd:51:48:4a:d0:15: 1b:af:6c:50:e6:66:72:9a:33:09:85:36:ae:ce:2f: f1:dd:51:bc:e4:e2:22:8e:ba:5f:3f:43:f8:5e:51: 33:11:30:51:ff:98:77:d0:f4:b1:23:4f:58:f8:1d: 5a:96:20:d9:d9:dc:7f:27:ac:3e:5f:3b:19:14:ce: b8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BC:05:F9:95:9D:49:82:32:38:2E:FA:56:C0:B2:4B:57:D0:98:D7 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8003::/48 Signature Algorithm: sha256WithRSAEncryption b6:eb:52:ba:12:88:75:25:a2:0f:77:91:45:63:9e:5a:07:78: 18:a6:cb:80:82:20:62:5d:75:cf:f2:f5:70:37:2a:e3:7c:3a: bb:75:88:67:80:ea:a3:52:e1:e2:13:b6:40:c9:f8:4b:12:5c: 4d:85:d2:db:6b:5e:70:8b:3a:71:c3:27:f6:78:a0:92:8d:bd: 09:ec:f5:5f:b5:60:88:88:32:8d:03:f8:8e:02:2f:72:8d:75: e8:06:f7:59:fb:12:04:3a:bf:9e:b6:bc:7b:15:20:08:ec:a0: 96:0d:f4:22:e3:1f:5a:2a:37:e0:88:f0:73:b4:51:60:b1:bd: 37:80:44:00:64:82:96:22:22:21:0d:be:7b:66:2a:42:2b:9d: 77:e3:95:5e:73:07:50:a6:fb:14:5c:9e:90:e9:ed:1c:dc:14: c6:bf:26:6c:0b:25:49:2a:62:cb:fe:bb:0a:43:0e:04:aa:49: 7b:05:6a:da:82:a2:d0:c7:95:af:dc:d5:0e:b8:41:2b:e6:22: e2:ae:c1:e2:cb:87:8f:ee:50:54:dd:61:56:83:65:f7:1e:70: 8c:fc:ab:77:50:ef:93:59:08:19:2d:be:f3:79:30:e7:f1:8a: 97:30:02:05:f5:32:28:f4:ce:f1:45:94:aa:70:d6:22:2d:a1: 6a:fa:19:d1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGClc52FM8eozpqpcO5irOUxOpKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUxMjFaFw0yNTAxMjkwMzU2MjFaMDMxMTAvBgNV BAMTKDYxQkMwNUY5OTU5RDQ5ODIzMjM4MkVGQTU2QzBCMjRCNTdEMDk4RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCont4bT0QQ1Oqxx/zVwbUU1GIw T9zuEoTLmM8sjDyal6lkH8VlrVyWOvFHw1u8jmkSjc0KvTHHOUygDgZE2tSm0AIb 1IzZi59W7Vnsc7+hMJDWlZcC+g68uSaBiF68XCzmQ0PL/6O2UBAHOJrYh3FaF8Gs nLSEgemjuiY8z7F+9HFSfkih+wHZRk8gKki6TRvRoo1XUcuD0tYqzt5vHqK4EvC2 WT16JVOlNvSbHuiTVsRftTZugFfoBOFXrM1RSErQFRuvbFDmZnKaMwmFNq7OL/Hd Ubzk4iKOul8/Q/heUTMRMFH/mHfQ9LEjT1j4HVqWINnZ3H8nrD5fOxkUzrhlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYbwF+ZWdSYIyOC76VsCyS1fQmNcwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIADMA0GCSqGSIb3DQEBCwUAA4IBAQC261K6Eoh1JaIPd5FFY55aB3gYpsuAgiBi XXXP8vVwNyrjfDq7dYhngOqjUuHiE7ZAyfhLElxNhdLba15wizpxwyf2eKCSjb0J 7PVftWCIiDKNA/iOAi9yjXXoBvdZ+xIEOr+etrx7FSAI7KCWDfQi4x9aKjfgiPBz tFFgsb03gEQAZIKWIiIhDb57ZipCK51345VecwdQpvsUXJ6Q6e0c3BTGvyZsCyVJ KmLL/rsKQw4Eqkl7BWragqLQx5Wv3NUOuEEr5iLirsHiy4eP7lBU3WFWg2X3HnCM /Kt3UO+TWQgZLb7zeTDn8YqXMAIF9TIo9M7xRZSqcNYiLaFq+hnR -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org