$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030353a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030353a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: N0knzCRfxqVWrbSUgDGgZjLQIXtYZ69TjCiJb0s82g0= Subject key identifier: 01:22:85:6B:3F:62:44:EE:60:48:9E:59:C8:13:57:F0:AB:35:84:23 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 63A2FCB098B5B3CD8476C506805B61D55EBDD9B8 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030353a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:56:58 +0000 ROA not before: Wed 31 Jan 2024 03:51:58 +0000 ROA not after: Wed 29 Jan 2025 03:56:58 +0000 asID: 23679 IP address blocks: 2401:2900:8005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a2:fc:b0:98:b5:b3:cd:84:76:c5:06:80:5b:61:d5:5e:bd:d9:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:51:58 2024 GMT Not After : Jan 29 03:56:58 2025 GMT Subject: CN=0122856B3F6244EE60489E59C81357F0AB358423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cd:2d:c8:53:4d:95:86:2a:c8:99:f8:4c:bb: 0b:c7:33:f1:37:bb:2d:21:59:79:fb:09:b3:a5:37: 90:6d:c9:18:a6:65:24:28:a4:dd:f3:c9:98:5b:80: a2:4c:cc:a8:4d:59:c9:84:2f:c2:79:f1:42:c5:f8: 36:16:1f:b3:43:6f:46:b0:59:71:11:8e:06:e1:39: 15:26:0c:3c:f3:ff:e5:8f:85:1a:fc:0c:3c:ae:f2: ac:b7:1f:a2:e8:c4:6f:83:cd:44:58:b4:8f:ea:3c: 65:40:ad:72:77:d7:84:77:f9:5c:cb:ec:7e:f7:13: 6d:c9:49:49:16:6d:b1:cd:33:40:c7:ad:29:52:32: 4c:ec:36:f9:e6:74:4d:af:20:41:c6:8b:56:9a:8a: 7c:93:ff:8b:ec:98:44:0a:dd:07:4b:8d:5b:e8:de: 9f:30:0d:4d:c6:4d:06:52:d3:b8:bf:ea:df:65:39: bd:46:b6:5f:dc:22:e4:b8:95:8b:f0:45:07:6f:15: ba:95:09:c3:a6:cd:03:b3:99:9a:b2:23:a0:5d:05: df:96:cb:76:f7:7d:c3:7a:2c:1c:4c:a1:32:88:87: a4:65:23:a0:8c:9d:ac:4f:62:f5:87:9d:ce:26:3d: f1:a4:d8:e7:65:90:a8:7a:2e:dc:22:3a:38:01:8a: 1c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:22:85:6B:3F:62:44:EE:60:48:9E:59:C8:13:57:F0:AB:35:84:23 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030353a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8005::/48 Signature Algorithm: sha256WithRSAEncryption 03:43:c2:48:25:63:c8:f2:e0:7c:3e:30:2c:18:90:d6:6c:be: 7a:57:4e:21:b4:df:fb:c6:72:a2:b4:59:41:da:ec:85:b0:99: b4:9b:45:a6:15:af:a1:8d:d9:6a:89:ef:f1:e1:30:3f:b3:bd: d0:0b:c2:75:89:fc:3d:71:57:50:ef:45:34:92:65:05:05:71: c9:8e:00:3a:a3:87:a6:3c:04:61:e7:e9:7e:03:6d:d8:33:2a: 1a:e4:d1:45:4b:a6:0b:84:78:90:11:92:d4:58:24:d2:f3:dc: fe:5e:aa:fe:f2:5c:ee:97:7d:31:2b:eb:d8:8e:0b:2c:54:a1: af:c8:40:4c:7d:94:b6:9e:bf:f8:ae:05:d7:66:9a:c5:25:91: 58:b7:8f:21:02:6d:72:fc:49:c7:31:7e:c2:93:ba:73:ef:8f: 81:07:8b:31:ac:a1:45:67:14:f6:5c:9e:b0:68:05:10:e8:c8: bc:5e:dd:5a:01:0a:9a:b3:a2:11:8a:b1:c5:e7:ed:5f:9e:b6: 79:bc:c0:0d:f5:63:6d:f0:68:49:2c:20:6d:36:84:0d:92:bd: df:1f:34:1d:25:1c:bd:e6:7b:06:c3:04:40:1a:91:c7:0e:af: ad:5f:92:45:79:21:30:ce:27:4c:d1:76:8c:70:32:96:02:62: d1:77:60:5b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUY6L8sJi1s82EdsUGgFth1V692bgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUxNThaFw0yNTAxMjkwMzU2NThaMDMxMTAvBgNV BAMTKDAxMjI4NTZCM0Y2MjQ0RUU2MDQ4OUU1OUM4MTM1N0YwQUIzNTg0MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdzS3IU02VhirImfhMuwvHM/E3 uy0hWXn7CbOlN5BtyRimZSQopN3zyZhbgKJMzKhNWcmEL8J58ULF+DYWH7NDb0aw WXERjgbhORUmDDzz/+WPhRr8DDyu8qy3H6LoxG+DzURYtI/qPGVArXJ314R3+VzL 7H73E23JSUkWbbHNM0DHrSlSMkzsNvnmdE2vIEHGi1aainyT/4vsmEQK3QdLjVvo 3p8wDU3GTQZS07i/6t9lOb1Gtl/cIuS4lYvwRQdvFbqVCcOmzQOzmZqyI6BdBd+W y3b3fcN6LBxMoTKIh6RlI6CMnaxPYvWHnc4mPfGk2OdlkKh6LtwiOjgBihwfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUASKFaz9iRO5gSJ5ZyBNX8Ks1hCMwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAFMA0GCSqGSIb3DQEBCwUAA4IBAQADQ8JIJWPI8uB8PjAsGJDWbL56V04htN/7 xnKitFlB2uyFsJm0m0WmFa+hjdlqie/x4TA/s73QC8J1ifw9cVdQ70U0kmUFBXHJ jgA6o4emPARh5+l+A23YMyoa5NFFS6YLhHiQEZLUWCTS89z+Xqr+8lzul30xK+vY jgssVKGvyEBMfZS2nr/4rgXXZprFJZFYt48hAm1y/EnHMX7Ck7pz74+BB4sxrKFF ZxT2XJ6waAUQ6Mi8Xt1aAQqas6IRirHF5+1fnrZ5vMAN9WNt8GhJLCBtNoQNkr3f HzQdJRy95nsGwwRAGpHHDq+tX5JFeSEwzidM0XaMcDKWAmLRd2Bb -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org