$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: r9n458HlRQBAcqswyhKDF6kQLcraOUMJmfyQAUN1Ar0= Subject key identifier: 98:33:15:85:8D:41:7E:89:FB:26:15:B1:3F:9B:D6:01:9B:82:93:68 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 3F8177779A945EFA7FD31B1C7CBDEEE972C24B62 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 31 Jan 2024 03:57:37 +0000 ROA not before: Wed 31 Jan 2024 03:52:37 +0000 ROA not after: Wed 29 Jan 2025 03:57:37 +0000 asID: 23679 IP address blocks: 2401:2900:8007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:81:77:77:9a:94:5e:fa:7f:d3:1b:1c:7c:bd:ee:e9:72:c2:4b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 31 03:52:37 2024 GMT Not After : Jan 29 03:57:37 2025 GMT Subject: CN=983315858D417E89FB2615B13F9BD6019B829368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:65:cb:0c:b1:33:f1:f2:f8:6f:26:cf:c1:5c: 2a:c6:36:f8:26:5d:32:3e:32:0b:23:c7:c8:5b:9f: 8f:03:de:cf:b2:91:28:06:f2:e9:35:93:95:ab:37: 3b:0e:f0:ef:1c:ee:b9:a3:b7:19:3a:65:2f:8a:8b: c2:d4:85:0b:03:cb:07:86:0f:3f:c2:23:54:81:82: 5a:9d:fe:5f:ff:15:07:99:f6:18:0a:e2:39:f0:90: 71:1a:61:79:3a:d6:f8:cb:76:b6:ac:82:b6:46:27: 06:cf:ea:df:1b:b8:f4:86:74:90:cf:ef:96:f6:fb: 15:9a:10:7d:2b:f2:fd:bc:94:77:16:8a:c9:f0:5c: 1f:28:96:ec:54:e1:70:68:fc:34:25:a1:b7:8b:8b: d0:5e:bc:6f:83:1d:d1:47:b6:a3:03:38:5f:e4:bb: 1e:c5:20:d1:2a:38:ed:48:0d:13:5f:d0:50:00:9a: 4f:3a:f5:d9:b0:ee:b7:3f:66:7b:d8:fd:c4:23:06: 44:eb:97:18:85:04:2e:59:ac:e9:fc:62:9c:7d:ef: c8:85:a1:1b:14:46:2e:54:63:e3:8d:32:5b:2d:86: b0:72:a7:7c:90:3a:93:d7:77:1b:7f:9d:8f:e9:29: 60:25:e5:2f:d1:40:3b:4a:d3:ec:58:b6:f5:9f:43: 1b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:33:15:85:8D:41:7E:89:FB:26:15:B1:3F:9B:D6:01:9B:82:93:68 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030373a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8007::/48 Signature Algorithm: sha256WithRSAEncryption cf:a4:40:83:fe:5a:87:e4:2f:ae:38:a2:c7:ea:39:86:04:53: 0f:2a:d8:a4:65:0f:fb:47:af:12:f6:9c:5c:9c:10:20:68:d1: 92:c7:8e:99:95:ef:5e:07:3c:9c:86:4f:79:0b:bf:06:19:52: 7b:45:af:14:20:31:8f:eb:11:0d:f4:e3:3c:24:09:83:4f:8b: 80:0a:f0:40:2a:a7:96:91:e8:06:76:3f:d9:6e:c9:af:90:d2: 9f:a2:dc:71:e7:53:12:b1:89:64:eb:b1:d4:23:6a:ad:f2:fa: 33:eb:2f:c2:83:58:4b:f1:28:4b:b6:b7:98:f5:c1:54:27:2f: d4:e9:1b:ce:71:16:76:f2:3f:da:34:8d:f2:78:44:27:b3:ae: f9:94:eb:9e:6d:de:99:dc:90:d5:9a:ff:03:cc:ef:e1:98:8f: c6:8d:30:b0:74:37:66:17:82:80:ce:0f:b1:4e:ba:23:23:18: 4a:9b:e7:b9:71:ba:c6:11:97:00:8f:52:47:7b:78:c1:5d:18: 2d:7a:d0:f8:9f:06:c5:90:2e:63:c7:fa:8f:48:e5:ef:e4:57: 2c:0a:68:e4:23:5c:65:25:d6:1a:94:04:ad:67:d8:7f:2d:8f: 1c:ba:17:3d:8b:0a:69:e3:7c:ba:93:70:ec:ed:e1:a9:7d:b4: eb:47:b5:f9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP4F3d5qUXvp/0xscfL3u6XLCS2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNDAxMzEwMzUyMzdaFw0yNTAxMjkwMzU3MzdaMDMxMTAvBgNV BAMTKDk4MzMxNTg1OEQ0MTdFODlGQjI2MTVCMTNGOUJENjAxOUI4MjkzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVZcsMsTPx8vhvJs/BXCrGNvgm XTI+Mgsjx8hbn48D3s+ykSgG8uk1k5WrNzsO8O8c7rmjtxk6ZS+Ki8LUhQsDyweG Dz/CI1SBglqd/l//FQeZ9hgK4jnwkHEaYXk61vjLdrasgrZGJwbP6t8buPSGdJDP 75b2+xWaEH0r8v28lHcWisnwXB8oluxU4XBo/DQlobeLi9BevG+DHdFHtqMDOF/k ux7FINEqOO1IDRNf0FAAmk869dmw7rc/ZnvY/cQjBkTrlxiFBC5ZrOn8Ypx978iF oRsURi5UY+ONMlsthrByp3yQOpPXdxt/nY/pKWAl5S/RQDtK0+xYtvWfQxvRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmDMVhY1Bfon7JhWxP5vWAZuCk2gwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIAHMA0GCSqGSIb3DQEBCwUAA4IBAQDPpECD/lqH5C+uOKLH6jmGBFMPKtikZQ/7 R68S9pxcnBAgaNGSx46Zle9eBzychk95C78GGVJ7Ra8UIDGP6xEN9OM8JAmDT4uA CvBAKqeWkegGdj/ZbsmvkNKfotxx51MSsYlk67HUI2qt8voz6y/Cg1hL8ShLtreY 9cFUJy/U6RvOcRZ28j/aNI3yeEQns675lOuebd6Z3JDVmv8DzO/hmI/GjTCwdDdm F4KAzg+xTrojIxhKm+e5cbrGEZcAj1JHe3jBXRgtetD4nwbFkC5jx/qPSOXv5Fcs CmjkI1xlJdYalAStZ9h/LY8cuhc9iwpp43y6k3Ds7eGpfbTrR7X5 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org