$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 1DLXZ456hkSe6QuqFrHzpuYw9UJCh1m2aFM88q4JZoE= Subject key identifier: 98:DC:C3:54:85:12:12:4E:21:C4:D4:21:12:98:9D:34:6F:E0:EF:CF Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 4ED7E21D57B33F277104B5E21C6C3E380087BE85 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:05:01 +0000 ROA not before: Thu 08 Aug 2024 19:00:01 +0000 ROA not after: Thu 07 Aug 2025 19:05:01 +0000 asID: 147137 IP address blocks: 2400:46a0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d7:e2:1d:57:b3:3f:27:71:04:b5:e2:1c:6c:3e:38:00:87:be:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 19:00:01 2024 GMT Not After : Aug 7 19:05:01 2025 GMT Subject: CN=98DCC3548512124E21C4D42112989D346FE0EFCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:35:24:96:9e:73:b5:33:bd:0d:82:3a:65:65: 28:bd:16:f2:bf:48:17:23:9b:94:3f:01:bc:ac:13: b7:f8:03:00:59:92:ed:92:c6:3d:af:25:1f:b2:7b: bf:48:2e:2e:04:8e:ba:dc:ad:4f:42:a4:12:bd:e4: 51:fe:ec:21:6f:b5:16:0c:d0:6f:46:1e:79:62:c4: 9d:ba:b5:c2:6f:13:9a:41:17:5f:52:a7:a8:e4:68: 3f:ce:33:aa:7f:c4:6a:97:71:e5:c5:9b:e8:8d:94: 01:14:d0:a2:76:7c:3b:4f:5a:1f:6a:60:2f:f4:70: 2c:7f:29:80:79:4a:11:ca:fe:94:71:d5:50:2b:6a: fa:4a:ba:1d:19:74:08:f2:3e:08:1c:3c:6b:5e:48: 9a:ae:9f:93:6a:fe:7c:b2:ef:4a:2e:fc:c9:70:9a: 1d:82:e1:2f:80:79:ae:ce:aa:c2:01:68:eb:9e:38: 42:7a:29:e0:e2:3e:1c:4f:a9:3b:9c:dd:d0:08:1a: 6a:4d:04:f8:e5:ad:d7:02:13:c3:55:d6:96:39:33: c8:34:9c:7f:4d:1f:6a:a7:15:39:37:dc:9e:ff:f3: c3:e2:1b:4c:62:df:97:3a:63:df:41:64:71:d4:a0: ba:bf:70:ee:1a:6e:5e:38:97:b7:ac:6b:e9:f8:79: 1b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DC:C3:54:85:12:12:4E:21:C4:D4:21:12:98:9D:34:6F:E0:EF:CF X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:10::/48 Signature Algorithm: sha256WithRSAEncryption 9b:d2:bf:88:94:ee:74:e6:56:fd:a1:a5:83:5f:f2:90:e1:27: 1d:87:8d:4e:1b:ef:52:4a:48:57:68:e0:82:0b:24:2b:dc:bf: c8:72:4b:19:4c:9e:82:e0:78:01:75:b3:2e:ed:fb:cc:12:3c: eb:c7:54:bd:e9:97:09:68:78:83:f9:d1:20:60:44:13:40:36: 65:f9:a6:98:69:63:44:1c:1a:0c:30:68:b6:ed:79:87:0e:81: e2:00:a3:34:d2:c0:92:96:ad:83:2f:b9:ce:45:12:f5:99:95: 26:7a:18:21:0a:7e:52:7b:50:02:d3:29:67:c9:32:40:0e:25: 3f:32:35:db:ba:af:92:7e:aa:9d:33:03:66:07:0d:a4:f6:df: dd:b7:11:44:f2:58:96:3e:f9:21:7d:47:f5:c4:68:2c:54:3f: f0:e6:7a:1d:42:01:18:f8:a7:8f:97:f6:b4:cb:d6:00:6f:42: 61:19:44:47:b3:58:90:70:11:e1:de:50:af:77:40:9c:99:d7: 7b:6d:cb:36:3c:c5:a7:2d:90:fd:13:aa:0f:d5:df:e8:08:74: 6f:f3:31:c9:3f:d8:6c:31:ab:15:72:e7:0d:8a:56:fa:7b:eb: 39:02:ee:a2:73:7a:e2:4a:03:48:42:05:12:8a:ba:dc:8b:7a: 21:c4:18:da -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUTtfiHVezPydxBLXiHGw+OACHvoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxOTAwMDFaFw0yNTA4MDcxOTA1MDFaMDMxMTAvBgNV BAMTKDk4RENDMzU0ODUxMjEyNEUyMUM0RDQyMTEyOTg5RDM0NkZFMEVGQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDANSSWnnO1M70NgjplZSi9FvK/ SBcjm5Q/AbysE7f4AwBZku2Sxj2vJR+ye79ILi4EjrrcrU9CpBK95FH+7CFvtRYM 0G9GHnlixJ26tcJvE5pBF19Sp6jkaD/OM6p/xGqXceXFm+iNlAEU0KJ2fDtPWh9q YC/0cCx/KYB5ShHK/pRx1VAravpKuh0ZdAjyPggcPGteSJqun5Nq/nyy70ou/Mlw mh2C4S+Aea7OqsIBaOueOEJ6KeDiPhxPqTuc3dAIGmpNBPjlrdcCE8NV1pY5M8g0 nH9NH2qnFTk33J7/88PiG0xi35c6Y99BZHHUoLq/cO4abl44l7esa+n4eRt3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmNzDVIUSEk4hxNQhEpidNG/g788wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA EDANBgkqhkiG9w0BAQsFAAOCAQEAm9K/iJTudOZW/aGlg1/ykOEnHYeNThvvUkpI V2jgggskK9y/yHJLGUyeguB4AXWzLu37zBI868dUvemXCWh4g/nRIGBEE0A2Zfmm mGljRBwaDDBotu15hw6B4gCjNNLAkpatgy+5zkUS9ZmVJnoYIQp+UntQAtMpZ8ky QA4lPzI127qvkn6qnTMDZgcNpPbf3bcRRPJYlj75IX1H9cRoLFQ/8OZ6HUIBGPin j5f2tMvWAG9CYRlER7NYkHAR4d5Qr3dAnJnXe23LNjzFpy2Q/ROqD9Xf6Ah0b/Mx yT/YbDGrFXLnDYpW+nvrOQLuonN64koDSEIFEoq63It6IcQY2g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org