$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: EEceHQMW7Hc/vIUIIpKDdAPfHeSFK386Bosfd05qY/A= Subject key identifier: EF:E1:56:A8:94:7B:EB:E7:C8:18:0A:97:DB:1D:64:7B:6C:7C:E6:D5 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 73602D2CE8992748175E007F00592600C87DFF80 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:05:33 +0000 ROA not before: Thu 08 Aug 2024 19:00:33 +0000 ROA not after: Thu 07 Aug 2025 19:05:33 +0000 asID: 147137 IP address blocks: 2400:46a0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:60:2d:2c:e8:99:27:48:17:5e:00:7f:00:59:26:00:c8:7d:ff:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 19:00:33 2024 GMT Not After : Aug 7 19:05:33 2025 GMT Subject: CN=EFE156A8947BEBE7C8180A97DB1D647B6C7CE6D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:bc:66:cb:21:6b:56:a0:fc:79:fe:fa:f6: b7:6c:bb:71:04:c6:e1:eb:40:77:6e:14:5b:e2:b8: 2b:12:47:48:7f:81:02:c9:67:c7:1f:21:a9:de:1d: 6e:80:e7:ba:59:15:e0:a2:fb:3b:52:4a:9d:83:08: e5:a2:4d:ae:b1:cd:bd:77:5b:bf:45:54:ad:f9:c0: c2:75:f4:2b:af:67:4d:06:25:1c:27:0e:96:3f:c1: 64:c4:4c:01:18:d5:00:b0:ae:15:b3:85:17:73:b4: f0:dc:4f:71:f1:37:52:7d:09:32:c5:19:d3:44:d7: 54:8e:9f:65:b8:f8:6f:a4:f4:1c:07:da:b4:98:0c: f2:b4:da:d4:7c:b5:1b:c1:f3:35:fb:15:ec:e9:84: f1:ba:6d:fc:dc:37:86:14:4c:e2:84:06:f8:e8:c8: 35:dd:9d:3b:c8:6a:d2:9c:43:13:25:97:1d:df:6b: 61:b6:50:99:29:f4:9e:05:0a:e1:27:e9:89:c7:a3: c3:cd:c9:8d:85:a4:81:46:6b:8e:65:34:b7:0d:88: 1b:50:3f:78:0d:a1:12:84:7c:9d:d0:fa:88:8b:29: ea:89:77:6e:18:d5:33:30:50:01:4c:99:5b:9f:b2: b2:d8:26:70:0e:03:93:e8:84:f4:68:74:8a:d6:db: 8e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E1:56:A8:94:7B:EB:E7:C8:18:0A:97:DB:1D:64:7B:6C:7C:E6:D5 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:11::/48 Signature Algorithm: sha256WithRSAEncryption 2c:1a:09:55:c3:58:7a:43:54:17:1b:ac:d6:39:14:e8:d5:41: 51:ee:e9:db:a7:c2:4c:20:b0:09:d1:3c:7d:25:aa:f4:79:a5: 41:23:f0:a1:6c:cb:ac:7d:a0:5e:fa:3c:5f:d7:b9:74:93:ff: 8a:15:d8:73:31:2f:66:f1:91:a0:27:0b:cd:f1:b2:ac:57:a5: 2b:b9:d7:a2:8c:aa:78:82:be:16:d7:1d:59:30:26:90:11:eb: 3a:c6:d0:2e:5f:42:0c:dc:0b:a1:e9:b6:b5:45:db:2e:7d:af: 68:02:3c:4a:69:2a:0a:6f:2d:4f:d6:50:86:68:55:45:29:5a: 09:ef:c5:2a:95:10:07:bf:d0:b8:15:da:ae:8e:0e:d1:b1:1c: d2:1b:2d:e8:bc:9b:b6:51:9d:64:5e:61:2f:54:0d:3d:83:90: 5d:b9:a7:d8:8c:ca:25:12:f1:fa:dc:09:40:b2:e9:ad:50:aa: 8c:2d:3b:ad:89:7d:77:00:40:8a:58:7e:43:82:ac:c2:5c:7f: f6:06:17:1c:24:63:89:f3:0b:eb:84:7c:56:35:8b:d4:61:7d: b7:d1:4e:76:0e:9f:60:0e:93:af:46:9c:76:8d:1d:5e:99:a6: ce:26:44:9f:05:47:4a:61:b2:b8:90:cf:76:c2:b6:db:e6:51: 4a:8f:96:95 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUc2AtLOiZJ0gXXgB/AFkmAMh9/4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxOTAwMzNaFw0yNTA4MDcxOTA1MzNaMDMxMTAvBgNV BAMTKEVGRTE1NkE4OTQ3QkVCRTdDODE4MEE5N0RCMUQ2NDdCNkM3Q0U2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEbrxmyyFrVqD8ef769rdsu3EE xuHrQHduFFviuCsSR0h/gQLJZ8cfIaneHW6A57pZFeCi+ztSSp2DCOWiTa6xzb13 W79FVK35wMJ19CuvZ00GJRwnDpY/wWTETAEY1QCwrhWzhRdztPDcT3HxN1J9CTLF GdNE11SOn2W4+G+k9BwH2rSYDPK02tR8tRvB8zX7FezphPG6bfzcN4YUTOKEBvjo yDXdnTvIatKcQxMllx3fa2G2UJkp9J4FCuEn6YnHo8PNyY2FpIFGa45lNLcNiBtQ P3gNoRKEfJ3Q+oiLKeqJd24Y1TMwUAFMmVufsrLYJnAOA5PohPRodIrW244rAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU7+FWqJR76+fIGAqX2x1ke2x85tUwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA ETANBgkqhkiG9w0BAQsFAAOCAQEALBoJVcNYekNUFxus1jkU6NVBUe7p26fCTCCw CdE8fSWq9HmlQSPwoWzLrH2gXvo8X9e5dJP/ihXYczEvZvGRoCcLzfGyrFelK7nX ooyqeIK+FtcdWTAmkBHrOsbQLl9CDNwLoem2tUXbLn2vaAI8SmkqCm8tT9ZQhmhV RSlaCe/FKpUQB7/QuBXaro4O0bEc0hst6LybtlGdZF5hL1QNPYOQXbmn2IzKJRLx +twJQLLprVCqjC07rYl9dwBAilh+Q4Kswlx/9gYXHCRjifML64R8VjWL1GF9t9FO dg6fYA6Tr0acdo0dXpmmziZEnwVHSmGyuJDPdsK22+ZRSo+WlQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org