$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: k1lA9UBBcIJer7rcblI19CPeDJndUIgge0tg4WADooI= Subject key identifier: 9A:3D:E0:BA:2E:8D:71:EA:80:83:B8:9B:DC:14:D7:39:D9:19:98:BA Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 1157DE04B26E4B45E053D7C02FCE0F5C0EBEA9DB Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:06:03 +0000 ROA not before: Thu 08 Aug 2024 19:01:03 +0000 ROA not after: Thu 07 Aug 2025 19:06:03 +0000 asID: 147137 IP address blocks: 2400:46a0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:57:de:04:b2:6e:4b:45:e0:53:d7:c0:2f:ce:0f:5c:0e:be:a9:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 19:01:03 2024 GMT Not After : Aug 7 19:06:03 2025 GMT Subject: CN=9A3DE0BA2E8D71EA8083B89BDC14D739D91998BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8a:41:bf:35:d6:94:9d:30:ca:0f:1d:be:98: bd:7f:f6:15:58:5d:41:e7:26:a6:24:40:36:cf:7f: c1:09:7d:3f:a4:2b:a8:eb:30:e6:e6:c0:4a:86:a4: 9c:25:5a:ff:b3:6b:f5:3b:40:59:88:45:03:c7:d3: 1f:6e:80:28:6c:61:72:03:af:b0:b8:e9:b6:b9:cf: 0f:d1:42:8e:3a:6c:0c:0f:de:f9:3c:e2:b0:11:39: dd:86:44:46:b7:f1:54:a9:4c:14:d2:87:32:90:79: 13:b4:8d:80:8e:68:48:72:36:da:59:c1:7f:42:a9: 12:0a:f1:dc:67:0b:63:f7:6b:6a:1d:5f:54:3a:dd: 42:b6:f3:90:76:54:e5:ea:9c:41:60:c9:15:3e:ac: 0b:ef:fe:11:4e:82:11:19:77:c9:f6:d7:60:bf:ec: 76:4e:06:82:3e:71:76:c5:23:15:46:e2:05:57:cd: 8e:f5:d7:22:e6:d0:99:a7:f5:df:01:df:b7:c7:85: 5e:2f:11:93:81:be:d0:87:27:4e:46:32:0d:44:15: 08:65:26:51:b3:a4:0d:1d:3c:57:b8:e7:f7:ab:63: f7:c5:a6:61:4c:37:e9:6d:41:f4:79:49:19:2e:39: aa:b6:65:a6:7d:da:b5:cf:21:46:01:de:ba:18:34: cc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3D:E0:BA:2E:8D:71:EA:80:83:B8:9B:DC:14:D7:39:D9:19:98:BA X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:13::/48 Signature Algorithm: sha256WithRSAEncryption a8:b0:72:fc:de:d9:0b:ba:6a:d9:54:e8:97:a7:e6:67:6a:e9: dc:e4:32:26:b6:f7:96:37:de:ac:86:c0:46:1c:e3:4b:56:60: db:9d:63:5e:f2:e4:2c:0d:04:08:eb:f9:c0:fc:cc:67:56:57: 53:64:88:0f:f1:cc:30:c1:bb:bd:ba:6c:c1:b2:8c:16:aa:30: 2d:f1:f6:e5:9b:39:39:20:aa:b3:7c:b4:2b:6e:2b:ac:9b:18: eb:5c:a3:11:cb:22:cb:01:e5:e5:e3:72:10:cb:37:19:96:9c: 3a:a3:de:41:fc:ed:c3:7c:72:eb:f8:f6:e3:a6:80:36:83:6b: 41:13:01:84:42:1f:ad:06:16:47:cc:92:ca:76:66:2a:b5:ed: 9f:d0:d4:57:ad:5b:fa:73:13:45:47:97:88:c9:37:0b:6a:18: 0d:11:a9:a8:d9:e5:64:59:09:e0:d0:5e:4b:f0:71:d6:c7:f0: 01:22:00:b5:8d:b9:ed:2a:de:3a:ee:58:fa:10:0e:43:fc:b0: 95:45:a8:53:b3:d7:96:dc:c6:9a:ba:67:0d:42:39:b9:5e:e0: d8:ba:b5:38:41:3a:0e:65:0a:87:dc:82:fc:01:3b:f1:f3:e0: 52:92:75:65:97:69:86:80:04:da:14:e1:36:c0:dc:b0:b4:e1: 61:11:eb:a2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEVfeBLJuS0XgU9fAL84PXA6+qdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxOTAxMDNaFw0yNTA4MDcxOTA2MDNaMDMxMTAvBgNV BAMTKDlBM0RFMEJBMkU4RDcxRUE4MDgzQjg5QkRDMTRENzM5RDkxOTk4QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLikG/NdaUnTDKDx2+mL1/9hVY XUHnJqYkQDbPf8EJfT+kK6jrMObmwEqGpJwlWv+za/U7QFmIRQPH0x9ugChsYXID r7C46ba5zw/RQo46bAwP3vk84rAROd2GREa38VSpTBTShzKQeRO0jYCOaEhyNtpZ wX9CqRIK8dxnC2P3a2odX1Q63UK285B2VOXqnEFgyRU+rAvv/hFOghEZd8n212C/ 7HZOBoI+cXbFIxVG4gVXzY711yLm0Jmn9d8B37fHhV4vEZOBvtCHJ05GMg1EFQhl JlGzpA0dPFe45/erY/fFpmFMN+ltQfR5SRkuOaq2ZaZ92rXPIUYB3roYNMx5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmj3gui6NceqAg7ib3BTXOdkZmLowHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA EzANBgkqhkiG9w0BAQsFAAOCAQEAqLBy/N7ZC7pq2VTol6fmZ2rp3OQyJrb3ljfe rIbARhzjS1Zg251jXvLkLA0ECOv5wPzMZ1ZXU2SID/HMMMG7vbpswbKMFqowLfH2 5Zs5OSCqs3y0K24rrJsY61yjEcsiywHl5eNyEMs3GZacOqPeQfztw3xy6/j246aA NoNrQRMBhEIfrQYWR8ySynZmKrXtn9DUV61b+nMTRUeXiMk3C2oYDRGpqNnlZFkJ 4NBeS/Bx1sfwASIAtY257SreOu5Y+hAOQ/ywlUWoU7PXltzGmrpnDUI5uV7g2Lq1 OEE6DmUKh9yC/AE78fPgUpJ1ZZdphoAE2hThNsDcsLThYRHrog== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org