$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: wlLK93jmi05Jr+E9E94gaKXtHGyWBn7C4qLTCf/UIZI= Subject key identifier: C5:C0:12:BF:45:25:EF:08:08:3F:13:DA:D6:71:57:52:72:10:BE:15 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 1B368CA61C5AB910F5D0968FB7C633CD6EBAFD23 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:06:31 +0000 ROA not before: Thu 08 Aug 2024 19:01:31 +0000 ROA not after: Thu 07 Aug 2025 19:06:31 +0000 asID: 147137 IP address blocks: 2400:46a0:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:36:8c:a6:1c:5a:b9:10:f5:d0:96:8f:b7:c6:33:cd:6e:ba:fd:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 19:01:31 2024 GMT Not After : Aug 7 19:06:31 2025 GMT Subject: CN=C5C012BF4525EF08083F13DAD67157527210BE15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:88:9a:d5:4a:e8:e9:58:60:0b:a6:c6:0b: c5:c0:c5:b2:76:ed:74:b8:f9:36:38:ff:c9:c4:1f: ad:66:bf:49:59:f8:62:f3:01:9d:b3:13:cf:fd:12: f3:ee:81:ff:5f:00:93:01:89:14:47:64:b6:6c:7b: 60:a4:bd:82:35:b7:cf:33:7a:25:9a:54:03:20:fd: 81:03:81:55:bd:84:12:98:72:9f:7d:e1:ce:2a:dc: 13:82:fb:b5:e2:c3:94:7d:56:6e:01:a9:14:e8:c5: 6f:c8:e1:27:41:17:c4:fd:5d:89:54:1d:02:44:60: 43:80:a6:c4:de:79:38:f2:23:d4:cc:c5:ea:96:71: 41:c4:58:9f:21:c5:c8:43:9b:d1:bc:1c:11:2b:b6: fd:cf:d2:44:c4:69:82:c1:4f:e0:34:57:10:1a:00: 8a:78:c0:36:6a:ed:f3:dc:b2:01:8e:22:f8:09:e5: 4c:55:4c:d6:58:b0:fe:17:8b:92:74:98:d9:8e:12: 30:7d:fc:42:3b:8e:9c:4f:87:89:28:3e:53:3f:ad: 27:07:8e:ac:a0:f9:7e:02:31:01:6a:8c:0d:65:f5: 1c:56:c8:06:17:62:82:16:cc:c3:4b:ba:32:1a:b4: 86:26:d7:8a:65:0b:06:6a:d6:87:35:fe:2c:96:78: 81:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C0:12:BF:45:25:EF:08:08:3F:13:DA:D6:71:57:52:72:10:BE:15 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:15::/48 Signature Algorithm: sha256WithRSAEncryption 4b:30:fa:85:d9:f7:eb:15:a0:41:c7:cd:4c:12:96:76:ec:3a: a2:dc:69:9e:5c:15:cd:d8:ff:4b:b2:14:5a:5f:7b:86:80:e2: c8:59:aa:ef:29:f8:bc:ae:a2:1a:e2:e8:2f:dc:d8:a1:d6:1e: f1:b3:dd:cb:2d:56:21:87:05:05:7a:14:77:50:d7:d7:db:9d: e5:a4:e8:1a:76:78:25:4a:d1:ec:44:6e:bc:39:9f:3c:2e:48: 71:3c:5b:fb:b1:5f:61:34:3a:7f:13:0a:6b:67:08:7e:ad:f8: 1f:08:99:5a:5c:f7:a8:3d:8f:69:2e:df:d1:ec:8a:b3:6d:52: 89:6d:4f:9a:03:2b:6c:c0:5e:7b:5b:f9:1f:57:c0:1b:26:bd: 4c:d0:ee:67:0e:77:1d:f8:c6:50:16:6e:7a:49:55:82:14:16: bb:43:b4:e7:45:35:d8:db:98:f7:96:00:9e:81:eb:34:50:42: d4:81:16:3c:9d:8a:ce:21:6b:b5:ae:8f:9e:7d:c4:77:80:f4: 0d:02:ad:25:78:01:6a:4d:5f:88:cf:a0:d1:ac:03:ca:b7:d1: 0d:59:e3:59:0f:15:74:0d:d3:41:fc:09:44:21:77:0f:8d:7b: a2:ea:f0:24:c7:91:b1:0d:af:c0:f6:9a:67:44:5a:a8:8e:6c: 8d:01:a6:d9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGzaMphxauRD10JaPt8YzzW66/SMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxOTAxMzFaFw0yNTA4MDcxOTA2MzFaMDMxMTAvBgNV BAMTKEM1QzAxMkJGNDUyNUVGMDgwODNGMTNEQUQ2NzE1NzUyNzIxMEJFMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/Yia1Uro6VhgC6bGC8XAxbJ2 7XS4+TY4/8nEH61mv0lZ+GLzAZ2zE8/9EvPugf9fAJMBiRRHZLZse2CkvYI1t88z eiWaVAMg/YEDgVW9hBKYcp994c4q3BOC+7Xiw5R9Vm4BqRToxW/I4SdBF8T9XYlU HQJEYEOApsTeeTjyI9TMxeqWcUHEWJ8hxchDm9G8HBErtv3P0kTEaYLBT+A0VxAa AIp4wDZq7fPcsgGOIvgJ5UxVTNZYsP4Xi5J0mNmOEjB9/EI7jpxPh4koPlM/rScH jqyg+X4CMQFqjA1l9RxWyAYXYoIWzMNLujIatIYm14plCwZq1oc1/iyWeIHrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUxcASv0Ul7wgIPxPa1nFXUnIQvhUwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FTANBgkqhkiG9w0BAQsFAAOCAQEASzD6hdn36xWgQcfNTBKWduw6otxpnlwVzdj/ S7IUWl97hoDiyFmq7yn4vK6iGuLoL9zYodYe8bPdyy1WIYcFBXoUd1DX19ud5aTo GnZ4JUrR7ERuvDmfPC5IcTxb+7FfYTQ6fxMKa2cIfq34HwiZWlz3qD2PaS7f0eyK s21SiW1PmgMrbMBee1v5H1fAGya9TNDuZw53HfjGUBZueklVghQWu0O050U12NuY 95YAnoHrNFBC1IEWPJ2KziFrta6Pnn3Ed4D0DQKtJXgBak1fiM+g0awDyrfRDVnj WQ8VdA3TQfwJRCF3D417ourwJMeRsQ2vwPaaZ0RaqI5sjQGm2Q== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org