$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 56h7qMmeYQrqxf8lH/5jSmZ9cD3TYg/5UI6r+RKy4JY= Subject key identifier: 3A:1B:9B:8D:F2:CA:03:1A:B0:36:7F:2A:2E:81:83:58:D9:03:5E:3F Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 55C86984326665BC6181FB32B4CEABE6449A0345 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:07:05 +0000 ROA not before: Thu 08 Aug 2024 19:02:05 +0000 ROA not after: Thu 07 Aug 2025 19:07:05 +0000 asID: 147137 IP address blocks: 2400:46a0:17::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c8:69:84:32:66:65:bc:61:81:fb:32:b4:ce:ab:e6:44:9a:03:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 19:02:05 2024 GMT Not After : Aug 7 19:07:05 2025 GMT Subject: CN=3A1B9B8DF2CA031AB0367F2A2E818358D9035E3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ec:4c:28:f9:2b:f6:2f:3e:bf:4b:63:75:c7: 07:03:34:d8:32:43:5c:1a:3c:68:77:4c:b7:17:b3: aa:d1:d1:e1:1e:b9:ee:07:93:cc:d8:0d:22:87:6a: 18:5d:7d:8e:c3:a0:83:aa:71:60:34:ac:78:43:69: 1a:b9:82:72:78:9c:ff:5d:42:98:9f:5e:3c:c7:47: 07:ea:c2:1a:63:bb:c1:70:33:b2:18:73:d1:3e:de: e2:c5:a3:a2:97:c5:0e:ab:d7:c9:f0:db:7f:ae:55: 86:f7:65:c2:a2:81:2a:90:36:f5:83:23:a8:a2:95: 94:08:99:00:ef:f0:15:6a:af:88:97:bc:2e:6a:98: 03:ba:90:0a:8e:be:da:75:2c:1e:1b:c6:ee:3a:7a: 1e:22:f8:83:6d:0c:ef:60:67:b1:7e:d7:cd:21:38: 47:02:e2:5b:48:59:01:72:d5:3d:39:be:3c:1e:ef: 41:cd:dc:47:a6:78:c2:02:1c:a3:b7:55:d8:0a:30: ed:ad:0c:13:10:c7:eb:f0:0a:b0:f7:55:ab:cc:c5: be:46:39:36:bb:39:2e:5d:e8:da:3f:dc:57:06:7c: f6:31:d3:68:bd:b7:30:e1:8b:71:01:2a:df:73:07: 7b:e6:9f:d3:ce:8d:ee:03:98:28:dc:4e:87:aa:52: ab:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:9B:8D:F2:CA:03:1A:B0:36:7F:2A:2E:81:83:58:D9:03:5E:3F X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:17::/48 Signature Algorithm: sha256WithRSAEncryption 74:5c:ed:4c:20:1f:df:28:07:8c:fd:22:28:63:81:a6:a9:f7: b9:f0:e9:92:bb:c5:53:9a:b6:86:a3:98:83:78:0d:ea:45:53: 6d:a6:76:6c:a3:7c:ba:d8:0f:cc:07:66:66:61:1a:26:2f:17: ba:7c:27:ea:af:0e:b5:e5:52:ca:dc:e3:a9:9e:85:d2:37:2a: ef:ec:f2:44:c7:3a:3f:c0:59:17:e7:ee:55:98:b0:5c:86:53: a9:4a:84:1e:7f:7f:9d:82:b7:3e:1d:e5:b9:d9:b7:43:7e:d8: d3:6c:b0:91:aa:11:9b:fe:e5:50:74:8b:98:e7:3a:68:94:f6: d8:f8:1c:13:3a:f7:40:c7:ff:5b:d5:cd:41:b7:fe:97:0c:3e: 32:8e:2b:c1:ed:83:0c:d6:e0:be:36:78:6f:27:54:c1:97:99: 73:e4:27:d1:c2:b2:14:9b:39:a4:c7:fb:3f:a8:30:6f:ab:07: 9d:c5:08:e6:52:8b:86:dd:0a:f0:a2:60:70:a2:39:4b:8d:f2: 2d:39:a8:52:14:54:05:d8:15:99:c0:a3:7c:d5:4b:da:91:54: a4:e6:9a:ec:5d:bb:c1:b8:86:e4:f0:8e:2b:28:94:6c:7d:32: ef:a6:bb:1d:5d:fc:5c:49:89:12:e4:17:bf:66:dd:50:38:a3: 56:a6:d1:14 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUVchphDJmZbxhgfsytM6r5kSaA0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxOTAyMDVaFw0yNTA4MDcxOTA3MDVaMDMxMTAvBgNV BAMTKDNBMUI5QjhERjJDQTAzMUFCMDM2N0YyQTJFODE4MzU4RDkwMzVFM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm7Ewo+Sv2Lz6/S2N1xwcDNNgy Q1waPGh3TLcXs6rR0eEeue4Hk8zYDSKHahhdfY7DoIOqcWA0rHhDaRq5gnJ4nP9d QpifXjzHRwfqwhpju8FwM7IYc9E+3uLFo6KXxQ6r18nw23+uVYb3ZcKigSqQNvWD I6iilZQImQDv8BVqr4iXvC5qmAO6kAqOvtp1LB4bxu46eh4i+INtDO9gZ7F+180h OEcC4ltIWQFy1T05vjwe70HN3EemeMICHKO3VdgKMO2tDBMQx+vwCrD3VavMxb5G OTa7OS5d6No/3FcGfPYx02i9tzDhi3EBKt9zB3vmn9POje4DmCjcToeqUqu1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUOhubjfLKAxqwNn8qLoGDWNkDXj8wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FzANBgkqhkiG9w0BAQsFAAOCAQEAdFztTCAf3ygHjP0iKGOBpqn3ufDpkrvFU5q2 hqOYg3gN6kVTbaZ2bKN8utgPzAdmZmEaJi8Xunwn6q8OteVSytzjqZ6F0jcq7+zy RMc6P8BZF+fuVZiwXIZTqUqEHn9/nYK3Ph3ludm3Q37Y02ywkaoRm/7lUHSLmOc6 aJT22PgcEzr3QMf/W9XNQbf+lww+Mo4rwe2DDNbgvjZ4bydUwZeZc+Qn0cKyFJs5 pMf7P6gwb6sHncUI5lKLht0K8KJgcKI5S43yLTmoUhRUBdgVmcCjfNVL2pFUpOaa 7F27wbiG5PCOKyiUbH0y76a7HV38XEmJEuQXv2bdUDijVqbRFA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org