$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: RZRIfu7hIEL17cFuFhojw+mwD8XXm8LHa1u4Mw7Wbwk= Subject key identifier: C4:C8:09:F6:0D:DF:91:2B:2D:7F:12:33:9A:9F:6A:08:D8:79:D3:BD Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 2A7ED078F83295B213B52D0263A51C88377FEF20 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:00:21 +0000 ROA not before: Thu 08 Aug 2024 18:55:21 +0000 ROA not after: Thu 07 Aug 2025 19:00:21 +0000 asID: 147137 IP address blocks: 2400:46a0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Oct 2024 06:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7e:d0:78:f8:32:95:b2:13:b5:2d:02:63:a5:1c:88:37:7f:ef:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:55:21 2024 GMT Not After : Aug 7 19:00:21 2025 GMT Subject: CN=C4C809F60DDF912B2D7F12339A9F6A08D879D3BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5a:31:c8:ed:85:30:0b:01:a0:37:ed:43:ed: 06:b2:a1:8f:b8:99:88:28:35:47:41:85:8f:1f:f6: 39:ee:78:ba:93:9d:dc:76:d1:23:24:bc:d4:98:d5: fc:77:45:fc:88:4c:ce:f4:03:2f:09:71:16:d0:b6: 48:3b:97:ab:70:0d:0a:7b:be:d4:70:55:2e:53:f8: ea:2a:c4:cf:25:fe:20:7f:7d:9f:ce:80:74:1a:2a: e0:82:1a:f6:7d:c3:e9:0d:df:4e:2a:4e:81:c8:c2: e1:0f:51:dc:ab:21:7b:d6:d5:44:91:72:53:a4:7f: 12:5b:49:e9:05:ab:11:fb:be:12:d2:70:51:b4:5a: e8:88:a7:58:84:db:33:da:cc:ce:6e:18:f7:e8:06: c9:f4:06:70:1d:ed:e0:88:49:d3:44:2e:e0:c0:63: 43:ba:3e:00:b8:d4:69:9b:13:a5:8c:10:6f:b8:34: ce:7f:3a:fb:0a:a6:8d:e9:70:35:cd:ab:fc:d5:b7: 4a:3c:c7:3b:74:0f:db:23:8f:c6:23:bd:f4:da:ef: 7f:e9:e3:b8:18:21:2f:16:b4:ec:3f:2c:dc:c4:93: a5:a3:0d:df:da:2a:55:2b:80:f9:85:b2:7a:f6:01: a1:e9:57:a2:6f:df:d4:fd:86:da:a1:e6:bc:c0:b7: 67:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C8:09:F6:0D:DF:91:2B:2D:7F:12:33:9A:9F:6A:08:D8:79:D3:BD X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:1::/48 Signature Algorithm: sha256WithRSAEncryption a1:d4:bf:d6:9e:f2:9f:f4:6c:f6:3b:27:60:7e:fa:c0:5f:0b: 96:da:c8:f9:cd:4c:58:2c:f8:d8:23:3a:79:fc:fe:67:9a:b2: e2:db:1c:cd:d7:aa:da:ce:20:96:9d:39:fa:d2:5c:37:ca:a9: a9:3a:0c:75:f7:a8:8a:1e:86:b4:37:98:d4:39:69:8d:74:cb: 6b:6e:9d:8c:25:70:cd:0b:d5:97:df:2d:0f:5b:09:79:56:21: f5:bd:c4:bc:87:3a:4a:9a:5f:d3:ac:88:96:97:f0:a1:c5:32: 34:56:72:a0:27:c2:f3:29:51:3e:6b:9f:b4:cd:e6:3d:cc:77: 74:d8:70:1e:e9:83:21:0c:a4:d8:01:0f:16:12:48:8b:91:a2: 6b:29:6d:5f:db:d2:bc:5e:e2:7b:04:b9:9a:99:2c:be:c9:d9: 3f:84:5a:77:0e:c1:d2:29:60:42:09:c4:eb:d9:0f:96:1e:f9: 87:90:95:11:c0:d3:8e:39:15:43:59:a3:fc:09:1a:64:7f:f0: 48:c1:84:c6:b4:56:e4:30:27:e4:9f:0c:47:97:dc:9c:1c:84: 60:f2:0a:0b:42:12:f0:ad:52:d0:16:8f:4a:31:f3:56:73:8a: a4:ec:0b:b5:25:98:51:85:6b:4f:fe:e6:d3:24:1e:15:f7:5f: 0b:cb:66:3f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKn7QePgylbITtS0CY6UciDd/7yAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU1MjFaFw0yNTA4MDcxOTAwMjFaMDMxMTAvBgNV BAMTKEM0QzgwOUY2MERERjkxMkIyRDdGMTIzMzlBOUY2QTA4RDg3OUQzQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpWjHI7YUwCwGgN+1D7QayoY+4 mYgoNUdBhY8f9jnueLqTndx20SMkvNSY1fx3RfyITM70Ay8JcRbQtkg7l6twDQp7 vtRwVS5T+OoqxM8l/iB/fZ/OgHQaKuCCGvZ9w+kN304qToHIwuEPUdyrIXvW1USR clOkfxJbSekFqxH7vhLScFG0WuiIp1iE2zPazM5uGPfoBsn0BnAd7eCISdNELuDA Y0O6PgC41GmbE6WMEG+4NM5/OvsKpo3pcDXNq/zVt0o8xzt0D9sjj8YjvfTa73/p 47gYIS8WtOw/LNzEk6WjDd/aKlUrgPmFsnr2AaHpV6Jv39T9htqh5rzAt2flAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxMgJ9g3fkSstfxIzmp9qCNh5070wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAEw DQYJKoZIhvcNAQELBQADggEBAKHUv9ae8p/0bPY7J2B++sBfC5bayPnNTFgs+Ngj Onn8/measuLbHM3XqtrOIJadOfrSXDfKqak6DHX3qIoehrQ3mNQ5aY10y2tunYwl cM0L1ZffLQ9bCXlWIfW9xLyHOkqaX9OsiJaX8KHFMjRWcqAnwvMpUT5rn7TN5j3M d3TYcB7pgyEMpNgBDxYSSIuRomspbV/b0rxe4nsEuZqZLL7J2T+EWncOwdIpYEIJ xOvZD5Ye+YeQlRHA0445FUNZo/wJGmR/8EjBhMa0VuQwJ+SfDEeX3JwchGDyCgtC EvCtUtAWj0ox81ZziqTsC7UlmFGFa0/+5tMkHhX3XwvLZj8= -----END CERTIFICATE-----Generated at Sat Sep 28 02:14:02 2024 by rpki-client on console-fra.rpki-client.org