$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: xh0ZQo+djnAzCRFp9f6Drb50bfOipHWBrNfmmqAkJWM= Subject key identifier: 79:38:8F:7C:52:7E:B3:52:9E:5F:E9:E2:9F:A4:DB:F4:24:8E:6D:A0 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 1333BBE7BADD352F589CE47F1CD631100472C6F0 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:46:02 +0000 ROA not before: Fri 09 Aug 2024 08:41:02 +0000 ROA not after: Fri 08 Aug 2025 08:46:02 +0000 asID: 147137 IP address blocks: 2400:46a0:22::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:33:bb:e7:ba:dd:35:2f:58:9c:e4:7f:1c:d6:31:10:04:72:c6:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:41:02 2024 GMT Not After : Aug 8 08:46:02 2025 GMT Subject: CN=79388F7C527EB3529E5FE9E29FA4DBF4248E6DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5d:8a:60:03:c1:42:c8:ef:72:4b:f7:ac:7e: b9:f9:c4:ef:12:da:59:6c:1e:ed:8e:3f:02:63:35: 5d:fa:ab:88:04:2f:58:83:96:44:5c:59:a1:18:0f: 89:b5:99:13:aa:57:82:58:47:ca:1c:04:35:f6:5e: 7d:3c:11:a9:bc:2f:89:fa:ce:90:07:67:44:f2:82: c5:54:be:a7:35:61:08:c6:44:07:89:d1:b0:e4:8c: 9a:3a:f3:f4:57:d2:07:6d:87:7c:4d:a5:89:b0:f4: bd:79:c3:95:0b:9f:8e:41:70:c7:29:d1:af:89:b0: ff:8f:e0:00:5a:e0:6c:f7:37:59:9b:5f:e0:5f:78: 84:bd:f8:fb:e9:95:3b:ae:43:96:f7:66:59:bb:7d: 2f:fe:86:d5:9d:2c:9c:10:ca:f4:d5:71:69:02:43: f6:5d:a4:60:96:08:2a:d2:ae:bf:f4:90:3a:d9:4d: 0c:37:17:e5:3a:f0:9f:91:1f:ac:97:0b:36:b4:7b: 24:95:cf:8e:da:c9:15:de:cc:0e:c0:ba:62:b0:a0: cd:f1:24:74:a7:25:bc:ef:3f:a0:2e:37:f9:b4:cc: ac:2e:b6:31:83:3f:c9:a5:56:ed:63:e4:6a:aa:16: e8:86:21:e5:40:53:b4:1c:cd:ed:f1:b0:77:d4:d7: 63:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:38:8F:7C:52:7E:B3:52:9E:5F:E9:E2:9F:A4:DB:F4:24:8E:6D:A0 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:22::/48 Signature Algorithm: sha256WithRSAEncryption ac:85:50:cf:e6:bd:ef:17:ed:5b:fa:7c:c8:6e:64:75:0c:49: 96:50:8a:f7:b2:af:2e:4a:de:e7:1a:f9:07:2b:72:ca:03:39: bf:91:20:c7:fc:f5:bd:ce:f4:fb:36:97:a0:58:a8:9b:dd:da: 2b:82:8e:84:40:be:42:84:38:a8:38:e4:37:32:fe:03:07:cd: fd:3c:42:96:3d:27:9b:27:aa:33:06:98:d8:a8:f8:1e:df:fd: c2:78:55:ac:cc:28:dd:2f:c6:5a:58:c9:58:aa:f6:cd:f8:83: 5a:86:2a:db:52:99:90:6b:66:45:27:06:43:37:9c:b6:d7:dd: 81:5c:99:33:c3:2e:ac:86:6d:5b:42:46:c4:5e:c1:7a:47:3b: 73:15:55:11:39:96:9a:4b:e6:51:c5:0b:6e:51:2d:b2:0c:8c: 1b:ee:78:46:6f:0c:e2:06:39:e3:6d:66:ac:ff:5f:84:70:0b: 67:b3:a8:da:ac:e2:13:a8:a9:94:05:a2:f8:bb:da:3c:cd:de: 3e:14:71:2f:5e:aa:11:01:92:ba:8a:ca:d3:16:9f:e4:cf:7b: 57:34:31:90:20:82:f6:1e:09:e9:a7:b3:bc:2a:46:bb:c7:3b: 42:41:67:43:d3:81:90:4b:da:84:5e:2b:a7:8f:67:67:76:29: 22:9b:2c:b6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEzO757rdNS9YnOR/HNYxEARyxvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODQxMDJaFw0yNTA4MDgwODQ2MDJaMDMxMTAvBgNV BAMTKDc5Mzg4RjdDNTI3RUIzNTI5RTVGRTlFMjlGQTREQkY0MjQ4RTZEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFXYpgA8FCyO9yS/esfrn5xO8S 2llsHu2OPwJjNV36q4gEL1iDlkRcWaEYD4m1mROqV4JYR8ocBDX2Xn08Eam8L4n6 zpAHZ0TygsVUvqc1YQjGRAeJ0bDkjJo68/RX0gdth3xNpYmw9L15w5ULn45BcMcp 0a+JsP+P4ABa4Gz3N1mbX+BfeIS9+PvplTuuQ5b3Zlm7fS/+htWdLJwQyvTVcWkC Q/ZdpGCWCCrSrr/0kDrZTQw3F+U68J+RH6yXCza0eySVz47ayRXezA7AumKwoM3x JHSnJbzvP6AuN/m0zKwutjGDP8mlVu1j5GqqFuiGIeVAU7Qcze3xsHfU12PjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUeTiPfFJ+s1KeX+nin6Tb9CSObaAwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA IjANBgkqhkiG9w0BAQsFAAOCAQEArIVQz+a97xftW/p8yG5kdQxJllCK97KvLkre 5xr5BytyygM5v5Egx/z1vc70+zaXoFiom93aK4KOhEC+QoQ4qDjkNzL+AwfN/TxC lj0nmyeqMwaY2Kj4Ht/9wnhVrMwo3S/GWljJWKr2zfiDWoYq21KZkGtmRScGQzec ttfdgVyZM8MurIZtW0JGxF7Bekc7cxVVETmWmkvmUcULblEtsgyMG+54Rm8M4gY5 421mrP9fhHALZ7Oo2qziE6iplAWi+LvaPM3ePhRxL16qEQGSuorK0xaf5M97VzQx kCCC9h4J6aezvCpGu8c7QkFnQ9OBkEvahF4rp49nZ3YpIpsstg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org