$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: u2vg28aO3fRVA6T9MIkL17vvvhq/Dih6iy1IPPeVlZI= Subject key identifier: 59:0B:88:0A:B7:B0:99:9C:03:DE:CE:86:D3:D2:C4:6C:DE:91:90:E6 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 2C2468D608853BA6BAE412C1592C1D7BC1295E71 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:46:33 +0000 ROA not before: Fri 09 Aug 2024 08:41:33 +0000 ROA not after: Fri 08 Aug 2025 08:46:33 +0000 asID: 147137 IP address blocks: 2400:46a0:24::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:24:68:d6:08:85:3b:a6:ba:e4:12:c1:59:2c:1d:7b:c1:29:5e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:41:33 2024 GMT Not After : Aug 8 08:46:33 2025 GMT Subject: CN=590B880AB7B0999C03DECE86D3D2C46CDE9190E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:ef:ec:9f:a4:f0:98:4a:ed:56:5b:1c:4c: bd:c8:42:67:3f:df:5c:46:3e:1a:9d:ba:9b:45:03: 0c:1a:a5:b5:3a:5a:b8:3a:99:8d:50:c7:13:34:b2: 60:1f:03:0a:b8:3c:55:55:9e:9d:c2:b1:8e:1b:7e: 1f:bd:a6:b1:f0:ac:a3:19:dd:81:dd:32:44:35:8a: cc:c7:0c:69:2e:5c:75:df:c2:a9:60:eb:60:e1:7b: b3:68:02:83:49:9b:2d:19:2b:16:9a:ab:e1:9a:19: 47:15:5d:48:09:44:da:eb:3a:92:f8:81:71:18:1d: 5a:bd:33:96:d3:b3:d5:e9:71:f6:20:08:7a:96:99: 34:b3:9d:90:81:b2:69:bf:7e:fd:1f:85:bf:62:11: 1a:47:84:6e:5d:1f:17:db:f2:8d:80:38:8d:44:23: f3:b1:2a:b3:0b:88:47:53:90:96:51:ff:3c:ea:80: 79:bc:7d:09:a2:7b:61:6b:2f:c4:17:d1:b1:db:7e: 4d:09:e6:97:15:8a:3f:42:1a:94:18:7f:f7:80:23: 79:1d:bd:e6:b3:02:1c:e1:21:e5:a1:c0:6b:c7:b8: b0:17:66:22:87:ad:2e:7e:0a:75:91:43:e0:f7:b7: 7b:80:ad:44:5b:d8:5a:33:93:4a:13:a8:41:ca:ab: 96:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0B:88:0A:B7:B0:99:9C:03:DE:CE:86:D3:D2:C4:6C:DE:91:90:E6 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:24::/48 Signature Algorithm: sha256WithRSAEncryption 61:9e:0d:1a:6e:0a:67:73:84:bb:79:92:9b:e4:5a:cf:18:67: 94:a6:f0:fa:f4:b2:29:dc:90:86:ee:07:fa:86:37:90:45:41: f8:46:38:ed:70:8d:bd:99:ed:96:43:2a:d8:1d:33:e5:8c:b5: 2c:8f:1d:3d:2d:23:97:c9:98:8d:d7:53:e1:9f:40:05:9e:fa: 11:0d:58:39:cb:59:62:ff:f4:2c:b1:67:69:32:57:5f:23:f1: 33:87:0d:32:d7:f9:0e:5c:11:71:41:e6:30:88:4e:93:df:24: bd:ca:1e:58:9b:69:6c:cf:23:59:84:fe:6b:f5:5c:e1:41:40: 52:72:b7:3e:6e:20:a2:09:2d:91:19:fa:82:68:ff:80:37:63: e6:0c:32:bc:65:db:5c:d8:9a:5c:b2:c2:f3:2d:6a:64:b3:fa: f7:82:d4:46:9f:0a:00:77:cb:eb:e7:b0:11:fc:92:3a:eb:40: a5:f3:ff:45:0c:19:3c:79:af:49:2c:47:9a:19:68:95:49:b7: 87:df:cc:0f:02:62:81:b7:0c:f4:0c:6d:05:a8:a1:fe:c4:9c: bd:82:cb:6b:22:42:26:70:83:77:a7:6a:97:ce:2a:99:67:09: 1b:86:7a:47:8d:e3:04:d2:ef:7f:4b:ec:ff:ae:ed:f8:bf:69: a8:55:57:1d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULCRo1giFO6a65BLBWSwde8EpXnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODQxMzNaFw0yNTA4MDgwODQ2MzNaMDMxMTAvBgNV BAMTKDU5MEI4ODBBQjdCMDk5OUMwM0RFQ0U4NkQzRDJDNDZDREU5MTkwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt4O/sn6TwmErtVlscTL3IQmc/ 31xGPhqduptFAwwapbU6Wrg6mY1QxxM0smAfAwq4PFVVnp3CsY4bfh+9prHwrKMZ 3YHdMkQ1iszHDGkuXHXfwqlg62Dhe7NoAoNJmy0ZKxaaq+GaGUcVXUgJRNrrOpL4 gXEYHVq9M5bTs9XpcfYgCHqWmTSznZCBsmm/fv0fhb9iERpHhG5dHxfb8o2AOI1E I/OxKrMLiEdTkJZR/zzqgHm8fQmie2FrL8QX0bHbfk0J5pcVij9CGpQYf/eAI3kd veazAhzhIeWhwGvHuLAXZiKHrS5+CnWRQ+D3t3uArURb2Fozk0oTqEHKq5anAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWQuICrewmZwD3s6G09LEbN6RkOYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA JDANBgkqhkiG9w0BAQsFAAOCAQEAYZ4NGm4KZ3OEu3mSm+RazxhnlKbw+vSyKdyQ hu4H+oY3kEVB+EY47XCNvZntlkMq2B0z5Yy1LI8dPS0jl8mYjddT4Z9ABZ76EQ1Y OctZYv/0LLFnaTJXXyPxM4cNMtf5DlwRcUHmMIhOk98kvcoeWJtpbM8jWYT+a/Vc 4UFAUnK3Pm4gogktkRn6gmj/gDdj5gwyvGXbXNiaXLLC8y1qZLP694LURp8KAHfL 6+ewEfySOutApfP/RQwZPHmvSSxHmhlolUm3h9/MDwJigbcM9AxtBaih/sScvYLL ayJCJnCDd6dql84qmWcJG4Z6R43jBNLvf0vs/67t+L9pqFVXHQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org