$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 3teV7SJZMcjfQzOb5noQ02kPWPKiD/+cprgD0Pr5WHU= Subject key identifier: 20:D7:EF:FE:33:DD:54:9E:93:E5:42:15:C1:19:11:CD:21:B5:3B:28 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 1B1670EF5611B03887EC57F7D83961DD1211F8D3 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32353a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:46:44 +0000 ROA not before: Fri 09 Aug 2024 08:41:44 +0000 ROA not after: Fri 08 Aug 2025 08:46:44 +0000 asID: 147137 IP address blocks: 2400:46a0:25::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:16:70:ef:56:11:b0:38:87:ec:57:f7:d8:39:61:dd:12:11:f8:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:41:44 2024 GMT Not After : Aug 8 08:46:44 2025 GMT Subject: CN=20D7EFFE33DD549E93E54215C11911CD21B53B28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:41:63:e1:3a:55:72:60:43:8d:88:8d:40: 38:df:09:8f:47:a6:8e:23:6f:79:31:90:b5:cc:dc: ec:7a:b9:57:2d:08:9c:b3:dd:e0:a6:79:53:a0:b2: 89:de:1e:61:d5:39:12:16:0f:85:c8:6a:78:a6:ad: cd:3c:13:82:d1:fb:6f:5d:92:fc:b9:f3:24:7b:28: e7:4d:26:cf:11:9a:56:5a:c8:4c:85:de:d5:a0:f2: 98:b1:8f:5e:88:d5:b8:9b:fb:4d:df:d2:2c:c5:f5: 13:72:f3:81:1a:19:1b:85:7e:97:16:fe:56:f3:8b: 5c:3a:84:b5:fa:18:4a:fe:98:2a:07:57:72:26:fb: 4c:87:15:e9:c4:17:20:56:00:62:03:d5:c4:a3:24: c0:45:5c:fe:4c:e1:d9:36:3d:7a:78:de:a7:af:9e: ad:10:dc:e5:4e:24:62:e4:77:66:62:a2:b8:c6:7d: bf:8f:3b:83:60:64:a1:06:a3:83:de:2f:d0:f1:20: 97:63:e1:29:b4:d4:b3:d3:04:aa:9e:cb:4b:ec:20: 4d:79:db:c6:e9:4e:2d:10:64:87:78:b8:ec:0b:7c: 7b:83:4c:ae:10:d6:8b:a8:3c:d9:0c:3f:c5:55:26: 5b:c1:c1:8c:1f:93:4b:42:15:5a:36:4e:47:cf:ab: 1f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D7:EF:FE:33:DD:54:9E:93:E5:42:15:C1:19:11:CD:21:B5:3B:28 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:25::/48 Signature Algorithm: sha256WithRSAEncryption 74:32:cc:be:41:7b:77:9b:4f:22:0e:d4:2f:b3:88:c0:8b:f8: a9:49:b8:0b:4c:a6:3c:0f:67:8c:7a:3d:51:d9:75:e0:31:10: 9f:50:a6:97:40:62:88:ff:07:21:08:56:9c:0b:d4:10:80:f0: 4a:f0:cc:f4:fc:d2:69:98:e4:db:f3:79:a1:3c:39:30:9e:37: 60:99:1a:b0:7d:1e:23:20:f9:02:50:d0:57:77:88:a1:41:b9: 3e:90:f1:4a:ee:82:6f:9a:43:80:c6:c5:85:40:c7:27:27:d8: a4:be:7d:a1:5a:5f:ec:a4:0e:9b:ee:75:33:60:64:3c:07:f4: f6:58:e1:2a:58:8f:ab:df:ac:7b:83:10:15:b3:09:4d:e7:2d: d2:b3:fc:cc:95:71:2d:7c:ee:43:9c:ea:5c:ad:1a:7c:fb:77: ae:68:5a:14:df:82:f4:e9:7c:35:58:f2:9f:bf:d9:be:6d:30: d2:86:49:ab:07:8d:91:28:3b:83:4b:f7:92:20:a8:d5:df:5c: 39:c4:ee:6c:8c:4c:14:a1:24:ba:95:ea:8b:43:0f:32:72:86: 33:df:12:b9:e9:29:cf:e6:04:d5:1f:44:17:55:4a:b2:fe:35: 7d:ae:16:f3:9f:dd:21:91:d4:ae:18:45:f0:07:3e:58:1d:e0: 10:5c:2b:80 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUGxZw71YRsDiH7Ff32Dlh3RIR+NMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODQxNDRaFw0yNTA4MDgwODQ2NDRaMDMxMTAvBgNV BAMTKDIwRDdFRkZFMzNERDU0OUU5M0U1NDIxNUMxMTkxMUNEMjFCNTNCMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaa0Fj4TpVcmBDjYiNQDjfCY9H po4jb3kxkLXM3Ox6uVctCJyz3eCmeVOgsoneHmHVORIWD4XIanimrc08E4LR+29d kvy58yR7KOdNJs8RmlZayEyF3tWg8pixj16I1bib+03f0izF9RNy84EaGRuFfpcW /lbzi1w6hLX6GEr+mCoHV3Im+0yHFenEFyBWAGID1cSjJMBFXP5M4dk2PXp43qev nq0Q3OVOJGLkd2ZiorjGfb+PO4NgZKEGo4PeL9DxIJdj4Sm01LPTBKqey0vsIE15 28bpTi0QZId4uOwLfHuDTK4Q1ouoPNkMP8VVJlvBwYwfk0tCFVo2TkfPqx+nAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUINfv/jPdVJ6T5UIVwRkRzSG1OygwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA JTANBgkqhkiG9w0BAQsFAAOCAQEAdDLMvkF7d5tPIg7UL7OIwIv4qUm4C0ymPA9n jHo9Udl14DEQn1Cml0BiiP8HIQhWnAvUEIDwSvDM9PzSaZjk2/N5oTw5MJ43YJka sH0eIyD5AlDQV3eIoUG5PpDxSu6Cb5pDgMbFhUDHJyfYpL59oVpf7KQOm+51M2Bk PAf09ljhKliPq9+se4MQFbMJTect0rP8zJVxLXzuQ5zqXK0afPt3rmhaFN+C9Ol8 NVjyn7/Zvm0w0oZJqweNkSg7g0v3kiCo1d9cOcTubIxMFKEkupXqi0MPMnKGM98S uekpz+YE1R9EF1VKsv41fa4W85/dIZHUrhhF8Ac+WB3gEFwrgA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org