$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: OguiK26R6xH6OxE1tgsBfY4+fKAQhE1qh6b0cHnvCp8= Subject key identifier: 5E:35:53:7E:E8:69:E8:59:A2:1B:0C:A6:BD:04:2A:96:BB:6B:F4:F3 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 38C2E45F694B0114F3D6F15D2946E0654A42DDDC Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:02:02 +0000 ROA not before: Thu 08 Aug 2024 18:57:02 +0000 ROA not after: Thu 07 Aug 2025 19:02:02 +0000 asID: 147137 IP address blocks: 2400:46a0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c2:e4:5f:69:4b:01:14:f3:d6:f1:5d:29:46:e0:65:4a:42:dd:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:57:02 2024 GMT Not After : Aug 7 19:02:02 2025 GMT Subject: CN=5E35537EE869E859A21B0CA6BD042A96BB6BF4F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e3:f5:b7:28:77:78:a2:7d:43:ac:b2:b6:22: 14:14:5e:93:9e:89:02:aa:b5:7f:72:9c:5f:5b:50: 80:34:e2:46:94:3b:7f:cc:0e:31:86:f2:b7:a1:34: 4f:fd:8a:0f:dd:5b:5f:87:41:ea:c6:34:5e:c4:59: c3:d5:46:27:25:a9:95:ab:0a:a2:52:62:65:f7:84: 2d:e4:d4:80:c7:8c:a7:61:09:58:de:11:b8:dd:b5: 18:15:8b:48:fd:95:2b:64:8f:96:17:e7:07:d3:c1: 5b:5a:f7:ba:af:67:aa:62:cf:e5:a1:b8:de:04:9b: 65:e8:f7:c6:c3:77:f7:17:5c:c8:7e:9f:5b:0a:67: 27:ee:8d:ea:b2:01:eb:17:e5:f7:55:4b:9b:08:b5: 8f:46:c8:68:88:c1:8d:82:5e:09:4d:e1:4a:c7:d7: ff:3b:90:2b:4a:10:76:08:41:43:89:3d:80:d7:5c: a6:db:1a:9b:6c:d8:4d:be:2e:49:b6:3f:9e:05:60: 8d:33:86:51:b0:66:ef:51:71:0d:ac:fd:cf:27:42: 2a:92:b1:37:80:2a:89:fb:57:05:f1:6f:fc:ea:dc: da:d8:6d:5b:af:84:88:e2:d3:6e:a3:96:42:65:9e: 5a:8d:de:f0:36:24:8e:e9:53:9a:9f:c8:9a:77:37: 4b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:35:53:7E:E8:69:E8:59:A2:1B:0C:A6:BD:04:2A:96:BB:6B:F4:F3 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:2::/48 Signature Algorithm: sha256WithRSAEncryption 1d:43:9f:3d:40:9c:44:e9:7f:e8:d1:af:68:a2:b3:e2:66:77: 92:67:c9:b0:e1:db:ec:1f:94:93:ba:c1:9b:a0:66:2d:ee:c6: 46:b7:5c:bc:0e:b5:80:13:77:27:3e:2f:b4:a8:c6:5d:f6:69: 28:cf:a8:88:bc:0b:fd:42:77:cc:67:d5:e8:1d:61:d2:c5:83: 84:13:99:47:59:e9:1a:25:f0:56:da:4c:40:66:64:84:65:b3: 6a:90:63:7e:ce:fb:e4:b2:ad:21:74:2b:1d:88:60:df:48:b6: 03:f8:90:fa:a5:13:17:8f:fe:29:cb:37:0e:4c:3e:4c:a0:e7: 97:08:4e:31:46:64:fc:69:82:6e:54:7f:cd:fb:8a:72:7d:48: 31:ac:1a:51:40:15:eb:46:6d:7e:76:13:26:9c:34:01:57:58: f7:3c:bf:5d:28:0b:03:5c:71:41:f2:4b:ae:1b:d4:4a:82:bf: b4:98:93:b2:cf:9e:41:0e:09:fb:96:45:b8:3d:7a:2a:4d:37: b6:c7:e5:cc:c5:86:40:76:42:0c:b4:b4:43:1b:ff:2c:fc:4f: a0:4f:d8:df:78:27:87:ee:06:9c:fc:e9:48:5d:00:8b:73:7a: f6:1d:4c:10:d0:9a:14:95:4d:96:29:6b:4e:e4:e5:09:2e:59: 54:dc:c4:f7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOMLkX2lLARTz1vFdKUbgZUpC3dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU3MDJaFw0yNTA4MDcxOTAyMDJaMDMxMTAvBgNV BAMTKDVFMzU1MzdFRTg2OUU4NTlBMjFCMENBNkJEMDQyQTk2QkI2QkY0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY4/W3KHd4on1DrLK2IhQUXpOe iQKqtX9ynF9bUIA04kaUO3/MDjGG8rehNE/9ig/dW1+HQerGNF7EWcPVRiclqZWr CqJSYmX3hC3k1IDHjKdhCVjeEbjdtRgVi0j9lStkj5YX5wfTwVta97qvZ6piz+Wh uN4Em2Xo98bDd/cXXMh+n1sKZyfujeqyAesX5fdVS5sItY9GyGiIwY2CXglN4UrH 1/87kCtKEHYIQUOJPYDXXKbbGpts2E2+Lkm2P54FYI0zhlGwZu9RcQ2s/c8nQiqS sTeAKon7VwXxb/zq3NrYbVuvhIji026jlkJlnlqN3vA2JI7pU5qfyJp3N0uVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXjVTfuhp6FmiGwymvQQqlrtr9PMwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAIw DQYJKoZIhvcNAQELBQADggEBAB1Dnz1AnETpf+jRr2iis+Jmd5JnybDh2+wflJO6 wZugZi3uxka3XLwOtYATdyc+L7Soxl32aSjPqIi8C/1Cd8xn1egdYdLFg4QTmUdZ 6Rol8FbaTEBmZIRls2qQY37O++SyrSF0Kx2IYN9ItgP4kPqlExeP/inLNw5MPkyg 55cITjFGZPxpgm5Uf837inJ9SDGsGlFAFetGbX52EyacNAFXWPc8v10oCwNccUHy S64b1EqCv7SYk7LPnkEOCfuWRbg9eipNN7bH5czFhkB2Qgy0tEMb/yz8T6BP2N94 J4fuBpz86UhdAItzevYdTBDQmhSVTZYpa07k5QkuWVTcxPc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org