$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: GRMNSdDOMw8lxL4QscCXtgyOjmmWCdIUVLp6VSSnHbc= Subject key identifier: D4:F2:40:07:FF:E9:EC:5C:3E:48:4C:7D:A2:3D:84:B7:9C:BF:13:28 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 136531A21DD6B531463D88E08A0A945258254702 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33303a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:48:18 +0000 ROA not before: Fri 09 Aug 2024 08:43:18 +0000 ROA not after: Fri 08 Aug 2025 08:48:18 +0000 asID: 147137 IP address blocks: 2400:46a0:30::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Oct 2024 06:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:65:31:a2:1d:d6:b5:31:46:3d:88:e0:8a:0a:94:52:58:25:47:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:43:18 2024 GMT Not After : Aug 8 08:48:18 2025 GMT Subject: CN=D4F24007FFE9EC5C3E484C7DA23D84B79CBF1328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b1:b1:1e:8c:72:7a:28:c6:b3:a3:00:3e:52: e4:42:af:3c:02:76:fc:b1:5c:83:4b:74:1f:65:f6: 53:32:81:52:8f:e2:f5:83:b0:0b:51:30:39:35:16: 0c:1b:f8:31:ee:39:99:a6:f2:5b:b3:93:37:65:37: 8d:3a:23:2d:e7:96:1d:db:84:b6:1f:7a:b0:2e:03: 62:f1:41:8e:bd:d5:af:a3:71:9c:f7:34:60:c2:03: 8a:69:8e:a3:5a:74:78:90:da:e6:75:d7:f1:5c:3d: bd:0a:76:03:93:e7:7f:61:dd:fe:6a:fa:94:e6:bd: c3:0d:41:28:fa:68:0e:03:39:70:4a:7a:6b:a4:88: f5:9a:16:34:45:e3:01:0a:f7:54:d5:63:d1:f2:a8: e9:74:a5:46:51:a8:9f:ef:84:4b:0f:65:3b:2f:e9: 25:75:9b:cf:1d:25:6f:6e:14:50:39:09:2f:6d:be: ba:35:22:d9:b1:ac:c5:f3:d1:22:4e:af:24:68:d2: 3d:3f:4a:e8:8b:8b:dc:de:1b:59:b3:a3:b0:6f:a3: 9a:5f:c7:89:51:85:d1:34:4f:22:0d:74:9f:e5:ba: ff:86:b1:d3:8f:e2:76:ac:e1:58:7c:ab:72:dc:d2: f2:4c:8a:16:fb:27:d7:08:cc:c4:05:a0:11:85:b3: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F2:40:07:FF:E9:EC:5C:3E:48:4C:7D:A2:3D:84:B7:9C:BF:13:28 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:30::/48 Signature Algorithm: sha256WithRSAEncryption 1f:1a:ef:1b:92:09:57:86:69:19:64:f1:12:6d:0e:89:b4:cd: e4:8b:44:52:79:3e:91:12:25:93:ae:67:55:09:ab:91:c3:8e: 7e:bc:f8:37:19:84:9c:d8:8c:e6:1b:61:23:31:87:9e:55:65: 0c:f3:bb:f1:e8:06:24:f8:03:9e:81:6f:bb:4e:cf:8b:57:cc: 2a:2c:c5:36:a8:a9:50:85:ad:7a:da:ac:c7:c3:3a:35:08:4d: d6:9a:a6:0c:87:fe:35:62:ac:13:bf:0d:61:5e:14:c5:0b:7d: 17:e3:ca:72:70:f4:55:55:05:38:97:8b:58:46:1c:83:b1:a7: 64:c3:ae:6d:7c:1a:f2:12:b9:60:d4:40:09:0b:3b:c7:6c:47: 1b:08:c5:a3:93:91:eb:fa:61:2c:74:97:a8:13:5f:8e:5a:b7: 12:7a:6e:ac:08:35:3f:3f:fa:e2:11:2e:1a:2d:14:9f:90:e9: 9f:22:b8:42:29:ed:90:3e:5f:bf:ab:08:d3:31:c1:6d:f1:a7: 10:77:ee:2e:7c:71:dd:51:35:a3:8c:fc:b7:2b:a2:35:12:fd: a6:57:ff:8d:5e:31:51:12:d5:a2:e4:4a:9c:52:86:65:fa:2b: de:70:34:ad:45:43:d8:4b:c7:7a:42:c9:b4:ef:42:c3:04:06: e1:bd:9b:19 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUE2Uxoh3WtTFGPYjgigqUUlglRwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODQzMThaFw0yNTA4MDgwODQ4MThaMDMxMTAvBgNV BAMTKEQ0RjI0MDA3RkZFOUVDNUMzRTQ4NEM3REEyM0Q4NEI3OUNCRjEzMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMsbEejHJ6KMazowA+UuRCrzwC dvyxXINLdB9l9lMygVKP4vWDsAtRMDk1Fgwb+DHuOZmm8luzkzdlN406Iy3nlh3b hLYferAuA2LxQY691a+jcZz3NGDCA4ppjqNadHiQ2uZ11/FcPb0KdgOT539h3f5q +pTmvcMNQSj6aA4DOXBKemukiPWaFjRF4wEK91TVY9HyqOl0pUZRqJ/vhEsPZTsv 6SV1m88dJW9uFFA5CS9tvro1ItmxrMXz0SJOryRo0j0/SuiLi9zeG1mzo7Bvo5pf x4lRhdE0TyINdJ/luv+GsdOP4nas4Vh8q3Lc0vJMihb7J9cIzMQFoBGFs/utAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1PJAB//p7Fw+SEx9oj2Et5y/EygwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MDANBgkqhkiG9w0BAQsFAAOCAQEAHxrvG5IJV4ZpGWTxEm0OibTN5ItEUnk+kRIl k65nVQmrkcOOfrz4NxmEnNiM5hthIzGHnlVlDPO78egGJPgDnoFvu07Pi1fMKizF NqipUIWtetqsx8M6NQhN1pqmDIf+NWKsE78NYV4UxQt9F+PKcnD0VVUFOJeLWEYc g7GnZMOubXwa8hK5YNRACQs7x2xHGwjFo5OR6/phLHSXqBNfjlq3EnpurAg1Pz/6 4hEuGi0Un5DpnyK4QintkD5fv6sI0zHBbfGnEHfuLnxx3VE1o4z8tyuiNRL9plf/ jV4xURLVouRKnFKGZfor3nA0rUVD2EvHekLJtO9CwwQG4b2bGQ== -----END CERTIFICATE-----Generated at Sat Sep 28 02:14:02 2024 by rpki-client on console-fra.rpki-client.org