$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: b3CQ7sx5TsS3QgbDmvpjSNGEr2urEpkWe7Vywhn71XE= Subject key identifier: 68:C0:43:78:67:02:DF:9D:88:BD:50:ED:2A:89:78:0D:F7:99:40:FD Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 2186B99427420C5E5338171FE6F2B00BB69B2A09 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:50:06 +0000 ROA not before: Fri 09 Aug 2024 08:45:06 +0000 ROA not after: Fri 08 Aug 2025 08:50:06 +0000 asID: 147137 IP address blocks: 2400:46a0:31::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:86:b9:94:27:42:0c:5e:53:38:17:1f:e6:f2:b0:0b:b6:9b:2a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:45:06 2024 GMT Not After : Aug 8 08:50:06 2025 GMT Subject: CN=68C043786702DF9D88BD50ED2A89780DF79940FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a5:a5:89:4e:8f:ed:24:2f:8c:6d:44:a7:9d: 06:ce:42:96:7f:c3:6e:58:ed:5b:86:3e:3b:37:3f: 71:d1:36:cb:77:1b:d6:81:15:c1:e4:2b:f5:c3:87: 63:f8:45:10:d0:5b:53:d6:94:00:3c:e9:22:32:27: 4f:10:8d:d7:89:a8:60:2b:b7:04:f5:ba:2b:a5:0e: 5d:f1:59:ae:62:f3:35:a2:28:d7:d1:0f:29:86:27: db:a4:c0:a8:53:da:ab:7f:df:22:58:2e:6e:81:08: 57:04:e4:8b:74:b1:b8:51:ed:7a:51:9f:1b:e6:25: f0:b9:f0:d0:77:d0:9a:3e:4c:5f:5e:08:d6:ae:d3: e2:8b:dc:37:60:77:de:d7:56:e6:5c:6e:d3:b7:01: bd:84:84:0e:08:a5:7d:15:06:42:f3:99:3e:81:87: 6d:4b:76:c4:34:91:ca:8b:9c:9a:26:79:f7:8a:9e: 6e:89:e3:b1:b4:67:0d:a3:84:62:5e:ae:a3:96:60: 03:8e:e1:a6:54:cb:f7:ea:b3:99:c5:2e:50:ef:fb: 0c:ee:82:77:b7:0b:55:a7:fa:dd:d5:fa:f2:fb:0d: 11:41:00:db:74:a8:ec:03:bd:77:e8:03:42:e0:1c: 2a:fc:ce:8d:69:62:de:8c:a9:1d:93:96:7c:e4:81: 5e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C0:43:78:67:02:DF:9D:88:BD:50:ED:2A:89:78:0D:F7:99:40:FD X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:31::/48 Signature Algorithm: sha256WithRSAEncryption 79:80:c2:e8:89:bf:87:36:01:44:31:35:9c:58:80:9b:dd:92: 3f:a7:16:70:2c:93:14:1f:54:e1:6a:df:1e:0d:8d:d7:f4:e9: 44:18:45:5c:ec:02:f4:7a:9f:64:41:ab:a1:a6:96:3b:b1:6f: 1f:8b:2d:cf:d8:33:10:6c:db:97:d2:ca:8e:0c:ac:bf:db:64: d0:09:a3:45:0e:d7:60:be:83:f1:af:d4:46:d5:98:55:17:e4: ce:62:d9:ed:9e:c6:b7:81:4e:36:2e:df:b6:bd:72:56:17:06: 6b:fa:0a:25:13:9d:86:52:08:1e:8b:ba:10:55:66:5c:4b:68: ac:3e:d8:c3:3b:66:78:98:68:32:e1:4b:be:67:b7:0a:2b:e5: c8:84:c8:aa:97:d7:2f:1d:9f:06:52:4f:94:0c:b9:be:3e:6f: 20:1b:01:19:28:88:85:7f:c7:44:a8:fa:05:77:f9:a3:22:99: 47:58:32:95:4f:cb:ac:15:64:bf:5b:ae:cb:4d:c8:ac:4e:73: 35:7e:d2:c6:7c:50:84:92:5c:0f:68:3d:df:a7:ac:dc:d5:b3: a1:82:0f:d7:63:ea:ec:cf:0d:25:1a:38:cd:f8:fd:e0:c9:75: 57:09:8d:79:14:31:5f:01:cd:01:99:b3:38:6c:00:d8:52:cb: 87:f0:87:37 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIYa5lCdCDF5TOBcf5vKwC7abKgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODQ1MDZaFw0yNTA4MDgwODUwMDZaMDMxMTAvBgNV BAMTKDY4QzA0Mzc4NjcwMkRGOUQ4OEJENTBFRDJBODk3ODBERjc5OTQwRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkpaWJTo/tJC+MbUSnnQbOQpZ/ w25Y7VuGPjs3P3HRNst3G9aBFcHkK/XDh2P4RRDQW1PWlAA86SIyJ08QjdeJqGAr twT1uiulDl3xWa5i8zWiKNfRDymGJ9ukwKhT2qt/3yJYLm6BCFcE5It0sbhR7XpR nxvmJfC58NB30Jo+TF9eCNau0+KL3Ddgd97XVuZcbtO3Ab2EhA4IpX0VBkLzmT6B h21LdsQ0kcqLnJomefeKnm6J47G0Zw2jhGJerqOWYAOO4aZUy/fqs5nFLlDv+wzu gne3C1Wn+t3V+vL7DRFBANt0qOwDvXfoA0LgHCr8zo1pYt6MqR2TlnzkgV5nAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUaMBDeGcC352IvVDtKol4DfeZQP0wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MTANBgkqhkiG9w0BAQsFAAOCAQEAeYDC6Im/hzYBRDE1nFiAm92SP6cWcCyTFB9U 4WrfHg2N1/TpRBhFXOwC9HqfZEGroaaWO7FvH4stz9gzEGzbl9LKjgysv9tk0Amj RQ7XYL6D8a/URtWYVRfkzmLZ7Z7Gt4FONi7ftr1yVhcGa/oKJROdhlIIHou6EFVm XEtorD7YwztmeJhoMuFLvme3CivlyITIqpfXLx2fBlJPlAy5vj5vIBsBGSiIhX/H RKj6BXf5oyKZR1gylU/LrBVkv1uuy03IrE5zNX7SxnxQhJJcD2g936es3NWzoYIP 12Pq7M8NJRo4zfj94Ml1VwmNeRQxXwHNAZmzOGwA2FLLh/CHNw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org