$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: BZ/lyg71WgRvCE2lpFgxsybnVq37c0txC0FrpeabIZE= Subject key identifier: 0B:53:9A:1B:BC:35:BE:77:A6:FF:BA:F2:11:08:65:57:5D:77:98:A5 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 61727B3533714B93E4EF214849AF873032045171 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:56:20 +0000 ROA not before: Fri 09 Aug 2024 08:51:20 +0000 ROA not after: Fri 08 Aug 2025 08:56:20 +0000 asID: 147137 IP address blocks: 2400:46a0:32::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:72:7b:35:33:71:4b:93:e4:ef:21:48:49:af:87:30:32:04:51:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:51:20 2024 GMT Not After : Aug 8 08:56:20 2025 GMT Subject: CN=0B539A1BBC35BE77A6FFBAF2110865575D7798A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:31:55:62:62:b9:69:a3:9c:8b:b1:8c:48:e5: 7b:78:cd:00:98:07:39:f8:9f:10:62:33:35:3e:a6: 73:f4:82:08:8f:49:9c:2f:41:de:ab:a4:e4:16:41: bc:66:63:ac:74:20:cb:17:bb:ea:3c:80:be:14:ac: 6d:a9:e6:8d:c3:3f:7d:89:c3:65:cc:3a:98:15:e1: 6b:28:7d:00:b0:8d:e4:5e:76:48:1b:1d:64:b1:91: 39:9c:a8:6a:ef:c1:b9:46:81:9f:f7:65:d9:c2:1b: 39:31:78:6e:c3:08:0c:63:24:6e:5f:10:74:fc:f3: 9c:e0:38:74:b0:99:53:b7:95:8c:84:1d:40:08:28: 0b:7c:3f:c0:60:8f:ba:e6:cd:82:58:de:5c:85:e2: 47:a5:7e:e1:41:60:9c:b0:93:d3:6a:10:5e:27:b4: 06:cb:cd:11:3d:64:49:b6:e9:a6:a2:12:33:a5:d2: c5:b2:c2:ff:ba:77:5e:3c:9b:de:2b:70:92:19:87: 29:51:77:fc:fc:49:08:5b:96:c5:69:df:54:96:f1: 29:40:a2:2f:02:41:ee:64:de:85:94:4c:ae:43:74: 33:a4:c7:16:6f:45:db:ea:b2:9c:be:98:bc:df:39: f6:74:b6:89:d9:65:45:b3:5a:5e:6f:a0:9d:a2:f1: f3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:53:9A:1B:BC:35:BE:77:A6:FF:BA:F2:11:08:65:57:5D:77:98:A5 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:32::/48 Signature Algorithm: sha256WithRSAEncryption 4b:cb:41:44:fc:05:12:d6:4a:3a:b7:0d:94:fb:96:10:95:50: 68:52:d2:9f:1e:46:24:dc:e5:46:12:99:d7:8e:9d:83:ce:d1: 23:d4:f6:f3:4d:3c:c2:8e:e1:08:50:18:6c:ed:b0:9f:c6:39: 03:87:64:40:a1:2e:ac:94:f5:9b:2b:c1:5a:a6:3e:44:e3:e6: 12:c4:ef:a6:66:fd:c8:24:fe:f4:d4:dc:f8:78:4a:9a:04:8e: d7:e5:8d:dc:cb:70:3a:9c:05:7a:91:cd:66:ed:fa:f9:10:1d: 5b:dd:43:a3:3b:86:bb:0d:4b:d5:60:74:f0:aa:c5:83:3d:2a: 79:33:7c:39:33:57:df:64:03:76:7e:4a:ea:0d:a1:67:e0:86: 41:33:aa:5c:cd:aa:90:c0:ed:18:e6:10:71:9e:ba:e1:3b:1b: 6f:87:85:8d:e5:e4:66:b1:2f:19:99:78:81:5f:4d:37:d1:08: 5b:90:c9:9d:4a:84:94:5e:1b:07:ed:aa:e2:9c:9a:b1:03:12: 62:df:c3:01:b4:86:dc:c7:ab:f6:c7:37:94:51:c0:f6:39:0a: c3:ef:41:cd:52:fb:f6:8b:79:55:f1:6d:aa:cc:a4:f6:3e:49: 45:00:52:9b:38:39:25:ca:78:6c:83:c8:0e:9a:47:61:14:be: e1:3d:e6:e6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYXJ7NTNxS5Pk7yFISa+HMDIEUXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODUxMjBaFw0yNTA4MDgwODU2MjBaMDMxMTAvBgNV BAMTKDBCNTM5QTFCQkMzNUJFNzdBNkZGQkFGMjExMDg2NTU3NUQ3Nzk4QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjMVViYrlpo5yLsYxI5Xt4zQCY Bzn4nxBiMzU+pnP0ggiPSZwvQd6rpOQWQbxmY6x0IMsXu+o8gL4UrG2p5o3DP32J w2XMOpgV4WsofQCwjeRedkgbHWSxkTmcqGrvwblGgZ/3ZdnCGzkxeG7DCAxjJG5f EHT885zgOHSwmVO3lYyEHUAIKAt8P8Bgj7rmzYJY3lyF4kelfuFBYJywk9NqEF4n tAbLzRE9ZEm26aaiEjOl0sWywv+6d148m94rcJIZhylRd/z8SQhblsVp31SW8SlA oi8CQe5k3oWUTK5DdDOkxxZvRdvqspy+mLzfOfZ0tonZZUWzWl5voJ2i8fPPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUC1OaG7w1vnem/7ryEQhlV113mKUwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MjANBgkqhkiG9w0BAQsFAAOCAQEAS8tBRPwFEtZKOrcNlPuWEJVQaFLSnx5GJNzl RhKZ146dg87RI9T28008wo7hCFAYbO2wn8Y5A4dkQKEurJT1myvBWqY+ROPmEsTv pmb9yCT+9NTc+HhKmgSO1+WN3MtwOpwFepHNZu36+RAdW91DozuGuw1L1WB08KrF gz0qeTN8OTNX32QDdn5K6g2hZ+CGQTOqXM2qkMDtGOYQcZ664Tsbb4eFjeXkZrEv GZl4gV9NN9EIW5DJnUqElF4bB+2q4pyasQMSYt/DAbSG3Mer9sc3lFHA9jkKw+9B zVL79ot5VfFtqsyk9j5JRQBSmzg5Jcp4bIPIDppHYRS+4T3m5g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org