$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: Ij9uTjHgLP7CnRSfukBkN6EXVJUsGWidsVxLoAfkUaQ= Subject key identifier: 62:81:25:11:D5:EF:40:2B:19:67:92:94:83:DD:94:BE:D4:90:34:D4 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 7C4BFEA40E8F9FDD44634744A99575BE733A995F Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:56:35 +0000 ROA not before: Fri 09 Aug 2024 08:51:35 +0000 ROA not after: Fri 08 Aug 2025 08:56:35 +0000 asID: 147137 IP address blocks: 2400:46a0:34::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 02:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:4b:fe:a4:0e:8f:9f:dd:44:63:47:44:a9:95:75:be:73:3a:99:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:51:35 2024 GMT Not After : Aug 8 08:56:35 2025 GMT Subject: CN=62812511D5EF402B1967929483DD94BED49034D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0f:e1:65:e9:5c:35:a7:ba:ba:12:6c:e9:d7: 02:f3:70:b7:3d:af:86:57:7a:84:1c:aa:a9:58:f3: 0b:cb:75:cc:bf:78:ea:0b:14:d5:9a:06:d5:a9:dd: 2a:78:e6:21:0b:87:ae:ef:10:03:10:f0:72:7c:ba: 7e:54:68:16:fe:68:28:ad:78:53:79:58:8b:2e:67: 0d:d2:27:8e:dc:c9:48:e7:a1:19:21:df:ed:2e:35: ff:de:bd:ed:ba:08:03:f4:c9:96:bf:df:46:d9:7a: 4c:9e:c8:f8:7f:0c:bf:d3:87:8f:f1:46:cc:b7:f0: 00:a3:0f:e5:4f:01:61:db:c6:4f:b5:f8:dd:bc:ce: c3:7e:b8:78:a8:53:da:5a:63:b5:5c:dd:17:22:c6: 80:09:fd:03:5e:eb:f0:b9:5b:f9:cb:b8:d5:48:e8: 73:14:aa:05:cb:3b:c5:a4:8e:bd:70:07:c9:1c:a8: ce:b5:8d:86:d7:80:90:0a:89:d5:af:48:53:52:5a: 78:bc:46:e7:ec:93:f2:38:e1:83:e3:68:72:60:cf: bc:62:8c:6e:af:43:17:1d:10:7b:de:87:3d:95:b1: 8f:00:bb:dd:65:68:56:c6:9e:05:a4:53:75:4c:54: 18:ca:b6:ed:f2:1d:a3:7e:17:69:89:ed:07:a4:6a: 88:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:81:25:11:D5:EF:40:2B:19:67:92:94:83:DD:94:BE:D4:90:34:D4 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:34::/48 Signature Algorithm: sha256WithRSAEncryption 41:2f:74:30:a9:1b:ec:3a:e0:8a:68:12:0e:dc:89:d3:24:6f: 17:22:f5:79:d6:e7:70:81:0e:ea:43:0f:07:49:1c:41:a3:56: 04:e8:d2:a5:ad:1e:33:0f:69:96:34:a9:86:0b:aa:b7:f1:36: f4:d1:74:85:63:4c:9b:3e:3c:aa:de:24:27:92:c8:d9:95:db: bd:9a:e7:5b:3d:11:98:45:a7:dd:da:59:14:d6:fe:7c:a3:87: 74:1d:5b:16:56:7f:2d:ab:95:3e:be:bd:e6:68:1c:2c:25:56: 67:a4:ff:8b:6f:ca:26:22:0e:ee:0e:4d:e9:9c:3d:fc:f0:8c: 63:ca:6e:3b:b5:3b:61:71:81:dc:a0:31:55:af:46:31:03:20: c6:65:65:8e:15:77:48:2a:23:af:52:a4:2c:7f:4f:1e:7e:de: 64:da:0f:d2:01:aa:de:62:09:50:be:c1:76:62:1a:67:49:24: dc:7f:4e:62:12:5e:41:f7:ef:94:67:de:d1:bb:98:0b:af:35: f8:f6:d4:48:25:3d:d7:2e:f6:1a:07:85:48:a2:e3:69:5c:be: f2:09:2d:31:c5:46:7e:d8:06:9f:49:18:a8:68:e2:fa:56:93: ba:f2:c9:30:4a:d8:9c:ff:1b:55:f0:bf:30:55:11:ed:aa:04: 7d:5c:79:c5 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfEv+pA6Pn91EY0dEqZV1vnM6mV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODUxMzVaFw0yNTA4MDgwODU2MzVaMDMxMTAvBgNV BAMTKDYyODEyNTExRDVFRjQwMkIxOTY3OTI5NDgzREQ5NEJFRDQ5MDM0RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgD+Fl6Vw1p7q6Emzp1wLzcLc9 r4ZXeoQcqqlY8wvLdcy/eOoLFNWaBtWp3Sp45iELh67vEAMQ8HJ8un5UaBb+aCit eFN5WIsuZw3SJ47cyUjnoRkh3+0uNf/eve26CAP0yZa/30bZekyeyPh/DL/Th4/x Rsy38ACjD+VPAWHbxk+1+N28zsN+uHioU9paY7Vc3RcixoAJ/QNe6/C5W/nLuNVI 6HMUqgXLO8Wkjr1wB8kcqM61jYbXgJAKidWvSFNSWni8Rufsk/I44YPjaHJgz7xi jG6vQxcdEHvehz2VsY8Au91laFbGngWkU3VMVBjKtu3yHaN+F2mJ7QekaojfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYoElEdXvQCsZZ5KUg92UvtSQNNQwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA NDANBgkqhkiG9w0BAQsFAAOCAQEAQS90MKkb7DrgimgSDtyJ0yRvFyL1edbncIEO 6kMPB0kcQaNWBOjSpa0eMw9pljSphguqt/E29NF0hWNMmz48qt4kJ5LI2ZXbvZrn Wz0RmEWn3dpZFNb+fKOHdB1bFlZ/LauVPr695mgcLCVWZ6T/i2/KJiIO7g5N6Zw9 /PCMY8puO7U7YXGB3KAxVa9GMQMgxmVljhV3SCojr1KkLH9PHn7eZNoP0gGq3mIJ UL7BdmIaZ0kk3H9OYhJeQffvlGfe0buYC681+PbUSCU91y72GgeFSKLjaVy+8gkt McVGftgGn0kYqGji+laTuvLJMErYnP8bVfC/MFUR7aoEfVx5xQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:01:03 2025 by rpki-client