$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: XedFjw5WfTgHYQnvKd/7FbB54/TE3ZFtvlZ67YBNjuU= Subject key identifier: BE:65:6E:8B:AF:F9:F8:4F:DB:A2:3C:09:59:04:68:88:C3:6D:0F:FB Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 5AB8B8691FE491A627BF2B557E69585D742AF32A Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 09 Aug 2024 08:56:46 +0000 ROA not before: Fri 09 Aug 2024 08:51:46 +0000 ROA not after: Fri 08 Aug 2025 08:56:46 +0000 asID: 147137 IP address blocks: 2400:46a0:35::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b8:b8:69:1f:e4:91:a6:27:bf:2b:55:7e:69:58:5d:74:2a:f3:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 9 08:51:46 2024 GMT Not After : Aug 8 08:56:46 2025 GMT Subject: CN=BE656E8BAFF9F84FDBA23C0959046888C36D0FFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:b9:f7:25:60:34:f7:2e:a9:ad:8e:dc:18: 68:97:97:96:08:0a:c9:a8:40:8c:d1:d5:d9:c8:75: 62:4f:28:25:57:83:f1:a6:83:b3:78:26:20:f2:b2: c5:b0:ea:f6:45:5d:38:94:a9:3e:d2:b8:6f:52:32: a1:06:89:a6:6e:b1:4e:45:ea:78:94:5a:c9:6b:84: 61:52:d9:85:61:13:b8:7e:69:86:42:04:ae:89:47: df:07:79:66:cd:0d:50:eb:3a:0f:b3:c2:f6:a4:d9: d9:39:c0:87:eb:d7:e0:5e:5d:44:ba:1d:b6:d4:77: 9c:21:f6:07:94:ec:8b:9d:e9:36:b6:74:c8:e7:c0: 2e:88:ff:ae:af:9d:f5:65:9a:8f:bb:2d:6c:65:f0: 9f:f6:57:7d:57:03:b6:1c:b4:95:28:95:ee:55:37: 0e:8d:59:8e:62:9f:28:ba:d4:df:ed:cc:ee:be:fe: 81:cd:02:25:cf:07:51:74:70:6f:0b:bc:35:42:74: 98:0c:14:f7:e6:07:af:d8:83:47:8c:47:29:5d:df: ad:b0:41:31:e6:29:a8:f0:86:8d:c4:aa:36:a4:6c: 7c:03:cc:18:21:7f:84:47:3a:55:f8:34:46:f0:15: 6b:22:e1:4d:3c:ef:29:4d:41:13:eb:18:36:a7:6d: b8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:65:6E:8B:AF:F9:F8:4F:DB:A2:3C:09:59:04:68:88:C3:6D:0F:FB X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:35::/48 Signature Algorithm: sha256WithRSAEncryption 24:93:cf:c5:0d:f0:f1:e9:23:7b:49:38:95:06:f9:4e:f1:a9: 52:b2:36:cc:0d:59:1f:26:8e:3e:ca:3d:23:bc:be:f4:e9:e8: 3c:17:28:e6:07:d3:a5:57:22:83:a2:ee:b0:08:d5:97:09:23: 57:21:95:93:44:dd:10:19:f5:ff:3a:59:a5:48:68:7c:1f:dc: c8:95:71:71:7d:2a:fb:34:a5:f8:bd:37:a7:5a:4b:a5:f4:67: 3b:b1:d6:75:af:e5:ee:d2:16:9b:cf:70:c0:53:81:3d:64:a1: 81:a6:5f:10:7e:7a:df:94:38:cd:0c:b3:5e:63:c6:ae:33:b2: 2b:b8:33:52:5c:05:84:94:7d:df:4c:33:80:6d:0a:bb:28:14: 94:99:d5:1f:19:47:87:1a:be:5b:ef:91:6d:63:4b:4f:79:44: 6b:7f:71:f1:e7:6e:70:8b:8d:24:34:10:a9:88:f0:23:8b:f2: a0:0c:93:7c:00:2a:51:c7:73:d9:66:79:13:1f:21:9b:f6:69: 02:b8:9c:7d:e2:52:9f:08:97:d8:7d:b1:7e:0f:4d:3c:34:b5: c4:0d:3b:3b:ed:41:6a:48:8c:2b:6c:c4:e6:11:e2:1a:e9:e2: b8:18:9c:cd:c2:3c:eb:8a:7a:54:17:12:56:e4:93:53:db:2f: 3a:75:37:10 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWri4aR/kkaYnvytVfmlYXXQq8yowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDkwODUxNDZaFw0yNTA4MDgwODU2NDZaMDMxMTAvBgNV BAMTKEJFNjU2RThCQUZGOUY4NEZEQkEyM0MwOTU5MDQ2ODg4QzM2RDBGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMsLn3JWA09y6prY7cGGiXl5YI CsmoQIzR1dnIdWJPKCVXg/Gmg7N4JiDyssWw6vZFXTiUqT7SuG9SMqEGiaZusU5F 6niUWslrhGFS2YVhE7h+aYZCBK6JR98HeWbNDVDrOg+zwvak2dk5wIfr1+BeXUS6 HbbUd5wh9geU7Iud6Ta2dMjnwC6I/66vnfVlmo+7LWxl8J/2V31XA7YctJUole5V Nw6NWY5inyi61N/tzO6+/oHNAiXPB1F0cG8LvDVCdJgMFPfmB6/Yg0eMRyld362w QTHmKajwho3EqjakbHwDzBghf4RHOlX4NEbwFWsi4U087ylNQRPrGDanbbjtAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUvmVui6/5+E/bojwJWQRoiMNtD/swHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA NTANBgkqhkiG9w0BAQsFAAOCAQEAJJPPxQ3w8ekje0k4lQb5TvGpUrI2zA1ZHyaO Pso9I7y+9OnoPBco5gfTpVcig6LusAjVlwkjVyGVk0TdEBn1/zpZpUhofB/cyJVx cX0q+zSl+L03p1pLpfRnO7HWda/l7tIWm89wwFOBPWShgaZfEH5635Q4zQyzXmPG rjOyK7gzUlwFhJR930wzgG0KuygUlJnVHxlHhxq+W++RbWNLT3lEa39x8educIuN JDQQqYjwI4vyoAyTfAAqUcdz2WZ5Ex8hm/ZpAricfeJSnwiX2H2xfg9NPDS1xA07 O+1BakiMK2zE5hHiGuniuBiczcI864p6VBcSVuSTU9svOnU3EA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org