$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: YY0+XyTtmvMJOlbQxPhmkg3d6myZMfC4/4IpWW5R6KI= Subject key identifier: 89:0D:09:23:E8:C3:A6:CA:C9:BB:D1:B7:9D:36:E4:73:72:2F:89:D2 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 46BE13733F4D2B7B7AF0A0689339F4A60D559296 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:02:40 +0000 ROA not before: Thu 08 Aug 2024 18:57:40 +0000 ROA not after: Thu 07 Aug 2025 19:02:40 +0000 asID: 147137 IP address blocks: 2400:46a0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:be:13:73:3f:4d:2b:7b:7a:f0:a0:68:93:39:f4:a6:0d:55:92:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:57:40 2024 GMT Not After : Aug 7 19:02:40 2025 GMT Subject: CN=890D0923E8C3A6CAC9BBD1B79D36E473722F89D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:be:b9:03:2e:12:54:e1:95:93:7e:19:c4:53: e5:76:1a:e7:1d:20:dc:ed:da:ab:d0:8b:ac:23:2c: fa:e2:44:fb:99:90:27:df:5f:77:48:b9:ac:75:62: cc:10:31:fc:26:6c:71:82:c4:51:47:44:76:f3:75: cc:5d:6a:b0:77:e1:fa:70:e4:bb:8d:9e:be:e3:c5: 2f:e3:f3:a8:82:6d:83:e4:d3:a3:56:b6:c2:61:c2: 6c:36:e5:a4:13:0d:61:c1:b0:e6:c0:01:88:b8:13: f0:f3:7f:dd:ec:32:c2:d5:19:1d:3e:cf:a0:9f:23: de:73:d3:b7:ce:f2:95:82:06:e3:63:00:07:52:e0: 93:e6:1c:61:01:02:0f:4d:26:e6:9d:54:ec:95:1c: 05:6e:45:cf:d0:96:c4:6b:63:be:f7:77:ac:94:51: 2f:67:0a:a7:83:bb:c7:35:2d:e3:58:9f:8b:73:d5: 3d:16:58:5e:63:ca:21:e8:92:ab:24:98:29:33:46: 40:9f:12:ef:5a:00:28:78:5c:b4:a0:03:5b:85:ce: c9:f2:53:8c:7a:4d:cc:dd:06:16:4c:66:32:f8:61: 0a:39:7b:81:9c:cf:5f:17:ea:68:4c:a4:2c:1d:26: d1:7d:c4:d5:05:88:4a:42:f6:49:a7:e8:94:a9:cf: 44:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:0D:09:23:E8:C3:A6:CA:C9:BB:D1:B7:9D:36:E4:73:72:2F:89:D2 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:3::/48 Signature Algorithm: sha256WithRSAEncryption 8e:5e:ef:76:c3:af:b5:ef:99:55:1d:9f:61:d8:28:82:e1:55: 05:39:54:2a:30:74:c7:7e:54:ab:06:ba:f7:19:39:45:85:57: b8:b1:71:30:32:c6:61:1c:0f:0a:0b:75:88:f9:ed:fa:2f:ca: a9:4e:6d:bc:08:4e:b1:7f:61:2a:a4:c4:4d:0a:9b:58:0c:aa: c3:85:8c:55:89:de:0d:b9:d8:e9:51:2a:76:26:5d:e6:78:51: a7:25:1b:83:23:d9:83:47:23:e6:de:d3:65:b6:05:b5:74:16: ec:d8:30:54:47:80:02:42:f3:be:e7:ff:d2:b6:75:25:37:4e: 02:75:b3:f3:db:da:d9:a5:2f:b5:55:da:d6:a5:69:49:e7:d4: c4:07:93:87:33:cc:c3:58:34:a4:83:66:f7:f7:02:65:3c:df: 74:0f:e9:79:db:6a:62:b3:b2:c6:83:44:4d:a7:ae:f4:3c:c6: 34:45:63:d8:fc:2b:fe:7b:a8:e9:0f:43:cd:73:ad:80:6e:c2: d2:70:a2:2b:c1:7a:ae:fe:a0:c6:58:43:d2:95:03:c6:e4:b3: 93:c7:a8:ef:1f:6d:72:ce:18:34:a7:ec:34:46:83:8f:3c:e2: f9:55:77:cb:4e:39:88:9a:7a:31:3b:38:a1:40:69:e6:58:46: bf:79:47:bc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURr4Tcz9NK3t68KBokzn0pg1VkpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU3NDBaFw0yNTA4MDcxOTAyNDBaMDMxMTAvBgNV BAMTKDg5MEQwOTIzRThDM0E2Q0FDOUJCRDFCNzlEMzZFNDczNzIyRjg5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXvrkDLhJU4ZWTfhnEU+V2Gucd INzt2qvQi6wjLPriRPuZkCffX3dIuax1YswQMfwmbHGCxFFHRHbzdcxdarB34fpw 5LuNnr7jxS/j86iCbYPk06NWtsJhwmw25aQTDWHBsObAAYi4E/Dzf93sMsLVGR0+ z6CfI95z07fO8pWCBuNjAAdS4JPmHGEBAg9NJuadVOyVHAVuRc/QlsRrY773d6yU US9nCqeDu8c1LeNYn4tz1T0WWF5jyiHokqskmCkzRkCfEu9aACh4XLSgA1uFzsny U4x6TczdBhZMZjL4YQo5e4Gcz18X6mhMpCwdJtF9xNUFiEpC9kmn6JSpz0SRAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUiQ0JI+jDpsrJu9G3nTbkc3IvidIwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAMw DQYJKoZIhvcNAQELBQADggEBAI5e73bDr7XvmVUdn2HYKILhVQU5VCowdMd+VKsG uvcZOUWFV7ixcTAyxmEcDwoLdYj57fovyqlObbwITrF/YSqkxE0Km1gMqsOFjFWJ 3g252OlRKnYmXeZ4UaclG4Mj2YNHI+be02W2BbV0FuzYMFRHgAJC877n/9K2dSU3 TgJ1s/Pb2tmlL7VV2talaUnn1MQHk4czzMNYNKSDZvf3AmU833QP6XnbamKzssaD RE2nrvQ8xjRFY9j8K/57qOkPQ81zrYBuwtJwoivBeq7+oMZYQ9KVA8bks5PHqO8f bXLOGDSn7DRGg4884vlVd8tOOYiaejE7OKFAaeZYRr95R7w= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org