$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: mQsaMm7Qmc8//ZrAG00lFnXOsZUdJhtEq5iUZqvU8Uo= Subject key identifier: BD:2F:A3:FE:68:82:F8:B3:D1:9C:9B:D2:AF:71:C5:26:9E:9A:B9:8A Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 6A2AD925E8A3804A7302FC30EE2FA0FA12E3BEA8 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:02:53 +0000 ROA not before: Thu 08 Aug 2024 18:57:53 +0000 ROA not after: Thu 07 Aug 2025 19:02:53 +0000 asID: 147137 IP address blocks: 2400:46a0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:2a:d9:25:e8:a3:80:4a:73:02:fc:30:ee:2f:a0:fa:12:e3:be:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:57:53 2024 GMT Not After : Aug 7 19:02:53 2025 GMT Subject: CN=BD2FA3FE6882F8B3D19C9BD2AF71C5269E9AB98A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:32:47:52:50:ae:f5:84:26:6a:35:23:e1:d2: ee:27:39:3f:ca:6b:05:19:1d:95:f4:6c:ee:42:a6: 8c:fb:1a:fc:b0:5b:f7:1e:ae:62:a5:99:85:39:6b: 24:c6:99:53:fb:90:3f:72:96:39:61:58:39:de:4f: 69:b5:d1:a2:ba:d3:2b:64:ed:57:2c:bb:d3:8b:55: 50:5d:85:7f:69:a4:f2:85:ff:d6:08:af:c0:d2:5b: d1:2c:21:a2:6d:fa:d0:6c:4b:ad:53:43:90:ca:89: e2:37:39:9c:3d:5a:ce:0d:a9:36:22:7b:a2:6a:ed: 60:2b:cd:64:84:90:d1:95:cd:bc:66:f9:df:93:39: 62:df:cb:14:6f:b4:50:df:87:f6:b7:6b:4f:59:3f: 82:64:aa:ce:49:c1:76:11:03:b0:78:de:bc:9e:12: da:84:49:5e:d1:54:22:4c:d9:61:af:9d:b2:f1:fc: 0e:c3:22:d0:71:ed:9c:b7:3c:3b:54:55:01:dc:96: f7:91:0a:e8:0d:a2:43:fe:6c:c9:4d:0f:94:1b:d4: f9:57:83:9c:75:34:2e:70:c7:7e:64:ff:c7:b7:dd: bc:ec:68:54:48:72:99:3c:a0:fa:95:df:18:a5:f1: 64:47:ef:83:05:f1:59:93:e5:0d:0b:e7:e2:76:0c: 43:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2F:A3:FE:68:82:F8:B3:D1:9C:9B:D2:AF:71:C5:26:9E:9A:B9:8A X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:4::/48 Signature Algorithm: sha256WithRSAEncryption 7e:a3:01:52:fb:42:33:6c:61:8a:5b:04:e0:5d:ca:7c:56:86: ba:da:31:fd:b4:9d:6e:ad:05:94:44:25:e2:33:13:15:59:b2: 01:e6:fb:7a:ea:aa:79:49:f4:f9:31:df:13:95:af:b1:2d:32: 0f:1d:f1:9d:3e:00:81:39:79:a8:80:92:d5:d0:6d:ff:48:18: fa:08:33:e1:f3:e7:15:61:4a:86:a9:af:1f:e9:b4:37:08:94: b2:fd:72:ef:97:dc:62:9d:e6:93:3c:ea:b8:74:d5:da:e5:9b: 10:db:46:86:46:6a:1d:6d:25:6a:cc:a9:16:d9:f2:2e:b8:17: 1f:42:5e:af:20:fd:5d:d1:b2:33:0d:8d:78:cc:76:1d:c0:94: 82:66:40:c2:21:25:36:ba:96:e0:df:f0:35:b8:a9:76:f9:44: a8:8d:ca:4a:5f:c5:f0:3b:e5:93:9c:d0:95:39:fd:dc:66:7f: 7e:e6:7c:4c:c0:0c:87:d9:42:99:0a:6b:b4:54:5e:e2:f2:92: 10:b5:cf:ef:ab:b0:14:33:58:2a:fb:55:3c:49:c5:92:b6:6a: 0e:93:e4:fd:e0:ef:f6:e6:ab:6b:41:79:b5:82:ce:fd:d9:47: da:dd:a2:db:40:df:55:58:1c:54:c7:ac:0b:91:ec:b5:08:22: f6:01:48:a7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUairZJeijgEpzAvww7i+g+hLjvqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU3NTNaFw0yNTA4MDcxOTAyNTNaMDMxMTAvBgNV BAMTKEJEMkZBM0ZFNjg4MkY4QjNEMTlDOUJEMkFGNzFDNTI2OUU5QUI5OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKMkdSUK71hCZqNSPh0u4nOT/K awUZHZX0bO5Cpoz7GvywW/cermKlmYU5ayTGmVP7kD9yljlhWDneT2m10aK60ytk 7Vcsu9OLVVBdhX9ppPKF/9YIr8DSW9EsIaJt+tBsS61TQ5DKieI3OZw9Ws4NqTYi e6Jq7WArzWSEkNGVzbxm+d+TOWLfyxRvtFDfh/a3a09ZP4Jkqs5JwXYRA7B43rye EtqESV7RVCJM2WGvnbLx/A7DItBx7Zy3PDtUVQHclveRCugNokP+bMlND5Qb1PlX g5x1NC5wx35k/8e33bzsaFRIcpk8oPqV3xil8WRH74MF8VmT5Q0L5+J2DEPZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvS+j/miC+LPRnJvSr3HFJp6auYowHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAQw DQYJKoZIhvcNAQELBQADggEBAH6jAVL7QjNsYYpbBOBdynxWhrraMf20nW6tBZRE JeIzExVZsgHm+3rqqnlJ9Pkx3xOVr7EtMg8d8Z0+AIE5eaiAktXQbf9IGPoIM+Hz 5xVhSoaprx/ptDcIlLL9cu+X3GKd5pM86rh01drlmxDbRoZGah1tJWrMqRbZ8i64 Fx9CXq8g/V3RsjMNjXjMdh3AlIJmQMIhJTa6luDf8DW4qXb5RKiNykpfxfA75ZOc 0JU5/dxmf37mfEzADIfZQpkKa7RUXuLykhC1z++rsBQzWCr7VTxJxZK2ag6T5P3g 7/bmq2tBebWCzv3ZR9rdottA31VYHFTHrAuR7LUIIvYBSKc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:16 2024 by rpki-client on console-ams.rpki-client.org