$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: mY4sHGqV+2ZMEOMtSxlR5wFkYAmW1B96lfxcRbbHp9g= Subject key identifier: 96:AC:1D:CD:D7:DC:4E:FC:88:0F:93:08:E8:C3:35:E4:42:9E:45:B0 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 7F44C6D84542921CE5CC7F6CDDAC69C3831B4153 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:03:35 +0000 ROA not before: Thu 08 Aug 2024 18:58:35 +0000 ROA not after: Thu 07 Aug 2025 19:03:35 +0000 asID: 147137 IP address blocks: 2400:46a0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:44:c6:d8:45:42:92:1c:e5:cc:7f:6c:dd:ac:69:c3:83:1b:41:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:58:35 2024 GMT Not After : Aug 7 19:03:35 2025 GMT Subject: CN=96AC1DCDD7DC4EFC880F9308E8C335E4429E45B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:41:45:0a:e9:b9:37:f7:b0:b2:f7:53:63:a2: 7f:70:92:85:a6:f2:09:81:bd:8c:21:92:68:0f:7f: 9a:b3:dc:3a:f8:9b:f7:4f:0e:ae:9f:6e:76:49:03: c4:c6:81:28:94:2d:2a:e0:d2:0d:01:ec:af:a7:e8: 0f:e4:17:d3:9e:05:43:d9:d7:b2:39:f3:2a:59:cb: 1e:0e:74:ca:ee:79:81:73:e8:3e:34:32:f9:91:a5: 92:c1:f9:86:88:29:13:47:b9:92:91:fd:dc:30:b1: 5d:92:f0:24:6d:47:ee:ba:13:42:73:12:b4:26:99: 75:d9:1f:e1:e2:95:9a:ce:67:f1:5b:82:b4:0c:5f: ed:62:de:c3:2e:ca:77:7e:be:86:bb:1a:71:6e:64: 15:d9:70:d4:64:0e:47:01:17:e8:99:5f:c6:0d:a2: 3d:70:06:a7:3e:57:66:c5:67:41:64:59:d2:2f:25: 31:6c:18:3c:65:30:4f:83:2a:66:f9:3b:a8:8d:37: 65:06:a0:a9:ae:b9:26:3f:72:d9:b8:86:9a:bd:18: 95:d0:52:f6:39:a2:3e:07:dc:80:5e:8d:27:62:44: d1:af:2e:34:d9:06:62:a6:82:43:f1:96:73:6d:d6: 29:4b:cd:9e:99:1a:81:64:b2:5c:be:ba:68:56:fa: ce:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AC:1D:CD:D7:DC:4E:FC:88:0F:93:08:E8:C3:35:E4:42:9E:45:B0 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a363a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:6::/48 Signature Algorithm: sha256WithRSAEncryption 5e:a8:e4:87:3e:8e:1c:d7:c2:1d:58:1b:2a:bf:d9:9d:fa:b9: fc:01:01:9c:c0:6d:20:ff:d6:f9:09:a8:43:9c:d8:56:60:99: 8e:3f:0d:07:2f:40:bf:50:7f:18:b7:83:3b:f5:13:32:30:97: 35:58:e4:60:43:3d:c2:d5:d7:db:15:47:41:cd:76:a5:c8:eb: ed:95:fe:6c:66:e2:5c:95:58:6f:40:48:f3:a0:5e:ca:c9:dd: 15:ce:e8:b8:ed:e5:0c:ae:79:60:cb:4c:cf:00:20:6f:89:db: 45:ff:53:33:b0:01:31:dd:47:d9:e9:97:fb:fc:c9:39:cc:2d: f2:7d:21:84:95:5e:79:e3:7b:a0:00:ac:87:43:4c:bb:eb:83: 3d:d8:db:b9:8c:09:71:2e:75:de:5b:a0:01:34:f9:e4:d4:30: da:be:2d:8a:f8:ea:6b:6c:5c:1a:bc:bc:91:c5:d0:e6:55:eb: 26:88:ed:8f:9a:f0:cd:5b:07:cc:a2:36:89:68:9b:90:60:c3: 01:a6:b0:50:72:90:09:f5:c0:73:d7:22:96:1a:f8:01:73:ab: 1d:8e:b4:30:20:18:ec:31:b0:67:bc:57:4e:7f:80:1b:52:35: 58:ab:cd:1d:7b:83:be:8f:74:13:fc:64:12:37:e1:c3:76:bf: 55:58:c3:fe -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUf0TG2EVCkhzlzH9s3axpw4MbQVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU4MzVaFw0yNTA4MDcxOTAzMzVaMDMxMTAvBgNV BAMTKDk2QUMxRENERDdEQzRFRkM4ODBGOTMwOEU4QzMzNUU0NDI5RTQ1QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9QUUK6bk397Cy91Njon9wkoWm 8gmBvYwhkmgPf5qz3Dr4m/dPDq6fbnZJA8TGgSiULSrg0g0B7K+n6A/kF9OeBUPZ 17I58ypZyx4OdMrueYFz6D40MvmRpZLB+YaIKRNHuZKR/dwwsV2S8CRtR+66E0Jz ErQmmXXZH+HilZrOZ/FbgrQMX+1i3sMuynd+voa7GnFuZBXZcNRkDkcBF+iZX8YN oj1wBqc+V2bFZ0FkWdIvJTFsGDxlME+DKmb5O6iNN2UGoKmuuSY/ctm4hpq9GJXQ UvY5oj4H3IBejSdiRNGvLjTZBmKmgkPxlnNt1ilLzZ6ZGoFksly+umhW+s4FAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUlqwdzdfcTvyID5MI6MM15EKeRbAwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAYw DQYJKoZIhvcNAQELBQADggEBAF6o5Ic+jhzXwh1YGyq/2Z36ufwBAZzAbSD/1vkJ qEOc2FZgmY4/DQcvQL9Qfxi3gzv1EzIwlzVY5GBDPcLV19sVR0HNdqXI6+2V/mxm 4lyVWG9ASPOgXsrJ3RXO6Ljt5QyueWDLTM8AIG+J20X/UzOwATHdR9npl/v8yTnM LfJ9IYSVXnnje6AArIdDTLvrgz3Y27mMCXEudd5boAE0+eTUMNq+LYr46mtsXBq8 vJHF0OZV6yaI7Y+a8M1bB8yiNolom5BgwwGmsFBykAn1wHPXIpYa+AFzqx2OtDAg GOwxsGe8V05/gBtSNVirzR17g76PdBP8ZBI34cN2v1VYw/4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org