$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: DkQYffoj1Ryk7Iyin7s75vlfQ3iia+q+YsJFpa+d/wY= Subject key identifier: 48:0D:34:F4:0C:B0:E8:68:3B:7B:62:64:78:80:57:E3:28:CD:A8:B3 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 6B645B3733831D0426A8AB7E3B013449025693BC Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 19:04:17 +0000 ROA not before: Thu 08 Aug 2024 18:59:17 +0000 ROA not after: Thu 07 Aug 2025 19:04:17 +0000 asID: 147137 IP address blocks: 2400:46a0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:64:5b:37:33:83:1d:04:26:a8:ab:7e:3b:01:34:49:02:56:93:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:59:17 2024 GMT Not After : Aug 7 19:04:17 2025 GMT Subject: CN=480D34F40CB0E8683B7B6264788057E328CDA8B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:7e:f0:1b:d7:73:60:fe:1f:b2:89:9d:0e: db:38:cd:73:33:6c:0e:b1:a7:88:d6:a2:24:d2:cc: 0a:d2:3b:0c:5f:c0:91:96:30:c6:5c:79:a1:b4:df: 34:8b:7d:76:55:d6:03:f7:83:41:b0:60:18:be:4e: 7d:b0:5a:3d:64:ca:15:5c:25:7e:4d:80:e6:32:35: b2:91:1e:b7:bc:e7:77:86:50:b5:67:1d:b8:32:d1: e6:b3:cb:da:c3:63:16:07:e5:a4:14:f3:14:2c:59: be:a5:6b:7c:c2:79:40:4d:9f:cc:94:f9:25:8d:f1: 62:b7:be:8c:12:2b:7e:de:84:9f:4e:c2:d4:7b:80: 05:50:41:01:06:a0:e7:ff:5b:16:4a:16:5d:31:26: a2:b5:1d:72:e8:f6:55:a4:a5:b9:2d:9d:68:18:6d: 2a:4a:c5:89:56:0e:c9:24:8d:2d:20:34:ae:f1:1d: c1:45:8b:17:7f:66:64:76:24:56:96:39:53:5d:42: 54:30:f8:1d:cc:07:30:d7:3b:95:e2:f2:9a:a8:e6: 4d:87:cf:0b:5a:a3:11:50:c2:26:a8:13:89:9b:10: 6c:fe:7a:34:16:9d:51:1a:55:63:b0:df:6f:6f:4e: cd:95:c2:58:ff:44:ab:b1:18:fe:6a:56:79:df:36: c8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0D:34:F4:0C:B0:E8:68:3B:7B:62:64:78:80:57:E3:28:CD:A8:B3 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:8::/48 Signature Algorithm: sha256WithRSAEncryption 26:d0:fc:64:a6:47:39:ed:18:fe:aa:b6:3a:9f:a8:e0:20:c9: 06:a9:46:45:b7:15:0a:3a:80:51:01:21:a4:c9:40:30:49:7b: 51:38:a1:df:03:1d:bc:da:2c:e7:a5:75:8f:a8:ab:0d:cf:da: 0c:15:fd:2f:7b:40:e2:c6:ec:c5:f1:05:ae:e9:eb:27:63:0e: b2:e8:fd:62:fd:f3:f2:37:6c:81:22:88:d0:75:8a:8b:20:00: fe:9b:c6:7f:1c:8f:13:b2:8a:78:33:d6:d3:55:eb:94:81:35: 6e:a5:1a:0d:d6:57:ad:ba:0e:81:61:7a:22:4d:1c:a2:ca:8a: 09:a3:85:90:fc:4d:08:a7:6b:01:bc:7a:09:d3:b2:de:3d:87: ee:16:c4:63:31:cf:fc:e9:33:22:52:fe:78:4f:79:1d:ff:8c: 82:8e:f6:8d:79:80:3d:52:06:94:88:d9:1c:8d:36:40:88:cb: ec:ab:0c:f4:e5:2b:e5:31:d1:53:8b:67:0f:78:02:7f:08:22: 96:d6:04:ba:6b:18:d3:09:f1:61:b7:e0:7e:61:6d:c8:e7:98: b2:f2:11:3b:0a:25:8f:07:66:a0:ad:b7:48:34:7d:46:5c:4a: f7:a4:75:1c:e0:0f:40:a0:de:fd:87:31:5d:9d:db:e6:81:3b: 04:a4:75:ae -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUa2RbNzODHQQmqKt+OwE0SQJWk7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU5MTdaFw0yNTA4MDcxOTA0MTdaMDMxMTAvBgNV BAMTKDQ4MEQzNEY0MENCMEU4NjgzQjdCNjI2NDc4ODA1N0UzMjhDREE4QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFXH7wG9dzYP4fsomdDts4zXMz bA6xp4jWoiTSzArSOwxfwJGWMMZceaG03zSLfXZV1gP3g0GwYBi+Tn2wWj1kyhVc JX5NgOYyNbKRHre853eGULVnHbgy0eazy9rDYxYH5aQU8xQsWb6la3zCeUBNn8yU +SWN8WK3vowSK37ehJ9OwtR7gAVQQQEGoOf/WxZKFl0xJqK1HXLo9lWkpbktnWgY bSpKxYlWDskkjS0gNK7xHcFFixd/ZmR2JFaWOVNdQlQw+B3MBzDXO5Xi8pqo5k2H zwtaoxFQwiaoE4mbEGz+ejQWnVEaVWOw329vTs2Vwlj/RKuxGP5qVnnfNsjvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSA009Ayw6Gg7e2JkeIBX4yjNqLMwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAgw DQYJKoZIhvcNAQELBQADggEBACbQ/GSmRzntGP6qtjqfqOAgyQapRkW3FQo6gFEB IaTJQDBJe1E4od8DHbzaLOeldY+oqw3P2gwV/S97QOLG7MXxBa7p6ydjDrLo/WL9 8/I3bIEiiNB1iosgAP6bxn8cjxOyingz1tNV65SBNW6lGg3WV626DoFheiJNHKLK igmjhZD8TQinawG8egnTst49h+4WxGMxz/zpMyJS/nhPeR3/jIKO9o15gD1SBpSI 2RyNNkCIy+yrDPTlK+Ux0VOLZw94An8IIpbWBLprGNMJ8WG34H5hbcjnmLLyETsK JY8HZqCtt0g0fUZcSvekdRzgD0Cg3v2HMV2d2+aBOwSkda4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org