$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa File: 323430303a343661303a3a2f33322d3438203d3e20313437313337.roa (raw, json) Hash identifier: SQI2TSXcoQX+dudmb1rcaG7E9Hb0kjI3myrsV+tUEfg= Subject key identifier: 90:93:ED:0B:74:A4:D8:30:70:21:4E:46:9C:36:8F:3A:AE:07:00:B4 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 3D2D84F2FE372B31F95BDEF1CAD0CF326A774DC7 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa Signing time: Fri 15 Mar 2024 22:00:01 +0000 ROA not before: Fri 15 Mar 2024 21:55:01 +0000 ROA not after: Fri 14 Mar 2025 22:00:01 +0000 asID: 147137 IP address blocks: 2400:46a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 15:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2d:84:f2:fe:37:2b:31:f9:5b:de:f1:ca:d0:cf:32:6a:77:4d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Mar 15 21:55:01 2024 GMT Not After : Mar 14 22:00:01 2025 GMT Subject: CN=9093ED0B74A4D83070214E469C368F3AAE0700B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e6:84:8f:f7:bc:54:8b:5d:95:03:a2:81:df: 66:24:32:2f:da:a4:32:b7:87:4b:06:f7:77:da:f3: a6:10:97:61:a7:9c:6b:88:2a:a7:5c:5e:e2:53:ec: 22:7c:bf:77:82:bb:53:8d:4a:97:19:c2:ee:e7:1c: 2b:cc:12:93:08:f7:9c:9f:00:7d:3d:7a:80:d8:a4: 3a:4c:6b:b9:7e:1e:ed:2d:b5:f4:44:91:db:5b:15: e9:82:f3:77:21:5d:86:9f:ce:18:da:9d:d5:eb:f9: c9:01:e4:1e:d4:47:11:c2:1b:09:86:a3:ac:56:df: df:23:a1:ba:89:98:ce:c1:86:19:c7:22:0e:2f:23: b3:60:47:30:1f:16:bf:b3:af:6b:b0:79:cd:80:7d: 58:68:08:9a:72:de:8e:c1:98:28:02:c3:25:0e:f8: 1a:e8:ca:fe:c8:ac:72:30:65:06:21:c3:4e:62:16: 3e:4d:6d:80:24:23:ee:5a:96:19:3b:d5:a8:0d:cb: 37:74:30:cf:7a:6f:a4:16:97:c2:42:bd:1d:03:ea: 58:b2:17:b3:71:29:c5:07:51:c5:de:8b:79:16:bb: e4:87:52:18:60:ff:0f:c9:72:d0:d1:2d:02:38:17: 4f:02:da:a0:4c:38:7d:bb:da:94:4c:51:ce:b3:47: ac:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:93:ED:0B:74:A4:D8:30:70:21:4E:46:9C:36:8F:3A:AE:07:00:B4 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f33322d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:22:87:94:e2:fc:70:31:af:fc:70:cc:9b:11:7b:af:56:7d: 0f:0e:7b:dc:fb:7d:a0:71:17:bf:84:bc:38:c7:7a:35:04:da: 3e:26:e7:05:d7:56:f5:43:f2:31:22:eb:86:b7:71:b0:8c:4f: a8:98:15:9d:9c:74:90:13:fb:9f:93:87:66:f4:26:0b:8f:4c: 20:6c:02:89:e8:92:7a:72:c6:0f:b9:46:91:49:b2:2b:9d:98: e9:1d:ed:08:55:2d:41:e2:2e:0f:06:2e:2c:82:e7:a2:d1:ef: b8:26:e5:9b:89:69:8a:16:ff:94:fe:bd:a4:2c:fb:65:29:bc: 1a:89:87:7b:42:ea:32:f5:53:dc:1f:b5:01:df:b5:b7:13:69: f1:2e:a4:70:59:cc:40:5a:70:91:2a:9d:78:5c:49:ee:48:01: c4:6a:cc:45:2b:7e:0e:4c:37:2d:9e:61:77:4d:c8:c4:20:3f: 05:65:7f:70:5d:7a:14:07:39:f0:bc:11:e2:e0:95:35:06:1e: 37:94:39:fb:85:b2:8e:97:3e:ce:ba:78:41:0e:c3:ad:f9:48: b4:0e:8d:31:3c:7e:ae:c5:eb:fa:1d:f8:44:73:07:5d:35:2a: 67:ed:aa:8b:a6:44:13:46:d4:c0:f8:e7:03:81:ea:a6:b0:68: 79:39:c9:70 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPS2E8v43KzH5W97xytDPMmp3TccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDAzMTUyMTU1MDFaFw0yNTAzMTQyMjAwMDFaMDMxMTAvBgNV BAMTKDkwOTNFRDBCNzRBNEQ4MzA3MDIxNEU0NjlDMzY4RjNBQUUwNzAwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt5oSP97xUi12VA6KB32YkMi/a pDK3h0sG93fa86YQl2GnnGuIKqdcXuJT7CJ8v3eCu1ONSpcZwu7nHCvMEpMI95yf AH09eoDYpDpMa7l+Hu0ttfREkdtbFemC83chXYafzhjandXr+ckB5B7URxHCGwmG o6xW398jobqJmM7BhhnHIg4vI7NgRzAfFr+zr2uwec2AfVhoCJpy3o7BmCgCwyUO +Broyv7IrHIwZQYhw05iFj5NbYAkI+5alhk71agNyzd0MM96b6QWl8JCvR0D6liy F7NxKcUHUcXei3kWu+SHUhhg/w/JctDRLQI4F08C2qBMOH272pRMUc6zR6wbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUkJPtC3Sk2DBwIU5GnDaPOq4HALQwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQARqAwDQYJKoZI hvcNAQELBQADggEBAH4ih5Ti/HAxr/xwzJsRe69WfQ8Oe9z7faBxF7+EvDjHejUE 2j4m5wXXVvVD8jEi64a3cbCMT6iYFZ2cdJAT+5+Th2b0JguPTCBsAonoknpyxg+5 RpFJsiudmOkd7QhVLUHiLg8GLiyC56LR77gm5ZuJaYoW/5T+vaQs+2UpvBqJh3tC 6jL1U9wftQHftbcTafEupHBZzEBacJEqnXhcSe5IAcRqzEUrfg5MNy2eYXdNyMQg PwVlf3BdehQHOfC8EeLglTUGHjeUOfuFso6XPs66eEEOw635SLQOjTE8fq7F6/od +ERzB101KmftqoumRBNG1MD45wOB6qawaHk5yXA= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:43 2024 by rpki-client on console-fra.rpki-client.org