$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: vD1rKWYrNQCYKYtc+ffCxoQOpL21hp0x2RFpOmC7IhE= Subject key identifier: 98:2D:A1:7C:CE:11:8B:9F:93:CB:05:68:94:74:9D:26:1F:5D:08:EA Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 68F79ABCBDA6DBFEB2EF2A3262A80EDFD195BE42 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 08 Aug 2024 18:59:52 +0000 ROA not before: Thu 08 Aug 2024 18:54:52 +0000 ROA not after: Thu 07 Aug 2025 18:59:52 +0000 asID: 147137 IP address blocks: 2400:46a0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Oct 2024 06:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f7:9a:bc:bd:a6:db:fe:b2:ef:2a:32:62:a8:0e:df:d1:95:be:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Aug 8 18:54:52 2024 GMT Not After : Aug 7 18:59:52 2025 GMT Subject: CN=982DA17CCE118B9F93CB056894749D261F5D08EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:70:26:69:29:b5:88:2f:44:46:61:44:7a:22: 7f:9d:15:8d:fa:77:ac:32:6b:1f:c1:be:7c:b8:32: ac:44:e1:5b:63:16:b2:03:50:9d:86:b1:ee:2a:58: a1:bd:26:14:d4:c2:75:a8:39:0c:d5:8a:e5:4d:ab: 7d:9f:c7:6d:14:a8:29:92:93:49:eb:fd:18:df:e2: 9c:23:5b:7e:9a:00:50:6f:62:60:7b:23:b5:a4:e1: 7f:c7:b3:a7:06:b8:5b:71:6f:db:a0:25:57:27:f6: 21:fe:9c:6e:17:61:bb:3e:c7:b5:0e:21:ef:26:ef: cd:b7:1b:ed:7f:d4:b4:95:83:12:f4:a5:e1:aa:3f: 94:30:67:dc:56:23:f7:16:fe:26:c5:41:64:2b:ab: 1a:9e:2f:b3:05:60:50:4f:01:81:e9:45:13:e2:1e: 33:3a:d7:4c:d5:6e:02:a0:de:83:21:da:ff:a6:7d: 4b:6c:14:dd:8f:7b:c0:1a:e0:55:08:69:46:54:07: 6c:73:14:65:c8:2c:80:4f:71:01:ef:7b:84:28:82: de:7c:49:0a:fd:16:3e:21:33:7d:fc:46:16:4a:05: a9:db:bf:40:48:e6:f9:72:2d:f7:42:a8:21:7a:cb: 84:56:16:7a:c6:1a:02:45:5a:fc:4f:cf:2b:a9:4a: 89:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2D:A1:7C:CE:11:8B:9F:93:CB:05:68:94:74:9D:26:1F:5D:08:EA X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0::/48 Signature Algorithm: sha256WithRSAEncryption 81:bf:4e:65:9e:93:7f:89:99:8b:02:10:5d:fa:bb:e4:ec:4c: 02:b4:54:8f:95:d2:59:be:ae:a6:6c:1e:33:14:e2:a7:31:4b: 02:d2:5d:d8:b3:07:19:23:b6:d3:82:db:48:91:20:df:ea:11: b4:fa:4d:90:1f:af:b0:14:23:ca:db:8f:64:9b:28:cb:8b:e1: d1:08:4d:62:6b:40:0b:ce:19:96:d9:f3:af:fb:c2:4c:de:3e: fa:f5:32:4b:5a:6f:28:fe:13:0d:31:9f:b3:54:4d:80:a1:67: ac:9e:c7:45:d4:4e:6f:17:01:f7:cc:77:64:ae:00:b6:66:31: f4:f1:77:c1:9c:78:ad:74:56:52:1a:f4:8a:35:e2:54:33:a5: 39:29:b1:fd:05:ee:54:32:d9:61:b6:9c:f3:17:25:b2:1f:5c: 38:46:0e:60:13:54:f8:ec:d4:22:76:0e:3b:74:1e:f3:03:fa: 00:d2:52:41:e6:69:56:f7:19:a3:eb:7f:09:b8:15:94:ec:04: f6:7c:34:d5:da:f6:39:be:10:05:81:99:6d:6f:33:14:fb:e1: 7f:15:19:26:27:f9:4c:e2:a7:03:f9:e1:03:3a:3a:5e:59:06: 58:98:fc:e5:12:0a:9a:91:c1:74:0d:fd:2f:12:8f:9f:b2:61: 5f:0f:9a:54 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUaPeavL2m2/6y7yoyYqgO39GVvkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNDA4MDgxODU0NTJaFw0yNTA4MDcxODU5NTJaMDMxMTAvBgNV BAMTKDk4MkRBMTdDQ0UxMThCOUY5M0NCMDU2ODk0NzQ5RDI2MUY1RDA4RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjcCZpKbWIL0RGYUR6In+dFY36 d6wyax/Bvny4MqxE4VtjFrIDUJ2Gse4qWKG9JhTUwnWoOQzViuVNq32fx20UqCmS k0nr/Rjf4pwjW36aAFBvYmB7I7Wk4X/Hs6cGuFtxb9ugJVcn9iH+nG4XYbs+x7UO Ie8m7823G+1/1LSVgxL0peGqP5QwZ9xWI/cW/ibFQWQrqxqeL7MFYFBPAYHpRRPi HjM610zVbgKg3oMh2v+mfUtsFN2Pe8Aa4FUIaUZUB2xzFGXILIBPcQHve4Qogt58 SQr9Fj4hM338RhZKBanbv0BI5vlyLfdCqCF6y4RWFnrGGgJFWvxPzyupSomVAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUmC2hfM4Ri5+TywVolHSdJh9dCOowHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAAADANBgkq hkiG9w0BAQsFAAOCAQEAgb9OZZ6Tf4mZiwIQXfq75OxMArRUj5XSWb6upmweMxTi pzFLAtJd2LMHGSO204LbSJEg3+oRtPpNkB+vsBQjytuPZJsoy4vh0QhNYmtAC84Z ltnzr/vCTN4++vUyS1pvKP4TDTGfs1RNgKFnrJ7HRdRObxcB98x3ZK4AtmYx9PF3 wZx4rXRWUhr0ijXiVDOlOSmx/QXuVDLZYbac8xclsh9cOEYOYBNU+OzUInYOO3Qe 8wP6ANJSQeZpVvcZo+t/CbgVlOwE9nw01dr2Ob4QBYGZbW8zFPvhfxUZJif5TOKn A/nhAzo6XlkGWJj85RIKmpHBdA39LxKPn7JhXw+aVA== -----END CERTIFICATE-----Generated at Sat Sep 28 02:14:02 2024 by rpki-client on console-fra.rpki-client.org