$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa File: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (raw, json) Hash identifier: lguAxcGSHE7Df4xmfGVdCoA11Y9Cl+OsprToOiR845I= Subject key identifier: 12:51:81:F6:E1:F4:C0:2A:EF:95:84:63:F2:36:FA:90:5F:AD:8E:9F Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 522C85BC05BDFFA2FAD389BB31C539AA50FDB340 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa Signing time: Wed 27 Dec 2023 11:00:01 +0000 ROA not before: Wed 27 Dec 2023 10:55:01 +0000 ROA not after: Wed 25 Dec 2024 11:00:01 +0000 asID: 38784 IP address blocks: 2401:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2c:85:bc:05:bd:ff:a2:fa:d3:89:bb:31:c5:39:aa:50:fd:b3:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Dec 27 10:55:01 2023 GMT Not After : Dec 25 11:00:01 2024 GMT Subject: CN=125181F6E1F4C02AEF958463F236FA905FAD8E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5f:8f:68:2a:b5:80:71:91:98:dc:ea:a2:6a: 91:ac:62:71:ee:10:ad:62:89:97:a0:57:f1:e7:7a: c8:9e:ee:b7:f0:99:90:47:f1:1e:07:ef:48:f8:22: 26:86:ec:4a:aa:9c:7e:d1:d1:0c:f1:6a:d8:4f:8e: 9e:40:28:f5:aa:9f:f5:55:84:13:b1:5b:6d:68:13: 83:79:f4:46:e5:89:2e:c7:48:ae:67:23:47:5d:e5: c7:b6:3c:d7:7b:7b:8d:6c:cd:00:dc:33:43:9e:23: ad:4e:bb:f9:96:e2:8a:ab:f7:7c:83:65:21:cf:78: 81:fe:26:fe:c8:37:37:84:c9:2c:1c:0a:3f:85:e4: e1:7d:9d:2e:5f:19:5a:bc:75:09:a8:e3:34:a2:c0: 0f:e7:3f:5d:23:42:bb:7b:91:29:65:3b:5a:f3:f1: 6f:ab:a5:d3:2e:c0:37:62:1e:21:50:6e:ff:ca:ab: 6a:40:26:e4:77:c8:74:fa:62:dd:7a:58:54:ec:0d: c8:bd:21:57:6a:ea:b4:17:97:5a:28:62:81:15:7e: ce:41:7a:96:0c:b7:f3:4a:e0:fd:ea:1d:08:e8:f4: 49:0a:4d:42:1d:8e:f0:8f:9c:68:25:d0:e6:04:63: 25:86:24:f7:62:06:0a:a1:9f:5a:2d:9d:33:cd:d1: 52:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:51:81:F6:E1:F4:C0:2A:EF:95:84:63:F2:36:FA:90:5F:AD:8E:9F X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203338373834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8240::/32 Signature Algorithm: sha256WithRSAEncryption 2b:06:87:22:3f:0b:e5:80:cf:16:98:0e:90:28:89:e3:16:c1: f1:1a:30:1b:32:18:a0:e5:52:47:d4:fe:0a:25:10:d1:54:93: ea:52:fc:85:27:d5:a0:ed:a6:cd:7a:29:80:6a:9a:35:3a:cb: 4f:62:9c:19:8f:a9:50:8c:79:c8:30:7f:1d:f0:b6:93:c5:21: 11:de:a4:58:cc:27:41:22:d5:06:73:cb:08:00:9d:c8:bf:b6: cf:96:70:9e:27:43:89:ef:84:a9:cb:7a:89:05:07:68:35:60: bc:33:b5:1e:92:98:cd:53:58:54:71:ca:fc:c4:97:eb:4c:ec: fb:7c:f1:56:bb:63:8a:c0:68:b8:d0:5f:50:07:d3:f1:f8:5f: 67:de:98:27:34:14:eb:94:c5:79:12:c7:e4:5a:0c:56:17:05: 90:d7:10:80:86:1c:0a:a7:53:39:e2:91:bf:40:f3:da:59:9c: fd:19:fb:d1:df:ba:e1:d5:80:d5:d0:6a:0c:b5:81:0c:b6:2c: 9c:a9:9d:1e:ab:42:ae:6a:df:94:f4:7c:f2:cb:19:70:53:fb: 4d:70:7c:c9:39:a5:47:91:48:39:6b:7f:61:a6:d1:e4:04:c7: 58:3b:3b:34:2a:51:91:bf:bb:8b:86:90:19:f8:9c:33:4a:3d: b3:23:dd:84 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUUiyFvAW9/6L604m7McU5qlD9s0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yMzEyMjcxMDU1MDFaFw0yNDEyMjUxMTAwMDFaMDMxMTAvBgNV BAMTKDEyNTE4MUY2RTFGNEMwMkFFRjk1ODQ2M0YyMzZGQTkwNUZBRDhFOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVX49oKrWAcZGY3OqiapGsYnHu EK1iiZegV/Hnesie7rfwmZBH8R4H70j4IiaG7EqqnH7R0QzxathPjp5AKPWqn/VV hBOxW21oE4N59EbliS7HSK5nI0dd5ce2PNd7e41szQDcM0OeI61Ou/mW4oqr93yD ZSHPeIH+Jv7INzeEySwcCj+F5OF9nS5fGVq8dQmo4zSiwA/nP10jQrt7kSllO1rz 8W+rpdMuwDdiHiFQbv/Kq2pAJuR3yHT6Yt16WFTsDci9IVdq6rQXl1ooYoEVfs5B epYMt/NK4P3qHQjo9EkKTUIdjvCPnGgl0OYEYyWGJPdiBgqhn1otnTPN0VI3AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUElGB9uH0wCrvlYRj8jb6kF+tjp8wHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzQzMDMxM2EzODMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNzM4MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAYJAMA0GCSqGSIb3 DQEBCwUAA4IBAQArBociPwvlgM8WmA6QKInjFsHxGjAbMhig5VJH1P4KJRDRVJPq UvyFJ9Wg7abNeimAapo1OstPYpwZj6lQjHnIMH8d8LaTxSER3qRYzCdBItUGc8sI AJ3Iv7bPlnCeJ0OJ74Spy3qJBQdoNWC8M7UekpjNU1hUccr8xJfrTOz7fPFWu2OK wGi40F9QB9Px+F9n3pgnNBTrlMV5EsfkWgxWFwWQ1xCAhhwKp1M54pG/QPPaWZz9 GfvR37rh1YDV0GoMtYEMtiycqZ0eq0Kuat+U9HzyyxlwU/tNcHzJOaVHkUg5a39h ptHkBMdYOzs0KlGRv7uLhpAZ+JwzSj2zI92E -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org