$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa File: 323430363a613330303a3a2f33322d3332203d3e203435373036.roa (raw, json) Hash identifier: FmevOU9OpTfAyhBzvr85rL0BM5gIHtpby2QLuClj14A= Subject key identifier: 48:1B:74:16:C7:89:88:A8:1D:90:60:B0:12:BF:43:00:27:47:78:FF Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 62E954FADB844D8E99C476641B8540BAEB9EAB25 Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa Signing time: Mon 31 Jul 2023 00:04:28 +0000 ROA not before: Sun 30 Jul 2023 23:59:28 +0000 ROA not after: Mon 29 Jul 2024 00:04:28 +0000 asID: 45706 IP address blocks: 2406:a300::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e9:54:fa:db:84:4d:8e:99:c4:76:64:1b:85:40:ba:eb:9e:ab:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Jul 30 23:59:28 2023 GMT Not After : Jul 29 00:04:28 2024 GMT Subject: CN=481B7416C78988A81D9060B012BF4300274778FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:e8:f8:27:31:34:50:c2:94:cb:39:d0:ed: ef:dc:70:70:b5:44:6b:25:da:65:10:dd:fe:d0:d8: 49:6e:cf:6b:84:f2:16:53:88:fe:47:f7:27:61:6f: 8a:3b:dc:cc:35:41:a8:8b:63:5d:94:6c:6b:07:20: 96:d7:d6:60:0d:33:14:3f:f6:16:56:d4:9c:2d:5c: 25:f5:d4:bf:47:e3:df:5e:9e:21:46:47:8c:0c:f0: 36:fa:8b:b6:be:ea:22:a5:aa:ac:42:c0:33:e9:8f: 89:b8:f6:73:5a:4c:34:e9:22:2a:a2:73:f9:bb:44: ce:4b:77:10:93:2f:95:a5:d8:13:0b:3c:e9:bf:84: b2:c4:bc:fd:41:9f:f2:21:9f:58:e2:df:9c:0f:06: e1:ba:61:3b:23:27:fd:e5:94:06:66:88:3e:03:2d: eb:65:2b:af:c1:17:45:51:4b:21:b9:91:ab:a8:f6: 6c:87:7c:0b:45:70:c7:6e:df:6a:a6:90:8e:59:0b: f4:02:62:cd:ce:f3:d8:c7:4e:11:af:3a:ee:e3:92: e7:0e:b0:d2:a2:d8:c0:6d:f0:2b:d5:43:e1:27:03: a3:1c:c9:43:21:b1:e8:b7:ec:7d:57:4b:51:65:95: 20:62:29:47:5e:86:43:24:7c:5d:2b:d3:ae:7f:ba: 82:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1B:74:16:C7:89:88:A8:1D:90:60:B0:12:BF:43:00:27:47:78:FF X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:a300::/32 Signature Algorithm: sha256WithRSAEncryption 24:ed:50:dc:e3:23:76:64:e6:47:88:a5:44:d2:06:c4:0b:0b: 00:c5:78:61:c7:b1:23:04:a3:af:f5:c3:33:1f:42:0f:8d:48: 53:51:4e:57:78:fc:cc:63:16:e6:f8:b0:74:69:e1:e6:a0:ad: 12:40:e2:dd:10:60:6e:08:2e:c0:6f:cf:a8:4b:47:8f:15:25: 07:bd:14:37:31:d7:6d:8a:8c:07:b3:73:c2:1a:5f:63:ad:ee: 0a:52:31:9e:e9:e2:53:7c:6e:fb:2e:84:ee:a6:a2:02:88:93: eb:53:d5:eb:c0:1e:50:2d:bc:4a:d7:59:4b:1a:95:38:67:af: 7a:9c:36:a4:60:71:d8:d4:14:e8:dc:fe:73:51:1d:bf:b2:7f: c9:38:e9:fd:51:08:f7:c9:5c:fe:7e:6c:3a:2f:b9:00:e6:9f: dd:97:3d:76:55:d8:f1:73:e6:d7:6d:a4:02:dc:2e:4a:51:ef: 48:dd:40:4a:21:06:0a:d6:a8:44:2a:64:b3:aa:17:2c:e5:0f: 41:c2:ed:3f:0c:07:7c:0a:f3:56:4c:70:75:a8:96:d7:2b:66: 88:e7:7f:d6:17:bd:a9:4d:ba:79:09:63:f7:2b:eb:24:ff:cd: 4a:5a:82:1d:2a:f0:f1:1e:d6:8b:10:f4:6e:a5:cc:59:aa:68: ed:88:d0:d8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUYulU+tuETY6ZxHZkG4VAuuueqyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yMzA3MzAyMzU5MjhaFw0yNDA3MjkwMDA0MjhaMDMxMTAvBgNV BAMTKDQ4MUI3NDE2Qzc4OTg4QTgxRDkwNjBCMDEyQkY0MzAwMjc0Nzc4RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSRej4JzE0UMKUyznQ7e/ccHC1 RGsl2mUQ3f7Q2Eluz2uE8hZTiP5H9ydhb4o73Mw1QaiLY12UbGsHIJbX1mANMxQ/ 9hZW1JwtXCX11L9H499eniFGR4wM8Db6i7a+6iKlqqxCwDPpj4m49nNaTDTpIiqi c/m7RM5LdxCTL5Wl2BMLPOm/hLLEvP1Bn/Ihn1ji35wPBuG6YTsjJ/3llAZmiD4D LetlK6/BF0VRSyG5kauo9myHfAtFcMdu32qmkI5ZC/QCYs3O89jHThGvOu7jkucO sNKi2MBt8CvVQ+EnA6McyUMhsei37H1XS1FllSBiKUdehkMkfF0r065/uoKpAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUSBt0FseJiKgdkGCwEr9DACdHeP8wHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzQzMDM2M2E2MTMzMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBqMAMA0GCSqGSIb3 DQEBCwUAA4IBAQAk7VDc4yN2ZOZHiKVE0gbECwsAxXhhx7EjBKOv9cMzH0IPjUhT UU5XePzMYxbm+LB0aeHmoK0SQOLdEGBuCC7Ab8+oS0ePFSUHvRQ3MddtiowHs3PC Gl9jre4KUjGe6eJTfG77LoTupqICiJPrU9XrwB5QLbxK11lLGpU4Z696nDakYHHY 1BTo3P5zUR2/sn/JOOn9UQj3yVz+fmw6L7kA5p/dlz12Vdjxc+bXbaQC3C5KUe9I 3UBKIQYK1qhEKmSzqhcs5Q9Bwu0/DAd8CvNWTHB1qJbXK2aI53/WF72pTbp5CWP3 K+sk/81KWoIdKvDxHtaLEPRupcxZqmjtiNDY -----END CERTIFICATE-----Generated at Tue Apr 30 23:04:16 2024 by rpki-client on console-ams.rpki-client.org