$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: BkyUAjLFhkYTF0Hnp1FC4HAWxyi30SojTHwp3GdzR9c= Subject key identifier: 6D:6A:8B:1E:0E:02:57:78:E6:DF:D3:C2:0E:B0:70:62:AC:3F:1C:53 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 5F20C7D6A43A195A90F8E1EA0B9185A76A6D5C98 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 04 Oct 2024 00:00:02 +0000 ROA not before: Thu 03 Oct 2024 23:55:02 +0000 ROA not after: Fri 03 Oct 2025 00:00:02 +0000 asID: 141137 IP address blocks: 2406:c640:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:20:c7:d6:a4:3a:19:5a:90:f8:e1:ea:0b:91:85:a7:6a:6d:5c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Oct 3 23:55:02 2024 GMT Not After : Oct 3 00:00:02 2025 GMT Subject: CN=6D6A8B1E0E025778E6DFD3C20EB07062AC3F1C53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:86:2f:14:d8:82:9d:62:b7:19:ab:f3:da: d9:2b:1d:2f:3e:1c:f3:e1:3a:cc:e1:a7:d8:5b:d4: e3:57:b4:5f:d6:3d:79:17:59:43:09:8e:4e:cb:bc: 3c:74:7f:72:0e:9a:b4:c8:71:92:73:1d:73:77:d6: 79:5b:db:e9:ff:f0:21:56:7c:9c:ff:1b:2b:db:6f: 09:3e:66:bb:4a:6e:7f:6d:fc:55:b0:4c:d2:28:13: 7b:d3:07:db:ba:01:6a:db:84:5f:e5:99:43:fd:38: 00:f6:0a:d1:1d:bf:5b:40:a3:8a:87:db:40:45:fb: 59:67:32:0b:e0:9c:05:33:d7:34:8b:f7:89:c2:6c: 18:8d:2c:88:e8:28:cb:30:5d:f8:5b:7d:18:10:ea: ab:04:0b:ea:5f:21:3d:13:f8:3a:ba:c8:5f:bd:70: 11:e9:58:8b:81:f0:75:55:fd:a0:77:7c:fc:5c:e3: ba:b6:c2:5b:a3:f2:a5:9c:f4:97:97:38:b3:d1:fa: 30:78:3a:05:fa:38:40:b5:d2:ae:4b:3e:6a:d5:fc: fb:40:0e:e7:76:05:c2:c6:ff:6f:63:6d:5e:a4:08: 27:31:8f:88:e7:51:5c:95:28:c4:3e:b9:1a:d6:38: c6:d8:fe:07:9f:1b:09:9e:a7:5c:5a:1f:6d:0e:45: 86:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6A:8B:1E:0E:02:57:78:E6:DF:D3:C2:0E:B0:70:62:AC:3F:1C:53 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:1::/48 Signature Algorithm: sha256WithRSAEncryption 53:53:6f:be:ae:d9:5f:64:6c:5c:14:4f:a4:73:97:2d:88:77: a0:94:0e:3d:bd:b2:44:18:c5:a8:7e:1d:0f:0a:92:49:2e:24: 0d:3b:2e:c2:90:10:08:1e:64:1e:03:fb:71:e0:44:b9:b9:94: f3:f9:b9:9d:df:ee:42:9f:49:37:41:dd:63:a3:ec:d4:29:94: b4:8b:c8:97:eb:5f:99:ab:4b:35:26:89:83:58:f4:7e:8e:ca: e5:fa:99:b3:e2:76:cd:14:8c:f5:cd:a9:b3:40:7c:74:3e:14: ef:c0:f2:a5:fe:fa:02:35:13:3d:11:b7:b7:11:e1:76:3d:4f: b3:9b:e3:dd:c9:7a:7b:50:98:3d:c8:57:c3:3b:af:2f:e4:1d: dd:ee:e9:bc:bd:65:56:21:67:83:20:2e:68:cc:aa:04:e1:44: 49:f7:3a:81:03:75:14:9c:a0:95:82:21:0e:60:c4:79:2e:4b: 6d:bc:d1:2f:fa:57:79:8a:02:c8:50:95:d5:a1:6b:b0:e9:8c: c7:3f:28:41:6f:fd:8d:27:08:31:ac:35:dc:6d:fe:b2:07:60: d9:4b:2d:f6:21:9c:7d:33:90:29:07:29:09:bb:6c:df:1d:fb: 1a:23:1e:f2:af:58:9f:cc:34:df:2a:5b:68:a3:4f:e3:53:4f: e1:05:43:f4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUXyDH1qQ6GVqQ+OHqC5GFp2ptXJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDEwMDMyMzU1MDJaFw0yNTEwMDMwMDAwMDJaMDMxMTAvBgNV BAMTKDZENkE4QjFFMEUwMjU3NzhFNkRGRDNDMjBFQjA3MDYyQUMzRjFDNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjdoYvFNiCnWK3Gavz2tkrHS8+ HPPhOszhp9hb1ONXtF/WPXkXWUMJjk7LvDx0f3IOmrTIcZJzHXN31nlb2+n/8CFW fJz/Gyvbbwk+ZrtKbn9t/FWwTNIoE3vTB9u6AWrbhF/lmUP9OAD2CtEdv1tAo4qH 20BF+1lnMgvgnAUz1zSL94nCbBiNLIjoKMswXfhbfRgQ6qsEC+pfIT0T+Dq6yF+9 cBHpWIuB8HVV/aB3fPxc47q2wluj8qWc9JeXOLPR+jB4OgX6OEC10q5LPmrV/PtA Dud2BcLG/29jbV6kCCcxj4jnUVyVKMQ+uRrWOMbY/gefGwmep1xaH20ORYaBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUbWqLHg4CV3jm39PCDrBwYqw/HFMwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAEw DQYJKoZIhvcNAQELBQADggEBAFNTb76u2V9kbFwUT6Rzly2Id6CUDj29skQYxah+ HQ8KkkkuJA07LsKQEAgeZB4D+3HgRLm5lPP5uZ3f7kKfSTdB3WOj7NQplLSLyJfr X5mrSzUmiYNY9H6OyuX6mbPids0UjPXNqbNAfHQ+FO/A8qX++gI1Ez0Rt7cR4XY9 T7Ob493JentQmD3IV8M7ry/kHd3u6by9ZVYhZ4MgLmjMqgThREn3OoEDdRScoJWC IQ5gxHkuS2280S/6V3mKAshQldWha7DpjMc/KEFv/Y0nCDGsNdxt/rIHYNlLLfYh nH0zkCkHKQm7bN8d+xojHvKvWJ/MNN8qW2ijT+NTT+EFQ/Q= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org