$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: WYLYbFMp4adHQ+xFiBJKAXKz49ArrnghqR34FQIprEI= Subject key identifier: 1B:13:B3:86:F4:7E:C6:EF:C1:FF:65:EF:2E:07:CA:D7:E1:74:D5:6B Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 4678397627A1DB92CB96DD3A13ADE269B17BBC4D Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 03 Nov 2023 00:00:02 +0000 ROA not before: Thu 02 Nov 2023 23:55:02 +0000 ROA not after: Fri 01 Nov 2024 00:00:02 +0000 asID: 141137 IP address blocks: 2406:c640:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 12:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:78:39:76:27:a1:db:92:cb:96:dd:3a:13:ad:e2:69:b1:7b:bc:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Nov 2 23:55:02 2023 GMT Not After : Nov 1 00:00:02 2024 GMT Subject: CN=1B13B386F47EC6EFC1FF65EF2E07CAD7E174D56B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:24:0e:51:8d:07:d5:75:ae:34:0d:e9:f8: 9c:22:c3:04:47:d7:d7:d7:8b:cd:b3:61:f7:9c:df: 2e:44:84:bb:13:f9:32:91:a8:bd:5c:f5:8f:97:d2: c5:a5:86:9a:0c:5c:67:52:cc:9e:d8:29:a5:a8:c8: a5:4f:9f:dd:29:d4:1d:4b:56:f7:79:ad:1a:f0:7f: d2:5d:38:a6:3c:7a:93:7a:16:38:79:b4:5c:b4:d5: d9:ac:80:06:c9:96:46:8b:61:de:b3:b3:c9:ee:59: 92:1f:20:fd:dd:80:0a:14:7d:cd:96:56:59:22:3a: 26:ae:a8:61:ad:77:21:f7:0f:d6:7d:84:de:4f:31: 81:70:60:27:cf:be:cd:7e:85:d8:57:90:d3:d8:02: 16:9e:88:92:59:76:bf:e1:c1:c3:d4:72:72:08:45: d5:8a:9e:f9:4e:df:89:b3:4b:f0:ec:f9:b6:4b:50: 79:0d:f6:f6:27:e8:f8:73:5b:58:2d:b2:a5:8d:f6: 47:db:45:97:82:7e:3a:b9:72:8c:8d:ac:ff:f4:fe: 04:ec:82:a0:c6:11:d1:65:6d:49:54:6b:8a:7f:82: 89:92:7c:99:5f:43:70:e0:29:b6:93:1f:eb:05:bb: 29:7b:32:00:07:fb:f3:23:5c:48:8d:75:57:bc:23: 41:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:13:B3:86:F4:7E:C6:EF:C1:FF:65:EF:2E:07:CA:D7:E1:74:D5:6B X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:1::/48 Signature Algorithm: sha256WithRSAEncryption a5:20:17:77:71:51:27:6c:b1:a6:59:ab:c7:50:50:55:a9:e0: 3b:82:90:ba:fb:9b:60:82:2e:20:33:96:35:1c:51:e4:2d:9c: 0b:b1:16:d5:05:11:ff:52:ff:08:c7:cc:75:91:8c:53:39:13: 5b:75:3b:af:1e:4a:99:c7:da:96:c7:59:7f:4e:1e:f1:24:24: db:53:fa:05:00:22:cb:66:1b:e1:d6:7b:bf:8d:f1:05:9f:4a: 4c:b2:ad:24:ae:9f:c2:21:ee:db:0e:83:91:b9:97:9d:0e:3c: ac:46:70:0c:79:f3:2a:ec:dc:62:6e:97:2f:16:43:20:c3:6f: 37:12:f0:5e:8a:73:37:47:5e:fd:4a:14:c2:01:0e:73:e3:35: 89:e3:c9:f3:25:14:b2:bc:ee:af:cc:9a:ca:91:25:05:02:04: c7:99:b5:c1:b6:ee:ef:0f:8f:d2:e6:8d:cd:47:92:9f:98:cb: 08:cf:c9:e7:aa:ae:0d:f4:0a:12:e3:f0:d3:2b:ea:8f:cb:8f: e0:7a:e1:80:62:07:5e:b4:0b:27:2c:55:ab:c7:44:69:c9:94: 35:1e:2a:c7:01:0c:a6:d0:bd:64:33:7c:f3:f8:d2:c8:d1:76: 43:31:20:19:5f:c8:34:c5:f9:05:b0:c9:02:a7:7b:6a:78:11: 5b:4c:8f:97 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURng5dieh25LLlt06E63iabF7vE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yMzExMDIyMzU1MDJaFw0yNDExMDEwMDAwMDJaMDMxMTAvBgNV BAMTKDFCMTNCMzg2RjQ3RUM2RUZDMUZGNjVFRjJFMDdDQUQ3RTE3NEQ1NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAYyQOUY0H1XWuNA3p+JwiwwRH 19fXi82zYfec3y5EhLsT+TKRqL1c9Y+X0sWlhpoMXGdSzJ7YKaWoyKVPn90p1B1L Vvd5rRrwf9JdOKY8epN6Fjh5tFy01dmsgAbJlkaLYd6zs8nuWZIfIP3dgAoUfc2W VlkiOiauqGGtdyH3D9Z9hN5PMYFwYCfPvs1+hdhXkNPYAhaeiJJZdr/hwcPUcnII RdWKnvlO34mzS/Ds+bZLUHkN9vYn6PhzW1gtsqWN9kfbRZeCfjq5coyNrP/0/gTs gqDGEdFlbUlUa4p/gomSfJlfQ3DgKbaTH+sFuyl7MgAH+/MjXEiNdVe8I0E7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUGxOzhvR+xu/B/2XvLgfK1+F01WswHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAEw DQYJKoZIhvcNAQELBQADggEBAKUgF3dxUSdssaZZq8dQUFWp4DuCkLr7m2CCLiAz ljUcUeQtnAuxFtUFEf9S/wjHzHWRjFM5E1t1O68eSpnH2pbHWX9OHvEkJNtT+gUA IstmG+HWe7+N8QWfSkyyrSSun8Ih7tsOg5G5l50OPKxGcAx58yrs3GJuly8WQyDD bzcS8F6KczdHXv1KFMIBDnPjNYnjyfMlFLK87q/MmsqRJQUCBMeZtcG27u8Pj9Lm jc1Hkp+YywjPyeeqrg30ChLj8NMr6o/Lj+B64YBiB160CycsVavHRGnJlDUeKscB DKbQvWQzfPP40sjRdkMxIBlfyDTF+QWwyQKne2p4EVtMj5c= -----END CERTIFICATE-----Generated at Thu May 2 10:16:52 2024 by rpki-client on console-ams.rpki-client.org