$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: eCRTSgGgSk7Dr0G5UGbAuy4UfTW9+pIO+NeF/IoLPSk= Subject key identifier: 45:69:31:D8:94:CD:0A:9A:3F:19:49:C6:8D:3F:37:65:0B:41:42:B7 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 2E31855601A08F87007939BAFF8FAE69090BA3B2 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 03 Nov 2023 00:00:03 +0000 ROA not before: Thu 02 Nov 2023 23:55:03 +0000 ROA not after: Fri 01 Nov 2024 00:00:03 +0000 asID: 141137 IP address blocks: 2406:c640:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 12:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:31:85:56:01:a0:8f:87:00:79:39:ba:ff:8f:ae:69:09:0b:a3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Nov 2 23:55:03 2023 GMT Not After : Nov 1 00:00:03 2024 GMT Subject: CN=456931D894CD0A9A3F1949C68D3F37650B4142B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:56:02:22:fc:e2:8f:f2:33:f4:67:87:7c: 3b:0c:b4:cf:40:a5:5f:6c:e1:17:56:64:11:23:ae: c8:13:49:c9:b0:8d:14:e7:bd:8e:33:92:6f:70:58: 2e:d4:dc:aa:46:27:9b:75:b3:e9:53:e2:96:0f:73: ac:c4:41:90:81:d3:8f:94:24:a7:d8:1d:b9:76:5d: 06:e5:ac:5f:6b:e7:99:2f:0a:fc:7b:a1:ef:b9:80: 2e:62:fc:86:99:b0:10:eb:a2:61:37:7f:4c:2a:33: 78:9e:49:66:c8:ca:ac:6b:e4:f5:4e:79:5f:16:44: 0f:cd:6b:44:71:b6:8f:28:51:19:0f:95:7f:fa:05: 66:1f:1e:73:7d:a6:d9:7f:0b:f3:ac:88:80:00:2c: e4:1c:9b:49:70:c1:05:f4:55:37:62:b9:25:37:cc: cb:ee:89:e3:20:7b:85:9f:8d:2e:36:7c:a9:fc:3e: ed:fc:c1:70:e2:5a:26:ce:5e:d9:34:19:a8:42:09: cc:4a:8c:71:ab:a8:8e:6e:83:c8:db:a8:1e:f5:99: 8e:a1:27:16:12:b5:84:ea:3e:b8:2f:85:a5:58:f0: 26:7a:7e:fd:45:db:f6:90:61:c7:1f:bc:00:87:66: b1:fc:f5:0c:31:50:6c:a5:cb:b3:5d:5a:39:ae:82: fa:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:69:31:D8:94:CD:0A:9A:3F:19:49:C6:8D:3F:37:65:0B:41:42:B7 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:2::/48 Signature Algorithm: sha256WithRSAEncryption 92:ee:90:b1:cd:de:1a:58:43:0c:79:32:4e:66:5b:cd:69:3b: af:ba:ea:0a:7d:b5:77:2c:90:e1:11:0b:37:e9:cc:57:8a:74: df:fd:24:b6:e2:d9:32:4f:79:e4:90:4d:45:70:4e:4e:29:77: b2:1d:ff:d2:fa:4b:84:b7:ed:7d:9c:d0:cd:29:7c:f5:14:9f: 7f:4c:e7:30:dd:8d:15:4e:20:6d:07:32:26:05:98:96:c1:a6: 96:bf:ae:e6:15:c3:f2:6f:6c:bc:0c:0d:40:a7:ed:be:a6:92: 78:7d:71:51:10:e6:d8:45:57:e6:06:b8:0e:d6:44:41:fa:73: 82:7b:63:93:ef:1f:81:b3:08:84:ea:16:40:d3:d0:a1:b2:00: 8f:d0:49:63:83:f3:d8:ae:3c:e8:6e:db:11:8d:5f:79:36:7b: be:ab:4e:b7:34:00:63:ff:b3:48:0d:08:1c:3d:fa:98:57:df: 14:9d:dd:93:ac:a4:25:03:c8:82:b1:b4:06:35:a2:d6:ac:2c: 58:4a:d4:67:86:2c:ab:4c:32:a6:a3:61:d0:3a:e2:06:18:05: 39:3d:8f:86:81:fe:f6:3f:45:6f:64:fd:bd:2c:55:4e:9e:4e: 9f:9d:25:a4:31:2a:f3:c8:1a:8f:5a:40:56:1a:6e:16:d6:3c: dc:6d:dd:59 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULjGFVgGgj4cAeTm6/4+uaQkLo7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yMzExMDIyMzU1MDNaFw0yNDExMDEwMDAwMDNaMDMxMTAvBgNV BAMTKDQ1NjkzMUQ4OTRDRDBBOUEzRjE5NDlDNjhEM0YzNzY1MEI0MTQyQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxFYCIvzij/Iz9GeHfDsMtM9A pV9s4RdWZBEjrsgTScmwjRTnvY4zkm9wWC7U3KpGJ5t1s+lT4pYPc6zEQZCB04+U JKfYHbl2XQblrF9r55kvCvx7oe+5gC5i/IaZsBDromE3f0wqM3ieSWbIyqxr5PVO eV8WRA/Na0Rxto8oURkPlX/6BWYfHnN9ptl/C/OsiIAALOQcm0lwwQX0VTdiuSU3 zMvuieMge4WfjS42fKn8Pu38wXDiWibOXtk0GahCCcxKjHGrqI5ug8jbqB71mY6h JxYStYTqPrgvhaVY8CZ6fv1F2/aQYccfvACHZrH89QwxUGyly7NdWjmugvr3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURWkx2JTNCpo/GUnGjT83ZQtBQrcwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAIw DQYJKoZIhvcNAQELBQADggEBAJLukLHN3hpYQwx5Mk5mW81pO6+66gp9tXcskOER CzfpzFeKdN/9JLbi2TJPeeSQTUVwTk4pd7Id/9L6S4S37X2c0M0pfPUUn39M5zDd jRVOIG0HMiYFmJbBppa/ruYVw/JvbLwMDUCn7b6mknh9cVEQ5thFV+YGuA7WREH6 c4J7Y5PvH4GzCITqFkDT0KGyAI/QSWOD89iuPOhu2xGNX3k2e76rTrc0AGP/s0gN CBw9+phX3xSd3ZOspCUDyIKxtAY1otasLFhK1GeGLKtMMqajYdA64gYYBTk9j4aB /vY/RW9k/b0sVU6eTp+dJaQxKvPIGo9aQFYabhbWPNxt3Vk= -----END CERTIFICATE-----Generated at Thu May 2 10:16:52 2024 by rpki-client on console-ams.rpki-client.org