$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa File: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (raw, json) Hash identifier: EejqxQaLe95fpqkSYRlHTxb70l60dtmnNQ1/4qfd494= Subject key identifier: 9A:50:41:EF:42:51:8C:6F:D5:20:00:26:7E:0A:79:FC:97:77:A2:06 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 560953CCFC4D8C249E02A32A8DEC10F9B0EED39A Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa Signing time: Fri 04 Oct 2024 01:00:02 +0000 ROA not before: Fri 04 Oct 2024 00:55:02 +0000 ROA not after: Fri 03 Oct 2025 01:00:02 +0000 asID: 141137 IP address blocks: 2406:c640:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:09:53:cc:fc:4d:8c:24:9e:02:a3:2a:8d:ec:10:f9:b0:ee:d3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Oct 4 00:55:02 2024 GMT Not After : Oct 3 01:00:02 2025 GMT Subject: CN=9A5041EF42518C6FD52000267E0A79FC9777A206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:9f:07:7a:d2:60:15:f0:c7:6d:cb:f1:9c: 34:3b:85:fc:09:d6:47:37:4a:77:05:51:fe:42:74: a1:bc:f7:5b:0f:c7:78:a9:94:3d:18:23:a8:01:92: 16:86:de:ac:12:e9:57:ad:84:7e:54:b9:ca:1f:3b: f1:e8:10:b6:ab:b7:0e:c1:fd:ea:ba:5e:d5:6f:5d: 3c:16:f5:dd:aa:d0:5e:da:18:5d:ad:f6:5c:bd:65: 6e:9f:46:51:92:f7:16:0e:a0:72:ba:60:2c:a2:6c: ca:28:e5:1e:89:83:f3:26:43:12:6f:91:12:c4:80: 9f:b2:4e:4e:ef:8c:80:2b:4f:f9:cf:6b:03:54:5f: b8:c0:c4:6f:33:65:be:53:ca:11:f8:74:cf:a0:cf: d1:fa:2b:1c:80:9e:bd:01:f2:80:6d:2f:82:2c:c2: 84:61:30:6e:59:17:e4:e8:26:e6:74:b1:87:d2:b6: 6d:00:41:4f:2f:63:a3:4d:b2:ac:ad:c2:a9:92:e2: 2b:54:5a:d8:2c:ac:c6:d7:3c:77:6e:a2:91:12:4c: b3:2b:cc:c5:09:3c:af:87:46:26:be:1e:e0:54:36: 50:46:94:6d:c2:25:0a:b4:b7:8d:f1:8f:6d:80:cd: 22:65:7e:78:1e:b4:89:49:26:0a:13:33:f6:d0:23: 57:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:50:41:EF:42:51:8C:6F:D5:20:00:26:7E:0A:79:FC:97:77:A2:06 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640:2::/48 Signature Algorithm: sha256WithRSAEncryption 04:64:9e:bb:cf:55:b1:17:73:c9:53:ad:db:35:1d:d9:56:2e: 49:fc:d1:28:fc:23:c0:62:e2:e3:59:06:d6:80:e1:6d:77:27: bd:a4:67:aa:3a:bb:2a:fc:35:6e:5f:ab:76:32:73:c8:3d:3d: ae:a5:6b:a5:a6:77:30:77:1b:f0:cb:c2:c7:d7:cc:83:72:03: b9:b7:ca:9b:0f:6d:88:f9:a5:3c:93:27:64:0b:2d:9d:fc:ca: eb:2b:f6:28:98:85:0e:a7:bd:49:b7:40:b6:8a:8c:04:4c:e9: 83:3c:94:b5:4e:64:8d:84:80:a5:7d:a4:da:5f:d9:39:41:8b: 75:44:10:3b:ce:0f:66:30:7e:f5:c1:81:9a:5c:99:63:4b:ee: 5f:86:b6:76:18:69:13:00:89:e7:4c:6c:65:fa:0f:2f:29:18: c9:23:45:00:bb:b8:0f:3d:f1:4b:33:e5:1c:11:51:93:3b:e1: 4c:d4:c3:a6:06:03:f0:62:a7:61:b5:0f:52:6e:b3:9a:5d:98: a2:ca:60:8d:b8:e2:7d:21:d1:86:37:f6:02:75:50:5b:f4:42: 8c:4b:e0:ec:28:62:d4:b9:ed:cf:1a:1a:ee:35:33:8e:90:39: 6f:aa:32:3c:32:88:7b:89:6a:2e:cb:7d:a2:0d:2f:6e:32:44: d6:20:2a:66 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVglTzPxNjCSeAqMqjewQ+bDu05owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDEwMDQwMDU1MDJaFw0yNTEwMDMwMTAwMDJaMDMxMTAvBgNV BAMTKDlBNTA0MUVGNDI1MThDNkZENTIwMDAyNjdFMEE3OUZDOTc3N0EyMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG1Z8HetJgFfDHbcvxnDQ7hfwJ 1kc3SncFUf5CdKG891sPx3iplD0YI6gBkhaG3qwS6VethH5UucofO/HoELartw7B /eq6XtVvXTwW9d2q0F7aGF2t9ly9ZW6fRlGS9xYOoHK6YCyibMoo5R6Jg/MmQxJv kRLEgJ+yTk7vjIArT/nPawNUX7jAxG8zZb5TyhH4dM+gz9H6KxyAnr0B8oBtL4Is woRhMG5ZF+ToJuZ0sYfStm0AQU8vY6NNsqytwqmS4itUWtgsrMbXPHduopESTLMr zMUJPK+HRia+HuBUNlBGlG3CJQq0t43xj22AzSJlfngetIlJJgoTM/bQI1ffAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUmlBB70JRjG/VIAAmfgp5/Jd3ogYwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBsZAAAIw DQYJKoZIhvcNAQELBQADggEBAARknrvPVbEXc8lTrds1HdlWLkn80Sj8I8Bi4uNZ BtaA4W13J72kZ6o6uyr8NW5fq3Yyc8g9Pa6la6WmdzB3G/DLwsfXzINyA7m3ypsP bYj5pTyTJ2QLLZ38yusr9iiYhQ6nvUm3QLaKjARM6YM8lLVOZI2EgKV9pNpf2TlB i3VEEDvOD2YwfvXBgZpcmWNL7l+GtnYYaRMAiedMbGX6Dy8pGMkjRQC7uA898Usz 5RwRUZM74UzUw6YGA/Bip2G1D1Jus5pdmKLKYI244n0h0YY39gJ1UFv0QoxL4Owo YtS57c8aGu41M46QOW+qMjwyiHuJai7LfaINL24yRNYgKmY= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org