$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa File: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (raw, json) Hash identifier: p+rm7vbA5ngIqMZr32PI/RSnvPiqpzUUqSs4LwHOSfI= Subject key identifier: A9:61:F1:12:C6:D3:66:B2:F7:8C:65:B9:F9:53:E8:ED:14:3C:5D:E8 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 2A214ED77B6FA9B5384B5F79E80EA561367C5D41 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa Signing time: Fri 04 Oct 2024 01:00:02 +0000 ROA not before: Fri 04 Oct 2024 00:55:02 +0000 ROA not after: Fri 03 Oct 2025 01:00:02 +0000 asID: 141137 IP address blocks: 2406:c640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:21:4e:d7:7b:6f:a9:b5:38:4b:5f:79:e8:0e:a5:61:36:7c:5d:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Oct 4 00:55:02 2024 GMT Not After : Oct 3 01:00:02 2025 GMT Subject: CN=A961F112C6D366B2F78C65B9F953E8ED143C5DE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9e:f0:20:a9:67:59:36:35:72:cb:38:fd:47: 1d:4c:c8:02:22:a6:a8:93:9d:4e:07:2a:c8:a4:e0: 72:b2:92:f2:f4:76:4e:9a:bf:4f:e6:c7:e7:12:fd: e3:58:cc:7e:d9:c6:ef:4d:91:88:ec:95:b2:f2:a0: 0b:12:59:f0:28:0e:7a:09:29:3c:0f:2f:cd:9b:00: e0:e8:9e:65:95:4b:67:c8:0e:73:21:e0:1a:2b:3d: 71:d5:91:de:63:4c:97:ee:65:b3:f7:b8:c5:d7:af: e1:d6:97:74:7b:81:50:85:3b:af:6b:1e:2f:98:2f: 67:3a:53:7e:46:21:4b:95:23:55:d6:18:63:82:df: f3:54:0c:33:a1:5d:c4:e5:7a:96:2c:95:12:2f:c9: 07:0f:43:e5:2e:7c:5a:e1:6b:4d:75:02:0f:d6:03: c5:37:50:05:af:b8:63:25:da:d5:7d:6b:99:42:35: 0b:20:bf:ed:fb:31:42:7f:7d:3b:3b:89:8d:22:60: 39:e4:9b:4d:dc:e5:2c:6b:98:89:af:23:56:d9:9f: ca:33:b2:a4:e5:b8:80:4d:eb:c0:28:fc:be:28:11: cb:ec:2a:5c:b7:b2:72:c7:ec:64:a8:b1:ee:bf:5b: 8f:75:b4:72:59:1b:be:d9:c3:a0:c1:4a:c8:d0:c4: 68:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:61:F1:12:C6:D3:66:B2:F7:8C:65:B9:F9:53:E8:ED:14:3C:5D:E8 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/323430363a633634303a3a2f33322d3332203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:c640::/32 Signature Algorithm: sha256WithRSAEncryption 74:f1:8c:97:19:29:bf:1a:03:df:0d:09:50:40:2e:46:65:3e: a0:fd:28:c8:f0:c5:63:63:03:66:a2:a2:ba:4f:55:35:4e:ad: a8:3b:db:a6:0d:7b:48:26:da:91:fd:2a:19:cd:97:2b:ac:c2: c8:ab:67:d3:4e:75:5d:f5:ef:de:d5:97:ab:46:83:e4:c2:b7: b3:c6:ef:eb:b2:b7:a3:48:db:ed:cd:32:33:7c:77:0c:e9:38: 35:95:d2:43:3c:a6:9d:fa:04:47:8b:14:77:66:98:17:af:9c: 3b:e4:3b:84:ed:cc:ab:9b:6d:7e:2e:0a:40:35:ac:12:f2:db: 95:95:ca:f3:39:96:01:13:f3:26:18:3e:d0:13:6c:28:b4:f7: 4d:c0:cc:51:25:21:cd:65:d7:13:f9:c3:6f:da:96:33:46:02: 14:8a:78:af:07:0b:84:9a:df:fa:87:a8:3a:f0:83:6d:06:48: 44:47:a6:00:ba:75:36:b2:74:a3:27:08:12:f9:d8:fe:77:b2: a9:ee:4a:3e:bf:ac:b9:b3:4f:cd:0d:07:03:11:20:40:94:8b: c0:53:af:02:c9:2e:59:79:6b:ee:05:0c:97:a5:4e:7a:7e:c2: 55:36:88:62:c8:0f:cb:05:3d:43:bc:14:dd:da:08:24:2b:a9: 25:c2:37:76 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKiFO13tvqbU4S1956A6lYTZ8XUEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDEwMDQwMDU1MDJaFw0yNTEwMDMwMTAwMDJaMDMxMTAvBgNV BAMTKEE5NjFGMTEyQzZEMzY2QjJGNzhDNjVCOUY5NTNFOEVEMTQzQzVERTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtnvAgqWdZNjVyyzj9Rx1MyAIi pqiTnU4HKsik4HKykvL0dk6av0/mx+cS/eNYzH7Zxu9NkYjslbLyoAsSWfAoDnoJ KTwPL82bAODonmWVS2fIDnMh4BorPXHVkd5jTJfuZbP3uMXXr+HWl3R7gVCFO69r Hi+YL2c6U35GIUuVI1XWGGOC3/NUDDOhXcTlepYslRIvyQcPQ+UufFrha011Ag/W A8U3UAWvuGMl2tV9a5lCNQsgv+37MUJ/fTs7iY0iYDnkm03c5SxrmImvI1bZn8oz sqTluIBN68Ao/L4oEcvsKly3snLH7GSose6/W491tHJZG77Zw6DBSsjQxGiBAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUqWHxEsbTZrL3jGW5+VPo7RQ8XegwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMyMzQzMDM2M2E2MzM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGxkAwDQYJKoZI hvcNAQELBQADggEBAHTxjJcZKb8aA98NCVBALkZlPqD9KMjwxWNjA2aiorpPVTVO rag726YNe0gm2pH9KhnNlyuswsirZ9NOdV31797Vl6tGg+TCt7PG7+uyt6NI2+3N MjN8dwzpODWV0kM8pp36BEeLFHdmmBevnDvkO4TtzKubbX4uCkA1rBLy25WVyvM5 lgET8yYYPtATbCi0903AzFElIc1l1xP5w2/aljNGAhSKeK8HC4Sa3/qHqDrwg20G SERHpgC6dTaydKMnCBL52P53sqnuSj6/rLmzT80NBwMRIECUi8BTrwLJLll5a+4F DJelTnp+wlU2iGLID8sFPUO8FN3aCCQrqSXCN3Y= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org