$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa File: 323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa (raw, json) Hash identifier: XCuxF6ruUczOzJvMHii/FDEIeSq2U8u1TMO0ZyKrZco= Subject key identifier: 17:97:33:83:F1:B1:C5:FE:EA:C5:06:03:B7:C9:A6:3C:D6:0B:F1:AE Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 1F2E6E0AE1437241496A27FAA2FD50FBF9607C3A Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa Signing time: Thu 03 Oct 2024 09:00:01 +0000 ROA not before: Thu 03 Oct 2024 08:55:01 +0000 ROA not after: Thu 02 Oct 2025 09:00:01 +0000 asID: 133823 IP address blocks: 2407:df00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:2e:6e:0a:e1:43:72:41:49:6a:27:fa:a2:fd:50:fb:f9:60:7c:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Oct 3 08:55:01 2024 GMT Not After : Oct 2 09:00:01 2025 GMT Subject: CN=17973383F1B1C5FEEAC50603B7C9A63CD60BF1AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ea:e1:f7:bf:be:35:33:2a:31:4a:71:f1:af: fe:d3:74:12:cf:e6:30:08:75:ed:eb:c1:29:38:f2: 7a:d3:60:91:31:3f:ed:48:c6:77:ab:96:45:e8:97: 96:18:d2:67:90:96:68:24:0d:ad:c8:b3:5c:dc:43: 4b:93:4d:6a:24:b0:62:2c:34:83:09:87:83:fd:12: b8:4d:07:66:7d:8a:b9:2e:61:61:01:b6:f7:57:54: 05:11:47:92:c5:9e:f4:5e:92:3f:0b:0f:64:16:04: da:3f:3a:ab:c4:e7:fe:a9:8f:37:7a:50:8d:6e:43: ad:d0:01:6c:44:40:86:b6:4a:2b:13:11:12:1f:da: 1f:b5:1d:8a:3c:85:c0:49:6e:00:be:c3:87:7e:f5: 90:9a:cf:97:4f:c4:59:55:32:a3:fc:14:2a:54:cd: a5:f7:08:02:59:a6:bf:39:22:b8:75:03:ba:4b:56: 34:ee:ce:8b:bb:8c:41:90:0d:b9:d5:34:73:d6:7c: 11:b0:0f:b9:17:ac:73:3b:1c:e3:3a:f6:6a:e8:06: 37:fb:d5:06:70:ca:5c:bc:34:10:43:67:b9:30:df: b5:e6:1a:79:60:32:6e:b7:e0:78:c5:23:9a:f8:42: 70:d1:4e:95:cf:7e:b3:16:99:b5:9c:a1:e5:c1:5d: 31:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:97:33:83:F1:B1:C5:FE:EA:C5:06:03:B7:C9:A6:3C:D6:0B:F1:AE X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/323430373a646630303a313a3a2f34382d3438203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:df00:1::/48 Signature Algorithm: sha256WithRSAEncryption 36:07:f6:61:62:35:d5:f9:90:fe:ea:8e:50:20:66:af:09:fb: 1e:f6:90:4c:1f:7a:d8:07:34:4e:6e:bc:eb:fb:e2:a7:08:95: d6:83:aa:bd:5f:31:f7:9f:68:70:ac:72:40:4d:bd:60:af:10: 99:3d:42:7a:a3:1f:a0:4e:ca:ed:d0:5e:9d:96:80:c9:0e:1f: 94:87:20:4c:60:d2:17:84:4c:ce:a9:3b:4c:0c:39:f3:57:8a: 06:64:7d:57:0f:05:78:75:cc:b6:33:28:be:ad:a3:aa:10:3a: d0:06:c8:89:a6:1e:5b:3b:1c:08:bc:85:ec:60:3a:0b:cc:2d: 29:77:d0:58:af:a5:d1:0d:75:e5:ed:a2:68:e9:fa:a5:f6:62: a9:c2:a0:c1:06:45:af:4a:c3:1d:29:6a:ee:54:f8:7e:bd:ef: 90:be:81:cc:b8:80:05:e5:fe:a6:b2:2e:19:10:e9:d0:3c:bc: 5d:29:8a:53:33:b2:66:e4:c7:d2:d6:2a:0d:6d:0a:c2:f7:1d: ca:35:73:52:3c:ef:b8:1a:66:d2:7b:42:84:ae:49:c8:d5:cf: 1a:24:55:fd:62:73:56:5a:73:29:a5:86:7b:11:97:34:0f:94: b9:3e:45:f6:60:92:0f:c9:79:b5:ee:18:4f:28:39:36:8f:b5: 21:1f:a4:d2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHy5uCuFDckFJaif6ov1Q+/lgfDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNDEwMDMwODU1MDFaFw0yNTEwMDIwOTAwMDFaMDMxMTAvBgNV BAMTKDE3OTczMzgzRjFCMUM1RkVFQUM1MDYwM0I3QzlBNjNDRDYwQkYxQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl6uH3v741MyoxSnHxr/7TdBLP 5jAIde3rwSk48nrTYJExP+1IxnerlkXol5YY0meQlmgkDa3Is1zcQ0uTTWoksGIs NIMJh4P9ErhNB2Z9irkuYWEBtvdXVAURR5LFnvRekj8LD2QWBNo/OqvE5/6pjzd6 UI1uQ63QAWxEQIa2SisTERIf2h+1HYo8hcBJbgC+w4d+9ZCaz5dPxFlVMqP8FCpU zaX3CAJZpr85Irh1A7pLVjTuzou7jEGQDbnVNHPWfBGwD7kXrHM7HOM69mroBjf7 1QZwyly8NBBDZ7kw37XmGnlgMm634HjFI5r4QnDRTpXPfrMWmbWcoeXBXTFTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUF5czg/Gxxf7qxQYDt8mmPNYL8a4wHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMyMzQzMDM3M2E2NDY2MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB98AAAEw DQYJKoZIhvcNAQELBQADggEBADYH9mFiNdX5kP7qjlAgZq8J+x72kEwfetgHNE5u vOv74qcIldaDqr1fMfefaHCsckBNvWCvEJk9QnqjH6BOyu3QXp2WgMkOH5SHIExg 0heETM6pO0wMOfNXigZkfVcPBXh1zLYzKL6to6oQOtAGyImmHls7HAi8hexgOgvM LSl30FivpdENdeXtomjp+qX2YqnCoMEGRa9Kwx0pau5U+H6975C+gcy4gAXl/qay LhkQ6dA8vF0pilMzsmbkx9LWKg1tCsL3Hco1c1I877gaZtJ7QoSuScjVzxokVf1i c1ZacymlhnsRlzQPlLk+RfZgkg/JebXuGE8oOTaPtSEfpNI= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org