$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa File: 323430333a393063303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: 6Kf9IUmzERoeZfQ7/aZzSWCZomNZD6ZE9tg84PYvtV8= Subject key identifier: 88:F0:95:EA:0C:DC:8E:BA:B7:52:3C:9E:5C:66:A4:58:D3:44:CA:8C Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 202F0A1C1A99689ADB5A6A4E4CE0852910F5EEE2 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa Signing time: Sat 30 Mar 2024 04:00:00 +0000 ROA not before: Sat 30 Mar 2024 03:55:00 +0000 ROA not after: Sat 29 Mar 2025 04:00:00 +0000 asID: 140407 IP address blocks: 2403:90c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:2f:0a:1c:1a:99:68:9a:db:5a:6a:4e:4c:e0:85:29:10:f5:ee:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Mar 30 03:55:00 2024 GMT Not After : Mar 29 04:00:00 2025 GMT Subject: CN=88F095EA0CDC8EBAB7523C9E5C66A458D344CA8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f7:19:93:cc:d3:e9:28:c1:27:b7:01:6f:9c: 36:5d:2a:2c:00:66:2e:d8:83:88:14:6a:46:1c:46: 9b:07:2d:18:3e:03:2a:57:11:82:17:28:86:43:03: 85:f9:31:0b:3f:b4:86:57:5e:78:4c:98:9b:35:89: 92:f0:d8:98:62:09:7d:b1:82:51:6a:ea:36:c1:70: f0:94:32:85:3b:6d:5e:e5:12:85:27:cb:c2:43:95: c8:07:d5:81:0d:31:27:4f:ef:de:4d:77:c7:83:60: 94:85:82:5c:9f:26:0f:d0:83:7e:f5:e2:c4:a9:41: e1:67:45:44:fe:37:b4:ad:14:84:85:59:cb:c1:06: 7c:1a:af:7a:7a:4e:9f:36:0e:e6:5e:3b:87:d3:bd: 9e:08:d0:cb:93:a8:cb:d6:0c:e1:70:35:ed:5e:bf: 94:09:e3:5b:7b:11:0c:0a:3c:04:00:28:33:ef:da: 1c:d4:39:0d:d0:7e:75:b3:9e:1d:44:bc:5b:c5:6b: ba:91:66:de:2b:41:d3:6e:07:0b:6c:af:89:2b:a0: db:dc:b9:a9:f5:02:d1:3e:19:a8:ea:44:16:f4:9e: 39:12:46:40:b7:1f:94:36:4d:d3:e1:15:46:6d:3e: 31:cc:6b:85:33:4c:68:d8:44:a0:b1:a6:1a:e5:4c: 76:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F0:95:EA:0C:DC:8E:BA:B7:52:3C:9E:5C:66:A4:58:D3:44:CA:8C X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 22:d5:70:d7:20:ff:85:9b:fd:3d:f6:0f:8c:4b:81:d3:3e:dc: 5e:33:55:0d:dd:c7:78:b2:a5:35:b8:5f:9f:08:ff:54:a5:e0: d3:4c:7c:ba:d6:c4:fa:1c:7c:85:62:bd:09:0e:c6:da:e1:0f: b1:58:e7:a4:aa:e8:de:88:ed:a7:8b:32:f1:58:a9:6b:e4:20: fc:08:bc:b5:3a:af:1f:ad:b5:54:06:ad:7e:9b:ce:c6:d9:db: 0b:71:f0:3a:a6:fb:a9:9e:84:68:10:ba:f2:9d:31:a1:c6:fc: f5:2b:20:90:b1:a6:23:09:51:d5:5e:c7:d6:52:1c:77:d2:d6: a9:40:e6:75:61:6d:61:5f:dd:16:8a:7f:bd:4a:ab:bb:ec:69: b7:83:6d:65:a3:4a:1c:60:a1:91:05:98:fd:8f:e7:ff:e9:98: 56:0d:bb:22:6d:ff:83:0f:da:03:3a:c2:03:1d:40:e4:04:d0: ca:ea:99:61:03:b5:e3:81:08:ab:97:2a:50:12:84:8b:f7:4f: 4d:74:48:29:48:ff:85:56:38:d5:d5:f3:c7:ec:e8:83:4e:e5: 0b:0e:9a:cd:09:e9:75:cd:eb:8d:63:61:ac:08:80:89:f0:46: 37:aa:69:df:13:46:a5:d1:a4:05:c1:bd:08:29:12:d1:9c:62: a6:43:d9:a3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIC8KHBqZaJrbWmpOTOCFKRD17uIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDAzMzAwMzU1MDBaFw0yNTAzMjkwNDAwMDBaMDMxMTAvBgNV BAMTKDg4RjA5NUVBMENEQzhFQkFCNzUyM0M5RTVDNjZBNDU4RDM0NENBOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj9xmTzNPpKMEntwFvnDZdKiwA Zi7Yg4gUakYcRpsHLRg+AypXEYIXKIZDA4X5MQs/tIZXXnhMmJs1iZLw2JhiCX2x glFq6jbBcPCUMoU7bV7lEoUny8JDlcgH1YENMSdP795Nd8eDYJSFglyfJg/Qg371 4sSpQeFnRUT+N7StFISFWcvBBnwar3p6Tp82DuZeO4fTvZ4I0MuTqMvWDOFwNe1e v5QJ41t7EQwKPAQAKDPv2hzUOQ3QfnWznh1EvFvFa7qRZt4rQdNuBwtsr4kroNvc uan1AtE+GajqRBb0njkSRkC3H5Q2TdPhFUZtPjHMa4UzTGjYRKCxphrlTHZrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUiPCV6gzcjrq3UjyeXGakWNNEyowwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMyMzQzMDMzM2EzOTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDkMAwDQYJKoZI hvcNAQELBQADggEBACLVcNcg/4Wb/T32D4xLgdM+3F4zVQ3dx3iypTW4X58I/1Sl 4NNMfLrWxPocfIVivQkOxtrhD7FY56Sq6N6I7aeLMvFYqWvkIPwIvLU6rx+ttVQG rX6bzsbZ2wtx8Dqm+6mehGgQuvKdMaHG/PUrIJCxpiMJUdVex9ZSHHfS1qlA5nVh bWFf3RaKf71Kq7vsabeDbWWjShxgoZEFmP2P5//pmFYNuyJt/4MP2gM6wgMdQOQE 0MrqmWEDteOBCKuXKlAShIv3T010SClI/4VWONXV88fs6INO5QsOms0J6XXN641j YawIgInwRjeqad8TRqXRpAXBvQgpEtGcYqZD2aM= -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:33 2024 by rpki-client on console-ams.rpki-client.org