$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa File: 323430333a393063303a3a2f33322d3430203d3e20313430343037.roa (raw, json) Hash identifier: iUKGVzhyTEJeEGxOC/Chk8qCSbgQUyxbtxHAcSFlfVA= Subject key identifier: B0:C2:92:EE:A8:9A:1A:54:76:4B:C7:2C:8C:98:DC:E3:B8:50:D0:88 Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 747AC1816CD8128A641D4B28C37521E3E7947ED8 Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa Signing time: Wed 19 Jun 2024 16:00:00 +0000 ROA not before: Wed 19 Jun 2024 15:55:00 +0000 ROA not after: Wed 18 Jun 2025 16:00:00 +0000 asID: 140407 IP address blocks: 2403:90c0::/32 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7a:c1:81:6c:d8:12:8a:64:1d:4b:28:c3:75:21:e3:e7:94:7e:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jun 19 15:55:00 2024 GMT Not After : Jun 18 16:00:00 2025 GMT Subject: CN=B0C292EEA89A1A54764BC72C8C98DCE3B850D088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:69:fc:33:08:1b:62:e2:6c:49:bd:70:30: ec:6e:a7:6f:cc:84:7f:d5:89:1e:8d:0a:2c:9a:1d: 6b:2f:52:bd:ea:17:0c:4c:4b:56:d4:6e:60:b4:90: 3b:4d:75:4f:a0:14:84:59:db:46:e1:f7:02:16:c8: 1c:fd:f8:12:21:67:e5:8a:1f:5f:32:ee:e9:f3:07: 80:ee:af:ba:c3:6a:a6:b0:6a:9e:0f:b0:6a:7c:1b: 14:3a:c7:af:42:12:d9:fa:09:20:62:f9:9f:a2:41: 27:c3:85:94:e3:dc:5e:4a:1c:d9:dd:34:67:c2:5f: b0:19:82:c2:0a:85:3c:46:eb:d9:dd:c8:58:f2:bd: 13:2a:73:d2:3a:39:be:6f:86:b7:be:92:2e:97:69: 40:d6:a3:e6:81:0e:8d:fa:f8:9b:cd:fe:87:c1:67: 1d:53:e4:a2:88:31:f9:4c:c3:43:42:c1:54:35:60: 4c:fb:18:76:21:74:e7:41:c8:42:ed:a2:ec:f4:fb: 7a:d9:ae:5b:1a:4e:56:14:e8:77:82:87:e6:1e:d6: 82:13:a2:6f:2b:d5:8f:43:4d:c8:da:f0:4a:35:a3: a5:ee:2d:b0:02:d9:5c:ed:60:b0:59:ad:19:c6:ee: 78:ba:17:08:d6:a8:71:f1:10:a1:93:a9:51:1f:04: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C2:92:EE:A8:9A:1A:54:76:4B:C7:2C:8C:98:DC:E3:B8:50:D0:88 X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3430203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 71:63:cd:ea:8c:5e:65:0c:9e:0c:2f:02:3a:42:c0:67:53:1b: 09:9a:75:33:26:9b:87:34:9f:51:2f:4c:4c:62:46:be:07:66: a7:1f:67:44:0a:7c:a1:52:ef:f4:2a:2a:82:0c:48:34:7c:72: 37:ab:0f:bf:e1:af:64:52:b8:cb:9b:5b:d9:af:f7:8e:1e:27: 2f:68:ec:64:69:f8:b0:5d:69:b7:6a:a9:60:07:bf:38:39:f2: 44:cf:b0:9a:86:31:6f:fa:ba:9b:e2:fe:d7:24:f1:12:9a:16: b1:3b:0a:27:25:1a:db:c9:8e:eb:01:2b:0e:2a:94:e6:79:1a: b9:62:25:0a:bf:e0:4c:8c:1d:c5:98:61:81:89:2b:89:42:d1: 2d:31:bd:8b:e2:0e:34:69:1f:d0:ff:2f:61:e3:e0:6e:ff:9e: db:ec:df:25:3c:06:52:a7:8b:9b:7e:e0:56:ea:41:53:ee:e5: 72:5d:51:14:90:08:2d:bf:a3:54:e8:92:a1:a2:d5:dd:71:f6: d3:0c:e7:35:2b:6f:1d:1a:88:df:9b:f3:ac:c3:84:ba:bb:2a: fb:c1:08:7d:7b:cc:c6:e1:05:01:d7:f2:57:f5:21:cc:74:fe: 48:cf:59:30:3f:29:aa:92:0f:e8:67:d0:18:51:73:f9:76:b3: 84:a7:2e:08 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdHrBgWzYEopkHUsow3Uh4+eUftgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNDA2MTkxNTU1MDBaFw0yNTA2MTgxNjAwMDBaMDMxMTAvBgNV BAMTKEIwQzI5MkVFQTg5QTFBNTQ3NjRCQzcyQzhDOThEQ0UzQjg1MEQwODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1Gn8MwgbYuJsSb1wMOxup2/M hH/ViR6NCiyaHWsvUr3qFwxMS1bUbmC0kDtNdU+gFIRZ20bh9wIWyBz9+BIhZ+WK H18y7unzB4Dur7rDaqawap4PsGp8GxQ6x69CEtn6CSBi+Z+iQSfDhZTj3F5KHNnd NGfCX7AZgsIKhTxG69ndyFjyvRMqc9I6Ob5vhre+ki6XaUDWo+aBDo36+JvN/ofB Zx1T5KKIMflMw0NCwVQ1YEz7GHYhdOdByELtouz0+3rZrlsaTlYU6HeCh+Ye1oIT om8r1Y9DTcja8Eo1o6XuLbAC2VztYLBZrRnG7ni6FwjWqHHxEKGTqVEfBGVlAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUsMKS7qiaGlR2S8csjJjc47hQ0IgwHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMyMzQzMDMzM2EzOTMwNjMzMDNhM2EyZjMzMzIy ZDM0MzAyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDkMAwDQYJKoZI hvcNAQELBQADggEBAHFjzeqMXmUMngwvAjpCwGdTGwmadTMmm4c0n1EvTExiRr4H ZqcfZ0QKfKFS7/QqKoIMSDR8cjerD7/hr2RSuMubW9mv944eJy9o7GRp+LBdabdq qWAHvzg58kTPsJqGMW/6upvi/tck8RKaFrE7CiclGtvJjusBKw4qlOZ5GrliJQq/ 4EyMHcWYYYGJK4lC0S0xvYviDjRpH9D/L2Hj4G7/ntvs3yU8BlKni5t+4FbqQVPu 5XJdURSQCC2/o1TokqGi1d1x9tMM5zUrbx0aiN+b86zDhLq7KvvBCH17zMbhBQHX 8lf1Icx0/kjPWTA/KaqSD+hn0BhRc/l2s4SnLgg= -----END CERTIFICATE-----Generated at Mon Nov 25 01:13:38 2024 by rpki-client on console-fra.rpki-client.org