$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa File: 323430363a613330303a3a2f33322d3332203d3e203435373036.roa (raw, json) Hash identifier: 2xjLAoUthqLolTYw8fUKOsWqs/c7S8uY9JLSigkrYUk= Subject key identifier: 49:8E:8A:9A:AF:45:D5:22:D7:A3:CB:43:14:07:98:A6:5C:50:35:D1 Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 3BDF0B53E611032B48BC95E106D6819ADA2DF19C Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa Signing time: Mon 01 Jul 2024 01:03:17 +0000 ROA not before: Mon 01 Jul 2024 00:58:17 +0000 ROA not after: Mon 30 Jun 2025 01:03:17 +0000 asID: 45706 IP address blocks: 2406:a300::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:df:0b:53:e6:11:03:2b:48:bc:95:e1:06:d6:81:9a:da:2d:f1:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Jul 1 00:58:17 2024 GMT Not After : Jun 30 01:03:17 2025 GMT Subject: CN=498E8A9AAF45D522D7A3CB43140798A65C5035D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:7e:ff:71:47:57:22:e7:39:6d:33:40:3f: a5:90:52:6e:28:ed:5c:c9:66:41:f3:0c:c6:80:04: f7:f4:66:26:37:ed:67:ef:b7:8b:c5:03:de:0e:4d: 71:f5:6f:7c:42:9f:a8:0c:0f:66:c1:6d:b0:0c:c9: 94:a7:94:86:35:5f:e5:d7:be:4b:48:d3:a5:56:68: 08:05:a7:55:f2:e4:ba:8c:c2:c0:f9:14:da:73:46: c6:c1:1f:82:df:cf:a4:3b:1e:9c:2f:55:b9:6e:10: f1:74:85:a5:4e:af:5e:97:e3:a4:a6:1f:4c:cd:8b: b5:d9:e5:02:0f:7f:17:21:d6:97:39:89:39:c3:4c: 6c:75:04:42:21:1e:b6:df:e3:f0:aa:9b:c5:cc:ff: 47:47:50:45:09:72:13:fa:ad:f4:24:38:80:d9:13: 99:01:b1:b7:32:cd:26:9c:95:44:6a:16:f4:b6:72: 04:e4:de:0a:78:6b:c1:4d:60:e2:03:de:44:a9:b3: 69:08:7a:37:90:8c:63:c9:1c:42:25:fa:2d:ef:74: 9c:91:06:a9:eb:73:e1:5f:01:a4:29:1a:12:06:1c: c1:87:20:7e:94:3f:76:22:ce:ce:da:4f:1d:b0:65: 67:da:b8:b9:24:ba:4b:d5:99:87:24:dd:ef:f5:19: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8E:8A:9A:AF:45:D5:22:D7:A3:CB:43:14:07:98:A6:5C:50:35:D1 X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/323430363a613330303a3a2f33322d3332203d3e203435373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:a300::/32 Signature Algorithm: sha256WithRSAEncryption 4f:4e:7f:96:54:05:f8:e5:2c:11:f9:b6:27:09:7a:71:05:5f: c3:5d:a0:6f:a7:e4:98:c5:35:21:fd:66:5d:0a:b9:f3:53:77: c8:75:3b:ab:a1:cc:dd:a9:5e:0c:3b:94:c2:4d:f2:15:8d:4c: ef:32:75:21:4b:3c:fd:60:aa:b5:2f:8f:43:0f:29:08:91:4e: de:50:f2:ec:13:be:f8:a5:28:91:e3:9e:e0:f0:81:d7:3a:04: 0e:64:f1:9c:af:4b:42:06:77:f7:66:db:28:02:99:95:70:3f: af:08:f7:36:b4:b3:13:72:24:59:60:7b:3d:2f:8c:77:65:0b: d5:e1:c5:76:62:5e:f4:41:70:22:1e:8f:d7:b4:93:ba:fa:8f: 7a:a2:41:59:8a:0d:98:66:6b:7b:ce:8f:cd:cd:e1:cd:9b:97: 1b:7d:ec:15:6b:25:f9:f4:e7:0c:15:d4:29:06:1c:e0:9b:3a: ba:c1:02:bf:1f:d1:de:13:7e:02:51:78:18:b7:fc:8c:96:33: 67:43:88:ec:ea:03:f3:28:86:89:73:65:04:3a:54:2e:e0:f6: cd:7b:dd:77:d0:aa:e6:0a:9f:e1:a4:5a:0f:2a:d7:4d:aa:c4: ee:f0:f3:10:fd:b0:76:08:a6:8d:54:6b:f7:54:38:52:58:4b: 7c:8f:73:3c -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUO98LU+YRAytIvJXhBtaBmtot8ZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yNDA3MDEwMDU4MTdaFw0yNTA2MzAwMTAzMTdaMDMxMTAvBgNV BAMTKDQ5OEU4QTlBQUY0NUQ1MjJEN0EzQ0I0MzE0MDc5OEE2NUM1MDM1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXn7/cUdXIuc5bTNAP6WQUm4o 7VzJZkHzDMaABPf0ZiY37Wfvt4vFA94OTXH1b3xCn6gMD2bBbbAMyZSnlIY1X+XX vktI06VWaAgFp1Xy5LqMwsD5FNpzRsbBH4Lfz6Q7HpwvVbluEPF0haVOr16X46Sm H0zNi7XZ5QIPfxch1pc5iTnDTGx1BEIhHrbf4/Cqm8XM/0dHUEUJchP6rfQkOIDZ E5kBsbcyzSaclURqFvS2cgTk3gp4a8FNYOID3kSps2kIejeQjGPJHEIl+i3vdJyR Bqnrc+FfAaQpGhIGHMGHIH6UP3Yizs7aTx2wZWfauLkkukvVmYck3e/1GY0TAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUSY6Kmq9F1SLXo8tDFAeYplxQNdEwHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzQzMDM2M2E2MTMzMzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBqMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBPTn+WVAX45SwR+bYnCXpxBV/DXaBvp+SYxTUh/WZdCrnzU3fI dTuroczdqV4MO5TCTfIVjUzvMnUhSzz9YKq1L49DDykIkU7eUPLsE774pSiR457g 8IHXOgQOZPGcr0tCBnf3ZtsoApmVcD+vCPc2tLMTciRZYHs9L4x3ZQvV4cV2Yl70 QXAiHo/XtJO6+o96okFZig2YZmt7zo/NzeHNm5cbfewVayX59OcMFdQpBhzgmzq6 wQK/H9HeE34CUXgYt/yMljNnQ4js6gPzKIaJc2UEOlQu4PbNe9130KrmCp/hpFoP KtdNqsTu8PMQ/bB2CKaNVGv3VDhSWEt8j3M8 -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org