$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: EjiW3iubwrv2eWHPIzNxK50Jn83CwpTbKhSYUhkAeyw= Subject key identifier: 52:16:60:1D:11:F4:99:4D:20:90:FF:51:7F:BF:F8:32:07:50:E7:09 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 74106020C957D085208CD3AB66C125B0C25C1330 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jul 2023 13:49:21 +0000 ROA not before: Sun 02 Jul 2023 13:44:21 +0000 ROA not after: Sun 30 Jun 2024 13:49:21 +0000 asID: 140413 IP address blocks: 2406:13c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:10:60:20:c9:57:d0:85:20:8c:d3:ab:66:c1:25:b0:c2:5c:13:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jul 2 13:44:21 2023 GMT Not After : Jun 30 13:49:21 2024 GMT Subject: CN=5216601D11F4994D2090FF517FBFF8320750E709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:51:8f:0f:64:b4:d0:d4:34:fc:77:9d:f2:cc: 2a:ea:f3:59:0f:96:df:45:59:76:57:38:c2:3c:a1: 77:bc:a1:d4:e2:52:b3:87:bb:ea:ff:dc:9b:ac:28: 10:b5:b7:ed:af:94:d2:3c:0e:5c:8b:91:ba:d6:90: 23:09:cf:17:8f:eb:7c:00:fd:ab:c0:e2:1a:3c:e7: 13:dc:90:56:55:6f:e0:69:30:88:58:a3:65:8a:64: 2f:62:f8:4c:9d:4e:48:09:a0:af:c1:62:fc:13:9e: 46:11:07:19:bf:fd:fc:13:86:43:dd:bd:0e:4e:3b: 3a:05:77:54:ef:04:86:34:30:e2:b3:77:76:55:60: 9e:80:f1:f4:d5:0c:3d:22:96:71:42:07:fe:b8:90: 43:ca:c8:fc:6e:ba:ac:51:e6:f6:15:6c:3c:4e:2d: 6d:a6:ad:a6:e4:73:a4:bb:93:31:58:86:94:c0:70: 29:65:c5:b8:a4:c4:24:0f:81:af:1b:b9:02:c8:d1: 52:a6:6a:d4:0e:ec:80:d8:c9:83:38:21:fb:03:9c: 0c:a1:69:7b:12:d1:c9:07:6d:84:2f:64:94:56:d0: 82:6f:f8:f4:e2:07:fa:88:b9:71:c2:66:1c:3f:66: 67:c7:65:c9:3a:8c:c0:ed:59:f7:39:3c:7c:1e:85: 34:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:16:60:1D:11:F4:99:4D:20:90:FF:51:7F:BF:F8:32:07:50:E7:09 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 5c:d9:ae:4a:7a:8d:45:16:8f:db:f6:be:c9:1a:31:af:92:2d: e6:42:70:6d:78:66:25:b8:7f:7d:20:a4:8d:a0:df:25:55:fb: 11:88:db:d0:87:04:ff:ce:17:a4:ac:02:8f:bf:a0:64:e7:e3: 06:89:51:a7:0a:82:05:28:21:b3:59:22:b5:0a:eb:be:cb:68: 32:02:c5:50:01:d1:43:63:06:64:0a:97:af:5e:f5:29:1b:cf: 00:a9:53:13:a8:9e:ba:b1:1d:80:cd:8f:48:71:65:53:2e:79: ef:dc:43:94:a9:90:7f:1a:29:a0:48:1b:6d:38:cf:5a:da:c6: bf:e8:5b:e9:e5:4e:49:7d:c4:b8:3d:f5:dc:a9:9f:27:bb:9c: 10:93:a0:aa:37:e0:fe:01:db:6a:5f:dc:34:40:ab:99:2a:f9: b4:7c:09:7e:27:70:50:17:16:cc:5a:8e:ab:57:e4:fb:b0:b0: bd:55:74:86:fa:47:fe:c0:3f:22:07:54:30:1a:29:d1:62:a9: fa:ca:c2:95:64:62:4b:9e:21:24:c0:29:6e:a2:38:5b:31:13: 6a:98:9e:03:81:42:13:a9:8a:06:8f:71:4f:e3:1b:c3:c9:7d: 77:ce:8b:fe:bc:20:f2:51:b2:af:4b:14:7d:21:e7:c3:5c:d3: 19:ba:85:6b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdBBgIMlX0IUgjNOrZsElsMJcEzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzA3MDIxMzQ0MjFaFw0yNDA2MzAxMzQ5MjFaMDMxMTAvBgNV BAMTKDUyMTY2MDFEMTFGNDk5NEQyMDkwRkY1MTdGQkZGODMyMDc1MEU3MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeUY8PZLTQ1DT8d53yzCrq81kP lt9FWXZXOMI8oXe8odTiUrOHu+r/3JusKBC1t+2vlNI8DlyLkbrWkCMJzxeP63wA /avA4ho85xPckFZVb+BpMIhYo2WKZC9i+EydTkgJoK/BYvwTnkYRBxm//fwThkPd vQ5OOzoFd1TvBIY0MOKzd3ZVYJ6A8fTVDD0ilnFCB/64kEPKyPxuuqxR5vYVbDxO LW2mrabkc6S7kzFYhpTAcCllxbikxCQPga8buQLI0VKmatQO7IDYyYM4IfsDnAyh aXsS0ckHbYQvZJRW0IJv+PTiB/qIuXHCZhw/ZmfHZck6jMDtWfc5PHwehTQPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUUhZgHRH0mU0gkP9Rf7/4MgdQ5wkwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAIw DQYJKoZIhvcNAQELBQADggEBAFzZrkp6jUUWj9v2vskaMa+SLeZCcG14ZiW4f30g pI2g3yVV+xGI29CHBP/OF6SsAo+/oGTn4waJUacKggUoIbNZIrUK677LaDICxVAB 0UNjBmQKl69e9SkbzwCpUxOonrqxHYDNj0hxZVMuee/cQ5SpkH8aKaBIG204z1ra xr/oW+nlTkl9xLg99dypnye7nBCToKo34P4B22pf3DRAq5kq+bR8CX4ncFAXFsxa jqtX5PuwsL1VdIb6R/7APyIHVDAaKdFiqfrKwpVkYkueISTAKW6iOFsxE2qYngOB QhOpigaPcU/jG8PJfXfOi/68IPJRsq9LFH0h58Nc0xm6hWs= -----END CERTIFICATE-----Generated at Wed May 1 22:50:25 2024 by rpki-client on console-ams.rpki-client.org