$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: eQPpdh0+aOxcPtJPGCDRJdpxU7keqa2uVRrc1gQ5Hz0= Subject key identifier: AD:3B:16:89:88:DB:5A:8C:31:1A:F3:A3:87:AC:14:D9:2B:1D:27:59 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 79FF6BC70F07E2BC64F118BECC30CB1549EEEBAB Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jul 2023 13:52:26 +0000 ROA not before: Sun 02 Jul 2023 13:47:26 +0000 ROA not after: Sun 30 Jun 2024 13:52:26 +0000 asID: 140413 IP address blocks: 2406:13c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ff:6b:c7:0f:07:e2:bc:64:f1:18:be:cc:30:cb:15:49:ee:eb:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jul 2 13:47:26 2023 GMT Not After : Jun 30 13:52:26 2024 GMT Subject: CN=AD3B168988DB5A8C311AF3A387AC14D92B1D2759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ad:97:6b:21:37:7a:15:3c:d3:88:b3:85:1b: 71:f4:35:d2:de:4f:a7:6f:f9:6f:40:eb:25:1c:6f: a9:2f:06:52:3d:34:3a:7b:fd:cf:00:1b:ea:08:20: 3a:21:71:fa:20:bb:8b:ae:2b:f4:15:a8:6d:83:b6: b9:c9:ae:0b:92:78:ef:9c:68:5a:56:2c:1a:28:e8: 5e:14:a7:c4:93:bb:32:cf:fd:f4:72:b1:21:b4:1e: 78:79:57:7a:9a:42:4c:30:59:53:24:09:37:f8:3e: 0c:7e:3a:cd:3c:d5:03:e4:4d:7c:d7:34:95:7d:0f: c5:a4:fe:f0:4e:d5:40:43:31:69:a1:fe:39:5d:15: f6:40:1f:5f:78:5c:bd:a1:64:79:fd:30:a3:2a:b5: db:84:e3:04:64:c0:d2:ff:57:78:27:a7:a7:94:fe: f3:9c:0d:d0:e2:2b:39:e0:03:2d:8b:aa:fb:9f:a4: 58:89:4b:33:84:58:19:b9:0f:9c:c3:47:1d:7d:60: 23:ba:f5:24:f2:be:35:1a:4b:2b:35:d5:03:93:6a: ea:f3:bb:b1:35:88:ca:00:1d:1f:c2:01:05:9e:53: ed:84:13:a7:54:ed:09:61:32:c5:b8:b1:9c:8a:c4: 4d:e7:0c:4f:aa:4b:b9:7e:5d:7a:81:9f:5b:10:6b: 80:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3B:16:89:88:DB:5A:8C:31:1A:F3:A3:87:AC:14:D9:2B:1D:27:59 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 43:a1:b2:48:13:7e:6d:75:b0:10:c8:5f:a7:42:e0:a4:84:da: a5:09:af:5d:96:a9:34:7c:27:96:48:0d:0c:37:9c:d8:f9:a9: e3:d9:76:f7:19:c4:da:da:0b:b6:38:73:66:42:ba:59:a7:1d: 73:7f:81:32:84:25:be:ee:c1:b7:88:19:40:4d:ce:97:09:e9: 46:2d:62:b1:27:5c:cb:e7:0c:cd:cb:0c:e8:b5:76:81:fc:71: 52:ea:39:8b:09:80:60:c8:95:b4:1f:f6:93:98:da:08:a2:49: b3:21:2d:0d:e9:14:1c:8e:45:cd:64:90:bb:13:fc:80:18:ee: b4:77:b7:26:cd:d7:a8:fe:4f:c0:6c:0a:10:f3:b7:01:a7:76: 73:2f:0a:d9:1b:f3:80:4c:1d:fc:72:de:2f:ba:8d:72:ca:ca: 16:c8:3e:9c:8b:ba:b0:ff:79:19:0c:ee:e8:5e:c2:61:a0:a1: 92:7b:39:e6:ab:6a:cf:36:e2:d3:be:55:87:cf:ff:28:5a:03: 6b:a0:6f:b5:20:68:25:c9:b0:eb:88:3e:a4:b5:ad:c3:9a:63: 6b:1d:59:52:2b:0d:3b:7c:83:1d:8d:2b:df:42:b8:e4:b0:68: 9c:1d:fd:93:00:6c:b2:dd:a9:c3:78:31:94:20:f6:6e:53:7b: 24:00:32:f3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUef9rxw8H4rxk8Ri+zDDLFUnu66swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzA3MDIxMzQ3MjZaFw0yNDA2MzAxMzUyMjZaMDMxMTAvBgNV BAMTKEFEM0IxNjg5ODhEQjVBOEMzMTFBRjNBMzg3QUMxNEQ5MkIxRDI3NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhrZdrITd6FTzTiLOFG3H0NdLe T6dv+W9A6yUcb6kvBlI9NDp7/c8AG+oIIDohcfogu4uuK/QVqG2DtrnJrguSeO+c aFpWLBoo6F4Up8STuzLP/fRysSG0Hnh5V3qaQkwwWVMkCTf4Pgx+Os081QPkTXzX NJV9D8Wk/vBO1UBDMWmh/jldFfZAH194XL2hZHn9MKMqtduE4wRkwNL/V3gnp6eU /vOcDdDiKzngAy2LqvufpFiJSzOEWBm5D5zDRx19YCO69STyvjUaSys11QOTaurz u7E1iMoAHR/CAQWeU+2EE6dU7QlhMsW4sZyKxE3nDE+qS7l+XXqBn1sQa4DdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrTsWiYjbWowxGvOjh6wU2SsdJ1kwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAMw DQYJKoZIhvcNAQELBQADggEBAEOhskgTfm11sBDIX6dC4KSE2qUJr12WqTR8J5ZI DQw3nNj5qePZdvcZxNraC7Y4c2ZCulmnHXN/gTKEJb7uwbeIGUBNzpcJ6UYtYrEn XMvnDM3LDOi1doH8cVLqOYsJgGDIlbQf9pOY2giiSbMhLQ3pFByORc1kkLsT/IAY 7rR3tybN16j+T8BsChDztwGndnMvCtkb84BMHfxy3i+6jXLKyhbIPpyLurD/eRkM 7uhewmGgoZJ7Oearas824tO+VYfP/yhaA2ugb7UgaCXJsOuIPqS1rcOaY2sdWVIr DTt8gx2NK99CuOSwaJwd/ZMAbLLdqcN4MZQg9m5TeyQAMvM= -----END CERTIFICATE-----Generated at Wed May 1 22:50:25 2024 by rpki-client on console-ams.rpki-client.org