$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: Dvo1U7oJhxwYiGdBFwVgsVYyAGo7/a5Rp6pUw8dXCq8= Subject key identifier: 4B:86:FC:B7:C5:09:90:81:B1:69:7B:1B:8B:0D:AC:AF:C8:CE:F0:26 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 2A6ED8E1D04A0F273420732449225F5AE4BDEC4C Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jul 2023 13:56:21 +0000 ROA not before: Sun 02 Jul 2023 13:51:21 +0000 ROA not after: Sun 30 Jun 2024 13:56:21 +0000 asID: 140413 IP address blocks: 2406:13c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6e:d8:e1:d0:4a:0f:27:34:20:73:24:49:22:5f:5a:e4:bd:ec:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jul 2 13:51:21 2023 GMT Not After : Jun 30 13:56:21 2024 GMT Subject: CN=4B86FCB7C5099081B1697B1B8B0DACAFC8CEF026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:03:84:c1:4a:52:95:56:10:09:4d:b0:77:bb: ca:9d:f3:bd:98:f5:be:00:ad:89:26:24:88:3e:05: b5:7f:d7:e0:1d:3f:20:d7:86:14:c6:4c:0a:3c:5c: 15:58:46:b4:9d:12:3d:58:6c:a1:6f:57:3a:d2:8c: 80:5b:f9:a2:83:29:4d:9c:13:3b:40:48:f0:cb:0e: ff:7c:d7:d7:35:28:3b:a5:7f:60:4d:93:7d:3b:55: 41:ab:f8:0c:7c:28:e5:f1:44:5c:24:8f:a2:7a:da: 73:91:96:2f:ef:c3:e0:99:78:8c:ce:e0:2b:c8:52: 58:77:e5:2c:9d:1c:9c:51:1c:93:2a:81:09:23:04: a6:a0:40:ac:c6:fb:1f:a2:6f:77:a3:23:75:36:ce: a6:ec:6b:61:64:7d:40:a1:ed:ed:c3:ea:5d:e5:64: 6d:ec:ad:e3:ea:3f:28:f8:99:6d:f4:70:41:cc:36: 3c:57:ff:cb:6d:b6:70:7f:cc:8f:34:98:c5:da:6a: 99:39:9e:54:43:b4:47:c8:b9:8b:36:2e:90:52:40: 1f:77:18:a7:49:ee:ac:9c:4c:b9:a6:bd:69:30:76: ee:7a:78:ee:64:cd:29:78:f3:ad:36:a4:fa:a1:75: 9c:bf:d7:8f:45:20:12:08:5f:92:98:53:56:5d:f4: 35:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:86:FC:B7:C5:09:90:81:B1:69:7B:1B:8B:0D:AC:AF:C8:CE:F0:26 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:f::/48 Signature Algorithm: sha256WithRSAEncryption 3d:0b:a3:ed:01:22:6a:71:17:4f:45:d3:96:e7:c9:d5:9f:19: 69:82:f2:42:e2:a8:ea:8b:75:a3:6e:8f:0d:fd:31:d1:75:ea: 75:bb:83:53:de:75:60:f8:72:49:d9:30:b6:57:33:66:6c:a0: dc:89:6a:fd:f8:0a:6a:5c:10:c3:9e:51:0a:dd:2a:e7:dd:27: dc:18:7d:12:ab:f2:61:f5:2e:bf:73:9f:2f:2e:3e:e8:8f:fe: d3:91:cf:4c:15:d0:d6:6d:b0:2b:a5:60:d1:b0:bb:63:a0:91: 48:25:85:97:70:69:e8:21:8d:bb:aa:f4:df:89:cd:27:f4:41: b5:8b:75:51:b2:cf:50:da:ff:6e:74:6b:48:f9:6d:96:06:cc: a1:55:a7:35:a3:8f:78:1c:a6:4b:11:aa:c6:d5:c9:19:bf:09: f7:14:8c:8e:cd:7e:17:1d:05:0f:f7:13:e3:96:04:60:f6:e6: af:c6:c9:f3:5b:db:2b:07:6b:a1:de:96:1c:b6:60:47:24:95: 37:a3:12:8b:a1:b9:e7:2a:0d:a3:8d:56:87:ac:7d:37:3f:2a: b3:ef:2c:c5:2d:43:1f:fe:af:55:0a:ad:d6:7b:e8:a4:f0:b0: e4:c4:e2:65:ec:b5:45:85:a1:26:ac:4b:ee:8a:21:02:e9:ff: ec:38:7d:09 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKm7Y4dBKDyc0IHMkSSJfWuS97EwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzA3MDIxMzUxMjFaFw0yNDA2MzAxMzU2MjFaMDMxMTAvBgNV BAMTKDRCODZGQ0I3QzUwOTkwODFCMTY5N0IxQjhCMERBQ0FGQzhDRUYwMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdA4TBSlKVVhAJTbB3u8qd872Y 9b4ArYkmJIg+BbV/1+AdPyDXhhTGTAo8XBVYRrSdEj1YbKFvVzrSjIBb+aKDKU2c EztASPDLDv9819c1KDulf2BNk307VUGr+Ax8KOXxRFwkj6J62nORli/vw+CZeIzO 4CvIUlh35SydHJxRHJMqgQkjBKagQKzG+x+ib3ejI3U2zqbsa2FkfUCh7e3D6l3l ZG3srePqPyj4mW30cEHMNjxX/8tttnB/zI80mMXaapk5nlRDtEfIuYs2LpBSQB93 GKdJ7qycTLmmvWkwdu56eO5kzSl48602pPqhdZy/149FIBIIX5KYU1Zd9DXfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUS4b8t8UJkIGxaXsbiw2sr8jO8CYwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA8w DQYJKoZIhvcNAQELBQADggEBAD0Lo+0BImpxF09F05bnydWfGWmC8kLiqOqLdaNu jw39MdF16nW7g1PedWD4cknZMLZXM2ZsoNyJav34CmpcEMOeUQrdKufdJ9wYfRKr 8mH1Lr9zny8uPuiP/tORz0wV0NZtsCulYNGwu2OgkUglhZdwaeghjbuq9N+JzSf0 QbWLdVGyz1Da/250a0j5bZYGzKFVpzWjj3gcpksRqsbVyRm/CfcUjI7NfhcdBQ/3 E+OWBGD25q/GyfNb2ysHa6Helhy2YEcklTejEouhuecqDaONVoesfTc/KrPvLMUt Qx/+r1UKrdZ76KTwsOTE4mXstUWFoSasS+6KIQLp/+w4fQk= -----END CERTIFICATE-----Generated at Thu May 2 01:04:45 2024 by rpki-client on console-fra.rpki-client.org