$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: yfK5tcxLmkBKPrtVwqrZP7HQWXIVQHCnpXKuGTbT4MM= Subject key identifier: CC:69:F9:B6:A5:A2:F1:DE:5B:8E:AD:C6:11:E4:E0:26:03:89:70:BE Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 2FFDACCDBA5369128AA02C975D4756646E61F686 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:01 +0000 ROA not before: Sun 02 Jun 2024 13:55:01 +0000 ROA not after: Sun 01 Jun 2025 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:fd:ac:cd:ba:53:69:12:8a:a0:2c:97:5d:47:56:64:6e:61:f6:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:01 2024 GMT Not After : Jun 1 14:00:01 2025 GMT Subject: CN=CC69F9B6A5A2F1DE5B8EADC611E4E026038970BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:c8:55:a0:10:c8:8f:70:4d:94:00:7d:65: ef:4d:b1:e4:83:bc:0b:c7:4f:cd:66:26:61:27:de: 76:93:cf:65:e8:e9:d8:f9:62:3a:47:1a:85:ac:b4: 5c:02:1a:1e:c5:c4:53:5a:a0:ae:05:b2:00:f7:51: 6d:17:6e:6f:08:64:9c:b0:65:7d:9d:da:ca:c6:21: 69:0b:32:e9:b3:0c:ed:e0:9b:e6:e4:77:e3:a3:d7: 9c:8e:46:96:a9:2c:df:2c:c3:70:a4:43:9b:d1:b9: 79:09:00:f9:52:94:a5:5a:6d:a4:d6:94:11:8c:5b: dc:b3:ab:76:9d:29:a9:1c:98:4f:e7:fe:3d:75:7e: b6:99:eb:72:6e:9a:3c:83:c8:7b:27:21:1a:70:0a: 3f:eb:ba:97:a0:f0:7a:31:ad:8d:dc:08:21:77:c9: 47:06:20:11:66:16:13:ad:cf:af:0a:b1:9a:69:45: 90:d0:8f:c0:5a:bd:16:bc:6d:96:cb:a2:06:24:2b: 20:12:9e:5d:0d:74:de:26:74:86:9d:96:76:50:13: 11:49:94:1c:a1:72:3d:0f:16:d6:b3:16:1e:70:4f: a9:84:31:6d:01:43:cd:39:3f:37:fe:05:a1:60:95: e0:c8:7b:a8:2e:30:84:ef:08:65:1a:b5:cc:d4:d0: 11:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:69:F9:B6:A5:A2:F1:DE:5B:8E:AD:C6:11:E4:E0:26:03:89:70:BE X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 3d:93:63:b4:8e:22:cf:7e:e1:44:25:a9:08:18:f8:a6:1c:04: f8:f2:75:06:4d:9a:49:f0:b4:0b:87:62:81:c2:72:9e:01:70: 40:12:93:41:2a:07:6e:d2:a9:2d:b6:92:ad:a8:a1:5c:6b:70: 91:15:05:4b:37:9e:e7:21:68:d4:bb:17:3e:99:69:31:f8:6c: f9:f7:cc:f2:c6:2d:98:60:b6:f6:18:c8:81:83:b5:21:29:16: af:5d:60:9f:0b:69:ca:e3:74:a2:44:62:a1:51:f0:c7:70:f9: 5c:f8:ea:eb:76:29:7e:4e:29:5b:14:3e:ba:ce:58:be:cf:f8: af:ec:cd:3d:d0:5a:70:87:5b:b5:27:8b:6d:68:1c:62:87:9b: 89:84:97:14:24:b9:c5:b3:55:cc:f2:f4:b3:ad:39:7a:66:72: f8:60:5c:b1:a7:4d:80:4a:47:d0:8c:ee:70:e7:71:6b:35:1f: 1c:60:60:fd:43:09:7a:89:d1:2e:b8:28:c1:7c:6f:4b:f1:aa: 8b:ee:b4:92:4a:3a:03:de:f3:1f:7b:5b:b4:11:15:3f:8f:84: 77:86:da:03:04:74:44:fc:75:65:ad:98:16:8f:73:7c:16:97: b1:a4:f7:8d:ee:c3:74:ce:29:95:26:35:84:3d:74:74:96:15: aa:09:00:a4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUL/2szbpTaRKKoCyXXUdWZG5h9oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDFaFw0yNTA2MDExNDAwMDFaMDMxMTAvBgNV BAMTKENDNjlGOUI2QTVBMkYxREU1QjhFQURDNjExRTRFMDI2MDM4OTcwQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMo8hVoBDIj3BNlAB9Ze9NseSD vAvHT81mJmEn3naTz2Xo6dj5YjpHGoWstFwCGh7FxFNaoK4FsgD3UW0Xbm8IZJyw ZX2d2srGIWkLMumzDO3gm+bkd+Oj15yORpapLN8sw3CkQ5vRuXkJAPlSlKVabaTW lBGMW9yzq3adKakcmE/n/j11fraZ63JumjyDyHsnIRpwCj/rupeg8HoxrY3cCCF3 yUcGIBFmFhOtz68KsZppRZDQj8BavRa8bZbLogYkKyASnl0NdN4mdIadlnZQExFJ lByhcj0PFtazFh5wT6mEMW0BQ805Pzf+BaFgleDIe6guMITvCGUatczU0BEZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUzGn5tqWi8d5bjq3GEeTgJgOJcL4wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAMw DQYJKoZIhvcNAQELBQADggEBAD2TY7SOIs9+4UQlqQgY+KYcBPjydQZNmknwtAuH YoHCcp4BcEASk0EqB27SqS22kq2ooVxrcJEVBUs3nuchaNS7Fz6ZaTH4bPn3zPLG LZhgtvYYyIGDtSEpFq9dYJ8LacrjdKJEYqFR8Mdw+Vz46ut2KX5OKVsUPrrOWL7P +K/szT3QWnCHW7Uni21oHGKHm4mElxQkucWzVczy9LOtOXpmcvhgXLGnTYBKR9CM 7nDncWs1HxxgYP1DCXqJ0S64KMF8b0vxqovutJJKOgPe8x97W7QRFT+PhHeG2gME dET8dWWtmBaPc3wWl7Gk943uw3TOKZUmNYQ9dHSWFaoJAKQ= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org