$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: Ut/52wi57gjJuXVUf1yex9swzCSGXr48bg9Ca64qyIw= Subject key identifier: DA:AF:C8:CA:3C:D6:9D:D1:62:B4:08:89:14:6D:9A:BD:C1:96:D7:F3 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 16654379E624EFEB09FF08E9E251950C840211C6 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:01 +0000 ROA not before: Sun 02 Jun 2024 13:55:01 +0000 ROA not after: Sun 01 Jun 2025 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:65:43:79:e6:24:ef:eb:09:ff:08:e9:e2:51:95:0c:84:02:11:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:01 2024 GMT Not After : Jun 1 14:00:01 2025 GMT Subject: CN=DAAFC8CA3CD69DD162B40889146D9ABDC196D7F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:b4:3d:5e:ff:22:e8:91:26:14:3c:e4:17: 2f:82:93:33:b9:4b:9a:d5:02:7f:03:ca:55:12:81: 99:bd:c3:4c:12:7a:a4:28:9f:50:38:ad:2c:24:90: c6:e8:26:8e:d4:ad:ba:6f:90:40:13:cf:21:aa:0e: ee:dd:49:d6:f9:12:a9:08:d0:a5:8b:62:0d:3c:a3: 8a:a2:b9:e0:4d:30:07:dd:f7:26:0e:ab:67:88:fb: 42:31:7c:16:68:47:bc:20:43:e1:0d:43:2d:96:0c: 44:ba:74:88:0b:1c:d2:ca:ba:0d:ad:df:f7:ad:8e: 7c:61:5d:1d:fa:80:05:a3:d6:f4:7e:47:14:8e:ad: 9f:cd:b8:09:93:10:42:55:08:27:50:63:e0:ea:e9: 11:6e:e3:24:a5:17:4a:1a:93:da:50:6b:d9:bb:40: 29:09:91:5e:ce:e3:0b:b9:ad:ae:98:5d:83:5c:f1: 1c:b6:65:15:f6:6e:91:a7:df:5c:a9:90:af:0b:60: 48:36:b5:3b:23:44:eb:74:bb:a7:ee:a8:8d:cb:76: f5:c8:56:97:13:80:a5:fe:7f:5f:e4:1e:d2:62:ef: 1a:f4:f1:2f:e5:8b:f4:1b:30:54:99:3a:b7:29:dd: cc:9e:b3:7e:05:78:c0:a5:a8:f2:72:52:48:67:4e: 32:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AF:C8:CA:3C:D6:9D:D1:62:B4:08:89:14:6D:9A:BD:C1:96:D7:F3 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 18:46:d5:2a:b3:e0:fa:f4:8c:84:46:58:3d:0b:1a:87:dc:2d: 72:b6:dc:df:d5:e3:9f:77:c0:d6:6b:c4:38:5e:04:c4:1c:90: ce:8e:c1:e5:7a:dd:c1:54:a9:2d:fa:34:f4:c6:ae:64:2a:76: f0:fb:87:5e:1d:0d:bf:9b:0c:cf:77:17:42:26:c1:9d:0a:3a: fa:61:9c:76:f0:a0:45:51:71:b6:9e:a3:72:62:8c:5f:89:0c: 0e:c0:81:0f:84:07:11:cf:85:f2:94:da:59:f2:40:56:47:81: 06:6d:85:e5:cc:4d:14:9f:7e:e0:e3:02:75:7b:df:b6:8a:7c: 45:ef:73:3b:3a:27:b5:17:7a:92:14:c4:54:20:d0:4e:8d:c2: e2:f7:4f:53:44:5b:1b:ba:35:ef:a4:0a:c5:54:92:e7:be:ec: 9f:39:36:e9:49:40:1f:bb:67:e7:09:8d:44:05:fb:ce:f9:f8: 39:81:ba:17:e8:37:cf:d0:55:be:5e:ee:d8:fe:a6:8b:4b:5b: cc:80:ef:59:2f:0c:34:6a:c8:be:52:e2:cc:7b:4a:dc:11:f5: 9a:61:4b:dc:db:1f:94:f7:91:05:7c:5a:fe:a8:87:c7:90:9f: 34:86:bb:07:2c:28:31:4c:a8:92:2e:cb:25:08:06:5d:81:15: d9:1e:4a:45 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFmVDeeYk7+sJ/wjp4lGVDIQCEcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDFaFw0yNTA2MDExNDAwMDFaMDMxMTAvBgNV BAMTKERBQUZDOENBM0NENjlERDE2MkI0MDg4OTE0NkQ5QUJEQzE5NkQ3RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvjLQ9Xv8i6JEmFDzkFy+CkzO5 S5rVAn8DylUSgZm9w0wSeqQon1A4rSwkkMboJo7UrbpvkEATzyGqDu7dSdb5EqkI 0KWLYg08o4qiueBNMAfd9yYOq2eI+0IxfBZoR7wgQ+ENQy2WDES6dIgLHNLKug2t 3/etjnxhXR36gAWj1vR+RxSOrZ/NuAmTEEJVCCdQY+Dq6RFu4ySlF0oak9pQa9m7 QCkJkV7O4wu5ra6YXYNc8Ry2ZRX2bpGn31ypkK8LYEg2tTsjROt0u6fuqI3LdvXI VpcTgKX+f1/kHtJi7xr08S/li/QbMFSZOrcp3cyes34FeMClqPJyUkhnTjJdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2q/IyjzWndFitAiJFG2avcGW1/MwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAQw DQYJKoZIhvcNAQELBQADggEBABhG1Sqz4Pr0jIRGWD0LGofcLXK23N/V4593wNZr xDheBMQckM6OweV63cFUqS36NPTGrmQqdvD7h14dDb+bDM93F0ImwZ0KOvphnHbw oEVRcbaeo3JijF+JDA7AgQ+EBxHPhfKU2lnyQFZHgQZtheXMTRSffuDjAnV737aK fEXvczs6J7UXepIUxFQg0E6NwuL3T1NEWxu6Ne+kCsVUkue+7J85NulJQB+7Z+cJ jUQF+875+DmBuhfoN8/QVb5e7tj+potLW8yA71kvDDRqyL5S4sx7StwR9ZphS9zb H5T3kQV8Wv6oh8eQnzSGuwcsKDFMqJIuyyUIBl2BFdkeSkU= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org