$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 1xyy7px1slA9MRpW83PzUFHZRDnoX7A7PRfa4mCzi4Q= Subject key identifier: D1:8E:1E:4E:6D:6D:31:87:03:79:46:DB:25:DB:4F:9C:B7:64:48:60 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 3C4B61730CFBE6588AA9879248D38AC914EFD738 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:02 +0000 ROA not before: Sun 02 Jun 2024 13:55:02 +0000 ROA not after: Sun 01 Jun 2025 14:00:02 +0000 asID: 140413 IP address blocks: 2406:13c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:4b:61:73:0c:fb:e6:58:8a:a9:87:92:48:d3:8a:c9:14:ef:d7:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:02 2024 GMT Not After : Jun 1 14:00:02 2025 GMT Subject: CN=D18E1E4E6D6D3187037946DB25DB4F9CB7644860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:83:f7:cb:16:07:03:8b:74:a4:fc:c2:89:49: eb:4e:0d:16:cc:d4:88:cb:4d:e6:57:7e:8e:e3:30: a0:14:72:59:79:f2:84:da:ee:be:cd:24:0b:30:68: de:6c:6d:24:13:22:d4:f6:13:05:82:cb:2a:a8:31: 33:8c:89:a5:8b:14:26:64:e9:e4:87:25:9c:92:e8: 61:f9:bb:92:0e:cf:cf:8b:7e:36:64:eb:a2:8a:51: ba:65:f1:39:7c:d2:f5:90:ba:7d:59:78:52:32:4f: 15:b7:c2:c5:15:fe:03:4e:68:c0:0a:ab:1b:50:ee: 18:f2:d9:15:36:cd:41:5d:21:5d:61:7a:b2:1a:78: 7d:5a:fc:5d:02:03:06:ca:bc:28:b0:5b:8f:f2:17: 23:f8:be:05:a6:59:ee:ee:82:10:eb:c9:17:e0:1b: 7f:8d:09:76:d9:f2:0b:a7:62:31:66:7b:40:bb:6e: fb:b7:8f:57:db:0f:de:40:5c:c7:a8:bd:a1:0b:85: 77:3f:43:1d:ea:87:93:0e:64:f4:83:ca:89:f8:c1: bd:21:0d:20:66:83:66:76:d4:35:f3:69:b6:94:a2: 68:14:2b:cf:61:d9:58:d8:b9:d9:c0:3c:f7:b6:bf: 9a:a2:79:89:5d:c7:c3:0e:46:ee:e8:6f:ad:c0:7a: 5a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:8E:1E:4E:6D:6D:31:87:03:79:46:DB:25:DB:4F:9C:B7:64:48:60 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:6::/48 Signature Algorithm: sha256WithRSAEncryption 63:c0:52:26:9c:80:c9:cf:84:2b:12:04:9e:6c:50:a3:93:88: e2:31:5f:7c:71:ee:0c:54:73:42:86:08:01:31:f7:64:54:78: c8:5f:6c:c1:58:92:86:f8:7f:36:72:3a:67:4d:71:0d:50:d6: 98:a9:9f:b7:8a:5e:54:b7:2c:75:c5:17:09:f7:51:24:fc:39: d7:59:f2:73:89:b1:6a:da:0f:f9:da:bc:cd:48:7b:26:32:c5: 56:75:cb:01:59:b6:dc:8e:ea:90:eb:f7:e6:d6:f4:5f:9b:7d: 03:95:75:38:e7:f7:12:9d:b0:03:78:fb:44:18:73:8a:72:e7: 3c:d7:43:8c:31:a7:5e:9b:88:d5:33:97:9c:52:6f:48:3c:69: a1:7b:cc:16:8c:68:e8:c5:ee:95:bc:3c:f3:70:62:ad:2d:70: 65:f0:74:c3:b9:ac:a8:45:a0:e6:b5:db:10:8a:10:bb:c5:38: b7:fa:44:79:d3:4f:ab:b6:47:e9:2e:43:87:5c:bb:f5:b8:98: 1d:f2:e3:d5:91:86:06:61:2c:fd:09:37:6b:f1:57:43:6c:c0: 62:c8:35:fa:ea:f3:2f:54:30:19:5d:06:dc:93:c4:50:4b:6a: 35:75:11:f5:23:38:29:f2:0b:5f:2b:4f:25:3d:97:10:c2:0a: a8:17:f2:bb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPEthcwz75liKqYeSSNOKyRTv1zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDJaFw0yNTA2MDExNDAwMDJaMDMxMTAvBgNV BAMTKEQxOEUxRTRFNkQ2RDMxODcwMzc5NDZEQjI1REI0RjlDQjc2NDQ4NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDg/fLFgcDi3Sk/MKJSetODRbM 1IjLTeZXfo7jMKAUcll58oTa7r7NJAswaN5sbSQTItT2EwWCyyqoMTOMiaWLFCZk 6eSHJZyS6GH5u5IOz8+LfjZk66KKUbpl8Tl80vWQun1ZeFIyTxW3wsUV/gNOaMAK qxtQ7hjy2RU2zUFdIV1herIaeH1a/F0CAwbKvCiwW4/yFyP4vgWmWe7ughDryRfg G3+NCXbZ8gunYjFme0C7bvu3j1fbD95AXMeovaELhXc/Qx3qh5MOZPSDyon4wb0h DSBmg2Z21DXzabaUomgUK89h2VjYudnAPPe2v5qieYldx8MORu7ob63Aelp/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU0Y4eTm1tMYcDeUbbJdtPnLdkSGAwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAYw DQYJKoZIhvcNAQELBQADggEBAGPAUiacgMnPhCsSBJ5sUKOTiOIxX3xx7gxUc0KG CAEx92RUeMhfbMFYkob4fzZyOmdNcQ1Q1pipn7eKXlS3LHXFFwn3UST8OddZ8nOJ sWraD/navM1IeyYyxVZ1ywFZttyO6pDr9+bW9F+bfQOVdTjn9xKdsAN4+0QYc4py 5zzXQ4wxp16biNUzl5xSb0g8aaF7zBaMaOjF7pW8PPNwYq0tcGXwdMO5rKhFoOa1 2xCKELvFOLf6RHnTT6u2R+kuQ4dcu/W4mB3y49WRhgZhLP0JN2vxV0NswGLINfrq 8y9UMBldBtyTxFBLajV1EfUjOCnyC18rTyU9lxDCCqgX8rs= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org