$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 7JJcA/t7IA3U6bDcOiU4ZdcGLgDWxPGL7/pGq9ls6a8= Subject key identifier: 4A:ED:27:1A:DD:3D:22:33:4D:33:64:26:77:84:36:FE:F0:7F:00:AC Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 6FA3A834157B43DF3C8660CE6A3E78D736D44DB8 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:02 +0000 ROA not before: Sun 02 Jun 2024 13:55:02 +0000 ROA not after: Sun 01 Jun 2025 14:00:02 +0000 asID: 140413 IP address blocks: 2406:13c0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a3:a8:34:15:7b:43:df:3c:86:60:ce:6a:3e:78:d7:36:d4:4d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:02 2024 GMT Not After : Jun 1 14:00:02 2025 GMT Subject: CN=4AED271ADD3D22334D336426778436FEF07F00AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e1:ed:8a:c0:52:2f:d5:34:23:b0:3c:1b:39: fa:c6:13:a7:fb:c0:a0:1d:61:f2:d6:c9:07:b6:37: c9:c6:2c:9c:fb:0e:9c:78:5a:61:e8:93:3e:3d:07: e0:b2:8f:87:29:de:5c:30:5c:22:40:1f:cd:4c:d6: 87:4e:bd:90:02:b9:c4:62:4e:b3:10:26:f1:a6:87: 2e:25:7a:5f:6f:df:e9:85:be:b9:61:e2:3f:d1:dd: b4:da:9e:b6:59:47:eb:42:fa:c3:4a:33:47:38:e7: 63:92:17:fe:f4:c0:3c:e6:f3:74:16:d9:d0:c6:cf: 77:61:77:21:85:57:7f:82:62:94:e6:d1:2f:99:0e: a6:54:71:c9:97:d8:1a:ea:40:d9:dc:4e:7f:8a:92: 53:65:d0:76:c3:37:8e:b1:0a:e8:e2:97:99:d4:c4: 27:eb:9a:64:69:49:62:71:8e:92:44:a7:7d:10:ad: e8:46:70:f9:84:31:65:54:db:84:6f:14:5b:26:49: 04:e6:5d:b8:c9:27:66:31:52:1e:b7:7f:f8:23:a3: e0:51:d2:b8:28:2e:be:0d:1b:a6:39:08:a6:87:5d: 5f:2a:5d:f1:2d:f8:ea:1b:2a:cf:42:17:01:9e:be: 6d:d1:f2:2f:c5:3a:be:5d:a7:c6:5b:c0:a1:9f:0d: 30:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:ED:27:1A:DD:3D:22:33:4D:33:64:26:77:84:36:FE:F0:7F:00:AC X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:7::/48 Signature Algorithm: sha256WithRSAEncryption 18:92:f3:dd:f3:34:89:7c:fc:9d:36:73:3c:25:66:d2:8c:21: b9:b9:2c:89:c4:4f:f7:5a:25:cc:62:89:a2:b5:c1:01:49:dc: 46:83:3a:5c:ea:0c:69:e2:1b:75:51:01:dd:f9:52:3d:28:ce: e9:94:b9:b5:e9:05:83:96:f3:fe:86:b3:20:82:1b:ad:d8:53: af:98:ab:77:4d:b3:bb:00:7d:7d:9e:06:da:62:3d:3a:aa:d8: 70:82:52:cb:de:6a:e1:38:f8:89:2b:ba:51:3e:fb:1b:99:81: 75:a0:93:fe:08:f0:48:a0:42:bb:bf:a0:9e:5c:9d:49:a2:f7: 56:00:3b:3a:18:bd:b6:a0:10:89:b4:04:bb:65:da:b5:47:7b: e9:91:70:4f:14:86:38:e5:58:ff:2f:8c:b3:6a:cc:43:57:2f: bb:37:5e:e9:89:bf:3d:89:70:fa:ef:43:2c:a3:41:e3:3c:f2: 07:ce:b5:d1:77:98:b7:c5:4e:48:9b:5c:27:18:dd:82:d7:bd: 10:dd:ee:ae:7a:1a:e5:c9:8c:92:33:a6:31:39:2c:e2:1f:87: 39:18:ce:ac:2b:01:25:dc:80:7b:eb:b4:bd:92:89:01:0e:7f: b1:39:4f:65:d7:2b:5b:56:69:2a:35:6f:db:38:be:87:1f:49: f4:35:f6:fa -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUb6OoNBV7Q988hmDOaj541zbUTbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDJaFw0yNTA2MDExNDAwMDJaMDMxMTAvBgNV BAMTKDRBRUQyNzFBREQzRDIyMzM0RDMzNjQyNjc3ODQzNkZFRjA3RjAwQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ4e2KwFIv1TQjsDwbOfrGE6f7 wKAdYfLWyQe2N8nGLJz7Dpx4WmHokz49B+Cyj4cp3lwwXCJAH81M1odOvZACucRi TrMQJvGmhy4lel9v3+mFvrlh4j/R3bTanrZZR+tC+sNKM0c452OSF/70wDzm83QW 2dDGz3dhdyGFV3+CYpTm0S+ZDqZUccmX2BrqQNncTn+KklNl0HbDN46xCujil5nU xCfrmmRpSWJxjpJEp30QrehGcPmEMWVU24RvFFsmSQTmXbjJJ2YxUh63f/gjo+BR 0rgoLr4NG6Y5CKaHXV8qXfEt+OobKs9CFwGevm3R8i/FOr5dp8ZbwKGfDTCDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSu0nGt09IjNNM2Qmd4Q2/vB/AKwwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAcw DQYJKoZIhvcNAQELBQADggEBABiS893zNIl8/J02czwlZtKMIbm5LInET/daJcxi iaK1wQFJ3EaDOlzqDGniG3VRAd35Uj0ozumUubXpBYOW8/6GsyCCG63YU6+Yq3dN s7sAfX2eBtpiPTqq2HCCUsveauE4+IkrulE++xuZgXWgk/4I8EigQru/oJ5cnUmi 91YAOzoYvbagEIm0BLtl2rVHe+mRcE8UhjjlWP8vjLNqzENXL7s3XumJvz2JcPrv QyyjQeM88gfOtdF3mLfFTkibXCcY3YLXvRDd7q56GuXJjJIzpjE5LOIfhzkYzqwr ASXcgHvrtL2SiQEOf7E5T2XXK1tWaSo1b9s4vocfSfQ19vo= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org