$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: mFQ1mBHNI04ZEaIOkH6b0gd1WCm29InFIUVZaE4zcig= Subject key identifier: 2A:47:99:E4:A7:70:D6:6F:79:80:5F:BA:48:03:30:14:6E:5B:75:DE Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 2F686822EF995E515B21FB36A721D71B40AA4AC4 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:02 +0000 ROA not before: Sun 02 Jun 2024 13:55:02 +0000 ROA not after: Sun 01 Jun 2025 14:00:02 +0000 asID: 140413 IP address blocks: 2406:13c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:68:68:22:ef:99:5e:51:5b:21:fb:36:a7:21:d7:1b:40:aa:4a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:02 2024 GMT Not After : Jun 1 14:00:02 2025 GMT Subject: CN=2A4799E4A770D66F79805FBA480330146E5B75DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a7:e7:9e:47:14:6a:e7:c4:27:7c:b6:d4:61: 25:eb:73:21:fa:98:b7:72:13:e1:d2:6e:8c:32:49: ee:6f:47:a4:e3:ec:d5:13:01:2c:c7:da:89:16:83: 5b:c1:c0:c5:05:a7:ef:21:24:b3:32:7d:51:1d:7b: 61:b7:1c:19:46:f5:1c:8c:c5:bf:42:7b:5a:4f:81: 0e:b1:a3:3e:1a:fb:ce:ca:f8:db:6c:da:98:98:36: 7e:8a:6e:6f:1b:be:f7:09:c7:71:8f:f6:d4:a5:7b: ef:9b:c2:26:76:54:d2:3c:72:7d:a1:de:ad:96:41: da:f7:ae:e3:fc:e8:6d:37:c9:3a:20:e0:ed:b4:6d: 96:5f:fb:4e:7a:f7:0c:e0:a2:16:07:5b:13:3b:60: 32:70:49:af:c6:7a:fc:b7:cd:a0:43:d7:08:18:66: 00:71:00:8c:78:46:1d:5f:46:3d:6b:24:5e:3c:04: 54:fd:ac:ce:19:04:63:c4:b6:c1:bc:72:91:97:93: 90:80:af:54:dd:23:af:0a:37:1e:57:a4:8f:ff:04: be:d4:84:78:97:1a:7e:21:a8:d9:eb:14:1b:7c:4e: 52:4d:b0:c7:c4:84:b6:a5:e6:47:d3:da:9f:79:9c: 89:bd:20:e8:5c:85:b7:bc:d5:56:dd:9d:96:a5:94: 33:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:47:99:E4:A7:70:D6:6F:79:80:5F:BA:48:03:30:14:6E:5B:75:DE X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:8::/48 Signature Algorithm: sha256WithRSAEncryption 1e:9e:9c:71:15:fa:54:42:75:ba:0a:e8:b2:c7:28:bc:ab:84: 84:c8:80:26:9b:ba:dc:71:8d:04:ea:65:fa:68:eb:95:43:91: 22:df:b8:d6:92:6b:3f:c1:1b:ba:98:48:11:cd:05:03:5f:d5: 0e:98:14:33:e6:6b:e2:4c:ec:ab:98:bf:5f:fd:2a:3e:d1:ab: ba:98:6f:33:a3:3f:7b:af:3b:f8:6b:15:47:d3:7b:61:2c:b1: 7e:b1:b9:73:fd:26:1d:f6:11:39:a9:6d:f4:1c:ba:04:38:74: 33:27:fd:11:31:86:86:0f:b2:3e:30:d6:b8:41:47:25:15:45: 93:80:0b:24:cf:7f:7e:8d:cb:06:7d:34:c8:83:52:28:67:f5: c8:6e:55:3e:ac:7f:65:89:60:cf:d5:d5:34:20:4e:13:48:35: ec:8f:8f:88:a2:fc:c3:50:6c:86:32:4e:f8:0e:d9:18:19:1d: 21:5f:55:6c:69:cb:7e:4e:b8:f9:36:bd:79:94:7e:42:49:2d: bd:86:f8:b5:84:5c:4d:bd:60:e9:9d:61:68:e8:27:2e:ed:97: ec:a5:89:8e:e3:41:f8:c7:96:f3:fe:4d:42:10:3b:7b:b6:70: cb:99:a6:ff:7f:9b:8d:15:3b:9b:c0:1b:0a:5c:00:f8:52:c8: e9:c8:ce:6d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUL2hoIu+ZXlFbIfs2pyHXG0CqSsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDJaFw0yNTA2MDExNDAwMDJaMDMxMTAvBgNV BAMTKDJBNDc5OUU0QTc3MEQ2NkY3OTgwNUZCQTQ4MDMzMDE0NkU1Qjc1REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLp+eeRxRq58QnfLbUYSXrcyH6 mLdyE+HSbowySe5vR6Tj7NUTASzH2okWg1vBwMUFp+8hJLMyfVEde2G3HBlG9RyM xb9Ce1pPgQ6xoz4a+87K+Nts2piYNn6Kbm8bvvcJx3GP9tSle++bwiZ2VNI8cn2h 3q2WQdr3ruP86G03yTog4O20bZZf+0569wzgohYHWxM7YDJwSa/Gevy3zaBD1wgY ZgBxAIx4Rh1fRj1rJF48BFT9rM4ZBGPEtsG8cpGXk5CAr1TdI68KNx5XpI//BL7U hHiXGn4hqNnrFBt8TlJNsMfEhLal5kfT2p95nIm9IOhchbe81VbdnZallDMrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKkeZ5Kdw1m95gF+6SAMwFG5bdd4wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAgw DQYJKoZIhvcNAQELBQADggEBAB6enHEV+lRCdboK6LLHKLyrhITIgCabutxxjQTq Zfpo65VDkSLfuNaSaz/BG7qYSBHNBQNf1Q6YFDPma+JM7KuYv1/9Kj7Rq7qYbzOj P3uvO/hrFUfTe2EssX6xuXP9Jh32ETmpbfQcugQ4dDMn/RExhoYPsj4w1rhBRyUV RZOACyTPf36NywZ9NMiDUihn9chuVT6sf2WJYM/V1TQgThNINeyPj4ii/MNQbIYy TvgO2RgZHSFfVWxpy35OuPk2vXmUfkJJLb2G+LWEXE29YOmdYWjoJy7tl+yliY7j QfjHlvP+TUIQO3u2cMuZpv9/m40VO5vAGwpcAPhSyOnIzm0= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org