$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 974HpixPG712gCCuzUxaPkc+yC8tVHUnzks+QnXWm0s= Subject key identifier: 73:32:E9:37:4B:EB:6F:32:85:1F:BC:F8:BE:70:48:50:F4:F8:E2:2A Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 68B2FCA6E5570F609407F46F27DB232BAE892A42 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jul 2023 13:43:37 +0000 ROA not before: Sun 02 Jul 2023 13:38:37 +0000 ROA not after: Sun 30 Jun 2024 13:43:37 +0000 asID: 140413 IP address blocks: 2406:13c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 22:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:b2:fc:a6:e5:57:0f:60:94:07:f4:6f:27:db:23:2b:ae:89:2a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jul 2 13:38:37 2023 GMT Not After : Jun 30 13:43:37 2024 GMT Subject: CN=7332E9374BEB6F32851FBCF8BE704850F4F8E22A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:55:f6:77:21:c4:8a:80:f7:38:a7:4c:fb: 72:49:83:18:ef:fb:a2:bd:51:0a:60:c9:61:a1:8a: 09:6d:a3:56:7d:33:8f:6b:da:c6:82:91:d9:9e:72: 52:88:bd:46:a0:db:54:31:e3:ed:df:95:c4:1b:eb: 97:4b:df:f6:f7:a2:c1:32:e1:75:73:13:07:b8:51: 80:d6:75:cc:99:3a:21:89:d9:e9:bc:5f:da:4a:94: c1:0d:8c:ae:38:e6:2d:2a:03:ee:8e:89:82:c8:51: 31:66:81:f1:49:21:f3:3c:e2:d4:45:31:55:64:31: 37:c3:0a:db:c7:78:92:ce:e6:62:f6:30:4d:74:33: b2:8c:85:c2:c5:96:e9:fe:3b:d1:ca:e6:37:66:0c: b4:24:16:df:41:58:48:2e:97:08:29:87:01:ce:74: 26:9d:91:cc:6b:21:f1:09:a9:07:47:10:15:c0:c5: 36:00:ad:41:28:14:ad:89:35:c3:01:a3:6d:e4:07: 02:06:21:10:35:8c:0f:f0:54:91:6f:37:71:65:7d: 15:bf:0b:03:85:95:f0:27:20:ae:d0:71:3c:02:b5: b9:43:69:b6:3c:58:6b:64:77:67:73:ac:7c:fb:b5: c2:c0:68:c5:9f:f4:77:dc:24:c2:7b:f0:6a:41:fe: 0b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:32:E9:37:4B:EB:6F:32:85:1F:BC:F8:BE:70:48:50:F4:F8:E2:2A X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0::/48 Signature Algorithm: sha256WithRSAEncryption 47:28:5c:dc:97:94:5e:13:34:0e:3d:b9:bc:9c:c6:ec:5d:a7: 57:96:7f:1d:c2:6e:0d:45:4b:d0:b9:ab:25:5d:a6:95:06:01: 26:3f:f6:18:7c:bc:95:74:8b:e8:95:6b:11:b0:0f:0d:bc:82: f5:9e:2d:27:d6:c7:f5:a3:95:7c:7a:2e:64:69:ef:29:a4:69: 8e:e5:25:9c:f3:bc:9e:4b:15:b1:18:7b:29:e0:3a:f8:eb:8b: 77:56:98:a2:9a:de:c9:62:28:c7:0e:5d:64:56:a1:75:49:89: a5:fb:f3:0c:45:cd:d7:1a:f7:db:35:f6:97:d5:6b:4f:d6:b4: c4:d5:90:60:9d:c4:35:f1:7f:98:31:ec:d1:11:67:8a:a5:ac: 5b:98:f8:ed:83:2d:df:6b:b8:12:c9:04:00:bf:bd:46:9d:1a: fa:4f:26:88:fe:18:b5:c2:60:a3:e3:d8:dd:97:5a:25:a5:3f: 6f:0f:34:2d:bd:1a:07:07:9c:79:30:41:7b:50:45:bf:d9:05: 06:ac:5a:08:ec:75:c3:55:d1:8f:b3:d8:2c:58:51:45:17:5c: 7c:ec:22:35:fb:f1:2b:b4:7c:31:4f:13:0f:6c:5d:d7:93:57: ec:1e:59:bb:f6:59:db:50:ec:b3:70:78:e4:58:5e:23:99:fa: ee:10:38:a3 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUaLL8puVXD2CUB/RvJ9sjK66JKkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yMzA3MDIxMzM4MzdaFw0yNDA2MzAxMzQzMzdaMDMxMTAvBgNV BAMTKDczMzJFOTM3NEJFQjZGMzI4NTFGQkNGOEJFNzA0ODUwRjRGOEUyMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvFX2dyHEioD3OKdM+3JJgxjv +6K9UQpgyWGhiglto1Z9M49r2saCkdmeclKIvUag21Qx4+3flcQb65dL3/b3osEy 4XVzEwe4UYDWdcyZOiGJ2em8X9pKlMENjK445i0qA+6OiYLIUTFmgfFJIfM84tRF MVVkMTfDCtvHeJLO5mL2ME10M7KMhcLFlun+O9HK5jdmDLQkFt9BWEgulwgphwHO dCadkcxrIfEJqQdHEBXAxTYArUEoFK2JNcMBo23kBwIGIRA1jA/wVJFvN3FlfRW/ CwOFlfAnIK7QcTwCtblDabY8WGtkd2dzrHz7tcLAaMWf9HfcJMJ78GpB/gsVAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUczLpN0vrbzKFH7z4vnBIUPT44iowHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGE8AAADANBgkq hkiG9w0BAQsFAAOCAQEARyhc3JeUXhM0Dj25vJzG7F2nV5Z/HcJuDUVL0LmrJV2m lQYBJj/2GHy8lXSL6JVrEbAPDbyC9Z4tJ9bH9aOVfHouZGnvKaRpjuUlnPO8nksV sRh7KeA6+OuLd1aYopreyWIoxw5dZFahdUmJpfvzDEXN1xr32zX2l9VrT9a0xNWQ YJ3ENfF/mDHs0RFniqWsW5j47YMt32u4EskEAL+9Rp0a+k8miP4YtcJgo+PY3Zda JaU/bw80Lb0aBweceTBBe1BFv9kFBqxaCOx1w1XRj7PYLFhRRRdcfOwiNfvxK7R8 MU8TD2xd15NX7B5Zu/ZZ21Dss3B45FheI5n67hA4ow== -----END CERTIFICATE-----Generated at Thu May 2 01:04:45 2024 by rpki-client on console-fra.rpki-client.org