$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: nCapqLn+88laoYp4e0fIqY5gmEFlJ/7LshFsSs2aGUY= Subject key identifier: 73:36:30:CA:BA:F5:07:32:73:B3:3E:FE:34:D2:F8:70:A2:18:08:3D Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1E8A51D1572E3F977DDA7A80800F33425A906140 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:01 +0000 ROA not before: Sun 02 Jun 2024 13:55:01 +0000 ROA not after: Sun 01 Jun 2025 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:8a:51:d1:57:2e:3f:97:7d:da:7a:80:80:0f:33:42:5a:90:61:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:01 2024 GMT Not After : Jun 1 14:00:01 2025 GMT Subject: CN=733630CABAF5073273B33EFE34D2F870A218083D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a4:d9:a3:51:74:e5:d8:5b:8d:5d:3c:c7:c8: 9d:66:f1:7d:0d:61:2e:1c:ff:15:a0:e7:1f:a2:c4: b2:e1:43:97:42:59:64:a1:93:35:c7:17:9d:81:4e: ba:42:3f:d3:ba:12:2c:73:b9:8f:79:0d:93:df:95: a9:ef:f8:84:b3:9c:a7:b0:60:6e:76:e8:50:27:ed: 95:a2:08:b7:fe:a2:0c:0f:ae:57:f2:89:88:ea:9c: 37:60:75:30:21:c5:1c:3b:99:b7:9a:20:23:47:b3: 79:84:c3:49:bf:76:8d:27:ec:61:30:67:0d:d5:92: c2:54:32:0c:2d:cf:47:56:b5:12:69:b8:3f:36:c9: 16:bf:04:c5:1d:38:dd:71:98:c0:cb:e3:1b:78:8a: d1:b1:14:ba:73:10:9e:44:9d:af:b2:85:6b:8e:fc: 2f:2b:52:20:8b:0f:69:b9:c6:e5:b5:b1:b0:bf:dd: 96:12:45:ca:28:3f:09:38:a3:10:54:f7:4b:5a:f8: fb:c3:fd:be:c7:ee:ad:57:30:d0:2c:c2:22:a3:c0: 0c:12:5b:e5:3e:42:36:fd:92:9a:8f:6c:df:88:cd: 24:a6:43:a3:36:96:b5:11:69:f0:c9:03:59:20:57: 70:ff:79:cd:fa:f7:67:1f:b6:37:63:06:38:70:73: fa:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:36:30:CA:BA:F5:07:32:73:B3:3E:FE:34:D2:F8:70:A2:18:08:3D X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:a::/48 Signature Algorithm: sha256WithRSAEncryption 0e:f8:48:7a:d7:b8:13:57:57:32:df:b4:b5:7b:42:6e:c2:3c: 81:51:15:db:33:bb:4d:75:21:43:31:6a:c1:43:5f:79:eb:9a: 09:97:af:a0:b8:19:dd:dc:45:94:ad:ca:42:05:10:f5:64:89: 78:34:37:25:29:af:f9:fe:73:a5:bd:57:5d:06:d6:69:00:6b: ba:d7:e5:21:32:08:67:66:12:2b:b5:7b:db:13:39:c7:a3:9e: c3:02:3f:c9:a4:42:07:ff:17:32:dd:4a:49:a4:9d:76:19:7a: cb:6b:e3:19:7b:cb:3d:e0:cc:49:d4:2f:9b:15:ce:4e:41:74: fb:01:a0:0f:9d:1c:83:0f:96:62:94:0a:30:31:a2:c0:52:d4: ae:1c:18:78:97:0a:11:74:ff:6f:e3:a6:c2:6f:2a:0e:50:8b: 4c:25:e8:f0:96:bc:21:e0:65:7c:d9:42:8a:3d:75:75:35:ef: 55:4b:8d:93:01:40:0d:c8:31:39:4e:3e:c0:0c:c1:97:1c:12: 8d:88:46:d7:45:78:3b:e1:9e:a3:80:3e:eb:3c:c2:5d:54:87: f9:bb:c4:14:e8:02:32:fa:c4:37:9f:4d:39:25:c3:ee:4e:85: de:34:38:74:56:c3:d5:68:da:aa:35:9b:4f:ae:28:d4:37:f6: 81:cd:6a:44 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHopR0VcuP5d92nqAgA8zQlqQYUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDFaFw0yNTA2MDExNDAwMDFaMDMxMTAvBgNV BAMTKDczMzYzMENBQkFGNTA3MzI3M0IzM0VGRTM0RDJGODcwQTIxODA4M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbpNmjUXTl2FuNXTzHyJ1m8X0N YS4c/xWg5x+ixLLhQ5dCWWShkzXHF52BTrpCP9O6EixzuY95DZPflanv+ISznKew YG526FAn7ZWiCLf+ogwPrlfyiYjqnDdgdTAhxRw7mbeaICNHs3mEw0m/do0n7GEw Zw3VksJUMgwtz0dWtRJpuD82yRa/BMUdON1xmMDL4xt4itGxFLpzEJ5Ena+yhWuO /C8rUiCLD2m5xuW1sbC/3ZYSRcooPwk4oxBU90ta+PvD/b7H7q1XMNAswiKjwAwS W+U+Qjb9kpqPbN+IzSSmQ6M2lrURafDJA1kgV3D/ec3692cftjdjBjhwc/qDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUczYwyrr1BzJzsz7+NNL4cKIYCD0wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAow DQYJKoZIhvcNAQELBQADggEBAA74SHrXuBNXVzLftLV7Qm7CPIFRFdszu011IUMx asFDX3nrmgmXr6C4Gd3cRZStykIFEPVkiXg0NyUpr/n+c6W9V10G1mkAa7rX5SEy CGdmEiu1e9sTOcejnsMCP8mkQgf/FzLdSkmknXYZestr4xl7yz3gzEnUL5sVzk5B dPsBoA+dHIMPlmKUCjAxosBS1K4cGHiXChF0/2/jpsJvKg5Qi0wl6PCWvCHgZXzZ Qoo9dXU171VLjZMBQA3IMTlOPsAMwZccEo2IRtdFeDvhnqOAPus8wl1Uh/m7xBTo AjL6xDefTTklw+5Ohd40OHRWw9Vo2qo1m0+uKNQ39oHNakQ= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org