$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: keAV8PHkt0jt/rSEgQJ6uTAUYHLdddSK90hbRHkClEM= Subject key identifier: 2C:DA:F2:18:E8:EF:CE:10:F3:11:6D:9F:6A:7F:09:5A:29:05:E3:43 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 08F6ED0ACDEA7A8A705093E8374A123F977BCF22 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:01 +0000 ROA not before: Sun 02 Jun 2024 13:55:01 +0000 ROA not after: Sun 01 Jun 2025 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f6:ed:0a:cd:ea:7a:8a:70:50:93:e8:37:4a:12:3f:97:7b:cf:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:01 2024 GMT Not After : Jun 1 14:00:01 2025 GMT Subject: CN=2CDAF218E8EFCE10F3116D9F6A7F095A2905E343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f4:24:12:ad:cc:9c:39:d0:19:56:26:cd:8a: e7:27:74:4b:06:93:ae:e4:79:b8:e4:76:73:de:1f: 57:8b:1a:bd:ae:42:13:fd:94:dd:3d:9d:f6:ae:95: 2c:a1:10:5c:bc:aa:4d:6d:3a:82:7e:c0:24:03:eb: 3d:9b:af:5b:9b:3f:c5:5b:28:be:6b:de:d6:7f:cb: 02:21:4e:65:99:8e:8e:ae:c2:69:45:1c:68:fc:8b: 9f:a5:02:b2:16:45:3c:8b:85:9d:e0:55:7f:4b:76: 4f:fa:58:45:07:da:7b:f9:b7:f6:f8:85:53:a1:ce: 75:df:88:a4:bc:24:e3:55:55:94:d8:89:f1:50:21: d3:3a:42:10:6b:0e:97:be:7e:22:db:7e:1d:2d:8a: 03:a7:60:7c:83:ed:cb:06:bd:31:c0:ce:6b:52:b2: 72:08:22:78:2e:25:88:b4:7b:ac:0b:40:ea:0b:a6: 9f:f4:6b:9c:14:af:7e:c0:9b:3e:4a:94:15:8c:e9: db:c8:b1:85:3a:a4:4e:0a:a6:02:e2:35:03:6a:02: 57:2e:dd:b2:ef:0e:66:2e:20:1b:04:49:1b:a7:3d: 24:e0:64:bc:41:1b:51:57:12:a2:e0:a2:c6:19:bb: 52:d4:70:62:db:af:31:07:43:12:6f:7c:7e:88:d4: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:DA:F2:18:E8:EF:CE:10:F3:11:6D:9F:6A:7F:09:5A:29:05:E3:43 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 1b:b3:8f:c9:db:a8:17:ef:8a:9c:70:62:42:fa:0a:72:4a:6b: 1c:59:50:12:77:e5:56:0f:3a:62:e9:fe:8f:d7:b0:b3:7b:bf: 96:b3:15:9d:36:c7:98:38:f6:13:d9:bd:4f:1b:9e:74:98:0a: 96:c2:e8:60:aa:5e:06:10:c1:eb:e6:a4:b6:be:52:df:d2:9e: 1c:b9:5b:31:92:ea:bb:db:12:a9:cb:94:bd:66:3a:26:22:c1: a4:59:c3:a2:6c:d4:51:c2:99:85:b7:97:66:b1:c0:0a:30:7c: 72:09:6f:5d:6c:44:6f:9d:b5:81:8b:07:49:ee:70:64:a5:87: 8c:d8:b9:48:ee:3a:75:e4:3f:83:39:eb:de:22:88:3c:88:09: c3:7d:49:75:5e:3f:68:0b:3f:91:95:b3:66:4c:c0:59:8f:ff: 12:a5:df:69:c4:55:ab:3c:75:91:80:da:31:bf:d9:50:6f:ce: 88:8d:10:23:a5:00:4b:6a:a6:59:80:8f:e2:47:fb:6b:a8:f9: 3a:de:e4:83:08:08:56:15:85:dd:00:ba:5f:56:47:b1:5a:3d: 52:2c:d2:c5:c5:44:04:06:75:32:b9:bd:d2:91:9b:28:b4:76: 6c:be:6e:0a:5a:2a:70:99:d8:0e:aa:25:4c:2e:fc:ca:ee:7d: fc:5c:1c:88 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCPbtCs3qeopwUJPoN0oSP5d7zyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDFaFw0yNTA2MDExNDAwMDFaMDMxMTAvBgNV BAMTKDJDREFGMjE4RThFRkNFMTBGMzExNkQ5RjZBN0YwOTVBMjkwNUUzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw9CQSrcycOdAZVibNiucndEsG k67kebjkdnPeH1eLGr2uQhP9lN09nfaulSyhEFy8qk1tOoJ+wCQD6z2br1ubP8Vb KL5r3tZ/ywIhTmWZjo6uwmlFHGj8i5+lArIWRTyLhZ3gVX9Ldk/6WEUH2nv5t/b4 hVOhznXfiKS8JONVVZTYifFQIdM6QhBrDpe+fiLbfh0tigOnYHyD7csGvTHAzmtS snIIInguJYi0e6wLQOoLpp/0a5wUr37Amz5KlBWM6dvIsYU6pE4KpgLiNQNqAlcu 3bLvDmYuIBsESRunPSTgZLxBG1FXEqLgosYZu1LUcGLbrzEHQxJvfH6I1BINAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULNryGOjvzhDzEW2fan8JWikF40MwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA0w DQYJKoZIhvcNAQELBQADggEBABuzj8nbqBfvipxwYkL6CnJKaxxZUBJ35VYPOmLp /o/XsLN7v5azFZ02x5g49hPZvU8bnnSYCpbC6GCqXgYQwevmpLa+Ut/Snhy5WzGS 6rvbEqnLlL1mOiYiwaRZw6Js1FHCmYW3l2axwAowfHIJb11sRG+dtYGLB0nucGSl h4zYuUjuOnXkP4M5694iiDyICcN9SXVeP2gLP5GVs2ZMwFmP/xKl32nEVas8dZGA 2jG/2VBvzoiNECOlAEtqplmAj+JH+2uo+Tre5IMICFYVhd0Aul9WR7FaPVIs0sXF RAQGdTK5vdKRmyi0dmy+bgpaKnCZ2A6qJUwu/MruffxcHIg= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org