$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: iBpQO+CtUwwn3p13RMU3cdZ1cSAYF/tWkbOM8qJ8ZD8= Subject key identifier: C2:AC:2D:40:D7:CF:F5:D2:D6:66:1F:2E:E5:5B:00:0F:C8:ED:8B:67 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 6A49A21F36229B51B37CEAA2A432EF0CCEDCCBE8 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:00 +0000 ROA not before: Sun 02 Jun 2024 13:55:00 +0000 ROA not after: Sun 01 Jun 2025 14:00:00 +0000 asID: 140413 IP address blocks: 2406:13c0:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:49:a2:1f:36:22:9b:51:b3:7c:ea:a2:a4:32:ef:0c:ce:dc:cb:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:00 2024 GMT Not After : Jun 1 14:00:00 2025 GMT Subject: CN=C2AC2D40D7CFF5D2D6661F2EE55B000FC8ED8B67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a6:f4:d8:fe:f2:36:5c:8a:f1:43:ea:88:ca: 38:ac:22:8a:b3:0a:b5:5a:19:3c:fc:88:a1:30:7e: 3d:d0:78:4b:38:c0:b4:46:4a:52:cb:5e:b5:f3:67: e1:de:bb:1c:e3:24:ab:16:a7:fa:00:5f:cb:f6:ac: a4:e8:b9:da:0d:a7:44:a3:a8:2f:7d:8d:6d:8e:27: 7c:f3:52:b6:a4:aa:fb:36:6d:d5:1b:f0:d6:21:62: 95:17:12:4e:c0:7b:00:a9:ee:80:6c:b1:10:f0:9d: 25:ca:16:fe:e3:5b:bd:53:e6:dc:3f:ca:19:13:3a: ae:21:31:bd:1d:3c:e7:91:e4:14:5c:40:a5:db:96: c0:d0:d8:7d:44:73:f3:26:12:80:69:cc:38:01:24: 57:2a:30:3d:95:75:80:2b:c7:86:4d:01:7d:2a:37: 55:66:d3:72:bc:f3:fb:4c:c5:af:68:fe:a0:4d:c8: cc:91:87:f7:89:04:64:07:15:b5:26:e0:4f:bd:ab: e8:18:57:87:b9:95:c6:c4:d9:72:74:74:1a:bb:24: 40:b8:f1:a6:d8:a8:a9:41:9a:94:7c:7b:40:87:d9: a3:7d:c8:1c:fa:68:89:d6:72:63:ad:ca:a2:c9:0b: 18:92:55:d7:2c:e3:f9:9c:e0:5e:ad:6a:81:32:75: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AC:2D:40:D7:CF:F5:D2:D6:66:1F:2E:E5:5B:00:0F:C8:ED:8B:67 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:e::/48 Signature Algorithm: sha256WithRSAEncryption 41:ca:76:77:ff:7f:9e:4c:f9:7b:86:b7:6c:0f:04:f4:23:e4: 21:df:be:26:71:51:95:a9:65:ea:69:e0:0f:37:12:1c:26:6b: f8:55:77:d5:06:67:54:c0:54:80:70:5d:11:6b:ae:f5:cc:94: 91:60:08:52:e9:97:14:d8:08:f1:4d:1a:9d:d2:fa:65:91:09: 97:c0:77:12:07:50:e7:c4:5a:b5:80:ca:51:80:1a:d6:7f:a5: aa:d9:df:78:18:15:97:da:30:4d:01:a1:b5:cb:65:6a:99:87: 83:71:d6:c0:6d:40:a7:9d:2f:fc:56:31:5c:7d:cc:81:2f:63: 99:87:2d:8b:f3:f3:78:05:5b:b8:c3:dd:3a:60:06:d9:c8:c9: 38:e9:af:27:ad:dd:be:97:8b:8e:a1:7f:86:61:f7:04:25:7e: 7b:92:e8:91:2c:6b:d1:52:e0:b7:71:43:05:af:fa:e8:90:16: 73:ee:2b:3c:56:68:13:58:b5:67:bd:ef:e7:8e:9e:4d:aa:0e: 01:f5:6d:6d:64:49:d0:e1:73:83:67:8b:9e:27:bf:7e:4f:4f: 14:9b:2f:e0:fe:f6:a9:f4:04:e1:61:83:37:7c:14:5c:c0:35: e5:69:42:20:25:3c:63:24:e2:e7:a4:05:7a:2f:a6:d9:3c:17: fc:da:ed:e5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUakmiHzYim1GzfOqipDLvDM7cy+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDBaFw0yNTA2MDExNDAwMDBaMDMxMTAvBgNV BAMTKEMyQUMyRDQwRDdDRkY1RDJENjY2MUYyRUU1NUIwMDBGQzhFRDhCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrpvTY/vI2XIrxQ+qIyjisIoqz CrVaGTz8iKEwfj3QeEs4wLRGSlLLXrXzZ+HeuxzjJKsWp/oAX8v2rKToudoNp0Sj qC99jW2OJ3zzUrakqvs2bdUb8NYhYpUXEk7AewCp7oBssRDwnSXKFv7jW71T5tw/ yhkTOq4hMb0dPOeR5BRcQKXblsDQ2H1Ec/MmEoBpzDgBJFcqMD2VdYArx4ZNAX0q N1Vm03K88/tMxa9o/qBNyMyRh/eJBGQHFbUm4E+9q+gYV4e5lcbE2XJ0dBq7JEC4 8abYqKlBmpR8e0CH2aN9yBz6aInWcmOtyqLJCxiSVdcs4/mc4F6taoEydaY9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUwqwtQNfP9dLWZh8u5VsAD8jti2cwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA4w DQYJKoZIhvcNAQELBQADggEBAEHKdnf/f55M+XuGt2wPBPQj5CHfviZxUZWpZepp 4A83Ehwma/hVd9UGZ1TAVIBwXRFrrvXMlJFgCFLplxTYCPFNGp3S+mWRCZfAdxIH UOfEWrWAylGAGtZ/parZ33gYFZfaME0BobXLZWqZh4Nx1sBtQKedL/xWMVx9zIEv Y5mHLYvz83gFW7jD3TpgBtnIyTjpryet3b6Xi46hf4Zh9wQlfnuS6JEsa9FS4Ldx QwWv+uiQFnPuKzxWaBNYtWe97+eOnk2qDgH1bW1kSdDhc4Nni54nv35PTxSbL+D+ 9qn0BOFhgzd8FFzANeVpQiAlPGMk4uekBXovptk8F/za7eU= -----END CERTIFICATE-----Generated at Sat Nov 23 22:30:28 2024 by rpki-client on console-ams.rpki-client.org