$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 5XnaCGHslfCtmQ4d1ojvnrSjZW/pWfqK9DkysuAzYII= Subject key identifier: CF:66:69:7C:C5:45:6B:57:EC:BB:8B:8B:C0:C8:85:A8:ED:E2:86:59 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1DD51A5EF5D9B2243AD872660D5430995B844629 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 02 Jun 2024 14:00:01 +0000 ROA not before: Sun 02 Jun 2024 13:55:01 +0000 ROA not after: Sun 01 Jun 2025 14:00:01 +0000 asID: 140413 IP address blocks: 2406:13c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d5:1a:5e:f5:d9:b2:24:3a:d8:72:66:0d:54:30:99:5b:84:46:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: Jun 2 13:55:01 2024 GMT Not After : Jun 1 14:00:01 2025 GMT Subject: CN=CF66697CC5456B57ECBB8B8BC0C885A8EDE28659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:4f:b5:b2:7f:c1:c2:c3:4a:a1:88:26:2b: ba:34:14:d7:5f:9c:d4:91:da:85:04:60:bb:68:02: 4c:c9:b9:a0:1d:5f:e5:3c:d9:33:14:19:90:07:83: 88:98:fd:01:fa:83:34:69:d0:dd:d5:26:4f:e3:e7: e4:0f:9a:a1:dc:37:82:98:a5:91:2a:ce:fe:28:d8: 27:09:74:db:1d:8e:89:1c:f1:47:67:05:79:d0:d6: 33:3f:24:19:1e:c9:41:e8:fc:01:76:07:aa:7e:97: a6:29:49:38:33:ed:c7:2a:43:a7:db:11:7e:09:0d: 4b:e6:19:c3:85:cf:e5:36:c6:6d:9f:d2:b0:8f:91: 18:76:6c:b0:4b:bd:fe:d8:3b:8e:0a:9f:3c:53:bc: ca:6e:30:24:8e:9b:a9:f9:2b:59:fc:a8:fd:f0:7e: 37:19:8e:45:0d:ff:1d:fe:59:93:16:10:21:48:12: a0:85:d8:d3:5f:51:23:01:75:f2:08:08:cc:be:3b: 12:fc:1b:77:1f:f8:6a:89:7d:76:e2:5a:a8:20:23: a3:da:38:d9:2e:0e:3d:37:07:a0:4c:2f:ea:76:9a: 06:d9:35:39:f3:e9:fa:a0:7d:73:9f:bc:57:fe:c8: 08:94:79:c7:4d:29:67:ec:16:02:d2:07:f6:09:cd: 24:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:66:69:7C:C5:45:6B:57:EC:BB:8B:8B:C0:C8:85:A8:ED:E2:86:59 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:f::/48 Signature Algorithm: sha256WithRSAEncryption 92:9b:ad:3b:46:a8:ee:e0:09:3e:91:9e:ba:37:37:49:17:29: 13:88:0d:98:03:19:4a:cb:55:44:26:a4:7e:7f:95:8e:d6:16: 10:57:b2:e6:f2:dc:f5:7a:90:c3:df:77:84:9d:7b:f3:62:3b: 02:66:3c:e3:95:86:cf:ce:f9:92:07:8a:6f:96:5c:12:f8:f4: 5f:0d:db:8d:fc:ab:66:2b:5d:f8:50:78:c5:b7:bb:55:2f:5d: 24:14:28:f2:d3:85:a6:4c:02:45:76:f7:45:49:87:52:d0:07: 2a:82:b8:9e:b8:5b:d2:c2:c8:a8:77:ee:ec:78:bc:c7:e1:20: d5:87:38:7d:dc:13:22:a6:2b:60:f7:be:e3:67:14:e0:15:7a: 1a:a7:70:01:54:c0:a6:b3:37:d8:7a:99:93:68:a7:a3:b3:7d: dc:e6:8b:5d:60:e8:d9:55:24:34:e0:70:b3:5f:e8:a4:e1:ae: 96:90:7a:10:6e:e0:81:34:24:4d:15:e2:46:0b:67:b6:ee:f6: 7d:3d:6c:f7:74:3e:15:de:31:da:a7:b5:cb:7a:d3:50:5b:d2: 83:73:f3:c0:38:62:fd:2b:76:f3:a5:a1:d9:f3:05:46:2b:af: ac:05:32:ad:41:51:bd:d2:ca:c4:6b:f4:18:62:8e:e0:cb:00: 84:20:c7:5b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHdUaXvXZsiQ62HJmDVQwmVuERikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNDA2MDIxMzU1MDFaFw0yNTA2MDExNDAwMDFaMDMxMTAvBgNV BAMTKENGNjY2OTdDQzU0NTZCNTdFQ0JCOEI4QkMwQzg4NUE4RURFMjg2NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEBU+1sn/BwsNKoYgmK7o0FNdf nNSR2oUEYLtoAkzJuaAdX+U82TMUGZAHg4iY/QH6gzRp0N3VJk/j5+QPmqHcN4KY pZEqzv4o2CcJdNsdjokc8UdnBXnQ1jM/JBkeyUHo/AF2B6p+l6YpSTgz7ccqQ6fb EX4JDUvmGcOFz+U2xm2f0rCPkRh2bLBLvf7YO44KnzxTvMpuMCSOm6n5K1n8qP3w fjcZjkUN/x3+WZMWECFIEqCF2NNfUSMBdfIICMy+OxL8G3cf+GqJfXbiWqggI6Pa ONkuDj03B6BML+p2mgbZNTnz6fqgfXOfvFf+yAiUecdNKWfsFgLSB/YJzSQ3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUz2ZpfMVFa1fsu4uLwMiFqO3ihlkwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA8w DQYJKoZIhvcNAQELBQADggEBAJKbrTtGqO7gCT6Rnro3N0kXKROIDZgDGUrLVUQm pH5/lY7WFhBXsuby3PV6kMPfd4Sde/NiOwJmPOOVhs/O+ZIHim+WXBL49F8N2438 q2YrXfhQeMW3u1UvXSQUKPLThaZMAkV290VJh1LQByqCuJ64W9LCyKh37ux4vMfh INWHOH3cEyKmK2D3vuNnFOAVehqncAFUwKazN9h6mZNop6Ozfdzmi11g6NlVJDTg cLNf6KThrpaQehBu4IE0JE0V4kYLZ7bu9n09bPd0PhXeMdqntct601Bb0oNz88A4 Yv0rdvOlodnzBUYrr6wFMq1BUb3SysRr9BhijuDLAIQgx1s= -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org