$ rpki-client -vvf repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/323430353a366134303a3a2f33322d3332203d3e20313339343235.roa File: 323430353a366134303a3a2f33322d3332203d3e20313339343235.roa (raw, json) Hash identifier: 8iJA5f9zJCXVI43z+Y+nJt+bHsJmtS/Oo/bWRww6q+0= Subject key identifier: B5:DA:D1:CC:AB:9A:5A:D5:D0:61:F0:2C:D2:8D:F4:B4:67:6C:7A:58 Certificate issuer: /CN=1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE Certificate serial: 487D8402962B900E4EE86AFF50C4C1114EE7F9F2 Authority key identifier: 1E:07:47:65:6C:CC:5D:4B:BB:DB:85:B8:DE:73:5A:6D:F4:4C:72:AE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/323430353a366134303a3a2f33322d3332203d3e20313339343235.roa Signing time: Mon 01 Jul 2024 01:02:24 +0000 ROA not before: Mon 01 Jul 2024 00:57:24 +0000 ROA not after: Mon 30 Jun 2025 01:02:24 +0000 asID: 139425 IP address blocks: 2405:6a40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.crl rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:7d:84:02:96:2b:90:0e:4e:e8:6a:ff:50:c4:c1:11:4e:e7:f9:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE Validity Not Before: Jul 1 00:57:24 2024 GMT Not After : Jun 30 01:02:24 2025 GMT Subject: CN=B5DAD1CCAB9A5AD5D061F02CD28DF4B4676C7A58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7e:79:4e:1e:cf:05:b5:0f:13:0f:14:42:09: 01:70:c0:7b:f1:20:dc:ac:f2:14:ca:74:43:30:bb: fe:a0:8a:4d:3d:52:22:6c:91:23:a9:26:93:16:9a: b4:16:75:87:e8:20:10:2e:a0:a4:81:7d:6d:06:ee: d8:c4:cf:fa:88:f9:4e:50:16:f4:8d:c6:57:2a:47: 5a:b7:d1:aa:5b:ff:d3:90:49:ef:1c:e5:bd:bf:7d: 08:f4:8d:72:94:eb:99:8d:41:89:bc:b2:2e:95:5f: 82:b1:6a:35:b2:bc:4b:37:48:3e:76:d1:eb:a6:32: ed:43:92:5c:3c:41:a0:08:8a:18:ba:b3:39:0e:3a: 74:d3:f4:d8:86:22:48:ba:75:76:a3:60:a8:6d:9f: 7f:f2:33:0e:fd:88:e9:10:27:71:11:37:83:47:b5: e8:bd:38:0e:cb:79:50:5c:9e:7c:24:25:34:37:3d: d9:10:51:19:39:82:38:3c:da:9a:af:ed:92:4f:83: b6:65:3a:24:ec:8f:6d:48:a9:dd:30:45:56:6c:e6: 7b:72:16:89:64:91:ea:0e:d0:bc:7c:ff:22:94:11: f6:86:0b:a7:21:2c:4f:c7:b3:16:13:45:ba:80:2f: ed:31:91:0d:05:1e:bf:71:d6:0e:3b:e9:52:21:8d: ab:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DA:D1:CC:AB:9A:5A:D5:D0:61:F0:2C:D2:8D:F4:B4:67:6C:7A:58 X509v3 Authority Key Identifier: keyid:1E:07:47:65:6C:CC:5D:4B:BB:DB:85:B8:DE:73:5A:6D:F4:4C:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1E0747656CCC5D4BBBDB85B8DE735A6DF44C72AE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26ead2f5-8b65-4829-884b-d7c06dd0f83a/0/323430353a366134303a3a2f33322d3332203d3e20313339343235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6a40::/32 Signature Algorithm: sha256WithRSAEncryption 3b:f3:9c:7e:85:bd:02:3d:31:ad:7e:7a:97:75:ae:da:1a:90: 01:99:77:e7:92:f1:4a:87:1f:e0:6f:aa:41:d2:4c:38:17:d4: ec:e5:d6:92:56:e2:03:50:89:68:6a:19:6d:29:79:f5:1d:21: e3:17:25:03:65:f6:41:88:62:69:f3:d8:e5:ed:b8:17:93:c7: 62:a6:8c:52:06:bc:c6:c7:3a:af:66:bc:87:d0:c6:7e:36:c0: 8d:49:f1:5f:98:70:b8:f7:42:3b:d4:b4:7a:c6:e1:66:7c:ac: 9c:e4:43:fa:b1:61:7c:41:40:bc:4d:ac:dc:86:00:83:6d:39: 1c:d0:6d:c5:7c:a3:9d:30:1d:84:ee:dd:06:ea:2e:e9:ba:41: 88:4f:9d:88:95:27:e9:aa:7a:9d:15:6b:53:36:fb:ff:20:2b: a2:98:13:57:70:9b:b9:81:38:14:4d:fb:de:d5:e4:80:18:64: 2d:9a:e6:a7:06:a7:80:fe:36:d1:6c:9d:83:fc:7c:c7:ec:96: 92:86:6b:31:73:61:a3:7b:e7:33:2c:38:52:d5:10:0e:57:ca: e4:9e:d3:75:2f:33:e6:d9:72:27:80:96:16:6d:77:cc:db:24: c8:e8:dc:37:d4:31:11:82:25:76:42:9d:dc:29:ac:d4:0b:73: df:04:4e:e3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSH2EApYrkA5O6Gr/UMTBEU7n+fIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUUwNzQ3NjU2Q0NDNUQ0QkJCREI4NUI4REU3MzVBNkRG NDRDNzJBRTAeFw0yNDA3MDEwMDU3MjRaFw0yNTA2MzAwMTAyMjRaMDMxMTAvBgNV BAMTKEI1REFEMUNDQUI5QTVBRDVEMDYxRjAyQ0QyOERGNEI0Njc2QzdBNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEfnlOHs8FtQ8TDxRCCQFwwHvx INys8hTKdEMwu/6gik09UiJskSOpJpMWmrQWdYfoIBAuoKSBfW0G7tjEz/qI+U5Q FvSNxlcqR1q30apb/9OQSe8c5b2/fQj0jXKU65mNQYm8si6VX4KxajWyvEs3SD52 0eumMu1Dklw8QaAIihi6szkOOnTT9NiGIki6dXajYKhtn3/yMw79iOkQJ3ERN4NH tei9OA7LeVBcnnwkJTQ3PdkQURk5gjg82pqv7ZJPg7ZlOiTsj21Iqd0wRVZs5nty FolkkeoO0Lx8/yKUEfaGC6chLE/HsxYTRbqAL+0xkQ0FHr9x1g476VIhjavRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUtdrRzKuaWtXQYfAs0o30tGdselgwHwYDVR0j BBgwFoAUHgdHZWzMXUu724W43nNabfRMcq4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmVhZDJmNS04YjY1LTQ4MjktODg0Yi1kN2MwNmRkMGY4M2EvMC8xRTA3NDc2NTZD Q0M1RDRCQkJEQjg1QjhERTczNUE2REY0NEM3MkFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUUwNzQ3NjU2Q0NDNUQ0QkJCREI4NUI4REU3MzVBNkRGNDRD NzJBRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZWFkMmY1LThiNjUtNDgyOS04 ODRiLWQ3YzA2ZGQwZjgzYS8wLzMyMzQzMDM1M2EzNjYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFakAwDQYJKoZI hvcNAQELBQADggEBADvznH6FvQI9Ma1+epd1rtoakAGZd+eS8UqHH+BvqkHSTDgX 1Ozl1pJW4gNQiWhqGW0pefUdIeMXJQNl9kGIYmnz2OXtuBeTx2KmjFIGvMbHOq9m vIfQxn42wI1J8V+YcLj3QjvUtHrG4WZ8rJzkQ/qxYXxBQLxNrNyGAINtORzQbcV8 o50wHYTu3QbqLum6QYhPnYiVJ+mqep0Va1M2+/8gK6KYE1dwm7mBOBRN+97V5IAY ZC2a5qcGp4D+NtFsnYP8fMfslpKGazFzYaN75zMsOFLVEA5XyuSe03UvM+bZcieA lhZtd8zbJMjo3DfUMRGCJXZCndwprNQLc98ETuM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org