$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ= Subject key identifier: 91:9C:B2:B1:26:96:76:16:04:04:B1:5F:DB:E7:9B:51:67:37:FC:7E Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 79B0630B08C5955F53C714DCA51A5A63E3F449EB Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 14 Nov 2024 18:41:10 +0000 ROA not before: Thu 14 Nov 2024 18:36:10 +0000 ROA not after: Thu 13 Nov 2025 18:41:10 +0000 asID: 141056 IP address blocks: 2406:6d40:116::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b0:63:0b:08:c5:95:5f:53:c7:14:dc:a5:1a:5a:63:e3:f4:49:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 14 18:36:10 2024 GMT Not After : Nov 13 18:41:10 2025 GMT Subject: CN=919CB2B1269676160404B15FDBE79B516737FC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a9:d3:37:1c:19:df:d1:29:76:d4:35:47:36: 04:56:8d:82:f7:96:7a:0f:be:cf:b2:f5:b9:3e:42: 48:ab:1c:f3:11:6a:35:28:7f:11:b4:0a:c4:b8:37: 52:bd:36:d2:04:3f:03:4a:0c:73:95:d1:ae:2d:0e: 3a:ba:4e:6b:1f:fb:7b:33:77:32:30:d1:f8:0b:01: cc:44:02:98:a1:6e:a5:18:ed:1e:ce:60:c2:37:ab: bd:a2:90:00:7e:cc:19:04:5e:c0:dd:a2:d3:dc:89: a9:13:9e:40:d9:f5:f1:e0:a1:28:b8:b2:9f:2a:85: 2f:34:10:46:a4:9b:7a:65:7a:5e:c0:47:76:d2:2b: 81:ed:e9:56:57:54:3e:26:d9:bf:07:8f:1e:34:5e: 47:a1:4f:9e:0e:4d:81:32:a1:74:19:f3:50:c5:49: fe:22:9e:3c:e7:06:fc:e3:16:00:5d:8e:e7:3f:59: e0:23:c4:49:fe:04:f1:97:7e:d7:2c:01:67:34:ac: 00:af:a6:18:2c:d5:d7:7f:44:bd:8c:2e:58:8d:4e: bc:9f:5d:54:53:f3:bf:40:36:ab:a4:e4:1e:41:57: 24:15:ca:89:2e:d3:84:23:31:d1:7f:ff:25:77:29: a3:f4:a5:1c:22:fe:7f:3e:4b:53:e5:b3:4f:a2:df: 92:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:B2:B1:26:96:76:16:04:04:B1:5F:DB:E7:9B:51:67:37:FC:7E X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:116::/48 Signature Algorithm: sha256WithRSAEncryption 6b:18:8e:81:ad:a8:95:a2:7c:a4:d3:26:33:04:b6:36:29:df: 64:ab:68:d3:f5:33:b8:e3:a7:3e:4b:14:d5:a7:67:f7:94:79: e6:f3:a9:b1:ff:2d:d7:29:3f:7e:10:84:cd:48:f7:fb:38:d3: 69:20:6f:76:29:c4:89:c4:f8:10:74:85:e8:e7:db:b0:e7:69: 68:6b:75:42:2a:7a:ec:c2:96:af:c0:76:72:d5:cb:22:58:98: 2c:83:26:c0:a1:82:54:16:ee:25:96:1c:6e:39:42:92:92:e0: 03:f1:31:58:e9:c4:78:ef:8b:01:3c:55:fa:38:f9:57:33:17: b2:3f:b8:e6:21:59:d9:4c:bc:3c:7a:a2:15:e3:c5:0b:06:5c: c6:a5:32:3f:bc:1c:f5:1d:fb:c5:67:f9:16:79:65:a6:50:28: 5e:8a:b8:fa:64:d4:9d:39:3b:d3:d0:14:38:ee:45:da:c1:c3: d8:21:96:e0:f5:49:cc:41:ab:b0:5a:4f:f6:1a:42:ba:37:fe: 52:52:76:92:83:ea:3a:12:22:c3:47:eb:c3:8d:c6:8b:e5:cd: e2:7d:1f:3a:26:42:19:c0:1a:c4:a3:8d:df:30:7e:55:5f:b0: 2a:b4:6e:1d:be:72:42:df:ef:36:38:d7:2a:c2:9c:60:83:c9: 26:05:b2:8f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUebBjCwjFlV9TxxTcpRpaY+P0SeswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDExMTQxODM2MTBaFw0yNTExMTMxODQxMTBaMDMxMTAvBgNV BAMTKDkxOUNCMkIxMjY5Njc2MTYwNDA0QjE1RkRCRTc5QjUxNjczN0ZDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjqdM3HBnf0Sl21DVHNgRWjYL3 lnoPvs+y9bk+QkirHPMRajUofxG0CsS4N1K9NtIEPwNKDHOV0a4tDjq6Tmsf+3sz dzIw0fgLAcxEApihbqUY7R7OYMI3q72ikAB+zBkEXsDdotPciakTnkDZ9fHgoSi4 sp8qhS80EEakm3plel7AR3bSK4Ht6VZXVD4m2b8Hjx40XkehT54OTYEyoXQZ81DF Sf4injznBvzjFgBdjuc/WeAjxEn+BPGXftcsAWc0rACvphgs1dd/RL2MLliNTryf XVRT879ANquk5B5BVyQVyoku04QjMdF//yV3KaP0pRwi/n8+S1Pls0+i35J3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkZyysSaWdhYEBLFf2+ebUWc3/H4wHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhMzEzMTM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAZt QAEWMA0GCSqGSIb3DQEBCwUAA4IBAQBrGI6BraiVonyk0yYzBLY2Kd9kq2jT9TO4 46c+SxTVp2f3lHnm86mx/y3XKT9+EITNSPf7ONNpIG92KcSJxPgQdIXo59uw52lo a3VCKnrswpavwHZy1csiWJgsgybAoYJUFu4llhxuOUKSkuAD8TFY6cR474sBPFX6 OPlXMxeyP7jmIVnZTLw8eqIV48ULBlzGpTI/vBz1HfvFZ/kWeWWmUCheirj6ZNSd OTvT0BQ47kXawcPYIZbg9UnMQauwWk/2GkK6N/5SUnaSg+o6EiLDR+vDjcaL5c3i fR86JkIZwBrEo43fMH5VX7AqtG4dvnJC3+82ONcqwpxgg8kmBbKP -----END CERTIFICATE-----Generated at Sun Nov 24 06:43:22 2024 by rpki-client on console-fra.rpki-client.org