$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4= Subject key identifier: F8:20:D4:9F:90:0C:F6:29:BE:C6:22:4C:5B:B8:DF:F6:CB:CE:F7:0F Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 4AEBE249FA5541BF51A26C2FC7845FD9AD6D8E95 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 14 Nov 2024 18:41:46 +0000 ROA not before: Thu 14 Nov 2024 18:36:46 +0000 ROA not after: Thu 13 Nov 2025 18:41:46 +0000 asID: 141056 IP address blocks: 2406:6d40:117::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:eb:e2:49:fa:55:41:bf:51:a2:6c:2f:c7:84:5f:d9:ad:6d:8e:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 14 18:36:46 2024 GMT Not After : Nov 13 18:41:46 2025 GMT Subject: CN=F820D49F900CF629BEC6224C5BB8DFF6CBCEF70F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:27:bd:4f:76:93:67:4b:2f:e9:48:84:94:8c: 81:a1:cf:22:6b:68:ed:e2:18:4e:b1:af:b8:a5:4d: 55:68:c7:db:2d:b8:f8:1b:1a:b2:f0:31:3e:9d:83: c5:8f:9c:cb:07:8e:5e:fa:26:d5:76:79:ba:6d:8e: 82:7f:97:54:af:d6:e4:ea:85:34:00:07:2a:62:29: ed:80:98:48:d7:c7:6b:64:95:f0:06:0f:18:a4:f5: 34:9c:ac:41:53:c5:30:b9:3a:e6:5c:e0:19:3b:95: ec:34:db:67:37:50:7d:e0:f8:90:b4:13:8f:59:25: 8b:0d:37:0e:24:fa:ca:e1:36:bf:79:0c:13:ee:d2: 23:b7:78:13:c2:e6:4e:29:1d:e4:dd:1a:bd:fc:63: 4b:09:c0:80:8d:dd:05:73:09:6d:f2:62:1a:24:c2: 99:a2:b4:a5:52:68:a5:33:7d:a4:b5:fb:a5:d1:aa: 71:34:39:58:a3:41:60:02:24:59:d5:aa:bd:64:7c: 22:b5:a3:05:78:a6:4a:ae:72:48:c5:38:8b:73:31: 36:cb:b8:c6:36:d2:3a:23:e9:a1:fe:1d:e8:97:70: 5f:4b:08:af:10:3b:85:a6:a7:8e:dd:0d:12:24:10: 60:c9:58:97:b7:cd:c2:a4:5a:2c:cf:47:9e:d1:73: c1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:20:D4:9F:90:0C:F6:29:BE:C6:22:4C:5B:B8:DF:F6:CB:CE:F7:0F X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:117::/48 Signature Algorithm: sha256WithRSAEncryption 1d:26:8a:aa:fa:31:01:10:3a:77:78:df:24:87:b6:89:6f:c2: 9c:c6:da:82:50:aa:50:0b:a2:09:6b:42:e7:30:71:0c:c8:d0: cf:3c:e5:62:18:d4:19:23:75:9b:a4:3c:b1:54:db:cf:df:87: 9e:76:36:11:cd:a4:56:76:7c:cb:3f:32:4c:0d:0f:55:a1:f3: 76:7d:12:88:03:0e:1f:ca:12:10:98:eb:e1:8f:9f:6f:da:14: a6:77:a3:a1:e7:de:35:30:98:55:17:00:1f:3b:b3:40:a5:4c: 87:da:e7:bf:54:0f:4e:1b:53:94:52:aa:ac:bf:67:4d:8d:c5: 37:ce:5c:cb:bb:a2:76:65:5e:35:0a:b2:8e:c6:f2:3b:7c:de: ff:05:90:24:19:2b:58:01:4b:f1:b5:94:6f:90:99:5a:fa:1a: d0:3e:5d:5d:5d:d6:d3:c2:3b:34:c7:d0:6a:73:77:00:d9:c8: a2:55:59:df:c2:0d:32:a7:7f:ad:a3:e3:6e:44:72:37:e9:d8: c7:fd:4e:73:e0:44:90:48:93:65:aa:b5:0a:27:ee:ce:7a:35: b4:82:1d:bb:5a:b5:39:b0:33:73:21:ac:9c:88:8e:93:b5:69: 83:52:74:a4:74:6f:62:78:d2:62:39:c4:6d:0e:2d:15:13:9c: 18:28:54:19 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSuviSfpVQb9Romwvx4Rf2a1tjpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDExMTQxODM2NDZaFw0yNTExMTMxODQxNDZaMDMxMTAvBgNV BAMTKEY4MjBENDlGOTAwQ0Y2MjlCRUM2MjI0QzVCQjhERkY2Q0JDRUY3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNJ71PdpNnSy/pSISUjIGhzyJr aO3iGE6xr7ilTVVox9stuPgbGrLwMT6dg8WPnMsHjl76JtV2ebptjoJ/l1Sv1uTq hTQABypiKe2AmEjXx2tklfAGDxik9TScrEFTxTC5OuZc4Bk7lew022c3UH3g+JC0 E49ZJYsNNw4k+srhNr95DBPu0iO3eBPC5k4pHeTdGr38Y0sJwICN3QVzCW3yYhok wpmitKVSaKUzfaS1+6XRqnE0OVijQWACJFnVqr1kfCK1owV4pkquckjFOItzMTbL uMY20joj6aH+HeiXcF9LCK8QO4Wmp47dDRIkEGDJWJe3zcKkWizPR57Rc8H/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+CDUn5AM9im+xiJMW7jf9svO9w8wHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhMzEzMTM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAZt QAEXMA0GCSqGSIb3DQEBCwUAA4IBAQAdJoqq+jEBEDp3eN8kh7aJb8KcxtqCUKpQ C6IJa0LnMHEMyNDPPOViGNQZI3WbpDyxVNvP34eedjYRzaRWdnzLPzJMDQ9VofN2 fRKIAw4fyhIQmOvhj59v2hSmd6Oh5941MJhVFwAfO7NApUyH2ue/VA9OG1OUUqqs v2dNjcU3zlzLu6J2ZV41CrKOxvI7fN7/BZAkGStYAUvxtZRvkJla+hrQPl1dXdbT wjs0x9Bqc3cA2ciiVVnfwg0yp3+to+NuRHI36djH/U5z4ESQSJNlqrUKJ+7OejW0 gh27WrU5sDNzIayciI6TtWmDUnSkdG9ieNJiOcRtDi0VE5wYKFQZ -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org