$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE= Subject key identifier: 11:31:DD:A7:BA:5D:E0:31:98:F5:EF:C9:9E:57:59:C7:F5:36:6B:85 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 29ACA5A9BFF16D25E25C4DF8B04D9962A12E1A09 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 14 Nov 2024 18:42:50 +0000 ROA not before: Thu 14 Nov 2024 18:37:50 +0000 ROA not after: Thu 13 Nov 2025 18:42:50 +0000 asID: 141056 IP address blocks: 2406:6d40:1410::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ac:a5:a9:bf:f1:6d:25:e2:5c:4d:f8:b0:4d:99:62:a1:2e:1a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 14 18:37:50 2024 GMT Not After : Nov 13 18:42:50 2025 GMT Subject: CN=1131DDA7BA5DE03198F5EFC99E5759C7F5366B85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7b:c0:c8:f8:04:4d:09:47:73:d3:df:07:87: 33:c6:08:e6:30:fe:de:6c:d2:db:00:82:0b:aa:22: 2b:7d:63:c9:05:38:0d:bd:01:e0:ab:62:8d:0b:51: 5b:91:59:07:38:80:fb:a9:c9:c9:8c:b3:b5:3f:1a: c6:28:0c:e0:57:34:22:69:89:a8:ce:03:9a:40:07: 14:ed:49:de:2c:96:f1:5d:df:fb:8e:c5:9a:a7:b0: fc:b9:c1:c4:67:0b:10:26:b4:15:d4:1c:2b:42:a6: fe:38:74:68:89:68:83:7c:fe:3b:2d:b0:7d:e7:53: 54:43:11:6b:3e:f3:63:cb:82:6b:1e:f1:87:45:8b: a3:44:bb:cd:ba:d2:38:65:5e:cb:79:20:a9:e7:38: aa:7c:4d:7f:63:3b:d8:4f:07:72:49:48:c2:84:56: 8a:89:3e:e2:db:22:09:fc:32:e3:61:d1:dc:1e:99: 19:ce:17:2f:ec:d2:71:aa:ea:60:f0:f0:aa:f3:7a: 2f:c5:9a:15:44:b9:e1:2b:93:8f:36:cc:cd:8b:b8: 6a:8f:eb:b0:93:85:4a:f8:32:0d:b2:cc:6a:43:5e: 73:43:65:e2:0f:35:45:4b:f6:1b:6b:50:0c:5b:ae: 54:a3:a3:6a:3d:f2:55:52:7f:d0:bf:7b:0c:cd:a9: 51:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:31:DD:A7:BA:5D:E0:31:98:F5:EF:C9:9E:57:59:C7:F5:36:6B:85 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:1410::/48 Signature Algorithm: sha256WithRSAEncryption 2b:a2:ee:4c:64:56:a2:78:49:38:3d:d0:d7:96:22:65:c2:19: 98:52:d8:1f:2f:4c:ab:8f:19:0c:f4:0f:98:b4:73:f1:45:2c: f3:65:2c:88:a1:aa:95:24:99:54:e8:78:cd:15:2c:30:91:e2: a0:c3:a1:5a:72:5d:a5:63:5e:17:75:d5:35:59:a5:a3:0d:2a: 23:0b:58:1e:0b:6f:33:76:72:83:97:70:b3:48:c3:ad:5f:93: d6:3d:ba:48:3d:be:49:cd:bd:a9:dd:8f:ac:ff:77:4e:4d:87: 0e:ae:c3:d9:82:b9:62:1c:3c:8d:62:51:be:11:2d:4e:d5:90: fb:27:5c:7a:60:d8:02:14:79:98:ef:96:25:46:d8:2c:c0:62: 9a:9d:cb:c2:e4:e2:68:a8:bf:37:3d:60:05:fd:c2:e8:51:46: 77:ae:38:4d:fb:b1:0a:cf:54:87:2a:5d:54:9a:33:1a:eb:cb: 01:f4:e9:4b:2a:ad:ea:e4:40:c4:7c:ee:a3:33:4b:5a:6d:f0: 39:a3:65:0a:17:bc:fa:0a:51:9b:2f:e7:05:32:b6:fa:1d:91: dc:d9:b6:cf:e7:43:80:0a:00:2a:41:2d:1e:f0:8a:e8:0e:d2: 80:2c:1c:8d:c6:9f:4e:6a:bb:f1:4d:49:68:92:48:ef:cc:dd: 00:e6:07:44 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKaylqb/xbSXiXE34sE2ZYqEuGgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDExMTQxODM3NTBaFw0yNTExMTMxODQyNTBaMDMxMTAvBgNV BAMTKDExMzFEREE3QkE1REUwMzE5OEY1RUZDOTlFNTc1OUM3RjUzNjZCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSe8DI+ARNCUdz098HhzPGCOYw /t5s0tsAgguqIit9Y8kFOA29AeCrYo0LUVuRWQc4gPupycmMs7U/GsYoDOBXNCJp iajOA5pABxTtSd4slvFd3/uOxZqnsPy5wcRnCxAmtBXUHCtCpv44dGiJaIN8/jst sH3nU1RDEWs+82PLgmse8YdFi6NEu8260jhlXst5IKnnOKp8TX9jO9hPB3JJSMKE VoqJPuLbIgn8MuNh0dwemRnOFy/s0nGq6mDw8Krzei/FmhVEueErk482zM2LuGqP 67CThUr4Mg2yzGpDXnNDZeIPNUVL9htrUAxbrlSjo2o98lVSf9C/ewzNqVH5AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUETHdp7pd4DGY9e/JnldZx/U2a4UwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhMzEzNDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Bm1AFBAwDQYJKoZIhvcNAQELBQADggEBACui7kxkVqJ4STg90NeWImXCGZhS2B8v TKuPGQz0D5i0c/FFLPNlLIihqpUkmVToeM0VLDCR4qDDoVpyXaVjXhd11TVZpaMN KiMLWB4LbzN2coOXcLNIw61fk9Y9ukg9vknNvandj6z/d05Nhw6uw9mCuWIcPI1i Ub4RLU7VkPsnXHpg2AIUeZjvliVG2CzAYpqdy8Lk4miovzc9YAX9wuhRRneuOE37 sQrPVIcqXVSaMxrrywH06UsqrerkQMR87qMzS1pt8DmjZQoXvPoKUZsv5wUytvod kdzZts/nQ4AKACpBLR7wiugO0oAsHI3Gn05qu/FNSWiSSO/M3QDmB0Q= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org