$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa File: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (raw, json) Hash identifier: i2kiD3mM+MjiHTnZyeF2nS2QLKGMFwRM8UsT3KxQLSA= Subject key identifier: DF:F2:E0:95:E8:4D:0B:BE:26:62:B6:06:53:25:D5:12:69:5B:62:5A Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 0FC80C3BC90497D493B9A2034C1BF290D6A1EDE4 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa Signing time: Sat 04 Nov 2023 03:00:00 +0000 ROA not before: Sat 04 Nov 2023 02:55:00 +0000 ROA not after: Sat 02 Nov 2024 03:00:00 +0000 asID: 141056 IP address blocks: 2406:6d40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c8:0c:3b:c9:04:97:d4:93:b9:a2:03:4c:1b:f2:90:d6:a1:ed:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 4 02:55:00 2023 GMT Not After : Nov 2 03:00:00 2024 GMT Subject: CN=DFF2E095E84D0BBE2662B6065325D512695B625A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:e6:dd:15:42:b9:b5:e5:7e:54:52:ce:a4: 37:52:7e:86:2d:e5:58:7c:02:6e:ed:4f:e0:af:28: 5a:92:73:a1:49:97:06:48:28:e5:af:2e:22:8c:fc: 86:1a:a3:fe:c4:b1:27:63:e9:53:d5:da:b0:95:6a: a5:b1:cd:53:65:a8:05:06:b9:b8:8c:31:f4:ba:d9: 16:81:90:56:0c:e7:9f:1b:44:66:31:37:3f:ee:4d: 12:69:fc:e9:c7:5f:a1:5e:23:1d:ca:ef:fe:9c:f4: 18:4c:2e:5d:c7:ba:90:e6:d2:60:98:24:e1:e0:b2: fe:b6:19:71:d2:3c:c9:b0:ea:9f:9d:4d:8d:17:87: a1:c0:a3:01:83:bf:63:e7:fd:22:4e:86:d8:f2:8b: 08:b5:b3:2a:59:8b:e8:6a:ae:a2:e5:78:2a:7b:a1: 2b:27:e9:fa:6b:90:32:f8:3a:8a:ab:80:43:ba:ca: aa:30:3a:14:48:e8:b4:e3:b0:aa:2f:f4:42:3e:51: 1d:d7:9d:48:60:44:04:a5:35:0b:22:aa:3a:73:83: aa:80:4c:90:85:bd:bc:02:17:11:92:a3:f5:c8:06: 0b:ca:4b:b7:bd:4c:0c:79:0d:c8:11:3c:d2:46:87: b6:07:0b:6f:0c:1c:d4:a2:1e:34:16:50:8d:00:fd: 2a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F2:E0:95:E8:4D:0B:BE:26:62:B6:06:53:25:D5:12:69:5B:62:5A X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a3a2f33322d3332203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 70:f1:d1:2d:bb:83:eb:fa:55:83:e1:8a:d7:78:ff:40:89:ea: dc:bd:b1:f4:9d:f1:72:de:93:e5:82:82:dc:9c:43:21:6d:63: 8c:d2:f3:65:53:3a:1c:4d:9b:67:09:72:32:59:01:82:69:ef: 22:9f:c6:d5:e1:08:b8:76:fa:b5:69:38:78:c7:a9:6d:8d:68: ec:1e:96:59:c9:8d:19:cc:40:b1:34:d5:0e:23:dc:f5:1c:91: 26:d5:de:7e:c8:09:9f:69:84:a1:9d:6e:74:ca:96:b9:10:4e: 2e:a3:fd:f4:34:77:3f:3f:bf:6a:cd:42:ee:ac:b2:4c:38:30: 17:a2:b5:26:a2:7b:9e:32:ee:44:0f:85:46:02:81:a9:bb:0e: 1f:5d:4b:3f:7c:ab:34:fa:6b:66:38:9b:cc:67:c2:b0:c0:73: 23:82:eb:0e:fd:8a:d3:63:3a:fa:2b:af:6e:30:06:23:cd:34: 70:ed:8a:63:f9:92:2a:a4:35:3d:91:3c:86:ad:d2:9e:25:06: 47:04:33:94:13:2c:53:21:14:29:9c:ba:ee:04:f9:ef:0e:9e: 7b:07:45:70:57:27:c0:61:66:a6:13:1c:03:9a:3f:cf:49:44: 9a:4a:0b:71:ac:f7:98:93:c0:a8:7c:eb:4e:3c:73:4d:8e:48: 15:fd:ae:82 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUD8gMO8kEl9STuaIDTBvykNah7eQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yMzExMDQwMjU1MDBaFw0yNDExMDIwMzAwMDBaMDMxMTAvBgNV BAMTKERGRjJFMDk1RTg0RDBCQkUyNjYyQjYwNjUzMjVENTEyNjk1QjYyNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqOObdFUK5teV+VFLOpDdSfoYt 5Vh8Am7tT+CvKFqSc6FJlwZIKOWvLiKM/IYao/7EsSdj6VPV2rCVaqWxzVNlqAUG ubiMMfS62RaBkFYM558bRGYxNz/uTRJp/OnHX6FeIx3K7/6c9BhMLl3HupDm0mCY JOHgsv62GXHSPMmw6p+dTY0Xh6HAowGDv2Pn/SJOhtjyiwi1sypZi+hqrqLleCp7 oSsn6fprkDL4OoqrgEO6yqowOhRI6LTjsKov9EI+UR3XnUhgRASlNQsiqjpzg6qA TJCFvbwCFxGSo/XIBgvKS7e9TAx5DcgRPNJGh7YHC28MHNSiHjQWUI0A/SrdAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU3/LglehNC74mYrYGUyXVEmlbYlowHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGbUAwDQYJKoZI hvcNAQELBQADggEBAHDx0S27g+v6VYPhitd4/0CJ6ty9sfSd8XLek+WCgtycQyFt Y4zS82VTOhxNm2cJcjJZAYJp7yKfxtXhCLh2+rVpOHjHqW2NaOwellnJjRnMQLE0 1Q4j3PUckSbV3n7ICZ9phKGdbnTKlrkQTi6j/fQ0dz8/v2rNQu6sskw4MBeitSai e54y7kQPhUYCgam7Dh9dSz98qzT6a2Y4m8xnwrDAcyOC6w79itNjOvorr24wBiPN NHDtimP5kiqkNT2RPIat0p4lBkcEM5QTLFMhFCmcuu4E+e8OnnsHRXBXJ8BhZqYT HAOaP89JRJpKC3Gs95iTwKh86048c02OSBX9roI= -----END CERTIFICATE-----Generated at Sat May 4 22:06:17 2024 by rpki-client on console-ams.rpki-client.org