$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa File: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (raw, json) Hash identifier: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM= Subject key identifier: 46:6A:F9:2C:F6:C9:EF:FE:C7:63:5E:A7:36:52:72:26:12:66:9B:EE Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 63E75573DAB43645C7D0093E8DC8882A7DE544CF Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa Signing time: Thu 14 Nov 2024 18:43:14 +0000 ROA not before: Thu 14 Nov 2024 18:38:14 +0000 ROA not after: Thu 13 Nov 2025 18:43:14 +0000 asID: 141056 IP address blocks: 2406:6d40:eaea::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e7:55:73:da:b4:36:45:c7:d0:09:3e:8d:c8:88:2a:7d:e5:44:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 14 18:38:14 2024 GMT Not After : Nov 13 18:43:14 2025 GMT Subject: CN=466AF92CF6C9EFFEC7635EA73652722612669BEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:85:5f:b3:c6:2a:32:93:56:6c:16:96:17: 1e:df:6b:e1:67:b3:f8:c2:52:7c:ce:b4:77:8b:98: a0:6b:c4:15:6f:8f:82:77:f3:c6:6f:0d:d4:90:84: 36:d4:24:e8:43:10:15:ab:3d:be:ac:03:c0:01:7e: 21:fd:19:6d:99:a9:e7:20:3e:5e:28:e4:e0:03:d5: fa:9a:ee:5d:ab:bd:e8:62:26:6d:0f:80:54:4a:36: 97:c5:e9:1d:44:12:f9:76:50:b5:1c:47:eb:16:a7: f1:23:2d:a8:a3:f7:ba:9c:f8:b7:23:fa:6c:1b:dd: fd:7d:e6:e7:ba:20:41:c5:2c:38:e1:e9:00:cf:53: 00:cc:85:f4:a6:bf:f6:a7:af:f8:46:29:31:52:95: 6d:7f:39:97:39:8d:69:3f:cd:7b:77:95:c1:44:07: f6:94:32:1f:cf:f7:ce:21:85:ef:6a:ac:8d:17:71: 63:91:93:83:6a:c1:85:7f:56:7c:3d:4d:c3:72:c0: 90:c9:cd:6b:e0:7a:26:b5:ee:97:bc:c9:ab:d2:52: 4e:92:df:44:d7:80:ca:30:f5:9d:bc:30:2b:b8:5f: 29:fb:61:b8:5a:af:18:69:e4:f3:a0:81:f8:44:58: dc:6b:24:10:8e:ac:21:e5:89:57:6a:b6:a5:00:21: 0f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6A:F9:2C:F6:C9:EF:FE:C7:63:5E:A7:36:52:72:26:12:66:9B:EE X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:6d40:eaea::/48 Signature Algorithm: sha256WithRSAEncryption 9f:9f:33:44:6b:4f:b0:df:19:6c:45:ae:f0:e8:e9:c1:bb:ff: 64:0f:0c:d7:32:0a:80:6d:45:ec:ee:9b:d1:ff:70:2f:15:11: 57:d7:3b:93:31:66:65:86:7b:5a:84:33:ba:fa:ab:87:f4:97: e3:71:5e:47:fb:fd:70:a9:bb:d3:02:f1:f8:a3:9c:22:e2:2b: 10:10:99:56:7e:c3:e9:24:8a:cc:93:d3:6a:19:52:e2:af:16: 83:27:88:b9:6f:99:17:bc:b1:6b:81:23:b6:8b:77:14:ff:ad: 51:fb:5f:db:df:0b:f1:d9:ea:3a:c7:d1:59:83:c0:65:08:3f: 7b:9b:8e:94:9f:35:f2:f9:04:c2:27:bc:b6:4c:07:49:c8:49: 47:16:a4:64:47:56:aa:ad:f3:13:8e:89:4c:f6:7d:f4:29:72: 84:53:6a:bb:e8:43:12:b7:80:02:11:51:be:55:14:c5:85:e5: 97:03:9e:e9:b8:ab:37:4f:14:be:88:70:31:d8:9f:e2:d2:58: 88:33:27:f5:27:ec:7f:08:63:0f:02:fb:da:07:22:22:5c:11: 7b:f1:1b:43:9a:38:18:03:2e:dd:9d:7e:82:03:ea:42:90:03: 1b:dd:76:42:71:b5:9f:26:42:45:af:1d:17:63:cb:45:3e:ae: 8f:f1:c1:b0 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUY+dVc9q0NkXH0Ak+jciIKn3lRM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDExMTQxODM4MTRaFw0yNTExMTMxODQzMTRaMDMxMTAvBgNV BAMTKDQ2NkFGOTJDRjZDOUVGRkVDNzYzNUVBNzM2NTI3MjI2MTI2NjlCRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjoVfs8YqMpNWbBaWFx7fa+Fn s/jCUnzOtHeLmKBrxBVvj4J388ZvDdSQhDbUJOhDEBWrPb6sA8ABfiH9GW2Zqecg Pl4o5OAD1fqa7l2rvehiJm0PgFRKNpfF6R1EEvl2ULUcR+sWp/EjLaij97qc+Lcj +mwb3f195ue6IEHFLDjh6QDPUwDMhfSmv/anr/hGKTFSlW1/OZc5jWk/zXt3lcFE B/aUMh/P984hhe9qrI0XcWORk4NqwYV/Vnw9TcNywJDJzWvgeia17pe8yavSUk6S 30TXgMow9Z28MCu4Xyn7Ybharxhp5POggfhEWNxrJBCOrCHliVdqtqUAIQ8FAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQURmr5LPbJ7/7HY16nNlJyJhJmm+4wHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMyMzQzMDM2M2EzNjY0MzQzMDNhNjU2MTY1NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Bm1A6uowDQYJKoZIhvcNAQELBQADggEBAJ+fM0RrT7DfGWxFrvDo6cG7/2QPDNcy CoBtRezum9H/cC8VEVfXO5MxZmWGe1qEM7r6q4f0l+NxXkf7/XCpu9MC8fijnCLi KxAQmVZ+w+kkisyT02oZUuKvFoMniLlvmRe8sWuBI7aLdxT/rVH7X9vfC/HZ6jrH 0VmDwGUIP3ubjpSfNfL5BMInvLZMB0nISUcWpGRHVqqt8xOOiUz2ffQpcoRTarvo QxK3gAIRUb5VFMWF5ZcDnum4qzdPFL6IcDHYn+LSWIgzJ/Un7H8IYw8C+9oHIiJc EXvxG0OaOBgDLt2dfoID6kKQAxvddkJxtZ8mQkWvHRdjy0U+ro/xwbA= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:50 2024 by rpki-client on console-ams.rpki-client.org