$ rpki-client -vvf repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/323430343a353938303a3a2f33322d3332203d3e20313334363535.roa File: 323430343a353938303a3a2f33322d3332203d3e20313334363535.roa (raw, json) Hash identifier: W1146/J+I+OZ/tQBKF2flMNoGqasiMtTueYs8B1xjfc= Subject key identifier: 29:03:E6:D3:1C:7F:AF:E1:87:13:A1:CE:A7:59:84:D3:B7:40:FA:56 Certificate issuer: /CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Certificate serial: 0F000F5DD6745B97D6083EAC2AFD4AC96724F014 Authority key identifier: 21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/323430343a353938303a3a2f33322d3332203d3e20313334363535.roa Signing time: Thu 29 Jun 2023 16:00:01 +0000 ROA not before: Thu 29 Jun 2023 15:55:01 +0000 ROA not after: Thu 27 Jun 2024 16:00:01 +0000 asID: 134655 IP address blocks: 2404:5980::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:00:0f:5d:d6:74:5b:97:d6:08:3e:ac:2a:fd:4a:c9:67:24:f0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Validity Not Before: Jun 29 15:55:01 2023 GMT Not After : Jun 27 16:00:01 2024 GMT Subject: CN=2903E6D31C7FAFE18713A1CEA75984D3B740FA56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:44:a6:12:0f:0c:dc:36:57:3c:d8:6d:be:59: d6:e8:d3:f8:cc:a2:16:d8:01:dc:84:7d:bb:17:2d: cf:a3:de:33:a3:07:f0:d4:d1:70:04:bb:2f:b7:e6: 24:10:f3:97:33:88:5d:ba:cf:87:71:25:52:f6:da: 11:74:1c:52:f4:c6:aa:1b:9d:79:3b:6b:b5:41:1c: 81:73:1d:c8:61:f5:43:86:81:14:0d:28:4c:06:a0: 79:3d:7f:97:af:02:b7:70:13:59:71:10:a6:8b:45: bc:fb:1a:91:e4:c4:15:5d:c6:a9:9f:b9:55:cf:19: 9a:b3:af:6d:80:34:b9:73:92:71:8e:51:2f:b8:06: 08:b0:08:22:ae:ba:e3:31:1a:ae:3f:22:06:af:33: 13:e7:9c:22:f9:4d:20:7b:7d:54:5a:e3:4a:04:38: 2b:00:30:c6:c1:0d:b4:58:b6:ff:95:3b:96:73:7f: f1:ba:b9:76:d6:5d:1c:18:c2:fe:de:62:db:fe:c2: c1:5a:12:31:87:12:46:32:43:0b:8c:61:40:59:62: 00:93:cd:3e:08:f3:78:be:dd:80:46:00:52:4e:e9: 37:7a:46:46:47:03:b6:54:09:a8:47:8e:d5:20:61: bf:00:32:7a:09:c9:4a:6d:f9:ba:9c:a0:19:37:97: ae:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:03:E6:D3:1C:7F:AF:E1:87:13:A1:CE:A7:59:84:D3:B7:40:FA:56 X509v3 Authority Key Identifier: keyid:21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/323430343a353938303a3a2f33322d3332203d3e20313334363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5980::/32 Signature Algorithm: sha256WithRSAEncryption 47:56:c6:dd:a4:e4:32:0f:ca:f7:db:22:96:44:66:e4:b7:3a: a6:61:c7:70:a9:e5:7e:e9:3a:15:80:20:6d:0e:f1:55:34:60: 8e:d4:f0:61:65:c7:c1:82:4b:e4:ed:43:d1:f7:34:72:9d:1a: 4e:be:27:f4:2d:06:64:fb:ce:c3:19:36:5d:52:49:62:ce:85: da:9e:c4:07:63:ee:22:30:bc:fa:3a:b4:b0:fa:cb:d6:52:9b: e0:15:c4:3e:31:41:98:f2:c0:b8:15:a5:66:c4:20:7e:b9:37: d9:ad:bc:20:9b:c5:93:cf:89:24:d9:d0:e4:0b:f5:54:6f:ad: 8e:5b:a6:2f:9c:17:53:cf:3c:04:41:42:30:f6:fc:bf:da:1b: 8b:aa:90:c0:d0:09:56:7b:e0:12:5c:5c:6a:e8:d4:72:74:e5: c5:33:b5:8b:fc:5d:4d:26:db:9b:e7:b0:0a:13:14:3c:a6:24: 2e:8f:8d:6c:f3:3f:d0:a1:07:6b:7b:20:d2:16:2f:ef:bb:b8: 5b:90:9f:ba:13:28:53:7e:6b:5d:6b:be:70:e0:68:76:9f:7f: 3b:0f:ac:96:9a:26:9b:5f:ed:93:fd:e5:38:73:d5:c9:25:99: 87:0d:1d:ae:19:87:51:64:ca:35:88:0c:84:c6:7b:fd:b0:4d: 35:62:4e:05 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDwAPXdZ0W5fWCD6sKv1KyWck8BQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4 QTNCNkU3OTAeFw0yMzA2MjkxNTU1MDFaFw0yNDA2MjcxNjAwMDFaMDMxMTAvBgNV BAMTKDI5MDNFNkQzMUM3RkFGRTE4NzEzQTFDRUE3NTk4NEQzQjc0MEZBNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWRKYSDwzcNlc82G2+Wdbo0/jM ohbYAdyEfbsXLc+j3jOjB/DU0XAEuy+35iQQ85cziF26z4dxJVL22hF0HFL0xqob nXk7a7VBHIFzHchh9UOGgRQNKEwGoHk9f5evArdwE1lxEKaLRbz7GpHkxBVdxqmf uVXPGZqzr22ANLlzknGOUS+4BgiwCCKuuuMxGq4/IgavMxPnnCL5TSB7fVRa40oE OCsAMMbBDbRYtv+VO5Zzf/G6uXbWXRwYwv7eYtv+wsFaEjGHEkYyQwuMYUBZYgCT zT4I83i+3YBGAFJO6Td6RkZHA7ZUCahHjtUgYb8AMnoJyUpt+bqcoBk3l657AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUKQPm0xx/r+GHE6HOp1mE07dA+lYwHwYDVR0j BBgwFoAUIUbNzXo8ehkVt4xbLJ/Puoo7bnkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTM5ZGJmMS0zMDc1LTQ1MTktYmE5MC1jZWU4ZDM5NzlmY2QvMC8yMTQ2Q0RDRDdB M0M3QTE5MTVCNzhDNUIyQzlGQ0ZCQThBM0I2RTc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4QTNC NkU3OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MzlkYmYxLTMwNzUtNDUxOS1i YTkwLWNlZThkMzk3OWZjZC8wLzMyMzQzMDM0M2EzNTM5MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNDM2MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEWYAwDQYJKoZI hvcNAQELBQADggEBAEdWxt2k5DIPyvfbIpZEZuS3OqZhx3Cp5X7pOhWAIG0O8VU0 YI7U8GFlx8GCS+TtQ9H3NHKdGk6+J/QtBmT7zsMZNl1SSWLOhdqexAdj7iIwvPo6 tLD6y9ZSm+AVxD4xQZjywLgVpWbEIH65N9mtvCCbxZPPiSTZ0OQL9VRvrY5bpi+c F1PPPARBQjD2/L/aG4uqkMDQCVZ74BJcXGro1HJ05cUztYv8XU0m25vnsAoTFDym JC6PjWzzP9ChB2t7INIWL++7uFuQn7oTKFN+a11rvnDgaHaffzsPrJaaJptf7ZP9 5Thz1cklmYcNHa4Zh1FkyjWIDITGe/2wTTViTgU= -----END CERTIFICATE-----Generated at Fri May 3 22:25:47 2024 by rpki-client on console-ams.rpki-client.org