$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa File: 323430313a353532303a3a2f33322d3332203d3e20313532303332.roa (raw, json) Hash identifier: ujXZEqTb+Qpvl4UCdCefHpkvSPz4EXp01C/5//Rb46E= Subject key identifier: E6:36:76:70:A3:A1:BC:98:0E:75:3E:FD:F6:71:F8:86:21:F4:A6:A9 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 27E60984FE3424C9859F7F15081D89584002E942 Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa Signing time: Tue 01 Oct 2024 00:55:13 +0000 ROA not before: Tue 01 Oct 2024 00:50:13 +0000 ROA not after: Tue 30 Sep 2025 00:55:13 +0000 asID: 152032 IP address blocks: 2401:5520::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e6:09:84:fe:34:24:c9:85:9f:7f:15:08:1d:89:58:40:02:e9:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Oct 1 00:50:13 2024 GMT Not After : Sep 30 00:55:13 2025 GMT Subject: CN=E6367670A3A1BC980E753EFDF671F88621F4A6A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:77:81:9b:46:00:8a:0b:a6:a6:68:3d:4b:a4: 2b:80:09:3a:6e:f5:70:10:92:4c:0f:33:df:d2:64: 63:9b:f3:af:08:61:3b:14:58:e1:29:87:e8:1c:92: d1:e2:73:04:1e:10:ff:89:90:3a:52:4d:1a:74:f7: c6:a2:51:e6:32:84:4c:d1:7a:53:b0:0d:c2:d9:80: 23:13:cf:dd:ec:2e:cb:bf:b8:47:b4:a0:22:b2:27: ff:c7:cc:28:65:0d:83:a6:77:7f:50:38:a8:38:e2: 28:52:28:3b:24:62:46:a8:6e:b5:e7:d5:fb:f0:27: 7e:ca:c0:df:48:ee:9b:39:c8:84:7f:90:81:8d:46: 26:fc:eb:26:24:ab:f4:7d:c5:a2:90:26:60:f8:4e: 6c:88:67:14:45:68:07:13:01:e0:d2:d8:98:6b:4e: 87:4a:b9:4a:a5:8c:c5:d1:d3:b9:20:47:2b:45:41: 14:aa:25:94:a2:fd:f5:ea:10:82:af:96:e5:1c:14: 4b:a3:67:61:31:e3:1a:6d:f9:4a:e3:e5:14:ba:35: 04:e4:4e:92:04:73:bb:d5:3f:46:0a:17:1b:5a:ae: 28:1d:0d:78:1f:24:81:1a:15:8c:aa:8d:5d:68:2d: 68:e3:03:b6:71:fc:15:31:90:87:3d:3c:d5:51:24: f4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:36:76:70:A3:A1:BC:98:0E:75:3E:FD:F6:71:F8:86:21:F4:A6:A9 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5520::/32 Signature Algorithm: sha256WithRSAEncryption 03:6b:ca:66:d8:ac:de:16:cd:6b:23:09:48:a0:31:91:8d:5b: f0:1f:b4:4b:58:17:d1:3d:84:9f:97:f3:65:f1:0e:9d:14:25: 02:cc:30:00:33:b7:19:32:d2:8b:82:d2:71:e6:9e:cd:c7:3f: ad:24:6d:ec:b3:f6:37:14:7d:88:6e:33:b2:88:46:ad:39:32: 7b:92:30:10:3d:00:d4:46:7f:2f:73:2a:4a:29:b8:4f:4d:c9: bf:83:bc:40:8c:eb:c9:32:bb:41:25:df:e3:9a:de:17:02:70: c4:34:d1:a6:18:e5:f3:5b:f4:c7:39:4a:0f:06:c6:f7:7f:0a: cd:59:71:ac:b0:53:70:d0:0e:e3:0b:c9:8b:af:b0:17:c8:48: 3a:12:4e:86:fc:c9:b3:78:6b:d1:94:6b:32:86:9f:26:ee:29: 60:2a:9d:c9:9c:3d:5f:8b:e4:44:33:94:88:3b:e8:dc:b3:56: bc:73:60:80:7d:dc:87:97:20:0b:ff:7c:a9:86:88:25:ee:b1: 35:46:3e:30:7a:86:ae:52:8f:05:0a:f6:58:1e:16:31:91:11: 64:81:e0:f5:17:1d:0e:dc:61:fa:3e:ba:c7:35:a8:16:f8:31: 5a:96:61:cd:72:ed:f2:d4:e7:20:e2:96:89:52:fc:b1:a4:c2: 1d:a4:99:eb -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJ+YJhP40JMmFn38VCB2JWEAC6UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yNDEwMDEwMDUwMTNaFw0yNTA5MzAwMDU1MTNaMDMxMTAvBgNV BAMTKEU2MzY3NjcwQTNBMUJDOTgwRTc1M0VGREY2NzFGODg2MjFGNEE2QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDId4GbRgCKC6amaD1LpCuACTpu 9XAQkkwPM9/SZGOb868IYTsUWOEph+gcktHicwQeEP+JkDpSTRp098aiUeYyhEzR elOwDcLZgCMTz93sLsu/uEe0oCKyJ//HzChlDYOmd39QOKg44ihSKDskYkaobrXn 1fvwJ37KwN9I7ps5yIR/kIGNRib86yYkq/R9xaKQJmD4TmyIZxRFaAcTAeDS2Jhr TodKuUqljMXR07kgRytFQRSqJZSi/fXqEIKvluUcFEujZ2Ex4xpt+Urj5RS6NQTk TpIEc7vVP0YKFxtarigdDXgfJIEaFYyqjV1oLWjjA7Zx/BUxkIc9PNVRJPRhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU5jZ2cKOhvJgOdT799nH4hiH0pqkwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzQzMDMxM2EzNTM1MzIzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzUzMjMwMzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBVSAwDQYJKoZI hvcNAQELBQADggEBAANrymbYrN4WzWsjCUigMZGNW/AftEtYF9E9hJ+X82XxDp0U JQLMMAAztxky0ouC0nHmns3HP60kbeyz9jcUfYhuM7KIRq05MnuSMBA9ANRGfy9z KkopuE9Nyb+DvECM68kyu0El3+Oa3hcCcMQ00aYY5fNb9Mc5Sg8Gxvd/Cs1Zcayw U3DQDuMLyYuvsBfISDoSTob8ybN4a9GUazKGnybuKWAqncmcPV+L5EQzlIg76Nyz VrxzYIB93IeXIAv/fKmGiCXusTVGPjB6hq5SjwUK9lgeFjGREWSB4PUXHQ7cYfo+ usc1qBb4MVqWYc1y7fLU5yDilolS/LGkwh2kmes= -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org