$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: Csl9xoPfq0eETPVW5yyazF4j2Ute8cjCywCjlepV9w0= Subject key identifier: D7:9F:A2:53:A3:B6:46:42:67:15:58:49:59:96:33:EE:B0:B3:DE:E6 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 40250BD9DDFE75C708D8595E438D5C63AF376693 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:25:0b:d9:dd:fe:75:c7:08:d8:59:5e:43:8d:5c:63:af:37:66:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=D79FA253A3B6464267155849599633EEB0B3DEE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ca:6b:67:67:0d:bf:3c:7a:30:dc:f6:46:99: 58:8d:f7:8b:3b:94:c9:39:93:00:83:58:29:e0:8f: f3:82:09:2f:e7:73:7a:24:ad:a5:73:10:7d:ab:43: eb:4f:97:ee:87:b1:23:b4:bb:26:df:24:2b:ee:b8: ed:eb:e9:13:35:13:b3:56:72:48:83:e4:cd:c1:9c: 28:fb:6b:06:93:0b:2c:ec:58:d7:1b:58:8d:74:f7: 09:73:05:82:da:46:53:23:41:ff:30:c0:31:76:68: fd:2c:0e:fe:03:a7:0d:e6:c3:48:9b:56:68:b4:f7: 3d:aa:74:07:f0:58:43:f9:38:f9:25:68:05:1d:0b: 30:9a:fb:be:57:cb:bf:d2:88:eb:8e:ae:32:cc:3d: ed:41:31:21:13:cc:56:99:7b:eb:b1:19:f9:33:8b: f7:b2:8d:a1:d4:c4:d2:d1:08:ee:46:48:e4:ed:99: 7f:ef:b1:fe:1b:15:93:50:9f:60:51:60:30:d3:62: 42:07:7b:b2:09:21:bb:2a:c6:42:ee:6f:de:fc:ab: 7a:d2:55:1c:4c:a4:a8:03:1f:18:b9:89:9d:b6:c7: d4:ff:4b:6e:3c:88:c0:ba:30:ef:9b:e9:fa:ee:ed: 7b:2f:1e:3a:4f:86:e7:96:d3:d2:fb:dc:36:46:28: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9F:A2:53:A3:B6:46:42:67:15:58:49:59:96:33:EE:B0:B3:DE:E6 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption 76:90:e2:f3:76:b7:fe:bb:b2:f6:c4:5e:4a:c1:ad:e3:7d:d9: 4c:b4:e7:30:e1:9c:7c:d4:b3:5b:75:7f:2e:8d:f7:eb:d2:b4: 98:7b:59:7d:77:09:ae:27:9b:81:ad:44:a3:2d:60:79:d9:eb: 4a:3f:c7:60:fb:9f:fa:9e:22:66:60:11:37:ee:b6:3c:47:2e: 63:4d:f7:d5:52:05:a4:26:7d:7d:44:1d:f1:46:ef:3a:3b:f1: 4f:40:ff:5f:eb:dd:e4:d1:3b:a4:39:b4:da:4f:86:c4:86:df: 63:55:4a:10:a5:fa:91:aa:f0:2c:77:c5:86:05:7e:b5:7b:ae: 9d:82:19:ec:c9:85:c7:6c:02:dc:34:32:9c:2b:ab:eb:27:bb: a5:92:bc:ab:ce:ba:b6:d1:fd:2c:05:7b:5b:b7:5e:ce:92:77: 7f:ee:5a:63:5e:86:1c:de:a7:4e:c4:6d:ab:ab:43:c0:83:26: 54:6e:27:45:3e:b1:7a:94:09:b0:c3:22:1a:68:43:65:b4:75: 34:40:4d:6e:c1:04:3c:cd:f6:40:43:7e:2e:c2:6a:a4:c1:d8: 81:41:c1:66:0e:1e:70:9b:a5:25:0f:27:23:4e:c7:37:9d:88: 84:d2:52:c1:7e:da:e0:55:32:4c:df:37:2e:c6:52:90:fb:46: f4:b4:c3:25 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQCUL2d3+dccI2FleQ41cY683ZpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKEQ3OUZBMjUzQTNCNjQ2NDI2NzE1NTg0OTU5OTYzM0VFQjBCM0RFRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOymtnZw2/PHow3PZGmViN94s7 lMk5kwCDWCngj/OCCS/nc3okraVzEH2rQ+tPl+6HsSO0uybfJCvuuO3r6RM1E7NW ckiD5M3BnCj7awaTCyzsWNcbWI109wlzBYLaRlMjQf8wwDF2aP0sDv4Dpw3mw0ib Vmi09z2qdAfwWEP5OPklaAUdCzCa+75Xy7/SiOuOrjLMPe1BMSETzFaZe+uxGfkz i/eyjaHUxNLRCO5GSOTtmX/vsf4bFZNQn2BRYDDTYkIHe7IJIbsqxkLub978q3rS VRxMpKgDHxi5iZ22x9T/S248iMC6MO+b6fru7XsvHjpPhueW09L73DZGKDDBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU15+iU6O2RkJnFVhJWZYz7rCz3uYwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAdpDi83a3/ruy9sReSsGt433ZTLTnMOGc fNSzW3V/Lo3369K0mHtZfXcJriebga1Eoy1gednrSj/HYPuf+p4iZmARN+62PEcu Y0331VIFpCZ9fUQd8UbvOjvxT0D/X+vd5NE7pDm02k+GxIbfY1VKEKX6karwLHfF hgV+tXuunYIZ7MmFx2wC3DQynCur6ye7pZK8q866ttH9LAV7W7dezpJ3f+5aY16G HN6nTsRtq6tDwIMmVG4nRT6xepQJsMMiGmhDZbR1NEBNbsEEPM32QEN+LsJqpMHY gUHBZg4ecJulJQ8nI07HN52IhNJSwX7a4FUyTN83LsZSkPtG9LTDJQ== -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org