$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: JA1mulFFJLSOUzXibrtpShrUUSjN3fgu1js6pJ8z77c= Subject key identifier: C7:B7:AE:36:EF:CA:88:12:62:EC:04:06:92:A8:35:83:87:41:6B:90 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 3BD8B85BB531F9045332F96240C1A064DB705FB2 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:01 +0000 ROA not before: Sun 01 Oct 2023 05:55:01 +0000 ROA not after: Sun 29 Sep 2024 06:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d8:b8:5b:b5:31:f9:04:53:32:f9:62:40:c1:a0:64:db:70:5f:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:01 2023 GMT Not After : Sep 29 06:00:01 2024 GMT Subject: CN=C7B7AE36EFCA881262EC040692A8358387416B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bc:cd:56:96:4a:91:c5:ac:d2:b4:89:b1:49: 1b:d5:ea:6e:44:a2:d4:ab:8e:ff:d7:22:85:d8:48: c9:fd:ee:87:bb:20:58:66:23:e2:51:54:4b:1a:03: 07:c7:5f:41:84:4d:8f:7c:80:83:89:60:6e:d4:0b: 0b:81:2d:7a:bb:6d:88:b6:36:ab:85:17:ac:6e:30: ea:3e:59:73:a1:b0:db:97:f3:ff:c3:42:cf:d1:d0: 5e:7c:1a:20:6c:c3:79:04:4c:0a:b3:4f:a1:2c:e8: e5:68:76:af:6f:a9:d5:50:31:47:37:04:5d:45:f3: 78:61:6f:9b:6e:7c:a1:a4:8a:bb:9b:ce:78:65:08: c6:c3:35:05:f6:27:28:4a:2d:f1:26:2c:89:aa:6a: 1c:4f:a6:51:2c:56:7c:47:e8:e4:12:9b:97:ee:a3: af:36:58:44:43:6d:9c:62:0f:bb:b6:ee:f4:02:c2: 49:23:36:09:79:ee:76:35:3d:b7:ab:e3:dd:d1:97: 4a:24:45:9a:58:6d:68:ba:15:fc:34:ee:9b:77:64: bf:cf:0c:1b:75:1e:d3:91:0f:5a:e3:fa:26:7d:8b: 48:b5:43:02:5e:66:36:b1:88:20:4c:89:94:da:3c: 3c:fc:f6:0d:d2:d0:1b:6a:0a:0e:35:ab:99:2a:71: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B7:AE:36:EF:CA:88:12:62:EC:04:06:92:A8:35:83:87:41:6B:90 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/34 Signature Algorithm: sha256WithRSAEncryption cf:3b:82:7c:f6:0b:02:7e:e2:f7:43:3a:bb:58:d1:d6:fa:3f: 0c:2a:a0:12:5f:1c:b2:cd:b8:ab:8d:77:34:d4:99:5c:cc:2a: 2f:9f:0b:8b:d8:e3:6f:a0:e8:6a:89:c3:7f:25:a8:b6:ec:e3: 1c:e2:45:bd:16:16:47:4c:4e:bd:2e:0a:b6:7b:49:7b:da:d1: df:0b:81:ac:26:63:69:42:0e:34:20:8b:7a:da:c6:ff:c3:ad: 0c:9b:bc:27:80:af:2f:a4:e3:8a:ea:01:bf:aa:b1:ad:8a:9b: c3:d5:6a:b9:db:ee:88:cf:95:ed:e8:39:58:ba:2f:bf:f3:a4: 1a:bd:b8:e2:b7:db:dd:1f:96:87:74:5d:91:4b:be:6a:e4:a4: 62:5b:89:4b:69:c9:cd:3b:4e:bf:ed:05:78:05:0e:cd:36:c9: 9e:6b:40:78:93:30:fb:e1:07:42:fc:c6:e2:04:57:b8:0d:5c: 01:b3:8e:ca:b8:0b:da:97:d7:67:0f:e2:fc:09:53:ad:cf:67: 53:d5:e6:97:71:98:a5:93:4d:9e:64:76:00:11:66:1e:a8:63: f8:3f:bd:ea:f9:e9:e7:d7:82:29:83:8a:a8:58:ac:ff:af:aa: 3c:f8:3d:1e:e1:83:f3:1f:bb:5c:15:d0:c0:ff:bd:4e:87:bd: fd:b6:41:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO9i4W7Ux+QRTMvliQMGgZNtwX7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDFaFw0yNDA5MjkwNjAwMDFaMDMxMTAvBgNV BAMTKEM3QjdBRTM2RUZDQTg4MTI2MkVDMDQwNjkyQTgzNTgzODc0MTZCOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsvM1WlkqRxazStImxSRvV6m5E otSrjv/XIoXYSMn97oe7IFhmI+JRVEsaAwfHX0GETY98gIOJYG7UCwuBLXq7bYi2 NquFF6xuMOo+WXOhsNuX8//DQs/R0F58GiBsw3kETAqzT6Es6OVodq9vqdVQMUc3 BF1F83hhb5tufKGkirubznhlCMbDNQX2JyhKLfEmLImqahxPplEsVnxH6OQSm5fu o682WERDbZxiD7u27vQCwkkjNgl57nY1Pber493Rl0okRZpYbWi6Ffw07pt3ZL/P DBt1HtORD1rj+iZ9i0i1QwJeZjaxiCBMiZTaPDz89g3S0BtqCg41q5kqcZ+JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx7euNu/KiBJi7AQGkqg1g4dBa5AwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzQy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQDPO4J89gsCfuL3Qzq7WNHW+j8MKqASXxyyzbirjXc01Jlc zCovnwuL2ONvoOhqicN/Jai27OMc4kW9FhZHTE69Lgq2e0l72tHfC4GsJmNpQg40 IIt62sb/w60Mm7wngK8vpOOK6gG/qrGtipvD1Wq52+6Iz5Xt6DlYui+/86Qavbji t9vdH5aHdF2RS75q5KRiW4lLacnNO06/7QV4BQ7NNsmea0B4kzD74QdC/MbiBFe4 DVwBs47KuAval9dnD+L8CVOtz2dT1eaXcZilk02eZHYAEWYeqGP4P73q+enn14Ip g4qoWKz/r6o8+D0e4YPzH7tcFdDA/71Oh739tkGy -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org