$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: afz9lPgV90vfbA5O2xJrdDOfbKMURNXA73tn18TYokE= Subject key identifier: 9E:75:81:AE:E4:E0:82:97:9C:77:5F:6F:A2:2F:C1:0A:43:70:9C:66 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 59488EB4D4C11EC3E2990C00F32B57000681BCA4 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:48:8e:b4:d4:c1:1e:c3:e2:99:0c:00:f3:2b:57:00:06:81:bc:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=9E7581AEE4E082979C775F6FA22FC10A43709C66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c0:ca:06:28:58:63:42:ff:0e:c9:f0:16:d0: a0:bc:b1:9c:2f:c5:79:42:b3:be:91:8a:f9:b4:02: 7c:66:54:e3:8b:08:e3:d4:1d:26:e3:ec:ad:65:4f: a2:b1:8f:0a:a6:3a:62:d5:54:92:a6:68:44:51:11: fd:44:08:f4:00:99:bd:d5:f6:e7:02:43:d2:ec:ca: 3b:2a:d2:ab:61:7a:00:50:5e:ae:7e:81:cd:84:4f: 45:39:9b:6e:18:63:d2:a7:21:2e:30:73:ba:8b:ad: 45:7a:8a:69:ee:83:d5:8d:ee:0f:68:2f:82:5e:20: 9c:e6:90:e0:77:76:35:05:ec:d7:12:f5:31:38:a2: e1:0b:3d:f5:3f:1b:7a:f9:cf:c0:2f:f7:4b:70:f4: a9:0d:d5:ac:ba:f9:62:a8:c0:91:92:5a:a8:d2:72: 4b:bb:da:9d:7e:6c:64:cd:b6:2f:6b:f9:7f:d8:df: ac:1e:34:3b:03:1e:33:77:4b:56:1c:6e:ca:ab:d6: 58:4e:c8:5d:d4:d2:f3:89:27:89:16:8b:c0:81:e0: 7c:15:f8:b1:e2:f5:8c:54:74:82:ab:72:76:bf:70: ce:32:ac:11:a1:16:12:aa:1c:43:ef:ce:a8:c2:23: 9b:f4:a0:97:15:48:a3:3f:13:b6:be:76:26:b6:31: ed:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:75:81:AE:E4:E0:82:97:9C:77:5F:6F:A2:2F:C1:0A:43:70:9C:66 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/35 Signature Algorithm: sha256WithRSAEncryption 8a:40:de:b5:e4:f4:5d:70:bf:44:56:ed:81:51:2a:b4:ab:71: a3:c5:d0:e2:09:a5:ad:ae:f6:0a:6e:4b:ec:7e:5f:6b:a7:e8: c1:b7:c8:9f:16:2b:c2:88:55:7e:4a:08:ee:68:58:e9:8c:21: 24:74:e5:e7:77:7a:9b:7a:08:16:1e:bc:ee:82:af:35:59:26: 24:8d:8a:36:aa:85:a0:c3:82:7f:29:ca:02:d0:25:b5:01:a6: a9:77:99:20:76:9e:27:45:fc:15:c1:ae:52:03:9f:75:4e:7e: c0:40:36:bb:20:0f:26:d3:1e:4a:f3:e3:50:db:cc:55:10:7c: c9:b5:11:cd:50:90:8e:a8:ef:09:78:5a:78:30:9b:22:b4:83: e4:6b:e7:79:de:b2:ea:37:d0:29:08:6b:91:72:94:a3:17:65: 7c:6e:d6:b7:38:64:9f:5b:69:df:2c:a8:9a:45:5a:16:c0:97: 30:75:21:b2:54:0b:cf:43:95:69:53:27:42:70:e1:7a:cc:a3: cc:88:9d:f2:88:24:f3:cf:50:fd:67:3e:f6:94:92:28:45:85: 75:64:ae:de:1b:a9:ca:08:97:5f:b9:2f:35:e7:55:53:9b:10: 36:78:99:50:c8:d6:c9:64:04:de:9f:ec:61:91:6c:7b:da:a0: d8:b7:71:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWUiOtNTBHsPimQwA8ytXAAaBvKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKDlFNzU4MUFFRTRFMDgyOTc5Qzc3NUY2RkEyMkZDMTBBNDM3MDlDNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wMoGKFhjQv8OyfAW0KC8sZwv xXlCs76Rivm0AnxmVOOLCOPUHSbj7K1lT6KxjwqmOmLVVJKmaERREf1ECPQAmb3V 9ucCQ9Lsyjsq0qthegBQXq5+gc2ET0U5m24YY9KnIS4wc7qLrUV6imnug9WN7g9o L4JeIJzmkOB3djUF7NcS9TE4ouELPfU/G3r5z8Av90tw9KkN1ay6+WKowJGSWqjS cku72p1+bGTNti9r+X/Y36weNDsDHjN3S1Ycbsqr1lhOyF3U0vOJJ4kWi8CB4HwV +LHi9YxUdIKrcna/cM4yrBGhFhKqHEPvzqjCI5v0oJcVSKM/E7a+dia2Me2vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnnWBruTggpecd19voi/BCkNwnGYwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzUy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCKQN615PRdcL9EVu2BUSq0q3GjxdDiCaWtrvYKbkvsfl9r p+jBt8ifFivCiFV+SgjuaFjpjCEkdOXnd3qbeggWHrzugq81WSYkjYo2qoWgw4J/ KcoC0CW1Aaapd5kgdp4nRfwVwa5SA591Tn7AQDa7IA8m0x5K8+NQ28xVEHzJtRHN UJCOqO8JeFp4MJsitIPka+d53rLqN9ApCGuRcpSjF2V8bta3OGSfW2nfLKiaRVoW wJcwdSGyVAvPQ5VpUydCcOF6zKPMiJ3yiCTzz1D9Zz72lJIoRYV1ZK7eG6nKCJdf uS8151VTmxA2eJlQyNbJZATen+xhkWx72qDYt3Gc -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org