$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: dlZmX9HS/kK0KQr1854ucB2ZoABu4xKG5vUoLy8qrxE= Subject key identifier: 78:6F:06:74:76:7C:46:8B:EF:CA:D3:8B:E3:A1:B3:5D:CA:A1:83:6D Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 186B09DD79E7DAFEFDF3BE35EC4AC06B140C20 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:08:12 +0000 ROA not before: Fri 09 Feb 2024 11:03:12 +0000 ROA not after: Fri 07 Feb 2025 11:08:12 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:6b:09:dd:79:e7:da:fe:fd:f3:be:35:ec:4a:c0:6b:14:0c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:03:12 2024 GMT Not After : Feb 7 11:08:12 2025 GMT Subject: CN=786F0674767C468BEFCAD38BE3A1B35DCAA1836D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b1:10:dd:00:79:5d:3b:1a:97:ea:a1:f7:c7: 7b:75:0b:98:de:69:d8:72:f0:d1:dc:02:68:cf:02: 64:a9:6f:ca:a5:ed:7d:36:bc:19:52:52:1f:b5:80: 37:f6:06:3d:a6:bd:f8:38:3d:a1:53:dc:cb:f4:4a: ac:a5:a3:4c:02:ac:e5:0a:fa:a5:26:9c:37:ca:17: f0:e3:e2:c1:57:96:bc:26:40:8e:2d:c7:76:32:04: 71:24:ee:a3:bd:14:a1:43:7e:ff:62:61:bf:b6:84: a3:49:4b:c7:91:95:11:2e:fe:4c:66:8d:ec:b2:c3: e9:fd:9e:d7:7f:e5:cc:d4:7b:4b:b4:54:0c:8c:35: 25:de:c1:82:30:51:b8:96:97:4d:74:6a:37:4c:9b: 5c:b0:6b:23:63:dd:4f:76:c2:bd:e7:66:c4:cf:00: 06:b7:40:35:f5:f2:86:e0:2a:e9:22:81:7d:46:32: 35:38:6a:05:e1:d0:e7:f2:9a:88:f2:c9:fe:da:b1: 90:57:08:c6:dc:4e:4a:64:74:76:94:88:75:d9:cc: c8:6e:23:1f:b1:9b:e2:a7:78:2b:6a:ad:9e:a6:2f: 11:58:e0:a4:5e:24:f6:56:06:bc:24:5e:1c:77:1a: 8e:ad:c0:42:02:ab:32:cb:5b:cd:e1:50:45:74:fa: 38:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6F:06:74:76:7C:46:8B:EF:CA:D3:8B:E3:A1:B3:5D:CA:A1:83:6D X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/36 Signature Algorithm: sha256WithRSAEncryption 1f:ae:09:1d:4a:28:14:33:13:55:9d:c8:27:50:45:77:7b:9d: bb:38:65:29:e8:cd:ef:c0:a6:a5:5f:b4:82:bb:2e:79:25:e1: df:b0:44:c9:ff:ca:4c:ce:10:cd:c5:dc:4d:03:64:ad:8c:01: b2:e3:23:52:3f:a2:ce:db:be:55:d4:ea:b1:ad:21:ea:fd:0c: 52:2b:60:c4:2d:33:9f:88:3e:c1:14:7b:4f:e2:7d:18:ea:a9: ca:68:13:b6:52:e0:c0:d1:0d:8a:e6:e0:b9:a0:7e:06:7c:96: 80:34:16:c9:90:83:9a:61:f2:11:f7:78:01:c6:e3:3f:c4:a9: ad:06:83:57:79:48:9f:9c:8a:9f:93:b6:d2:49:6e:60:ff:ba: e9:c7:86:04:e9:ef:27:69:b4:ba:c2:f9:a3:85:04:a4:15:73: d9:5f:1c:99:ee:41:ff:46:02:d9:4e:d0:cd:bd:21:89:3c:03: 8f:35:5e:15:d2:40:f5:d4:2d:01:00:2d:dc:50:92:c9:b2:f6: 3a:fb:3a:3f:47:58:91:4f:68:f8:51:77:ac:d0:52:9b:6f:a2: 8d:8b:f5:3b:f3:85:62:94:a6:05:0b:05:b6:bc:8f:42:71:08: 32:63:b8:e6:19:17:19:4a:d1:95:84:d9:0d:76:fb:26:09:47: 27:14:a2:b3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgITGGsJ3Xnn2v7987417ErAaxQMIDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg3Q0ZEMEYzOUZFMkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1 MkNCODc0MB4XDTI0MDIwOTExMDMxMloXDTI1MDIwNzExMDgxMlowMzExMC8GA1UE AxMoNzg2RjA2NzQ3NjdDNDY4QkVGQ0FEMzhCRTNBMUIzNURDQUExODM2RDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANaxEN0AeV07GpfqoffHe3ULmN5p 2HLw0dwCaM8CZKlvyqXtfTa8GVJSH7WAN/YGPaa9+Dg9oVPcy/RKrKWjTAKs5Qr6 pSacN8oX8OPiwVeWvCZAji3HdjIEcSTuo70UoUN+/2Jhv7aEo0lLx5GVES7+TGaN 7LLD6f2e13/lzNR7S7RUDIw1Jd7BgjBRuJaXTXRqN0ybXLBrI2PdT3bCvedmxM8A BrdANfXyhuAq6SKBfUYyNThqBeHQ5/KaiPLJ/tqxkFcIxtxOSmR0dpSIddnMyG4j H7Gb4qd4K2qtnqYvEVjgpF4k9lYGvCReHHcajq3AQgKrMstbzeFQRXT6OK8CAwEA AaOCAj4wggI6MB0GA1UdDgQWBBR4bwZ0dnxGi+/K04vjobNdyqGDbTAfBgNVHSME GDAWgBR8/Q85/i6Q6osfXTLUduOHNSy4dDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5 YTAwMzY5LTY4NDAtNGE5NS04OWIxLWE0ODUxOGY5OGRjNy8wLzdDRkQwRjM5RkUy RTkwRUE4QjFGNUQzMkQ0NzZFMzg3MzUyQ0I4NzQuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi83Q0ZEMEYzOUZFMkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNC ODc0LmNlcjCBrAYIKwYBBQUHAQsEgZ8wgZwwgZkGCCsGAQUFBzALhoGMcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTlhMDAzNjktNjg0MC00YTk1LTg5 YjEtYTQ4NTE4Zjk4ZGM3LzAvMzIzNDMwMzYzYTMyMzA2MzMwM2E2MTMwMzAzMDNh M2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQG IMCgMA0GCSqGSIb3DQEBCwUAA4IBAQAfrgkdSigUMxNVncgnUEV3e527OGUp6M3v wKalX7SCuy55JeHfsETJ/8pMzhDNxdxNA2StjAGy4yNSP6LO275V1OqxrSHq/QxS K2DELTOfiD7BFHtP4n0Y6qnKaBO2UuDA0Q2K5uC5oH4GfJaANBbJkIOaYfIR93gB xuM/xKmtBoNXeUifnIqfk7bSSW5g/7rpx4YE6e8nabS6wvmjhQSkFXPZXxyZ7kH/ RgLZTtDNvSGJPAOPNV4V0kD11C0BAC3cUJLJsvY6+zo/R1iRT2j4UXes0FKbb6KN i/U784VilKYFCwW2vI9CcQgyY7jmGRcZStGVhNkNdvsmCUcnFKKz -----END CERTIFICATE-----Generated at Fri May 3 09:07:39 2024 by rpki-client on console-fra.rpki-client.org