$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: PgW29w+8zISHfSwUcJwvq/N6Dk3Yb79KSzQkhOpD47w= Subject key identifier: BF:CE:A4:A3:2C:84:6A:3D:1D:5E:35:D1:19:22:32:34:7C:00:E6:C9 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 71A312175A1420CA2E0AA893EFC9E1C2D2860C5A Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:c000::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a3:12:17:5a:14:20:ca:2e:0a:a8:93:ef:c9:e1:c2:d2:86:0c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=BFCEA4A32C846A3D1D5E35D1192232347C00E6C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:20:16:4f:c6:25:63:4c:00:7b:ea:52:ab:89: 1f:aa:74:56:a1:fd:f6:83:df:6e:f6:03:cc:34:f6: 0f:57:36:ba:22:b2:19:68:b9:40:3a:da:4e:9d:eb: 45:75:b8:8a:0b:ec:c7:16:89:92:93:70:d5:89:8f: 76:55:28:3c:13:26:dc:35:e3:a9:29:b0:5c:3b:86: 6e:2e:10:78:71:29:4a:bc:11:b0:f7:73:ee:f9:63: 86:8a:c9:69:af:47:12:d6:38:6e:70:d4:23:17:36: 40:c5:7e:41:c6:c9:26:c4:98:61:e5:17:65:03:1e: c6:33:1b:b5:88:29:81:97:f5:2c:3b:b1:29:8e:a0: be:87:79:02:aa:30:3f:96:96:35:2d:ca:32:77:c7: 7c:ff:b5:a6:ad:6f:8e:fd:58:42:f4:70:a6:80:71: fe:bd:5c:1b:26:86:e0:7e:ce:cc:b2:75:6a:b5:ac: 63:7a:12:9b:52:5f:7a:e4:b2:1e:e4:c7:b3:97:21: 61:ee:a3:bd:26:21:e4:eb:0e:59:84:62:24:61:29: 03:21:66:88:88:89:ba:9d:e6:1a:21:56:83:cd:cc: 12:54:46:7a:35:d4:2d:03:a4:8f:f4:6c:58:2f:0f: 11:ad:e9:c1:85:c0:19:cf:5c:a6:8c:d2:84:6b:b1: c6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CE:A4:A3:2C:84:6A:3D:1D:5E:35:D1:19:22:32:34:7C:00:E6:C9 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:c000::/34 Signature Algorithm: sha256WithRSAEncryption 60:41:0f:ad:68:14:34:a6:ce:e9:e8:97:81:15:8d:bd:d0:85: 39:29:26:40:42:92:5a:99:e0:63:8c:de:f9:0a:55:78:10:1e: e3:ee:f8:44:51:ad:f0:84:48:ae:d0:d0:ba:91:69:cc:f9:98: 1e:02:af:b1:e2:6c:0e:de:4a:ff:bf:f3:44:aa:82:c8:a1:99: 5c:9f:e6:d3:3d:e3:4e:9b:2c:8c:0f:80:da:79:35:f0:c4:1a: 86:b1:4c:5b:12:e3:19:c6:f8:42:09:fb:05:f7:e4:2c:c1:11: 48:7d:4d:41:b9:24:9d:c8:df:87:ff:e5:53:c6:6b:f5:5e:d7: 9f:e9:83:0e:f1:e7:ac:f4:0d:cd:d8:db:6c:ff:ca:61:b4:72: ea:3b:0f:93:95:77:f5:a1:1c:7f:2f:1d:2e:1a:92:f1:93:a1: 8b:90:34:3d:90:26:0c:94:0e:a0:96:7c:36:65:b1:9f:8a:41: 23:a9:cf:c0:68:d8:9b:9e:87:ba:7f:8a:34:5e:95:d0:6f:87: 58:9b:28:5d:54:7a:b7:29:5c:de:75:86:c7:03:d3:09:86:1e: e1:17:ff:77:cd:33:4f:cf:36:6a:fb:99:5a:4b:05:ab:44:02: cf:fc:42:d5:a8:e6:58:76:7e:88:d2:a5:4d:2a:49:0a:ba:06: b3:ae:e3:c7 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUcaMSF1oUIMouCqiT78nhwtKGDFowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKEJGQ0VBNEEzMkM4NDZBM0QxRDVFMzVEMTE5MjIzMjM0N0MwMEU2QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNIBZPxiVjTAB76lKriR+qdFah /faD3272A8w09g9XNroishlouUA62k6d60V1uIoL7McWiZKTcNWJj3ZVKDwTJtw1 46kpsFw7hm4uEHhxKUq8EbD3c+75Y4aKyWmvRxLWOG5w1CMXNkDFfkHGySbEmGHl F2UDHsYzG7WIKYGX9Sw7sSmOoL6HeQKqMD+WljUtyjJ3x3z/taatb479WEL0cKaA cf69XBsmhuB+zsyydWq1rGN6EptSX3rksh7kx7OXIWHuo70mIeTrDlmEYiRhKQMh ZoiIibqd5hohVoPNzBJURno11C0DpI/0bFgvDxGt6cGFwBnPXKaM0oRrscYpAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUv86koyyEaj0dXjXRGSIyNHwA5skwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAwDANBgkqhkiG9w0BAQsFAAOCAQEAYEEPrWgUNKbO6eiXgRWNvdCFOSkmQEKS WpngY4ze+QpVeBAe4+74RFGt8IRIrtDQupFpzPmYHgKvseJsDt5K/7/zRKqCyKGZ XJ/m0z3jTpssjA+A2nk18MQahrFMWxLjGcb4Qgn7BffkLMERSH1NQbkkncjfh//l U8Zr9V7Xn+mDDvHnrPQNzdjbbP/KYbRy6jsPk5V39aEcfy8dLhqS8ZOhi5A0PZAm DJQOoJZ8NmWxn4pBI6nPwGjYm56Hun+KNF6V0G+HWJsoXVR6tylc3nWGxwPTCYYe 4Rf/d80zT882avuZWksFq0QCz/xC1ajmWHZ+iNKlTSpJCroGs67jxw== -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org