$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: sz08FoQhMtjsAE1pUk2LBomz9ML2qyiaPhJ7/8pG3s0= Subject key identifier: 76:A2:08:17:8F:49:21:BC:A2:2D:75:79:AD:96:81:AF:F0:13:DA:78 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5E38EFB3B250E50C1CA1C72F96BAAC0600DD7861 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:02 +0000 ROA not before: Sun 01 Oct 2023 05:55:02 +0000 ROA not after: Sun 29 Sep 2024 06:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:e000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:38:ef:b3:b2:50:e5:0c:1c:a1:c7:2f:96:ba:ac:06:00:dd:78:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:02 2023 GMT Not After : Sep 29 06:00:02 2024 GMT Subject: CN=76A208178F4921BCA22D7579AD9681AFF013DA78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e1:f5:40:3c:ee:24:c8:6f:1a:f5:49:65:d0: 9e:f5:a2:ae:5c:97:36:a4:9b:26:bc:70:22:4e:f1: 76:9a:d8:07:de:fe:55:0d:44:07:49:6f:e3:51:ff: e6:cb:22:04:af:f2:94:84:83:74:ad:1f:8a:8d:40: 86:3d:b9:9b:eb:a8:bf:b4:4a:54:11:e2:67:3f:46: 67:3d:f6:d0:45:ac:2a:11:c4:a5:3a:6b:b1:d9:13: 8f:73:d7:53:87:38:e9:ae:d9:19:cd:36:dd:ed:cc: a6:db:ad:c6:2c:c5:bf:95:2b:4c:39:ab:c4:50:cb: 2c:13:e2:5f:f2:41:d8:57:f6:96:77:12:9a:ce:43: 32:80:0d:6e:11:52:40:5d:64:f6:eb:8a:76:33:7e: c8:88:6f:5f:bb:11:97:90:8d:65:ce:77:25:94:d2: 8c:f9:8e:01:4b:d5:48:d3:9d:f7:35:67:ca:4b:68: eb:ff:29:cf:d9:80:85:89:40:3e:7c:de:02:7b:7b: d6:17:20:07:07:d9:4e:42:89:d1:3a:24:02:54:a7: 88:26:fa:72:a6:16:c6:44:d1:5b:4a:e7:3e:4b:a5: 3c:47:97:ce:25:1a:02:c3:ec:84:e6:21:1e:72:3b: 06:7f:15:a6:80:cf:88:29:29:fa:cc:cd:ad:f3:29: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A2:08:17:8F:49:21:BC:A2:2D:75:79:AD:96:81:AF:F0:13:DA:78 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:e000::/35 Signature Algorithm: sha256WithRSAEncryption 6b:89:65:bf:96:8c:86:49:1b:a1:b3:18:fb:02:ed:b5:5e:28: 28:26:ce:e9:5c:09:f0:d4:33:f7:4a:a9:85:cc:6b:7e:56:a3: a4:f9:d8:fc:d9:aa:72:ee:0e:a4:3b:b1:d7:c1:40:a4:67:bc: 29:17:40:12:a1:5a:a8:67:f1:4f:41:c2:da:e4:34:0e:dd:74: bf:cf:1e:90:d2:2b:d7:13:2e:28:ba:c9:6c:e4:78:f3:cb:15: 81:e2:4b:a6:95:96:77:55:5e:de:74:29:9f:41:9a:9b:7d:c7: 08:3d:1e:ce:96:a1:b2:d1:c6:c7:31:58:ff:a5:98:89:8e:d4: 7e:a9:65:86:6d:53:e3:8b:10:24:17:ec:8b:c9:b9:eb:96:d1: d1:ab:7a:fe:a2:48:ea:ac:45:05:29:69:81:71:4f:97:d2:f6: 29:13:9d:8e:81:96:32:ba:35:5f:8c:c3:5e:96:a7:00:66:62: 90:d9:75:2f:fd:ca:6d:3b:fd:15:50:9f:ed:f9:a2:ed:85:86: 09:3e:ea:ff:a9:53:ba:b5:0c:61:11:de:9b:a4:60:30:06:2c: 95:ba:dc:56:60:c1:78:87:0c:44:61:11:4f:ab:ef:c2:78:4b: 34:1b:88:e6:78:54:4f:88:1f:de:40:7a:cc:78:91:29:ab:8d: e2:3e:33:d4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXjjvs7JQ5QwcoccvlrqsBgDdeGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDJaFw0yNDA5MjkwNjAwMDJaMDMxMTAvBgNV BAMTKDc2QTIwODE3OEY0OTIxQkNBMjJENzU3OUFEOTY4MUFGRjAxM0RBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ4fVAPO4kyG8a9Ull0J71oq5c lzakmya8cCJO8Xaa2Afe/lUNRAdJb+NR/+bLIgSv8pSEg3StH4qNQIY9uZvrqL+0 SlQR4mc/Rmc99tBFrCoRxKU6a7HZE49z11OHOOmu2RnNNt3tzKbbrcYsxb+VK0w5 q8RQyywT4l/yQdhX9pZ3EprOQzKADW4RUkBdZPbrinYzfsiIb1+7EZeQjWXOdyWU 0oz5jgFL1UjTnfc1Z8pLaOv/Kc/ZgIWJQD583gJ7e9YXIAcH2U5CidE6JAJUp4gm +nKmFsZE0VtK5z5LpTxHl84lGgLD7ITmIR5yOwZ/FaaAz4gpKfrMza3zKbD9AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUdqIIF49JIbyiLXV5rZaBr/AT2ngwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjUzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDA4DANBgkqhkiG9w0BAQsFAAOCAQEAa4llv5aMhkkbobMY+wLttV4oKCbO6VwJ 8NQz90qphcxrflajpPnY/Nmqcu4OpDux18FApGe8KRdAEqFaqGfxT0HC2uQ0Dt10 v88ekNIr1xMuKLrJbOR488sVgeJLppWWd1Ve3nQpn0Gam33HCD0ezpahstHGxzFY /6WYiY7Ufqllhm1T44sQJBfsi8m565bR0at6/qJI6qxFBSlpgXFPl9L2KROdjoGW Mro1X4zDXpanAGZikNl1L/3KbTv9FVCf7fmi7YWGCT7q/6lTurUMYRHem6RgMAYs lbrcVmDBeIcMRGERT6vvwnhLNBuI5nhUT4gf3kB6zHiRKauN4j4z1A== -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org