$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: abYxOpY8KsSZ+50YCoB6+ut+pkJpDBfhRiI5QGn4aVA= Subject key identifier: 08:6F:4B:D3:83:52:B8:CD:CA:CC:1E:22:AD:DE:AD:F3:A3:80:FE:24 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 3452E12F4CD3CBFF598315ECC22ED463AB51C69D Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:04:56 +0000 ROA not before: Fri 09 Feb 2024 10:59:56 +0000 ROA not after: Fri 07 Feb 2025 11:04:56 +0000 asID: 140423 IP address blocks: 2406:20c0:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:52:e1:2f:4c:d3:cb:ff:59:83:15:ec:c2:2e:d4:63:ab:51:c6:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 10:59:56 2024 GMT Not After : Feb 7 11:04:56 2025 GMT Subject: CN=086F4BD38352B8CDCACC1E22ADDEADF3A380FE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:5f:52:11:50:44:30:bd:bc:28:9b:00:6e: 22:f2:a5:f6:01:bb:bc:09:66:8d:7a:12:82:99:78: 63:a6:af:78:85:e9:b2:ca:9a:ad:09:cc:43:5c:8a: a9:4c:09:72:c9:5d:16:46:cc:c2:fc:16:7a:7c:41: 9b:69:fb:18:52:88:d1:b9:fc:6e:76:1a:aa:bc:97: 65:b4:17:5b:ba:80:db:6a:fb:5c:93:de:7e:da:e6: 17:9d:0f:f5:d9:a9:d6:8a:80:74:3b:5a:85:c1:e8: 0c:34:08:95:42:d9:1a:4e:93:f7:72:f3:17:12:c8: a4:ca:82:90:f4:2e:c2:2f:b3:b5:13:d1:f9:ab:4b: ea:3e:81:e8:5a:e5:36:5e:97:e2:5c:28:19:a8:2e: 38:d3:18:10:f9:e9:e0:a3:c0:44:f8:5b:54:8a:56: c9:0f:0b:1d:52:c6:07:5f:19:48:57:7f:05:3c:45: 43:89:05:1b:f5:a1:fe:a7:72:04:0d:4b:59:0e:f3: d8:77:c0:a1:c3:05:0d:d8:60:e1:4b:12:78:96:e2: 04:22:0d:50:2a:6e:19:93:a3:11:9c:20:be:58:d6: ab:86:de:e5:aa:61:8f:22:b6:78:86:00:3a:34:6d: a0:40:74:82:30:61:fc:00:8f:4f:ab:b0:c6:11:7b: 69:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6F:4B:D3:83:52:B8:CD:CA:CC:1E:22:AD:DE:AD:F3:A3:80:FE:24 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 01:a7:8b:44:24:b5:c9:40:2f:9c:78:3d:84:f3:df:02:8b:97: 17:5f:a8:97:12:cd:0d:98:24:00:32:48:20:8e:f9:44:cb:8d: 85:67:5c:42:9d:56:5a:bc:b1:f9:f2:17:38:10:1f:3e:af:52: 32:66:69:53:11:ff:af:ed:d1:23:52:4f:8e:a0:4e:2b:1c:55: 03:c2:37:7b:2d:fe:8c:59:26:e4:a1:52:a7:ea:7a:51:45:7e: 95:ac:54:b8:34:4f:9b:ca:da:46:44:9c:4e:12:3a:63:b8:2b: fc:34:5b:9e:14:ab:b2:62:b4:8d:fb:ec:ab:9e:35:a8:5a:4f: 1a:b0:ea:59:2b:14:2e:c8:32:87:7f:7f:bc:8c:0a:1e:1c:e7: 38:56:4b:a7:82:95:35:6a:30:28:96:cd:03:cb:04:b2:d8:86: 26:a6:57:89:6d:33:52:30:56:67:79:3c:06:fd:2c:29:d8:89: 66:a1:81:4a:7b:4a:dd:47:40:33:2c:d7:57:3b:fa:58:b8:30: d8:96:7b:5e:ed:ac:a4:df:db:fa:ae:4d:7c:08:83:f8:2a:0b: 3d:7f:2e:f8:21:bd:c7:9f:80:d1:2e:3c:2b:c8:41:66:2f:4c: 41:32:9b:28:23:54:78:1e:17:f8:03:2e:fa:e2:a4:85:4b:a3: 2b:fa:4c:81 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUNFLhL0zTy/9ZgxXswi7UY6tRxp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMDU5NTZaFw0yNTAyMDcxMTA0NTZaMDMxMTAvBgNV BAMTKDA4NkY0QkQzODM1MkI4Q0RDQUNDMUUyMkFEREVBREYzQTM4MEZFMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC37l9SEVBEML28KJsAbiLypfYB u7wJZo16EoKZeGOmr3iF6bLKmq0JzENciqlMCXLJXRZGzML8Fnp8QZtp+xhSiNG5 /G52Gqq8l2W0F1u6gNtq+1yT3n7a5hedD/XZqdaKgHQ7WoXB6Aw0CJVC2RpOk/dy 8xcSyKTKgpD0LsIvs7UT0fmrS+o+geha5TZel+JcKBmoLjjTGBD56eCjwET4W1SK VskPCx1SxgdfGUhXfwU8RUOJBRv1of6ncgQNS1kO89h3wKHDBQ3YYOFLEniW4gQi DVAqbhmToxGcIL5Y1quG3uWqYY8itniGADo0baBAdIIwYfwAj0+rsMYRe2m7AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUCG9L04NSuM3KzB4ird6t86OA/iQwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAEDANBgkqhkiG9w0BAQsFAAOCAQEAAaeLRCS1yUAvnHg9hPPfAouXF1+olxLN DZgkADJIII75RMuNhWdcQp1WWryx+fIXOBAfPq9SMmZpUxH/r+3RI1JPjqBOKxxV A8I3ey3+jFkm5KFSp+p6UUV+laxUuDRPm8raRkScThI6Y7gr/DRbnhSrsmK0jfvs q541qFpPGrDqWSsULsgyh39/vIwKHhznOFZLp4KVNWowKJbNA8sEstiGJqZXiW0z UjBWZ3k8Bv0sKdiJZqGBSntK3UdAMyzXVzv6WLgw2JZ7Xu2spN/b+q5NfAiD+CoL PX8u+CG9x5+A0S48K8hBZi9MQTKbKCNUeB4X+AMu+uKkhUujK/pMgQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:00 2024 by rpki-client on console-ams.rpki-client.org