$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: gDsFMPdS1IaRtryZzewnAdvmRW5ZS5ZRqCXnqy0EfSc= Subject key identifier: BA:1B:6A:14:90:E7:56:70:E8:81:8D:8C:05:22:45:F7:C6:50:20:6A Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5740EEE5D50D01617C42EBE3BE90D3115C8DCA81 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:02 +0000 ROA not before: Sun 01 Sep 2024 06:55:02 +0000 ROA not after: Sun 31 Aug 2025 07:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:2000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:40:ee:e5:d5:0d:01:61:7c:42:eb:e3:be:90:d3:11:5c:8d:ca:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:02 2024 GMT Not After : Aug 31 07:00:02 2025 GMT Subject: CN=BA1B6A1490E75670E8818D8C052245F7C650206A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c6:b6:4a:97:ce:9f:88:90:b7:b4:57:19:ff: 3c:c7:50:f5:26:db:d5:f2:3d:11:e4:74:69:76:d6: 24:2b:0e:bd:2c:d8:13:7e:3f:d2:ee:83:94:72:d8: c4:e1:c4:d7:58:96:8e:8a:40:ba:e6:9e:4c:25:7c: 3a:84:e4:2e:e7:76:5d:15:63:a6:3f:48:df:8c:1d: e6:9f:70:d6:13:c5:08:43:b8:e2:f0:22:a2:9f:d3: f1:bc:cb:eb:cf:e4:01:76:fb:05:ab:dd:16:43:b7: ea:32:75:80:d5:d5:ff:62:5f:a7:a4:20:0e:85:73: 0e:ec:d7:31:7e:73:63:d9:41:7f:b1:7f:fb:de:52: f3:47:3f:fc:6d:ac:74:58:72:7a:86:32:1e:ef:68: 29:56:69:24:ac:1a:f5:af:2d:0e:1a:d8:d2:c4:4d: a9:8d:ab:d8:99:82:0e:84:1c:48:af:f5:ec:bc:ad: dc:73:78:9f:6e:e0:85:73:f8:45:15:8b:9f:ab:b9: 36:f7:c6:b7:ff:b2:4f:9d:92:61:1d:79:95:bd:02: 8e:d8:1b:2e:6e:5f:72:2f:5e:fc:28:2d:76:5f:68: e6:c6:34:89:55:dd:29:dc:d3:9b:bc:c0:13:56:77: a4:d7:cc:0c:96:a3:db:49:4a:81:78:86:c7:aa:41: 3d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1B:6A:14:90:E7:56:70:E8:81:8D:8C:05:22:45:F7:C6:50:20:6A X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a323030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:2000::/35 Signature Algorithm: sha256WithRSAEncryption b3:81:62:10:1b:da:c3:d4:5e:cc:c7:3e:5b:c8:02:e1:f7:f3: a1:96:97:68:52:52:80:44:24:75:40:72:74:bb:87:0a:6b:e9: 0e:ea:d8:2a:cf:e4:b9:29:b0:b9:d8:3e:b1:bf:3e:27:6e:b0: 3b:bf:13:c8:d3:2f:af:cb:6f:57:82:8e:70:a1:ca:19:d9:69: 3d:e0:c0:29:09:d4:72:a0:e4:f7:99:b5:32:79:1d:90:ba:ab: 82:c0:c7:9a:8d:92:80:77:32:53:72:b0:e0:42:14:5d:36:99: d1:ae:19:db:b1:a5:e0:d8:db:b6:fe:96:50:11:39:78:6a:98: e7:11:58:db:df:a4:73:0c:79:7b:65:95:11:19:26:36:bd:4b: 2c:51:00:ed:bd:0c:ea:c4:11:66:3a:9c:6e:f1:ee:6f:8b:31: d7:0e:98:cf:68:f9:bd:6c:1d:dd:5c:8f:7a:34:ce:76:d6:b2: e3:ee:3a:6e:68:1f:55:fd:d6:da:d8:58:dc:0d:41:cf:4f:16: 86:32:5e:65:98:c5:11:7e:ad:e3:e4:1f:e1:48:03:97:8a:6c: 61:49:54:58:c8:d2:a8:3c:07:9b:e8:a5:ff:ea:0a:5f:f3:58: d6:3b:05:f5:de:b5:45:5f:89:6f:66:0f:8f:50:30:55:4c:b5: ae:7a:35:23 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUV0Du5dUNAWF8QuvjvpDTEVyNyoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDJaFw0yNTA4MzEwNzAwMDJaMDMxMTAvBgNV BAMTKEJBMUI2QTE0OTBFNzU2NzBFODgxOEQ4QzA1MjI0NUY3QzY1MDIwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCxrZKl86fiJC3tFcZ/zzHUPUm 29XyPRHkdGl21iQrDr0s2BN+P9Lug5Ry2MThxNdYlo6KQLrmnkwlfDqE5C7ndl0V Y6Y/SN+MHeafcNYTxQhDuOLwIqKf0/G8y+vP5AF2+wWr3RZDt+oydYDV1f9iX6ek IA6Fcw7s1zF+c2PZQX+xf/veUvNHP/xtrHRYcnqGMh7vaClWaSSsGvWvLQ4a2NLE TamNq9iZgg6EHEiv9ey8rdxzeJ9u4IVz+EUVi5+ruTb3xrf/sk+dkmEdeZW9Ao7Y Gy5uX3IvXvwoLXZfaObGNIlV3Snc05u8wBNWd6TXzAyWo9tJSoF4hseqQT0jAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUuhtqFJDnVnDogY2MBSJF98ZQIGowHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAIDANBgkqhkiG9w0BAQsFAAOCAQEAs4FiEBvaw9RezMc+W8gC4ffzoZaXaFJS gEQkdUBydLuHCmvpDurYKs/kuSmwudg+sb8+J26wO78TyNMvr8tvV4KOcKHKGdlp PeDAKQnUcqDk95m1MnkdkLqrgsDHmo2SgHcyU3Kw4EIUXTaZ0a4Z27Gl4Njbtv6W UBE5eGqY5xFY29+kcwx5e2WVERkmNr1LLFEA7b0M6sQRZjqcbvHub4sx1w6Yz2j5 vWwd3VyPejTOdtay4+46bmgfVf3W2thY3A1Bz08WhjJeZZjFEX6t4+Qf4UgDl4ps YUlUWMjSqDwHm+il/+oKX/NY1jsF9d61RV+Jb2YPj1AwVUy1rno1Iw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:00 2024 by rpki-client on console-ams.rpki-client.org