$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: O3rdtNwrWjZxAeHeXErPaJF4tTWavU7T82PE7Na38Do= Subject key identifier: 1E:A5:2F:81:77:61:1E:80:0C:34:71:31:01:B4:5E:40:4E:B4:87:41 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 21879638911F9F8358D31165EC1C7822C90CFB9E Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:06:10 +0000 ROA not before: Fri 09 Feb 2024 11:01:10 +0000 ROA not after: Fri 07 Feb 2025 11:06:10 +0000 asID: 140423 IP address blocks: 2406:20c0:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:87:96:38:91:1f:9f:83:58:d3:11:65:ec:1c:78:22:c9:0c:fb:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:01:10 2024 GMT Not After : Feb 7 11:06:10 2025 GMT Subject: CN=1EA52F8177611E800C34713101B45E404EB48741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cd:04:7a:f6:0a:2c:11:30:14:20:4b:6e:2b: 1c:7c:31:db:02:bb:4f:ac:80:4d:a6:d0:17:54:05: e9:3e:81:20:b9:7c:17:1c:d7:1d:fe:9c:1e:61:f2: 59:04:df:87:0d:23:68:51:a4:7f:65:3f:57:1b:e1: 44:a6:bc:0c:ef:fc:99:94:4b:63:94:07:da:06:a6: 61:2b:a6:56:36:dc:a9:ff:07:7a:ba:99:cc:d7:b2: 4a:8a:39:89:4a:95:b4:ff:a9:74:d3:61:97:cd:1a: 37:a9:ca:3e:40:57:fb:d6:97:bb:a5:73:ed:9f:56: 45:42:46:6e:13:34:e5:87:ef:7a:10:09:ff:41:b1: 8f:4f:7f:b0:72:73:de:0a:62:6b:6d:59:d0:f4:7a: 23:14:47:2f:ea:82:d1:c8:d7:24:fe:d3:10:1b:18: 86:f8:e9:a3:41:87:e5:2f:00:5e:d4:c7:52:91:d1: bd:04:c9:3f:b6:b9:a6:9f:bf:51:cd:ea:4d:30:98: 33:95:71:51:5d:c2:9b:11:a2:14:1e:76:9c:0f:e4: 63:c3:e1:48:77:9d:ce:02:fb:01:d1:c3:9d:d5:ec: 30:8c:55:97:9a:78:80:6a:ad:92:e1:94:8f:a7:57: 4a:44:7e:96:49:59:92:ad:d3:ed:d7:ec:bc:09:07: ac:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A5:2F:81:77:61:1E:80:0C:34:71:31:01:B4:5E:40:4E:B4:87:41 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:3000::/36 Signature Algorithm: sha256WithRSAEncryption ab:81:83:c2:52:26:d3:3c:ea:ba:d3:00:e5:5d:22:d4:f7:2b: eb:0b:c1:2f:fb:93:90:f9:fb:ec:5e:ea:5b:41:94:a2:e5:aa: 34:86:26:ea:85:b8:e1:cc:95:9d:3c:3a:bf:5d:69:0e:c3:a7: 26:d2:fc:a9:bd:dc:7f:8b:6b:0f:ca:3c:16:51:f3:d6:71:a1: bf:1d:d1:33:a1:cf:b7:8b:21:75:e5:bf:7b:7c:8a:9b:15:62: 67:d5:19:3c:8a:27:67:81:d2:4a:d3:8f:b7:07:10:74:d2:85: e9:f7:23:c0:1c:a1:f8:e0:6b:c8:67:ab:0b:3b:f2:ba:6e:54: f5:bd:31:78:08:bc:df:76:e5:68:4e:58:71:4d:63:bc:80:cd: a6:18:f9:de:ba:16:84:69:b1:b5:a6:7b:6f:81:35:07:24:84: a4:7a:8a:8a:fb:c1:2f:7d:44:d4:97:1e:88:03:32:a5:23:5f: 90:37:5d:6a:02:fb:05:61:4f:10:04:1e:d8:da:08:04:ac:8e: f4:62:1e:6d:08:3c:a0:39:0d:af:62:ab:79:11:8d:61:8b:5e: dc:0b:59:b3:83:18:a2:bb:6f:3e:a0:83:7c:5b:67:cd:d7:3a: fd:84:35:34:78:da:9d:96:47:09:bc:64:bc:f7:af:9d:03:e2: 4a:ff:bd:77 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUIYeWOJEfn4NY0xFl7Bx4IskM+54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAxMTBaFw0yNTAyMDcxMTA2MTBaMDMxMTAvBgNV BAMTKDFFQTUyRjgxNzc2MTFFODAwQzM0NzEzMTAxQjQ1RTQwNEVCNDg3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDezQR69gosETAUIEtuKxx8MdsC u0+sgE2m0BdUBek+gSC5fBcc1x3+nB5h8lkE34cNI2hRpH9lP1cb4USmvAzv/JmU S2OUB9oGpmErplY23Kn/B3q6mczXskqKOYlKlbT/qXTTYZfNGjepyj5AV/vWl7ul c+2fVkVCRm4TNOWH73oQCf9BsY9Pf7Byc94KYmttWdD0eiMURy/qgtHI1yT+0xAb GIb46aNBh+UvAF7Ux1KR0b0EyT+2uaafv1HN6k0wmDOVcVFdwpsRohQedpwP5GPD 4Uh3nc4C+wHRw53V7DCMVZeaeIBqrZLhlI+nV0pEfpZJWZKt0+3X7LwJB6zjAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUHqUvgXdhHoAMNHExAbReQE60h0EwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzMzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAMDANBgkqhkiG9w0BAQsFAAOCAQEAq4GDwlIm0zzqutMA5V0i1Pcr6wvBL/uT kPn77F7qW0GUouWqNIYm6oW44cyVnTw6v11pDsOnJtL8qb3cf4trD8o8FlHz1nGh vx3RM6HPt4shdeW/e3yKmxViZ9UZPIonZ4HSStOPtwcQdNKF6fcjwByh+OBryGer Czvyum5U9b0xeAi833blaE5YcU1jvIDNphj53roWhGmxtaZ7b4E1BySEpHqKivvB L31E1JceiAMypSNfkDddagL7BWFPEAQe2NoIBKyO9GIebQg8oDkNr2KreRGNYYte 3AtZs4MYortvPqCDfFtnzdc6/YQ1NHjanZZHCbxkvPevnQPiSv+9dw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org