$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: YRgk7KI0+nFkpi51j4DtnUSzATMk6TV5MJuL23PM7y8= Subject key identifier: B8:E4:FD:20:35:34:4A:52:E5:82:4A:D1:AB:67:52:0E:98:47:33:33 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 500314E7A51DE7E6DE71A0D79B7BD0E5B578C807 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:03:14:e7:a5:1d:e7:e6:de:71:a0:d7:9b:7b:d0:e5:b5:78:c8:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=B8E4FD2035344A52E5824AD1AB67520E98473333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e4:01:7e:f7:2f:2b:6f:28:1a:d4:2c:32:87: ee:b8:c8:1b:22:73:da:6d:3e:0f:2d:72:5c:b9:51: b1:04:3a:bd:44:d7:ce:4c:b2:1d:e6:8f:98:6d:b1: bf:84:de:b6:f8:23:05:b9:b3:80:6f:8d:ff:6e:bd: 71:d5:d1:c5:d2:79:79:ab:9f:e1:cc:97:1d:28:74: d8:3a:ea:c2:93:1f:05:45:f3:21:6b:0b:ca:17:55: 2f:2b:2a:67:7f:47:03:bc:47:ed:d2:4f:40:7c:c6: 63:9c:fc:11:22:76:12:6f:8f:8b:8a:84:98:a9:56: ef:b4:5f:a3:29:fa:2f:8f:3e:a8:c1:d5:86:ca:18: 3f:c3:8c:b6:82:a6:21:9e:fc:74:09:8d:b8:a0:9e: cd:06:fb:f4:e8:20:bd:9b:8d:8b:55:c8:ee:70:57: f8:87:57:00:f4:4a:40:a0:12:32:7c:56:9d:7e:43: fd:af:1c:dc:0a:b4:fd:35:a9:08:30:16:8b:d0:8e: cd:97:46:1f:0d:de:b6:9c:f7:d3:99:86:07:0c:6b: 06:52:80:ea:87:7d:6d:98:ab:dc:66:94:1c:b3:ef: 0c:96:d8:c5:4a:7f:11:0a:15:af:44:ba:29:db:dd: a1:f2:31:ee:4e:c8:e4:f9:d2:c2:69:64:54:d7:4a: 8d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E4:FD:20:35:34:4A:52:E5:82:4A:D1:AB:67:52:0E:98:47:33:33 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 79:a0:68:99:cb:d0:4e:2c:15:a2:d2:4a:72:0e:a5:53:3d:00: 56:61:0d:7f:91:82:9c:07:56:c0:53:fc:2f:8a:f4:88:d3:14: 05:03:e4:cf:57:ee:2c:35:a2:76:44:c8:fd:e9:76:6b:c9:a9: 9a:25:7b:cc:90:ee:54:d9:d4:96:ac:c7:e8:85:e3:72:57:dc: b4:ac:d7:22:5b:2a:2c:95:19:98:79:d2:6a:c4:ef:40:ba:8b: 1b:ff:1c:cc:d2:ae:c9:b2:32:59:82:f3:f5:a2:7e:04:81:65: db:7f:46:06:7a:08:43:20:32:03:fe:6b:8e:61:5b:c4:51:ec: 66:6d:fe:19:4e:9b:db:be:9f:1c:1d:d0:d7:81:a0:a5:42:16: 83:8d:75:91:e2:a7:84:4b:c4:3f:7a:06:44:d5:cb:56:3a:ca: ba:c9:07:e3:e1:bf:54:81:06:17:d9:62:35:99:b6:6b:1e:70: 4d:a4:bc:97:aa:60:21:8a:48:d0:99:ef:66:1b:42:97:f4:bd: 83:58:35:56:28:36:12:ef:c5:09:e9:7c:cf:f4:3e:5e:26:99: 41:38:3d:a1:3a:6f:e7:db:4a:ec:0b:c8:02:94:bf:d9:23:bc: a4:d0:c2:9c:af:2b:b6:d5:b1:fb:40:0a:de:ca:7f:87:90:d8: a7:cd:49:d0 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUUAMU56Ud5+becaDXm3vQ5bV4yAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKEI4RTRGRDIwMzUzNDRBNTJFNTgyNEFEMUFCNjc1MjBFOTg0NzMzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS5AF+9y8rbyga1Cwyh+64yBsi c9ptPg8tcly5UbEEOr1E185Msh3mj5htsb+E3rb4IwW5s4Bvjf9uvXHV0cXSeXmr n+HMlx0odNg66sKTHwVF8yFrC8oXVS8rKmd/RwO8R+3ST0B8xmOc/BEidhJvj4uK hJipVu+0X6Mp+i+PPqjB1YbKGD/DjLaCpiGe/HQJjbigns0G+/ToIL2bjYtVyO5w V/iHVwD0SkCgEjJ8Vp1+Q/2vHNwKtP01qQgwFovQjs2XRh8N3rac99OZhgcMawZS gOqHfW2Yq9xmlByz7wyW2MVKfxEKFa9Euinb3aHyMe5OyOT50sJpZFTXSo2pAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUuOT9IDU0SlLlgkrRq2dSDphHMzMwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAeaBomcvQTiwVotJKcg6lUz0AVmENf5GC nAdWwFP8L4r0iNMUBQPkz1fuLDWidkTI/el2a8mpmiV7zJDuVNnUlqzH6IXjclfc tKzXIlsqLJUZmHnSasTvQLqLG/8czNKuybIyWYLz9aJ+BIFl239GBnoIQyAyA/5r jmFbxFHsZm3+GU6b276fHB3Q14GgpUIWg411keKnhEvEP3oGRNXLVjrKuskH4+G/ VIEGF9liNZm2ax5wTaS8l6pgIYpI0JnvZhtCl/S9g1g1Vig2Eu/FCel8z/Q+XiaZ QTg9oTpv59tK7AvIApS/2SO8pNDCnK8rttWx+0AK3sp/h5DYp81J0A== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org