$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: m9xJIKvvW+wOMkxEZEtcupeylmmu3PSEhRevzWT9EbQ= Subject key identifier: EE:0D:AC:CE:D6:CC:03:F9:04:32:2F:95:F1:F9:61:CD:DA:D2:60:61 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 2359032AFFC03DDA114A42E682067A13D04732E7 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:01 +0000 ROA not before: Sun 01 Oct 2023 05:55:01 +0000 ROA not after: Sun 29 Sep 2024 06:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:59:03:2a:ff:c0:3d:da:11:4a:42:e6:82:06:7a:13:d0:47:32:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:01 2023 GMT Not After : Sep 29 06:00:01 2024 GMT Subject: CN=EE0DACCED6CC03F904322F95F1F961CDDAD26061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ce:ec:7e:f4:3f:75:47:bd:91:12:79:ef:86: 50:53:08:e1:54:2c:91:2c:e6:39:03:a7:c7:f9:64: c8:f6:50:8f:c3:0d:63:db:e3:67:57:2c:85:50:62: ba:e7:42:3d:e3:ae:e1:8a:56:48:a1:5b:75:2d:bb: b7:49:ae:68:91:26:03:a5:3b:fa:36:9a:bb:ae:f8: 45:f0:e6:bb:23:29:3c:98:5c:f0:4d:13:f8:bd:a7: c4:84:52:33:7b:4a:f3:8c:f8:9a:1c:81:f5:6d:bb: a4:bb:e6:af:61:2d:69:5e:c5:0a:58:ed:1f:65:bc: a4:ba:67:60:50:63:76:b4:e3:1d:94:9d:e5:95:8d: c8:1d:90:84:fb:ba:47:7e:d5:7f:bf:ad:14:fb:d8: 43:64:00:4f:1a:51:8f:f8:f4:e3:09:83:37:f0:db: 11:2c:41:d5:7b:17:40:04:d0:8e:40:1c:48:19:e3: 05:02:c7:76:3b:9f:6a:f8:d4:43:a1:6b:60:e9:a0: 35:21:9d:40:15:e0:b5:3b:ce:c0:27:f4:55:71:f6: bd:18:ff:09:83:8e:c4:70:a7:80:d1:22:ab:84:1c: 03:f6:8c:c5:57:87:fd:89:00:84:43:8e:e1:71:d9: 2c:b7:f4:53:5f:cf:62:d2:54:aa:f1:da:f6:bc:f6: ce:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0D:AC:CE:D6:CC:03:F9:04:32:2F:95:F1:F9:61:CD:DA:D2:60:61 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/35 Signature Algorithm: sha256WithRSAEncryption b7:fc:d0:74:8f:ea:52:c0:0d:09:fb:24:29:9d:88:bc:7d:eb: a4:c3:b4:1a:a4:6b:44:84:d3:ed:3e:9a:5a:da:ee:98:60:63: d1:af:d2:ab:19:73:da:c9:a7:5e:6f:ee:e9:ad:b5:f9:94:d5: 18:ca:d3:54:2a:38:72:18:7a:47:93:44:87:62:ac:a3:35:f7: ed:fd:62:be:14:4b:e6:ea:01:fb:c8:26:c0:a8:f2:cb:2e:f9: d2:4f:81:a6:c2:a0:ce:91:d7:7e:29:84:a0:7b:01:68:80:19: 65:ce:2d:8e:5a:b1:45:0c:1b:07:54:31:7d:de:e4:f8:2f:04: cf:e1:c1:51:b2:48:51:42:bb:c3:0f:71:02:85:24:52:0b:d8: 0e:19:f6:21:36:6f:58:17:90:89:76:68:c5:56:a6:d8:ca:f0: 04:de:23:21:b8:9e:40:29:40:f9:4f:8d:86:dd:2d:75:76:ff: 96:28:af:1f:d1:86:8d:d5:2b:5b:05:d7:c1:48:a7:a5:b6:57: e8:4a:05:67:b5:de:51:f2:cd:28:90:81:ba:0d:6f:62:d2:4b: 9b:b8:0f:7f:e1:98:23:c9:b2:3e:22:68:17:47:88:d9:eb:31: 4b:a4:2e:1e:a7:58:46:b1:2f:92:27:ef:ac:b6:8b:8c:cd:59: 8d:a5:59:a5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUI1kDKv/APdoRSkLmggZ6E9BHMucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDFaFw0yNDA5MjkwNjAwMDFaMDMxMTAvBgNV BAMTKEVFMERBQ0NFRDZDQzAzRjkwNDMyMkY5NUYxRjk2MUNEREFEMjYwNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUzux+9D91R72REnnvhlBTCOFU LJEs5jkDp8f5ZMj2UI/DDWPb42dXLIVQYrrnQj3jruGKVkihW3Utu7dJrmiRJgOl O/o2mruu+EXw5rsjKTyYXPBNE/i9p8SEUjN7SvOM+JocgfVtu6S75q9hLWlexQpY 7R9lvKS6Z2BQY3a04x2UneWVjcgdkIT7ukd+1X+/rRT72ENkAE8aUY/49OMJgzfw 2xEsQdV7F0AE0I5AHEgZ4wUCx3Y7n2r41EOha2DpoDUhnUAV4LU7zsAn9FVx9r0Y /wmDjsRwp4DRIquEHAP2jMVXh/2JAIRDjuFx2Sy39FNfz2LSVKrx2va89s6VAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU7g2sztbMA/kEMi+V8flhzdrSYGEwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAt/zQdI/qUsANCfskKZ2IvH3rpMO0GqRr RITT7T6aWtrumGBj0a/Sqxlz2smnXm/u6a21+ZTVGMrTVCo4chh6R5NEh2KsozX3 7f1ivhRL5uoB+8gmwKjyyy750k+BpsKgzpHXfimEoHsBaIAZZc4tjlqxRQwbB1Qx fd7k+C8Ez+HBUbJIUUK7ww9xAoUkUgvYDhn2ITZvWBeQiXZoxVam2MrwBN4jIbie QClA+U+Nht0tdXb/liivH9GGjdUrWwXXwUinpbZX6EoFZ7XeUfLNKJCBug1vYtJL m7gPf+GYI8myPiJoF0eI2esxS6QuHqdYRrEvkifvrLaLjM1ZjaVZpQ== -----END CERTIFICATE-----Generated at Fri May 3 08:20:24 2024 by rpki-client on console-ams.rpki-client.org