$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 1JC9FyMkLbjMnYmgtX2+wmyCS3HXOHrjLSp6vYgJBsA= Subject key identifier: C0:4B:85:38:76:B8:D9:65:9B:6D:51:DA:BD:0B:78:2C:64:F4:73:B6 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 2CFB5C058B51107995B1EB893F1E5E16A3D5B0FB Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:00 +0000 ROA not before: Sun 01 Sep 2024 06:55:00 +0000 ROA not after: Sun 31 Aug 2025 07:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fb:5c:05:8b:51:10:79:95:b1:eb:89:3f:1e:5e:16:a3:d5:b0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:00 2024 GMT Not After : Aug 31 07:00:00 2025 GMT Subject: CN=C04B853876B8D9659B6D51DABD0B782C64F473B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:88:6b:0b:85:b5:ca:fc:06:1c:a7:0e:e1:65: ca:81:04:59:4c:e3:9a:bf:c7:15:5f:7e:f5:21:fa: 84:e0:27:4a:11:da:6b:c5:0d:83:39:4d:bf:a7:15: 45:60:c9:bf:9c:94:58:fd:b1:b7:0e:58:67:35:44: 56:72:21:3d:82:5b:19:82:ae:b2:23:db:cc:cc:c7: c5:bd:1d:b8:86:3f:77:bb:7a:5c:e4:d6:53:a4:54: 10:96:cf:fa:fa:ee:0a:5a:6d:41:fa:a3:a7:55:37: 92:69:a0:6b:90:2c:51:51:75:2b:9a:b5:2d:16:1b: 9d:dc:9a:5a:3a:b7:bb:ed:40:2a:05:54:0e:53:0b: 3d:2c:43:91:9d:02:d1:c9:dc:1d:61:03:05:e9:31: d5:d2:4a:29:b8:29:4d:7e:5f:56:1d:4b:88:3e:51: 87:e4:ab:e4:49:ff:87:71:8c:77:9a:58:ff:5f:ef: 43:87:05:94:df:4a:d4:8d:c5:86:71:2a:11:8c:dc: 7e:d3:ec:ae:d8:34:36:98:5c:8d:2d:ee:2d:f9:7d: 7e:45:71:27:2c:2a:55:51:86:b1:7b:6a:59:32:3a: c7:38:53:7e:fa:5d:10:c6:e5:81:34:10:97:73:06: 03:ce:55:31:95:5f:86:6a:de:32:de:43:f3:51:60: 62:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4B:85:38:76:B8:D9:65:9B:6D:51:DA:BD:0B:78:2C:64:F4:73:B6 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/35 Signature Algorithm: sha256WithRSAEncryption c9:82:c8:59:99:24:f0:24:3f:36:cb:d5:d0:89:e9:ea:6f:6a: 40:88:3b:66:e2:3f:52:b5:4b:b4:55:70:bc:ef:2b:ee:df:03: 1d:28:89:26:09:c7:ea:49:e8:23:c3:0c:a7:62:61:a2:9c:fe: c4:67:97:76:86:7e:de:d6:14:ce:cf:d7:bb:48:63:97:39:e3: 09:0d:9e:28:7f:19:1b:45:60:03:5e:70:28:c4:b6:20:7f:7c: c0:ba:d0:09:14:e9:57:82:d7:6f:00:ab:5c:fb:d0:fc:77:f6: f7:c9:bf:f2:70:63:cf:62:35:e2:9a:d1:35:27:db:2f:d5:96: 98:ab:ce:a6:7f:e2:57:16:0e:b5:4f:3e:10:d5:e4:0f:c7:f8: ef:40:25:e1:14:97:d9:e2:fb:28:d2:99:9b:2c:d2:61:15:41: 23:4e:2c:f7:6a:7d:2b:f8:87:cb:f5:65:e2:cf:bc:7a:75:b8: 4e:4d:14:38:4d:b5:57:dc:a1:08:40:6e:ed:92:0b:df:da:e6: f3:46:59:b5:57:58:ed:90:45:c3:87:23:43:f9:13:2d:9d:a0: c6:5a:f0:3a:f9:a0:47:13:8d:97:f7:89:2d:c8:b5:97:ea:ee: 57:d9:55:82:e1:c1:23:74:50:96:de:f9:36:51:f7:a7:da:4a: 8c:dc:2a:36 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIULPtcBYtREHmVseuJPx5eFqPVsPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDBaFw0yNTA4MzEwNzAwMDBaMDMxMTAvBgNV BAMTKEMwNEI4NTM4NzZCOEQ5NjU5QjZENTFEQUJEMEI3ODJDNjRGNDczQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaiGsLhbXK/AYcpw7hZcqBBFlM 45q/xxVffvUh+oTgJ0oR2mvFDYM5Tb+nFUVgyb+clFj9sbcOWGc1RFZyIT2CWxmC rrIj28zMx8W9HbiGP3e7elzk1lOkVBCWz/r67gpabUH6o6dVN5JpoGuQLFFRdSua tS0WG53cmlo6t7vtQCoFVA5TCz0sQ5GdAtHJ3B1hAwXpMdXSSim4KU1+X1YdS4g+ UYfkq+RJ/4dxjHeaWP9f70OHBZTfStSNxYZxKhGM3H7T7K7YNDaYXI0t7i35fX5F cScsKlVRhrF7alkyOsc4U376XRDG5YE0EJdzBgPOVTGVX4Zq3jLeQ/NRYGKnAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUwEuFOHa42WWbbVHavQt4LGT0c7YwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAyYLIWZkk8CQ/NsvV0Inp6m9qQIg7ZuI/ UrVLtFVwvO8r7t8DHSiJJgnH6knoI8MMp2Jhopz+xGeXdoZ+3tYUzs/Xu0hjlznj CQ2eKH8ZG0VgA15wKMS2IH98wLrQCRTpV4LXbwCrXPvQ/Hf298m/8nBjz2I14prR NSfbL9WWmKvOpn/iVxYOtU8+ENXkD8f470Al4RSX2eL7KNKZmyzSYRVBI04s92p9 K/iHy/Vl4s+8enW4Tk0UOE21V9yhCEBu7ZIL39rm80ZZtVdY7ZBFw4cjQ/kTLZ2g xlrwOvmgRxONl/eJLci1l+ruV9lVguHBI3RQlt75NlH3p9pKjNwqNg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org