$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: Hnm3sqVCI7bIi8ZNNlhi+QO21CaaOXt8EoiMCptLZlU= Subject key identifier: 25:34:21:C3:3F:89:A5:DD:8A:46:62:B7:16:00:A5:CB:F4:FF:F2:A3 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 4C7F5DDC0417A74621731F7BF3B6E1A7C30A42ED Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:06:30 +0000 ROA not before: Fri 09 Feb 2024 11:01:30 +0000 ROA not after: Fri 07 Feb 2025 11:06:30 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:7f:5d:dc:04:17:a7:46:21:73:1f:7b:f3:b6:e1:a7:c3:0a:42:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:01:30 2024 GMT Not After : Feb 7 11:06:30 2025 GMT Subject: CN=253421C33F89A5DD8A4662B71600A5CBF4FFF2A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cb:39:e0:79:d4:96:a0:95:a4:0b:21:55:70: 4d:58:92:45:79:63:63:fe:6e:d2:f9:53:83:4e:a3: 55:18:6d:84:c5:8b:b9:85:22:c6:50:1f:6d:20:e4: 38:2b:4a:30:df:8d:5f:c6:1e:1b:31:64:a3:14:77: 32:d4:3e:89:db:e6:ef:47:bd:fd:a8:2f:83:6a:b8: 8b:ff:79:15:a0:43:53:0e:b3:71:06:55:cf:78:bb: 6c:c4:cf:be:b3:1c:77:69:1a:c8:e3:70:45:d0:14: a7:80:fa:bc:05:16:b9:0b:ae:f4:d9:60:4d:a2:4d: 66:d9:12:55:be:9b:25:e4:18:8c:64:0f:7e:8d:7b: b2:1a:4d:0d:5b:36:6f:ab:02:eb:80:ce:7d:39:23: ff:38:ca:f7:e0:ad:f0:a0:fe:68:a4:ad:18:8a:f7: 43:ef:ac:62:97:c5:55:de:da:dd:da:ca:cc:c0:f8: 6a:97:0c:9e:94:79:b8:db:76:5a:cf:c2:aa:ac:6e: 15:e9:58:57:d3:71:1c:06:ad:1d:53:c7:5a:1d:c0: c7:1a:4c:b1:68:38:a8:0e:3e:ce:96:04:5e:5c:01: ff:3e:fd:ea:18:d1:da:b0:be:71:08:4b:c9:c7:17: b5:00:4a:0a:c8:17:83:0b:91:7a:ef:f0:9f:32:af: 74:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:34:21:C3:3F:89:A5:DD:8A:46:62:B7:16:00:A5:CB:F4:FF:F2:A3 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/36 Signature Algorithm: sha256WithRSAEncryption a1:0c:04:6b:79:5c:e7:32:97:e9:61:9a:9e:d4:f1:69:d7:c1: 40:d2:fb:c5:44:d7:bb:81:6b:20:ab:f4:b6:5e:f2:cf:82:ec: 6f:ef:98:dd:7c:d8:cc:56:7e:fb:20:6d:4d:61:7f:8e:e6:5c: 17:33:bd:ee:7d:af:fe:40:b5:98:2d:d3:f8:85:35:9b:fd:57: 90:28:29:40:4c:4a:3f:5e:a1:8d:20:ab:2d:51:e0:92:1d:54: 85:f5:f8:c5:c3:25:07:c6:6f:36:e5:5f:5c:be:d0:21:8e:0a: d3:de:c2:70:c6:c4:85:91:3c:64:b9:76:02:5e:cc:b3:58:3b: 12:ef:6c:66:90:75:cf:fa:47:13:07:f8:50:d8:94:81:48:ec: 9a:2f:1a:66:33:4e:5a:e6:34:96:e6:22:62:ab:f0:c0:c3:16: 3b:7d:bc:75:90:67:af:3a:2c:a5:84:a2:1d:70:93:eb:37:4d: c4:1e:e4:ab:00:fe:ab:11:8f:1e:ac:52:7b:51:7f:05:1e:6c: 0c:be:a5:f0:c4:27:45:9a:36:46:2d:ee:d4:3a:98:b9:d9:3b: 9d:0b:51:4d:9f:3b:b2:bd:53:09:9b:4a:1e:99:2a:86:df:43: 90:55:30:d9:1c:3a:b3:57:a0:8b:2a:4b:1a:bc:7b:61:ea:4f: 87:bb:61:7b -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUTH9d3AQXp0Yhcx9787bhp8MKQu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAxMzBaFw0yNTAyMDcxMTA2MzBaMDMxMTAvBgNV BAMTKDI1MzQyMUMzM0Y4OUE1REQ4QTQ2NjJCNzE2MDBBNUNCRjRGRkYyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClyzngedSWoJWkCyFVcE1YkkV5 Y2P+btL5U4NOo1UYbYTFi7mFIsZQH20g5DgrSjDfjV/GHhsxZKMUdzLUPonb5u9H vf2oL4NquIv/eRWgQ1MOs3EGVc94u2zEz76zHHdpGsjjcEXQFKeA+rwFFrkLrvTZ YE2iTWbZElW+myXkGIxkD36Ne7IaTQ1bNm+rAuuAzn05I/84yvfgrfCg/mikrRiK 90PvrGKXxVXe2t3ayszA+GqXDJ6UebjbdlrPwqqsbhXpWFfTcRwGrR1Tx1odwMca TLFoOKgOPs6WBF5cAf8+/eoY0dqwvnEIS8nHF7UASgrIF4MLkXrv8J8yr3SHAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUJTQhwz+Jpd2KRmK3FgCly/T/8qMwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAoQwEa3lc5zKX6WGantTxadfBQNL7xUTX u4FrIKv0tl7yz4Lsb++Y3XzYzFZ++yBtTWF/juZcFzO97n2v/kC1mC3T+IU1m/1X kCgpQExKP16hjSCrLVHgkh1UhfX4xcMlB8ZvNuVfXL7QIY4K097CcMbEhZE8ZLl2 Al7Ms1g7Eu9sZpB1z/pHEwf4UNiUgUjsmi8aZjNOWuY0luYiYqvwwMMWO328dZBn rzospYSiHXCT6zdNxB7kqwD+qxGPHqxSe1F/BR5sDL6l8MQnRZo2Ri3u1DqYudk7 nQtRTZ87sr1TCZtKHpkqht9DkFUw2Rw6s1egiypLGrx7YepPh7thew== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org