$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: EdUEwQmaPEdb0AgLYuSoxJToyCEIP3zQ3SeHqGbtSmg= Subject key identifier: 17:3E:EB:6A:F0:1F:D9:44:5C:E4:51:CD:47:89:11:42:AB:DA:8A:0F Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5A2130A93D7A6E76AFD7C701CA1D403934DCA901 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:06:39 +0000 ROA not before: Fri 09 Feb 2024 11:01:39 +0000 ROA not after: Fri 07 Feb 2025 11:06:39 +0000 asID: 140423 IP address blocks: 2406:20c0:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:21:30:a9:3d:7a:6e:76:af:d7:c7:01:ca:1d:40:39:34:dc:a9:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:01:39 2024 GMT Not After : Feb 7 11:06:39 2025 GMT Subject: CN=173EEB6AF01FD9445CE451CD47891142ABDA8A0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:71:0d:c9:49:13:e2:37:93:df:ff:25:5a:5d: a8:b1:c2:92:91:ec:d5:c0:f2:04:b4:9d:37:a7:be: 52:53:66:42:5d:da:1b:91:f9:b3:b8:ee:ca:70:af: 77:ca:05:eb:79:31:43:91:f1:33:6c:7a:00:2a:b6: 5c:f7:f2:6a:ab:4e:bc:17:cf:ce:53:97:30:7c:ea: 71:9a:c5:bb:9f:6d:85:f0:a0:8a:39:38:74:41:06: b5:b9:30:be:6c:e8:0c:2b:62:50:e8:c3:c5:e8:85: 52:b4:f3:11:26:10:8c:82:5b:7e:2c:77:09:47:d9: 0f:81:e4:b3:da:39:78:cd:52:37:9c:63:18:c5:e9: ad:c8:50:f2:e8:03:c5:28:d2:cc:7c:3a:65:fd:24: 23:b6:1d:d6:15:be:de:15:34:a4:01:03:78:c9:af: a1:11:35:64:bc:dd:0a:bd:77:5d:2d:0a:ca:53:e4: 10:47:46:e1:ac:f9:d6:65:90:e5:64:de:f6:82:48: 7b:f8:84:12:e7:5f:8d:2d:f9:52:60:a1:b7:0f:6e: 9d:99:fb:49:83:37:9a:e5:31:3e:b8:a7:ef:48:11: f1:1c:15:76:08:cf:5e:14:40:fb:67:6d:e2:74:63: 49:48:23:71:0f:cb:87:df:f8:55:be:b0:31:4e:c0: 81:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3E:EB:6A:F0:1F:D9:44:5C:E4:51:CD:47:89:11:42:AB:DA:8A:0F X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a353030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 68:fa:67:7c:5a:a4:27:9b:8f:fa:91:80:a4:c3:53:b2:c2:5a: 53:b4:ae:bd:da:e9:8f:4e:92:29:77:78:62:b6:34:fd:95:25: ee:df:01:77:90:cd:d9:bf:c7:28:5e:29:5f:c3:44:c2:03:eb: 85:58:24:d6:6d:15:2e:70:41:aa:f3:64:9e:c1:33:da:4a:30: 82:f4:42:44:30:ee:ac:a1:9e:f0:78:38:0d:07:09:a0:8a:3b: f7:9e:21:93:cc:19:4a:66:03:49:0b:65:45:69:df:e2:4a:35: f9:c6:b4:1d:e7:ff:59:9f:d7:ad:86:38:d7:fb:aa:76:f7:c3: f8:0f:c1:e2:9e:c5:b2:a0:39:d5:f1:63:85:73:27:e2:78:d4: 46:b3:b3:1f:5b:29:39:f1:61:83:9d:45:a9:df:e0:15:42:29: 66:d5:28:05:cd:04:1e:9b:4e:10:96:65:b2:56:73:95:07:b9: 52:94:82:6a:af:0c:22:ec:66:e6:f1:a2:22:5c:41:a3:05:f9: 1c:5b:d9:6f:8a:56:9c:ef:76:45:55:42:e4:b4:26:5d:26:04: 14:df:fe:dc:bf:be:a9:13:86:f4:e3:29:5e:e1:37:65:34:8c: 80:93:89:3c:b2:90:5a:9b:c8:37:8d:e8:bc:1f:71:37:21:04: c1:26:93:49 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUWiEwqT16bnav18cByh1AOTTcqQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAxMzlaFw0yNTAyMDcxMTA2MzlaMDMxMTAvBgNV BAMTKDE3M0VFQjZBRjAxRkQ5NDQ1Q0U0NTFDRDQ3ODkxMTQyQUJEQThBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWcQ3JSRPiN5Pf/yVaXaixwpKR 7NXA8gS0nTenvlJTZkJd2huR+bO47spwr3fKBet5MUOR8TNsegAqtlz38mqrTrwX z85TlzB86nGaxbufbYXwoIo5OHRBBrW5ML5s6AwrYlDow8XohVK08xEmEIyCW34s dwlH2Q+B5LPaOXjNUjecYxjF6a3IUPLoA8Uo0sx8OmX9JCO2HdYVvt4VNKQBA3jJ r6ERNWS83Qq9d10tCspT5BBHRuGs+dZlkOVk3vaCSHv4hBLnX40t+VJgobcPbp2Z +0mDN5rlMT64p+9IEfEcFXYIz14UQPtnbeJ0Y0lII3EPy4ff+FW+sDFOwIH5AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUFz7ravAf2URc5FHNR4kRQqvaig8wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzUzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAUDANBgkqhkiG9w0BAQsFAAOCAQEAaPpnfFqkJ5uP+pGApMNTssJaU7Suvdrp j06SKXd4YrY0/ZUl7t8Bd5DN2b/HKF4pX8NEwgPrhVgk1m0VLnBBqvNknsEz2kow gvRCRDDurKGe8Hg4DQcJoIo7954hk8wZSmYDSQtlRWnf4ko1+ca0Hef/WZ/XrYY4 1/uqdvfD+A/B4p7FsqA51fFjhXMn4njURrOzH1spOfFhg51Fqd/gFUIpZtUoBc0E HptOEJZlslZzlQe5UpSCaq8MIuxm5vGiIlxBowX5HFvZb4pWnO92RVVC5LQmXSYE FN/+3L++qROG9OMpXuE3ZTSMgJOJPLKQWpvIN43ovB9xNyEEwSaTSQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org