$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a363030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 7E7SrNogA18acr7P4u8zdhH+Qr1x1rUuK9knLqBK1Nc= Subject key identifier: 15:9E:3A:9A:52:99:AE:B8:76:34:51:4F:4B:96:EF:A1:33:92:5F:01 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 56ED4B1730BF9774123D7E785AAC322D64A29C79 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:02 +0000 ROA not before: Sun 01 Sep 2024 06:55:02 +0000 ROA not after: Sun 31 Aug 2025 07:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:6000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ed:4b:17:30:bf:97:74:12:3d:7e:78:5a:ac:32:2d:64:a2:9c:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:02 2024 GMT Not After : Aug 31 07:00:02 2025 GMT Subject: CN=159E3A9A5299AEB87634514F4B96EFA133925F01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:f3:72:ef:c7:b6:3a:7d:67:64:c0:b3:70: 06:c5:1b:0e:2b:d0:71:0d:c8:01:fa:8d:a6:8d:32: 79:f0:17:23:c9:fe:a1:3d:db:b1:b3:1e:c7:f0:c1: 41:f3:85:06:0d:b8:b2:28:29:a7:47:ea:8a:62:5d: de:db:92:bd:32:e9:b5:de:26:5c:a8:d3:c4:de:0d: 46:71:2e:a6:13:d3:6a:a4:e6:a7:2e:e0:80:3d:1f: d5:fe:48:48:cc:2c:2a:f3:d3:ea:a6:f8:a2:a6:d9: 92:3c:52:8b:ca:7b:e3:e3:04:3e:74:52:05:60:bd: d3:d8:ae:87:10:fb:67:9d:31:35:02:0b:8b:35:e7: f2:7d:82:8f:07:12:9f:1a:9f:49:d2:b8:1f:5f:a3: a6:68:7b:f0:e6:9d:a2:0b:ff:9d:b4:84:8c:8e:92: 44:a6:49:37:17:e9:79:af:92:59:6b:b1:aa:a2:ae: 2e:ca:f8:d7:9d:89:a7:b8:cf:13:78:b1:ea:05:97: c6:90:ef:14:4d:89:53:d4:67:99:ad:3e:28:02:c8: 55:b2:4d:86:41:fd:9c:c3:41:1d:3b:93:e8:bc:07: 30:66:f5:57:ea:af:66:4a:bd:88:2a:1f:ac:3a:c4: 22:d4:da:15:34:2f:c8:96:b2:3c:40:a9:29:24:0d: 8f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9E:3A:9A:52:99:AE:B8:76:34:51:4F:4B:96:EF:A1:33:92:5F:01 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:6000::/35 Signature Algorithm: sha256WithRSAEncryption 0d:c0:28:50:98:a4:24:7a:f1:bc:dd:07:e9:17:e4:6f:24:99: 64:e6:7c:03:6a:65:00:e0:f1:51:53:26:41:47:25:96:b7:85: 0d:a2:2e:e7:90:48:92:e0:2d:3c:38:61:38:a3:3f:54:81:e4: a2:ce:d6:bc:19:93:f2:59:df:35:92:88:87:9f:44:83:9a:c9: 31:de:f5:c9:6e:23:83:41:13:5d:eb:3e:18:d1:c3:25:f4:57: b8:c2:e3:a9:6d:ba:7e:37:c7:1b:ef:92:e2:6e:fe:f3:b7:c6: ea:21:be:12:7a:9c:b2:e5:8e:80:76:87:7e:89:5d:e8:da:59: 7a:f2:52:e4:00:fc:e8:1f:f0:08:16:46:e4:41:c3:da:d5:9a: a8:e2:9b:99:94:a3:d3:2b:33:ff:0d:fb:34:1b:3a:18:ec:d5: 37:68:57:d2:7b:80:b9:55:39:33:9e:78:5b:43:bb:f4:9f:ce: 8a:6b:c0:f8:b4:da:e3:6a:89:14:62:8c:cf:e0:63:13:c2:1f: 2e:7f:d5:f0:1d:3d:1f:cd:ee:1e:22:ed:70:5a:88:c2:e1:e9: a5:90:59:d0:a1:77:f3:3d:99:d8:f0:e3:ba:45:3d:21:e3:1e: d6:cf:3c:cd:d9:69:45:1c:da:65:41:da:e8:be:9b:2f:25:86: d2:17:14:de -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUVu1LFzC/l3QSPX54WqwyLWSinHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDJaFw0yNTA4MzEwNzAwMDJaMDMxMTAvBgNV BAMTKDE1OUUzQTlBNTI5OUFFQjg3NjM0NTE0RjRCOTZFRkExMzM5MjVGMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyu/Ny78e2On1nZMCzcAbFGw4r 0HENyAH6jaaNMnnwFyPJ/qE927GzHsfwwUHzhQYNuLIoKadH6opiXd7bkr0y6bXe Jlyo08TeDUZxLqYT02qk5qcu4IA9H9X+SEjMLCrz0+qm+KKm2ZI8UovKe+PjBD50 UgVgvdPYrocQ+2edMTUCC4s15/J9go8HEp8an0nSuB9fo6Zoe/DmnaIL/520hIyO kkSmSTcX6Xmvkllrsaqiri7K+Nediae4zxN4seoFl8aQ7xRNiVPUZ5mtPigCyFWy TYZB/ZzDQR07k+i8BzBm9Vfqr2ZKvYgqH6w6xCLU2hU0L8iWsjxAqSkkDY/pAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUFZ46mlKZrrh2NFFPS5bvoTOSXwEwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzYzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAYDANBgkqhkiG9w0BAQsFAAOCAQEADcAoUJikJHrxvN0H6RfkbySZZOZ8A2pl AODxUVMmQUcllreFDaIu55BIkuAtPDhhOKM/VIHkos7WvBmT8lnfNZKIh59Eg5rJ Md71yW4jg0ETXes+GNHDJfRXuMLjqW26fjfHG++S4m7+87fG6iG+EnqcsuWOgHaH fold6NpZevJS5AD86B/wCBZG5EHD2tWaqOKbmZSj0ysz/w37NBs6GOzVN2hX0nuA uVU5M554W0O79J/OimvA+LTa42qJFGKMz+BjE8IfLn/V8B09H83uHiLtcFqIwuHp pZBZ0KF38z2Z2PDjukU9IeMe1s88zdlpRRzaZUHa6L6bLyWG0hcU3g== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org