$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: P7C6DX5XSddbAHLRp76w4SCFj8suVj2rmTdSwWQBcSc= Subject key identifier: EC:9A:5A:04:3E:43:E7:02:C4:32:88:3F:DD:CD:C6:92:7E:D5:E9:CD Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 54F4588F929EF4305401B27C2E8D254F4DFA6340 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:06:48 +0000 ROA not before: Fri 09 Feb 2024 11:01:48 +0000 ROA not after: Fri 07 Feb 2025 11:06:48 +0000 asID: 140423 IP address blocks: 2406:20c0:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f4:58:8f:92:9e:f4:30:54:01:b2:7c:2e:8d:25:4f:4d:fa:63:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:01:48 2024 GMT Not After : Feb 7 11:06:48 2025 GMT Subject: CN=EC9A5A043E43E702C432883FDDCDC6927ED5E9CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:83:f8:1d:31:a2:86:da:24:ea:e1:2f:de: 21:7c:ce:f9:84:35:9e:f4:ac:20:67:4d:d8:6e:7e: 95:76:de:67:17:2c:5c:18:d0:f0:3a:71:e1:0f:e2: 38:cc:11:0a:fd:d5:aa:72:fd:2b:bc:ee:7b:f3:2b: 70:85:be:9f:20:e4:5d:29:6d:31:b6:16:b9:7b:39: 1f:59:24:69:d4:fa:28:dc:b9:ff:92:08:ca:3c:a0: 45:1a:6f:7f:63:a0:f8:e1:3a:1f:cd:22:54:42:f8: 88:3b:0b:6b:9a:31:8d:76:31:a0:c6:14:cf:22:f9: be:3e:c3:b2:35:e8:62:75:8c:a9:13:2f:67:e0:c1: 71:42:b6:84:5b:92:fe:81:c5:98:82:6a:9a:00:27: 49:9d:28:60:85:44:8d:95:5f:f5:a5:63:39:53:25: 46:6d:13:c6:b6:3b:33:d0:ae:4c:38:02:95:eb:8a: e9:a9:a2:fe:70:2e:9e:e3:0d:83:6e:48:56:7a:4b: 7d:b6:fa:fe:63:85:fc:87:e5:9b:4d:cf:ed:fd:5a: f8:35:39:51:a6:f8:6a:4f:0d:8b:93:95:f0:15:15: 0c:17:8e:88:f0:88:8c:e9:80:a9:5b:a1:45:89:13: 37:a5:04:be:e4:7e:6c:d1:1a:a5:b2:d0:82:73:71: f5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9A:5A:04:3E:43:E7:02:C4:32:88:3F:DD:CD:C6:92:7E:D5:E9:CD X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:6000::/36 Signature Algorithm: sha256WithRSAEncryption 4d:01:29:ca:ce:f3:69:f9:a5:b8:9d:12:79:07:ba:d3:63:7d: d1:5f:5c:51:18:d5:13:84:90:56:d5:ea:9c:50:56:55:5c:d2: 61:33:b3:9a:7c:1e:82:eb:e4:60:11:06:d2:bb:18:be:1d:e0: c9:69:fe:89:a1:fa:80:34:1f:f6:e0:57:6a:c4:ee:cb:14:58: b4:3d:0a:3f:fe:ec:80:e6:7f:cf:a6:07:c1:23:11:81:13:c0: ba:af:53:35:eb:10:d6:0c:d6:aa:87:3f:41:6d:4e:29:9c:56: 5c:54:e9:8c:58:54:a7:ec:de:42:6f:39:ce:24:ff:96:46:24: f6:c7:98:01:e1:96:9d:5b:a3:31:0d:b7:ca:3f:3f:8b:fd:17: 5c:b8:77:a8:96:20:eb:cc:7e:09:33:93:e1:a9:be:db:90:d7: ea:73:dd:ec:0c:37:96:bc:a0:75:c4:84:bc:48:84:19:ad:f5: de:62:23:88:4a:49:87:c6:b1:09:d4:d5:d0:4a:e8:f0:ba:61: 62:c9:63:34:dc:81:a2:6f:ba:92:9c:c9:c9:c4:98:63:bc:96: cc:b2:16:c3:aa:ed:b2:b0:72:39:0a:41:08:89:fd:53:d6:e3: 12:0f:f3:04:61:82:48:b1:70:da:58:b8:80:7b:fc:69:57:0c: 87:7f:f4:0d -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUVPRYj5Ke9DBUAbJ8Lo0lT036Y0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAxNDhaFw0yNTAyMDcxMTA2NDhaMDMxMTAvBgNV BAMTKEVDOUE1QTA0M0U0M0U3MDJDNDMyODgzRkREQ0RDNjkyN0VENUU5Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9eYP4HTGihtok6uEv3iF8zvmE NZ70rCBnTdhufpV23mcXLFwY0PA6ceEP4jjMEQr91apy/Su87nvzK3CFvp8g5F0p bTG2Frl7OR9ZJGnU+ijcuf+SCMo8oEUab39joPjhOh/NIlRC+Ig7C2uaMY12MaDG FM8i+b4+w7I16GJ1jKkTL2fgwXFCtoRbkv6BxZiCapoAJ0mdKGCFRI2VX/WlYzlT JUZtE8a2OzPQrkw4ApXriumpov5wLp7jDYNuSFZ6S322+v5jhfyH5ZtNz+39Wvg1 OVGm+GpPDYuTlfAVFQwXjojwiIzpgKlboUWJEzelBL7kfmzRGqWy0IJzcfUnAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU7JpaBD5D5wLEMog/3c3Gkn7V6c0wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzYzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAYDANBgkqhkiG9w0BAQsFAAOCAQEATQEpys7zafmluJ0SeQe602N90V9cURjV E4SQVtXqnFBWVVzSYTOzmnweguvkYBEG0rsYvh3gyWn+iaH6gDQf9uBXasTuyxRY tD0KP/7sgOZ/z6YHwSMRgRPAuq9TNesQ1gzWqoc/QW1OKZxWXFTpjFhUp+zeQm85 ziT/lkYk9seYAeGWnVujMQ23yj8/i/0XXLh3qJYg68x+CTOT4am+25DX6nPd7Aw3 lrygdcSEvEiEGa313mIjiEpJh8axCdTV0Ero8LphYsljNNyBom+6kpzJycSYY7yW zLIWw6rtsrByOQpBCIn9U9bjEg/zBGGCSLFw2li4gHv8aVcMh3/0DQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org