$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: y/WBDoIGnCY+4nqC3dEPCLk3KvgKjkEVcMr17K6cmZM= Subject key identifier: B1:C6:38:AB:71:E0:71:1A:09:D7:9C:0F:88:E6:12:90:41:28:B1:D1 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 1FFEA4B514CE20973D9E2B30150DCA28D6D5C46F Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:02 +0000 ROA not before: Sun 01 Oct 2023 05:55:02 +0000 ROA not after: Sun 29 Sep 2024 06:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:fe:a4:b5:14:ce:20:97:3d:9e:2b:30:15:0d:ca:28:d6:d5:c4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:02 2023 GMT Not After : Sep 29 06:00:02 2024 GMT Subject: CN=B1C638AB71E0711A09D79C0F88E612904128B1D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:96:a9:0b:44:3d:e8:81:d5:18:45:43:5a:fc: 88:04:91:21:1c:6a:92:5a:ad:e4:c3:17:4a:8f:7d: 64:a9:78:bd:1e:a9:4a:4d:f9:5c:a4:ee:34:ef:32: de:72:9c:d1:b8:69:5c:f1:11:96:3a:5f:9e:40:86: 0b:dd:c6:c2:ba:48:6a:04:f8:82:e9:15:b3:45:5f: 84:04:22:c6:5d:7f:62:43:94:ca:94:d4:d7:e2:52: 42:81:3d:3d:ce:56:50:20:73:e7:65:45:15:b3:ee: 78:5e:bf:ff:d7:d6:fb:06:99:f8:ed:41:a1:3e:c6: 95:a9:f0:f0:59:b8:2c:1d:76:0d:d6:61:c5:3b:da: ed:36:27:fb:ec:3e:5c:57:20:81:3b:45:34:50:ea: 3a:3c:79:8d:0b:50:88:c8:e8:c8:ce:93:9b:4c:ae: 29:86:c7:be:bc:b3:ae:2d:72:81:30:05:09:4e:63: fe:80:5d:e3:63:b3:6d:c9:20:d8:02:a3:a4:17:ff: bd:04:9b:de:22:cf:29:d5:2b:f1:cf:3c:7f:ac:8c: 24:59:64:b7:6a:e7:9d:ee:d5:4a:e6:59:b3:3c:bd: ca:bf:22:be:c9:4e:96:45:f0:a6:a3:2a:f9:64:aa: 21:19:71:cf:53:d8:7a:14:75:c9:e3:5b:a3:b8:75: 20:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:C6:38:AB:71:E0:71:1A:09:D7:9C:0F:88:E6:12:90:41:28:B1:D1 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 22:4b:02:c2:9b:5f:92:9c:00:d0:53:e7:6b:2a:a3:14:a8:cd: eb:78:50:98:50:7e:32:f6:e6:5b:59:f7:5f:85:d6:e1:a5:d5: 0b:db:60:bd:89:d6:ab:a7:b1:56:97:b0:28:27:53:9c:7d:f6: 71:75:3e:dc:79:f9:4f:1d:0e:db:8c:b0:3c:47:8a:a8:8e:1d: 87:f0:97:5d:cd:43:8c:14:43:e3:89:05:fd:87:5f:d9:c3:42: 26:52:24:2e:20:b5:3a:42:d1:e0:fe:cf:da:c2:28:4c:1e:e1: bb:ea:35:85:8f:b5:3a:b2:cb:a0:f0:87:f0:a3:38:34:a6:7f: 27:46:4b:d7:bb:1e:e8:a7:1e:de:dc:bb:58:7b:70:fc:a1:9a: ee:99:ff:17:eb:e8:ee:de:35:17:1b:86:5e:6e:d1:52:8a:96: bb:11:e2:3b:6c:ab:c6:ef:90:d4:22:18:48:2c:bd:da:7c:4f: 03:65:6b:78:6f:e6:66:04:c5:8e:1c:f0:64:7b:6b:d2:0e:7b: da:05:2a:1c:e8:cd:ed:ad:dd:98:de:a5:ab:c6:9a:f8:b2:a3: 90:28:1e:26:66:e5:6b:a1:13:4e:62:64:0e:7c:ec:37:e0:a3: 02:50:0c:d4:dc:16:97:f0:fb:e7:e1:6b:a9:ab:27:c6:f8:a0: 51:9f:c7:9a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUH/6ktRTOIJc9niswFQ3KKNbVxG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDJaFw0yNDA5MjkwNjAwMDJaMDMxMTAvBgNV BAMTKEIxQzYzOEFCNzFFMDcxMUEwOUQ3OUMwRjg4RTYxMjkwNDEyOEIxRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKlqkLRD3ogdUYRUNa/IgEkSEc apJareTDF0qPfWSpeL0eqUpN+Vyk7jTvMt5ynNG4aVzxEZY6X55AhgvdxsK6SGoE +ILpFbNFX4QEIsZdf2JDlMqU1NfiUkKBPT3OVlAgc+dlRRWz7nhev//X1vsGmfjt QaE+xpWp8PBZuCwddg3WYcU72u02J/vsPlxXIIE7RTRQ6jo8eY0LUIjI6MjOk5tM rimGx768s64tcoEwBQlOY/6AXeNjs23JINgCo6QX/70Em94izynVK/HPPH+sjCRZ ZLdq553u1UrmWbM8vcq/Ir7JTpZF8KajKvlkqiEZcc9T2HoUdcnjW6O4dSARAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUscY4q3HgcRoJ15wPiOYSkEEosdEwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAIksCwptfkpwA0FPnayqjFKjN63hQmFB+ MvbmW1n3X4XW4aXVC9tgvYnWq6exVpewKCdTnH32cXU+3Hn5Tx0O24ywPEeKqI4d h/CXXc1DjBRD44kF/Ydf2cNCJlIkLiC1OkLR4P7P2sIoTB7hu+o1hY+1OrLLoPCH 8KM4NKZ/J0ZL17se6Kce3ty7WHtw/KGa7pn/F+vo7t41FxuGXm7RUoqWuxHiO2yr xu+Q1CIYSCy92nxPA2VreG/mZgTFjhzwZHtr0g572gUqHOjN7a3dmN6lq8aa+LKj kCgeJmbla6ETTmJkDnzsN+CjAlAM1NwWl/D75+FrqasnxvigUZ/Hmg== -----END CERTIFICATE-----Generated at Fri May 3 09:07:39 2024 by rpki-client on console-fra.rpki-client.org