$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: OeZ5mZlg2EKLBBDEDItDW7C1TUtTg3rfpCXctIi6VgQ= Subject key identifier: 34:45:F8:F1:CA:8B:25:04:5E:3D:B2:AE:7E:32:CB:56:C9:3F:BF:95 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 4B4011FAAD0B442D9220E2AF6A8DA004D2EAC082 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:40:11:fa:ad:0b:44:2d:92:20:e2:af:6a:8d:a0:04:d2:ea:c0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=3445F8F1CA8B25045E3DB2AE7E32CB56C93FBF95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:31:d2:8f:9f:a1:31:2b:2e:43:6a:f8:15:ce: 84:73:57:6e:17:6d:fc:53:4d:75:1f:a8:8b:6e:cc: aa:b6:7f:b6:5a:a1:34:75:ac:28:b2:1a:0c:01:a7: cc:b1:4b:27:c8:c0:62:c8:53:fb:70:b0:03:45:63: 26:ce:84:ed:04:bc:2d:60:93:f6:16:d5:70:36:48: 4c:7f:5d:74:b4:ac:c4:61:1c:85:56:6e:91:28:c5: ac:8b:b2:6b:a2:8d:87:f2:fa:81:bb:94:c8:0a:ae: d3:85:fc:92:06:b1:45:fb:8d:aa:93:68:a5:68:c2: 52:22:3d:37:72:28:59:6c:31:56:b9:1d:75:a1:d6: 03:aa:b7:3c:c6:f8:a6:ea:c1:37:a5:82:dd:32:5b: 36:46:ad:32:1c:95:f8:c0:58:16:de:02:c0:b8:9e: 2e:7c:9f:33:c9:02:34:33:68:11:31:3f:77:c6:b1: 69:98:db:78:4c:d5:f0:3d:17:46:e5:db:5c:18:d8: f0:dc:ca:c7:00:cb:73:0e:0a:81:3c:bf:da:9c:19: 44:83:14:0f:82:6d:f2:13:f3:94:da:a8:1f:4f:a0: d0:f1:49:55:3c:73:e1:8d:b9:b7:e0:10:5d:0a:ce: 48:df:2a:c1:95:56:3e:1c:8d:75:e4:9f:90:ff:a6: c5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:45:F8:F1:CA:8B:25:04:5E:3D:B2:AE:7E:32:CB:56:C9:3F:BF:95 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 7d:c2:d7:5c:92:c2:6d:25:8a:87:ef:1a:17:1f:b1:fd:2e:e6: ed:a7:55:1a:7a:cb:ad:88:dd:a5:aa:ba:22:86:8a:36:96:76: 8e:60:b7:d9:c8:9e:74:12:d0:27:9f:bc:2c:05:db:f6:38:55: 6d:89:be:ea:5e:26:d2:c8:4a:dd:37:08:ea:07:fa:80:10:3d: 6c:34:9a:3a:d3:9d:87:2f:fb:2d:84:6d:f1:88:16:9e:43:70: ec:e0:1b:f2:85:34:e8:5c:05:f0:64:f1:76:6b:16:1c:87:e0: db:e9:f6:df:3c:03:27:80:20:48:77:33:34:2b:e5:b9:b0:31: 19:03:9b:e2:2f:3d:38:30:dc:53:2b:4c:85:40:34:e7:62:89: e8:62:11:6b:71:42:d5:4d:32:8a:56:d6:06:60:b0:d1:0f:e4: 94:91:02:8e:e4:ac:02:25:cc:d2:f2:f5:4e:32:97:9d:b5:82: 1c:18:db:1d:b6:45:0d:4b:8d:cc:ec:dd:66:b6:2d:8a:28:6d: a0:6a:6a:99:2e:a3:b6:18:d1:5d:cb:50:46:46:10:ec:28:8e: b1:f8:2b:d0:33:1c:8f:e8:54:bb:74:20:76:0e:a9:25:84:a7: 8a:1f:17:9c:c7:08:02:7d:4d:3e:02:06:7b:01:6c:67:c2:ff: 04:f5:da:c6 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUS0AR+q0LRC2SIOKvao2gBNLqwIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKDM0NDVGOEYxQ0E4QjI1MDQ1RTNEQjJBRTdFMzJDQjU2QzkzRkJGOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcMdKPn6ExKy5DavgVzoRzV24X bfxTTXUfqItuzKq2f7ZaoTR1rCiyGgwBp8yxSyfIwGLIU/twsANFYybOhO0EvC1g k/YW1XA2SEx/XXS0rMRhHIVWbpEoxayLsmuijYfy+oG7lMgKrtOF/JIGsUX7jaqT aKVowlIiPTdyKFlsMVa5HXWh1gOqtzzG+KbqwTelgt0yWzZGrTIclfjAWBbeAsC4 ni58nzPJAjQzaBExP3fGsWmY23hM1fA9F0bl21wY2PDcyscAy3MOCoE8v9qcGUSD FA+CbfIT85TaqB9PoNDxSVU8c+GNubfgEF0KzkjfKsGVVj4cjXXkn5D/psXtAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUNEX48cqLJQRePbKufjLLVsk/v5UwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAfcLXXJLCbSWKh+8aFx+x/S7m7adVGnrL rYjdpaq6IoaKNpZ2jmC32ciedBLQJ5+8LAXb9jhVbYm+6l4m0shK3TcI6gf6gBA9 bDSaOtOdhy/7LYRt8YgWnkNw7OAb8oU06FwF8GTxdmsWHIfg2+n23zwDJ4AgSHcz NCvlubAxGQOb4i89ODDcUytMhUA052KJ6GIRa3FC1U0yilbWBmCw0Q/klJECjuSs AiXM0vL1TjKXnbWCHBjbHbZFDUuNzOzdZrYtiihtoGpqmS6jthjRXctQRkYQ7CiO sfgr0DMcj+hUu3Qgdg6pJYSnih8XnMcIAn1NPgIGewFsZ8L/BPXaxg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org