$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: NIXxYpJPP99CH9Qju9Gv4F2dGPJxjPVmGJmBn/Y4o0s= Subject key identifier: 21:AD:21:72:37:8B:8A:7D:F6:65:BF:20:6C:52:05:71:34:E4:77:0B Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 264DD1052F3AF5A9EBF63E808E5C65027AAC4083 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4d:d1:05:2f:3a:f5:a9:eb:f6:3e:80:8e:5c:65:02:7a:ac:40:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=21AD2172378B8A7DF665BF206C52057134E4770B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:93:a0:4a:49:0a:6c:0b:fe:55:68:78:b8:e3: d1:ac:ab:56:13:8b:75:0f:67:31:13:f0:7f:e3:81: bc:35:01:52:8e:a9:36:eb:03:2b:a3:1a:d6:fa:0e: 7c:1c:49:6a:63:7a:e3:fe:6a:9c:44:95:8d:68:a0: b6:92:9f:e1:e5:c8:6b:cb:e2:72:e2:e7:7b:a8:90: dd:ae:39:e1:47:02:20:1f:b2:80:6f:ca:01:fb:0a: 9d:d4:87:eb:5b:8e:cf:28:41:a6:84:12:32:18:84: 24:ca:43:e9:12:ca:14:bc:86:cc:2b:d2:1c:d1:a7: 43:a3:ed:1f:f4:dc:19:88:5c:57:03:9e:21:dc:91: e0:8a:4f:da:cd:a3:dd:61:56:f2:31:ae:06:fe:b0: 34:75:35:ff:5e:12:0e:ee:83:f8:b0:7c:65:76:05: 7f:2c:a3:bb:cb:ad:ac:46:c9:29:43:8d:17:89:1f: d1:54:c5:39:04:bb:1f:c3:3a:09:22:ea:3a:80:88: ef:65:ea:88:4c:7e:02:6d:d3:4d:4d:d8:d1:ec:87: ce:72:c0:75:a5:7c:e6:21:b6:12:95:da:76:b6:1b: fe:ca:1c:7e:02:20:3f:53:bc:77:8f:10:70:34:bf: ce:e4:ff:bd:6d:69:16:92:7d:55:ea:39:d9:f4:74: ce:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AD:21:72:37:8B:8A:7D:F6:65:BF:20:6C:52:05:71:34:E4:77:0B X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption b7:3e:e1:d2:a9:20:3b:87:05:f6:af:8e:b4:8f:b0:0d:82:19: 66:74:92:f2:c6:b4:ca:55:92:40:70:1b:48:26:c6:71:bb:ea: 1f:b6:6f:25:da:49:7a:6e:16:3c:3f:dc:86:3f:78:9f:0d:b1: 99:f4:45:7a:02:fe:a4:25:b2:42:b2:1d:74:c4:fd:19:b3:df: 9e:6f:00:90:bb:a7:df:86:e7:e7:6e:70:93:a6:73:46:4f:d1: fa:22:53:05:6a:ce:b0:41:ee:23:62:69:a9:8d:83:d8:20:73: 2f:15:40:95:35:4c:cc:40:de:e1:83:08:34:4b:35:d8:a8:bd: f5:52:e4:a1:ef:fe:e5:f3:27:24:e2:ab:81:7f:4a:3c:da:a1: 8f:40:c7:4f:39:07:7c:8a:7e:81:72:be:a6:c3:79:1d:ae:3b: f9:d4:5c:69:7c:2c:20:be:b1:02:1d:2a:b0:08:87:43:69:9e: 1a:6a:3b:6f:0d:f9:b1:52:ab:f0:33:4b:2a:70:9b:1b:f0:c4: 46:d7:ef:ef:86:9a:eb:5d:b3:c0:03:55:06:86:4b:e8:7c:76: 70:6c:b0:a4:e7:5b:c8:5d:fa:cd:8b:99:ff:6f:5f:b9:19:a3: b8:a7:a9:46:a9:fe:b9:47:4e:85:0f:a6:05:e2:ab:91:f9:4b: ac:4b:e3:ed -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUJk3RBS869anr9j6AjlxlAnqsQIMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKDIxQUQyMTcyMzc4QjhBN0RGNjY1QkYyMDZDNTIwNTcxMzRFNDc3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxk6BKSQpsC/5VaHi449Gsq1YT i3UPZzET8H/jgbw1AVKOqTbrAyujGtb6DnwcSWpjeuP+apxElY1ooLaSn+HlyGvL 4nLi53uokN2uOeFHAiAfsoBvygH7Cp3Uh+tbjs8oQaaEEjIYhCTKQ+kSyhS8hswr 0hzRp0Oj7R/03BmIXFcDniHckeCKT9rNo91hVvIxrgb+sDR1Nf9eEg7ug/iwfGV2 BX8so7vLraxGySlDjReJH9FUxTkEux/DOgki6jqAiO9l6ohMfgJt001N2NHsh85y wHWlfOYhthKV2na2G/7KHH4CID9TvHePEHA0v87k/71taRaSfVXqOdn0dM5RAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUIa0hcjeLin32Zb8gbFIFcTTkdwswHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAtz7h0qkgO4cF9q+OtI+wDYIZZnSS8sa0 ylWSQHAbSCbGcbvqH7ZvJdpJem4WPD/chj94nw2xmfRFegL+pCWyQrIddMT9GbPf nm8AkLun34bn525wk6ZzRk/R+iJTBWrOsEHuI2JpqY2D2CBzLxVAlTVMzEDe4YMI NEs12Ki99VLkoe/+5fMnJOKrgX9KPNqhj0DHTzkHfIp+gXK+psN5Ha47+dRcaXws IL6xAh0qsAiHQ2meGmo7bw35sVKr8DNLKnCbG/DERtfv74aa612zwANVBoZL6Hx2 cGywpOdbyF36zYuZ/29fuRmjuKepRqn+uUdOhQ+mBeKrkflLrEvj7Q== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org