$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: xuzaI5oZKlx3g3dvoaxWlD5+7nNDul7ARYuYUU+JWbE= Subject key identifier: AD:48:17:0C:CE:B4:E1:75:4C:F8:F3:C2:26:A8:1C:1C:2B:89:AD:4A Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 6F9DE62884D5AF33465327E32F0BD8A7D44B0D43 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:01 +0000 ROA not before: Sun 01 Oct 2023 05:55:01 +0000 ROA not after: Sun 29 Sep 2024 06:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:9d:e6:28:84:d5:af:33:46:53:27:e3:2f:0b:d8:a7:d4:4b:0d:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:01 2023 GMT Not After : Sep 29 06:00:01 2024 GMT Subject: CN=AD48170CCEB4E1754CF8F3C226A81C1C2B89AD4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:88:21:f8:7c:8a:6c:10:e0:0c:3b:1e:c3: 50:25:2d:cf:ae:86:12:26:d0:48:1f:58:a3:53:9c: 09:d4:9a:c2:3e:fc:cb:08:84:d3:e7:a2:72:89:c5: fa:dc:27:0c:65:fc:e6:7c:49:dd:38:7d:a5:df:e3: 58:4a:c1:f9:91:c2:09:c8:20:65:d7:ff:42:a3:d3: d5:3a:52:b4:44:a9:ea:8f:f7:28:da:f9:25:77:22: 5b:36:20:eb:80:5c:ec:67:0a:a3:0e:2d:39:56:04: 6f:ea:37:38:e0:94:3d:34:24:57:fd:f4:7d:5a:70: 56:db:49:01:f9:54:03:fa:37:0c:0b:30:ef:ac:da: c1:7d:82:6d:f4:1a:63:ff:f4:d5:3b:09:5e:c7:30: a5:c8:b3:a4:ee:af:ab:5f:91:8e:f3:4a:aa:f5:b4: 90:94:2a:86:c3:61:23:c2:18:16:aa:c0:2f:7d:74: 63:52:71:66:68:24:fa:5d:37:cb:f0:28:30:e7:c6: d9:6c:83:4a:ec:0c:f9:4f:c9:40:f4:2b:db:d0:c9: a1:a4:af:84:a2:71:bd:d5:ce:20:0e:5d:f3:40:75: 24:3a:b3:9c:30:49:95:56:74:66:35:c9:ee:1f:3f: 13:9a:1c:5e:81:9e:93:00:33:54:3b:49:33:a5:02: 47:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:48:17:0C:CE:B4:E1:75:4C:F8:F3:C2:26:A8:1C:1C:2B:89:AD:4A X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/35 Signature Algorithm: sha256WithRSAEncryption 46:3c:6f:11:2e:b3:d7:40:eb:af:b0:94:c0:8e:cc:26:b4:b5: aa:0b:52:3d:8a:a3:6e:03:cb:22:24:88:eb:93:8a:b2:a1:16: 69:43:89:60:ef:3c:a1:db:1d:e2:2d:ab:9f:7b:00:f4:bc:ca: 1c:09:20:0d:53:11:db:1c:72:f7:0b:a0:27:94:84:b5:d6:c1: b2:d4:ac:4e:60:be:38:60:8f:4d:2e:e0:9b:02:57:a1:fc:22: 54:20:9c:fc:18:4b:b1:37:16:b7:dd:a3:c7:5c:07:c0:a1:50: 43:0d:33:e3:3a:75:97:a2:90:d4:b8:07:2d:36:75:3e:ec:fb: 52:8d:70:ce:06:5d:ad:0d:dd:bf:35:c5:c3:a5:37:89:73:d9: 52:e7:24:2b:67:a7:39:23:a6:1e:8c:fd:e7:e0:ac:20:a6:d2: 64:ab:63:14:e7:13:78:03:89:a0:f2:06:f0:34:0b:1b:fc:c5: 4d:df:7c:62:a7:a2:4b:ca:5e:2b:4e:a4:57:85:27:ce:81:44: 21:42:2c:be:3c:13:e4:e7:f8:cb:d2:12:c2:ba:df:1c:a3:da: 65:6a:a0:d8:d7:2f:63:fa:f7:00:44:6f:e2:be:0f:39:b0:e7: 8a:8a:11:36:9e:a9:16:d5:f4:30:bc:04:db:29:35:ae:2a:f1: 35:df:f4:d7 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUb53mKITVrzNGUyfjLwvYp9RLDUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDFaFw0yNDA5MjkwNjAwMDFaMDMxMTAvBgNV BAMTKEFENDgxNzBDQ0VCNEUxNzU0Q0Y4RjNDMjI2QTgxQzFDMkI4OUFENEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2uYgh+HyKbBDgDDsew1AlLc+u hhIm0EgfWKNTnAnUmsI+/MsIhNPnonKJxfrcJwxl/OZ8Sd04faXf41hKwfmRwgnI IGXX/0Kj09U6UrREqeqP9yja+SV3Ils2IOuAXOxnCqMOLTlWBG/qNzjglD00JFf9 9H1acFbbSQH5VAP6NwwLMO+s2sF9gm30GmP/9NU7CV7HMKXIs6Tur6tfkY7zSqr1 tJCUKobDYSPCGBaqwC99dGNScWZoJPpdN8vwKDDnxtlsg0rsDPlPyUD0K9vQyaGk r4Sicb3VziAOXfNAdSQ6s5wwSZVWdGY1ye4fPxOaHF6BnpMAM1Q7STOlAkfBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUrUgXDM604XVM+PPCJqgcHCuJrUowHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEARjxvES6z10Drr7CUwI7MJrS1qgtSPYqj bgPLIiSI65OKsqEWaUOJYO88odsd4i2rn3sA9LzKHAkgDVMR2xxy9wugJ5SEtdbB stSsTmC+OGCPTS7gmwJXofwiVCCc/BhLsTcWt92jx1wHwKFQQw0z4zp1l6KQ1LgH LTZ1Puz7Uo1wzgZdrQ3dvzXFw6U3iXPZUuckK2enOSOmHoz95+CsIKbSZKtjFOcT eAOJoPIG8DQLG/zFTd98YqeiS8peK06kV4UnzoFEIUIsvjwT5Of4y9ISwrrfHKPa ZWqg2NcvY/r3AERv4r4PObDniooRNp6pFtX0MLwE2yk1rirxNd/01w== -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org