$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: Jt1rhY/NoqUyJibmjyAgaXJSc2KaBXEZ1/ez41FdpFY= Subject key identifier: BA:CD:5B:19:5D:08:6B:D1:70:AD:8B:CD:C3:A3:AF:81:21:05:F4:F6 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 1A77A3AE9EF0E402F8A250751C48CC0ED66179CE Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:07:59 +0000 ROA not before: Fri 09 Feb 2024 11:02:59 +0000 ROA not after: Fri 07 Feb 2025 11:07:59 +0000 asID: 140423 IP address blocks: 2406:20c0:9000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:77:a3:ae:9e:f0:e4:02:f8:a2:50:75:1c:48:cc:0e:d6:61:79:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:02:59 2024 GMT Not After : Feb 7 11:07:59 2025 GMT Subject: CN=BACD5B195D086BD170AD8BCDC3A3AF812105F4F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:ca:a5:f1:03:26:1e:08:8c:0e:80:0c:e1: 05:f0:6b:38:f5:b6:c0:06:af:20:d7:e5:17:c8:10: 5c:5c:f6:c0:e2:cd:de:5d:74:d9:6a:c9:52:85:9e: a4:56:c9:79:e6:24:d3:6e:e0:ae:54:38:30:cb:18: fe:b1:67:d4:e7:a4:88:51:97:aa:b8:34:06:ff:f6: ff:dc:29:49:c5:24:48:59:18:6c:b7:f7:68:c2:f1: 1a:0e:0a:1f:8c:6d:23:70:6c:26:87:52:aa:29:b3: b5:45:84:7b:7b:f7:8c:ae:d6:d7:a4:31:84:3a:16: bc:9b:3b:82:c5:16:8f:89:6f:ad:88:cf:c6:aa:2a: c6:7a:5d:62:19:46:d6:ac:75:bb:c1:3e:22:f9:21: db:1e:a0:64:cb:3e:58:0b:c0:8f:bd:39:71:a4:de: d1:6d:6e:2f:65:4b:31:3a:56:59:2c:16:a1:a5:b6: 4a:e8:f1:c5:48:8f:58:f7:4a:4e:df:01:bf:c8:21: c7:eb:58:21:38:ff:64:4d:e4:e7:f9:e7:82:3b:4b: e2:53:8f:e1:e4:e9:63:19:27:6b:a7:5a:61:29:5c: 6c:9e:b1:b0:70:60:fb:f5:32:85:35:c0:b4:c4:78: 0f:f6:a9:ae:f1:80:b3:ba:d4:1f:c3:df:e7:df:f9: 20:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CD:5B:19:5D:08:6B:D1:70:AD:8B:CD:C3:A3:AF:81:21:05:F4:F6 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:9000::/36 Signature Algorithm: sha256WithRSAEncryption 66:b0:aa:8f:ec:dd:a3:eb:0d:06:7a:ef:23:5b:94:a7:09:7c: b9:63:e3:01:34:d8:1c:b3:0e:72:39:f3:cb:3a:16:58:1a:1e: af:f4:45:25:c9:10:f5:3c:67:4d:8f:5b:06:02:14:5f:7c:87: df:91:37:99:7c:a1:72:3e:14:f4:ba:00:fe:4e:1f:bd:9c:14: ff:ee:e0:5c:7a:2f:fc:51:d2:2b:cb:d6:fe:f7:c2:4a:bc:a0: e4:f2:d0:58:39:67:30:a5:3d:fe:35:db:ef:3b:ab:69:bc:50: 23:66:78:96:48:c0:12:ed:15:bd:66:4d:f7:9b:40:fb:c4:56: db:bf:16:7c:fd:bf:9b:bc:1d:13:ab:f0:7c:5a:cc:8b:48:d8: df:c8:40:6b:ee:ff:76:fc:3f:ef:7c:99:70:62:1e:24:87:07: cc:da:af:f3:17:9c:14:d7:48:1a:2a:f7:a8:ba:52:ad:3b:c7: 5e:d2:6f:d2:a8:ea:b0:40:75:3b:9e:30:6c:32:92:9c:df:58: 45:5a:b9:36:6a:16:01:02:8f:b3:f9:c8:6a:44:ea:3a:95:12: 65:1b:3e:2c:65:7f:be:6f:fa:94:cd:41:c5:78:48:00:e4:40: f1:bb:ba:88:17:e0:88:84:73:60:25:35:cb:aa:f9:61:5e:07: 77:d1:02:39 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUGnejrp7w5AL4olB1HEjMDtZhec4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAyNTlaFw0yNTAyMDcxMTA3NTlaMDMxMTAvBgNV BAMTKEJBQ0Q1QjE5NUQwODZCRDE3MEFEOEJDREMzQTNBRjgxMjEwNUY0RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRAMql8QMmHgiMDoAM4QXwazj1 tsAGryDX5RfIEFxc9sDizd5ddNlqyVKFnqRWyXnmJNNu4K5UODDLGP6xZ9TnpIhR l6q4NAb/9v/cKUnFJEhZGGy392jC8RoOCh+MbSNwbCaHUqops7VFhHt794yu1tek MYQ6FrybO4LFFo+Jb62Iz8aqKsZ6XWIZRtasdbvBPiL5IdseoGTLPlgLwI+9OXGk 3tFtbi9lSzE6VlksFqGltkro8cVIj1j3Sk7fAb/IIcfrWCE4/2RN5Of554I7S+JT j+Hk6WMZJ2unWmEpXGyesbBwYPv1MoU1wLTEeA/2qa7xgLO61B/D3+ff+SDDAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUus1bGV0Ia9FwrYvNw6OvgSEF9PYwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzkzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAkDANBgkqhkiG9w0BAQsFAAOCAQEAZrCqj+zdo+sNBnrvI1uUpwl8uWPjATTY HLMOcjnzyzoWWBoer/RFJckQ9TxnTY9bBgIUX3yH35E3mXyhcj4U9LoA/k4fvZwU /+7gXHov/FHSK8vW/vfCSryg5PLQWDlnMKU9/jXb7zurabxQI2Z4lkjAEu0VvWZN 95tA+8RW278WfP2/m7wdE6vwfFrMi0jY38hAa+7/dvw/73yZcGIeJIcHzNqv8xec FNdIGir3qLpSrTvHXtJv0qjqsEB1O54wbDKSnN9YRVq5NmoWAQKPs/nIakTqOpUS ZRs+LGV/vm/6lM1BxXhIAORA8bu6iBfgiIRzYCU1y6r5YV4Hd9ECOQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org