$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33322d3438203d3e20313430343233.roa (raw, json) Hash identifier: l1vt3NIim3ULMuaLS5M3EQd2uR6IXqXtsUzWVHSoTTY= Subject key identifier: 77:93:CC:DA:64:D6:9F:39:65:19:7D:D8:50:BC:53:3E:1E:AF:0D:6D Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 4889138E9325346BA5CDC743CC1FFD9F30F5AF1C Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:01 +0000 ROA not before: Sun 01 Oct 2023 05:55:01 +0000 ROA not after: Sun 29 Sep 2024 06:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:89:13:8e:93:25:34:6b:a5:cd:c7:43:cc:1f:fd:9f:30:f5:af:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:01 2023 GMT Not After : Sep 29 06:00:01 2024 GMT Subject: CN=7793CCDA64D69F3965197DD850BC533E1EAF0D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:e6:1d:1c:6b:f6:8c:17:8b:c7:3d:32:60: d2:c5:32:e7:b0:3a:e6:11:18:3c:cf:ef:10:6b:52: 3c:9c:f5:db:96:81:d3:a1:3c:03:89:4c:cf:e2:45: 12:4f:09:ce:16:ba:72:80:0e:c3:46:81:2d:d5:82: 01:8e:93:31:57:03:03:81:6d:d1:6d:25:c2:9f:82: 39:aa:25:3c:6b:db:80:a3:36:46:4e:e8:83:23:2b: e5:3f:b6:00:4e:4a:1d:ef:1b:87:f2:f8:5d:37:08: 58:05:4d:f3:bc:3a:d7:96:77:02:d6:0e:69:3d:fe: e2:6d:c2:1d:e2:7d:e8:2b:bf:a3:3a:98:d0:1b:62: cf:93:1d:fe:dd:39:3d:f3:5b:68:05:f0:c8:44:87: 67:fd:c7:f1:f8:95:c5:b1:0f:8d:e4:f3:59:d4:ac: c0:b8:7f:70:16:dd:74:c9:80:ae:ab:97:09:e4:2b: 8d:11:93:ca:ab:93:bd:17:f1:d3:21:ca:02:0f:ca: 32:05:c9:29:aa:f7:5e:6e:d1:9a:61:ed:3b:1c:ef: d7:6d:39:91:da:38:fc:1e:e6:ae:42:d7:ce:a3:8d: c0:19:11:12:dd:30:05:8f:b2:18:13:ae:c5:40:bd: 50:50:1b:8d:0d:2b:4a:d8:da:4a:7d:d2:68:bf:14: 7d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:93:CC:DA:64:D6:9F:39:65:19:7D:D8:50:BC:53:3E:1E:AF:0D:6D X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:5e:68:a3:89:a5:8a:08:08:7d:6c:ef:16:dd:6e:42:19:5d: 0e:80:f0:bf:e6:f4:ac:6f:22:da:3c:15:55:fd:5b:48:e9:6d: 80:51:a8:80:64:ac:33:8d:5f:1e:b4:03:94:d4:1c:77:7b:60: bc:b0:e6:d0:e0:e4:d0:3a:cf:68:4c:3a:32:d3:b1:35:90:66: 03:30:d4:97:6e:a9:d4:d3:fe:a3:f9:62:9f:2c:2d:d8:e7:b7: a6:54:39:a5:55:30:3e:50:97:69:b8:69:4f:cc:ba:ac:35:60: ff:06:27:22:da:6b:f1:23:1e:79:8a:ae:90:8e:7e:c7:6e:41: 4b:84:39:40:2b:c0:7c:65:b2:9d:f3:2a:51:22:a5:b9:f1:af: 09:b1:8a:1f:58:d9:2e:ca:90:ab:0a:ab:55:e2:0c:6d:b9:87: 82:2a:94:b8:09:e6:cc:7d:48:6f:3f:3e:b4:c6:4a:32:c8:a0: 77:18:f9:6d:d1:6b:18:40:1a:5b:bf:dc:cd:c0:83:9c:ac:d1: ec:e2:46:cc:03:29:aa:0d:b3:67:af:06:4c:31:aa:fc:62:d8: 17:53:3b:94:c9:d1:20:b4:33:3f:b2:3c:2c:67:43:51:8d:e7: ae:b6:65:ec:73:d4:27:b4:18:b1:91:d5:47:87:da:68:db:33: 2c:f2:27:f7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSIkTjpMlNGulzcdDzB/9nzD1rxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDFaFw0yNDA5MjkwNjAwMDFaMDMxMTAvBgNV BAMTKDc3OTNDQ0RBNjRENjlGMzk2NTE5N0REODUwQkM1MzNFMUVBRjBENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt0OYdHGv2jBeLxz0yYNLFMuew OuYRGDzP7xBrUjyc9duWgdOhPAOJTM/iRRJPCc4WunKADsNGgS3VggGOkzFXAwOB bdFtJcKfgjmqJTxr24CjNkZO6IMjK+U/tgBOSh3vG4fy+F03CFgFTfO8OteWdwLW Dmk9/uJtwh3ifegrv6M6mNAbYs+THf7dOT3zW2gF8MhEh2f9x/H4lcWxD43k81nU rMC4f3AW3XTJgK6rlwnkK40Rk8qrk70X8dMhygIPyjIFySmq915u0Zph7Tsc79dt OZHaOPwe5q5C186jjcAZERLdMAWPshgTrsVAvVBQG40NK0rY2kp90mi/FH1NAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUd5PM2mTWnzllGX3YULxTPh6vDW0wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGIMAwDQYJKoZI hvcNAQELBQADggEBAC5eaKOJpYoICH1s7xbdbkIZXQ6A8L/m9KxvIto8FVX9W0jp bYBRqIBkrDONXx60A5TUHHd7YLyw5tDg5NA6z2hMOjLTsTWQZgMw1JduqdTT/qP5 Yp8sLdjnt6ZUOaVVMD5Ql2m4aU/Muqw1YP8GJyLaa/EjHnmKrpCOfsduQUuEOUAr wHxlsp3zKlEipbnxrwmxih9Y2S7KkKsKq1XiDG25h4IqlLgJ5sx9SG8/PrTGSjLI oHcY+W3RaxhAGlu/3M3Ag5ys0eziRswDKaoNs2evBkwxqvxi2BdTO5TJ0SC0Mz+y PCxnQ1GN5662Zexz1Ce0GLGR1UeH2mjbMyzyJ/c= -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org