$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33322d3438203d3e20313430343233.roa (raw, json) Hash identifier: BMZj4o8ne0sQ+aHeA+E9ewnYrsaeF/X0uZ7YWd8ziIA= Subject key identifier: FD:A5:AD:CE:8E:5F:2A:BE:EF:2C:A4:A9:A4:68:22:7A:E6:79:68:93 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 296C23A05594B5B91ACF9EAB99A15EBBCB8754BD Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:6c:23:a0:55:94:b5:b9:1a:cf:9e:ab:99:a1:5e:bb:cb:87:54:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=FDA5ADCE8E5F2ABEEF2CA4A9A468227AE6796893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:92:91:e6:2b:35:6a:89:90:9c:0c:5f:40:35: 55:ea:d4:bc:7f:c4:85:b2:0f:3d:67:0c:53:e1:c7: 2e:b5:39:d1:0f:37:24:04:3b:84:c6:d4:fa:55:3a: 8e:f9:0b:83:be:16:40:bd:af:32:62:d6:58:32:8f: ea:86:7b:d1:73:a5:61:75:a7:82:5a:e6:9b:97:bd: cd:ad:9b:31:06:a3:8d:b6:2a:c4:bf:a4:00:37:2c: 4f:fa:73:89:8a:ec:9f:25:c5:36:79:95:70:7c:92: 17:b2:33:c1:0a:79:dd:e9:72:5a:30:33:85:bf:7a: e3:aa:11:b3:6c:f0:80:30:53:d7:f0:6d:81:5d:c3: 20:a4:28:15:2f:10:91:96:39:9e:72:7c:6e:4e:0f: c7:9f:63:74:10:0a:e1:5e:a1:ff:a5:f3:fa:fc:de: 1c:e2:e7:da:67:2a:6f:84:f2:96:4c:c1:10:9d:d6: 0b:ae:c5:35:fd:32:14:84:b0:c1:31:d0:da:50:81: 11:69:ba:63:d8:e2:61:01:fb:d4:40:be:4b:46:5d: b6:d7:5d:92:be:1d:c4:cf:bf:99:8a:53:11:5c:0a: c2:a4:d1:fb:70:01:7a:5c:f7:e5:71:a0:ba:13:e2: db:c3:bd:ee:11:42:c1:de:60:f0:1a:6e:30:50:da: a1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A5:AD:CE:8E:5F:2A:BE:EF:2C:A4:A9:A4:68:22:7A:E6:79:68:93 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33322d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:3f:53:34:23:5d:7e:34:89:8b:aa:46:1f:13:56:e8:b3:86: 79:d0:0b:c7:07:b7:02:b3:f8:74:1d:af:a3:ec:7d:f7:85:75: 6a:15:97:9f:6d:33:40:aa:ab:6f:6a:82:ac:2b:c1:07:55:f1: 3b:3b:e8:77:bf:19:25:45:0e:4d:ce:30:11:60:23:94:54:36: 21:5c:5a:27:b6:1b:5f:02:55:5c:40:a2:52:4a:cc:a3:4e:c4: e3:aa:c1:82:1e:85:d9:ad:7c:a7:e5:0d:d1:cc:79:c5:cf:83: ce:34:e0:31:4a:99:5c:bd:8d:d5:41:2e:ce:20:a6:53:7e:7b: af:78:b0:88:d7:51:a1:a4:d6:18:85:56:89:bc:fa:b1:5b:0c: e1:8a:88:ff:6f:d1:07:14:08:72:11:42:33:b4:86:bc:06:0e: 02:5c:5d:4e:e1:88:0f:44:ed:8d:fc:94:65:9d:15:c8:b0:9c: 4a:f0:52:2d:f7:38:a4:e9:0a:38:27:2d:67:5d:c2:00:88:ca: b3:bb:a5:88:5e:5e:c7:1c:2c:72:9a:73:ca:29:65:b5:b0:dd: 17:7c:f1:bc:63:21:51:a9:e3:92:18:47:58:bb:08:72:a2:33: da:8d:ec:62:41:f5:63:95:21:70:0e:b0:d4:ea:eb:78:01:4c: b8:02:8a:b0 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKWwjoFWUtbkaz56rmaFeu8uHVL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKEZEQTVBRENFOEU1RjJBQkVFRjJDQTRBOUE0NjgyMjdBRTY3OTY4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkpHmKzVqiZCcDF9ANVXq1Lx/ xIWyDz1nDFPhxy61OdEPNyQEO4TG1PpVOo75C4O+FkC9rzJi1lgyj+qGe9FzpWF1 p4Ja5puXvc2tmzEGo422KsS/pAA3LE/6c4mK7J8lxTZ5lXB8kheyM8EKed3pclow M4W/euOqEbNs8IAwU9fwbYFdwyCkKBUvEJGWOZ5yfG5OD8efY3QQCuFeof+l8/r8 3hzi59pnKm+E8pZMwRCd1guuxTX9MhSEsMEx0NpQgRFpumPY4mEB+9RAvktGXbbX XZK+HcTPv5mKUxFcCsKk0ftwAXpc9+VxoLoT4tvDve4RQsHeYPAabjBQ2qGNAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU/aWtzo5fKr7vLKSppGgieuZ5aJMwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGIMAwDQYJKoZI hvcNAQELBQADggEBAH4/UzQjXX40iYuqRh8TVuizhnnQC8cHtwKz+HQdr6PsffeF dWoVl59tM0Cqq29qgqwrwQdV8Ts76He/GSVFDk3OMBFgI5RUNiFcWie2G18CVVxA olJKzKNOxOOqwYIehdmtfKflDdHMecXPg8404DFKmVy9jdVBLs4gplN+e694sIjX UaGk1hiFVom8+rFbDOGKiP9v0QcUCHIRQjO0hrwGDgJcXU7hiA9E7Y38lGWdFciw nErwUi33OKTpCjgnLWddwgCIyrO7pYheXsccLHKac8opZbWw3Rd88bxjIVGp45IY R1i7CHKiM9qN7GJB9WOVIXAOsNTq63gBTLgCirA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org