$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: NPKXvbVFmc0QFXzFiFIcvq5wghOHu8XqoJsFK/FEzPc= Subject key identifier: DC:EA:5D:1F:73:7F:35:3A:39:26:0D:3B:1D:70:F9:9E:F4:07:47:77 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 49F8ADE0575A48564CF777EBEC5BBDED505E2178 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:00 +0000 ROA not before: Sun 01 Sep 2024 06:55:00 +0000 ROA not after: Sun 31 Aug 2025 07:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f8:ad:e0:57:5a:48:56:4c:f7:77:eb:ec:5b:bd:ed:50:5e:21:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:00 2024 GMT Not After : Aug 31 07:00:00 2025 GMT Subject: CN=DCEA5D1F737F353A39260D3B1D70F99EF4074777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b7:88:88:53:6f:92:56:57:9d:67:4f:d3:4d: 18:37:cb:42:b5:fd:aa:ee:58:9d:b1:57:89:73:d5: f2:53:cd:f7:d3:26:ce:3f:1b:d6:36:64:70:8c:04: 8f:30:51:f0:b9:fa:2a:0e:7b:cf:2e:42:35:02:13: 5c:65:31:bc:1d:2d:00:25:45:df:26:50:17:d6:c0: ed:88:16:78:8e:cd:06:56:60:32:da:49:fe:cb:24: ff:04:f2:ea:11:af:c5:25:70:90:dc:a8:64:04:93: 85:0f:92:33:ce:6c:e1:d9:6f:24:46:64:7a:ec:7b: e1:79:89:d9:8f:b6:35:4a:a7:99:7c:8f:9b:12:60: 99:03:67:63:86:42:d9:fd:17:22:18:48:2b:a6:f8: 72:85:d0:97:d2:b9:bb:41:c9:71:ca:29:13:74:bb: b5:b4:77:3e:12:0e:d8:1a:31:66:30:7b:92:71:93: 23:7f:71:bf:01:44:9d:05:78:2c:4f:49:e3:8a:37: 69:17:50:26:c6:6b:6a:3e:bf:ab:ec:51:84:89:cf: e3:f7:61:8e:25:08:22:8d:16:db:6f:6e:98:9d:cf: 4d:e3:e3:c0:53:5d:bd:66:6a:25:d1:05:36:06:af: a2:38:9a:dd:e6:68:49:3b:c9:ec:37:d6:d9:d0:a7: 46:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EA:5D:1F:73:7F:35:3A:39:26:0D:3B:1D:70:F9:9E:F4:07:47:77 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/33 Signature Algorithm: sha256WithRSAEncryption 19:f0:8b:b7:27:96:1f:42:e8:e9:63:d8:de:c0:01:a1:67:f6: 01:52:f7:a0:1e:cb:f8:13:cc:1d:81:16:52:77:00:26:12:3d: 42:5c:19:35:30:59:0c:b0:4f:27:7f:6a:5a:8f:45:be:9d:da: e8:4a:a1:e5:af:17:9c:e0:91:c4:0c:8c:50:cc:29:27:62:3b: 68:28:b3:bc:84:0b:e1:f3:c7:b1:18:34:c5:dd:15:60:98:71: a9:d3:c4:ce:90:22:8c:8c:f9:bc:d5:f6:57:9a:0d:29:05:26: e7:1f:73:38:9a:ce:e4:f3:c0:67:b7:d8:45:da:11:6a:94:9c: ad:a8:e2:05:99:e6:e2:0f:4e:a2:50:51:2a:8b:1c:72:56:a4: fc:73:65:55:fc:bf:6f:52:a2:6a:7a:9c:7d:75:2b:14:3f:94: 33:48:31:38:4e:87:57:32:65:9a:0a:d8:08:3a:67:57:1b:61: 7d:c2:83:2f:fd:f6:bb:f1:29:16:8c:c4:9d:09:d7:01:03:f4: 4b:cc:0b:9d:e6:90:b4:1d:07:37:b4:87:26:cd:f1:26:1c:44: f0:43:36:1a:b6:5c:c2:3e:2b:4a:36:b5:f6:91:db:d6:45:72: 8b:a4:4d:2b:59:dc:f1:12:1a:ac:49:1c:e7:e2:4d:35:3c:9e: 6a:12:0b:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSfit4FdaSFZM93fr7Fu97VBeIXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDBaFw0yNTA4MzEwNzAwMDBaMDMxMTAvBgNV BAMTKERDRUE1RDFGNzM3RjM1M0EzOTI2MEQzQjFENzBGOTlFRjQwNzQ3NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmt4iIU2+SVledZ0/TTRg3y0K1 /aruWJ2xV4lz1fJTzffTJs4/G9Y2ZHCMBI8wUfC5+ioOe88uQjUCE1xlMbwdLQAl Rd8mUBfWwO2IFniOzQZWYDLaSf7LJP8E8uoRr8UlcJDcqGQEk4UPkjPObOHZbyRG ZHrse+F5idmPtjVKp5l8j5sSYJkDZ2OGQtn9FyIYSCum+HKF0JfSubtByXHKKRN0 u7W0dz4SDtgaMWYwe5JxkyN/cb8BRJ0FeCxPSeOKN2kXUCbGa2o+v6vsUYSJz+P3 YY4lCCKNFttvbpidz03j48BTXb1maiXRBTYGr6I4mt3maEk7yew31tnQp0Y1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3OpdH3N/NTo5Jg07HXD5nvQHR3cwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzMy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQAZ8Iu3J5YfQujpY9jewAGhZ/YBUvegHsv4E8wdgRZSdwAm Ej1CXBk1MFkMsE8nf2paj0W+ndroSqHlrxec4JHEDIxQzCknYjtoKLO8hAvh88ex GDTF3RVgmHGp08TOkCKMjPm81fZXmg0pBSbnH3M4ms7k88Bnt9hF2hFqlJytqOIF mebiD06iUFEqixxyVqT8c2VV/L9vUqJqepx9dSsUP5QzSDE4TodXMmWaCtgIOmdX G2F9woMv/fa78SkWjMSdCdcBA/RLzAud5pC0HQc3tIcmzfEmHETwQzYatlzCPitK NrX2kdvWRXKLpE0rWdzxEhqsSRzn4k01PJ5qEgup -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org