$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: JEAC94Qg0KtcwMNGYmikGd77duvy9Wizh7YI8hlXvRg= Subject key identifier: 74:B7:70:65:87:9D:F9:4D:ED:0A:7B:AD:5F:2E:FE:14:E0:F0:81:B4 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 477287E51EBA4FFF22DB7FAA027CAC9322489E00 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:72:87:e5:1e:ba:4f:ff:22:db:7f:aa:02:7c:ac:93:22:48:9e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=74B77065879DF94DED0A7BAD5F2EFE14E0F081B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b6:13:8c:36:e8:fd:27:3b:cb:de:52:17:0a: 40:a9:7f:69:74:de:1b:f5:84:9d:46:b6:83:ea:5f: 41:08:d2:54:a7:0e:56:63:d8:a8:0c:27:04:de:0b: f0:7c:3e:61:48:cc:cd:b6:3a:05:e2:5f:d3:84:e7: ab:0c:d5:a1:a8:f4:1d:31:cb:dd:e8:99:df:f9:a1: 6e:04:2f:81:38:c0:f0:4d:8b:e6:3e:38:31:4a:33: f8:56:4b:96:ff:95:29:3d:5b:56:d7:af:9b:73:4e: 6e:ba:42:18:68:2e:ca:35:5a:fc:f0:c3:15:f2:8a: 31:35:b4:97:bc:94:78:88:fd:aa:c9:fa:d9:1b:80: b5:f5:95:78:3d:d5:19:e0:ac:6a:9c:fc:10:3d:08: 00:b6:15:f4:5d:cd:11:9f:96:92:93:94:9c:2c:64: 06:79:fb:ab:a7:b0:0c:c3:e9:f2:a2:4b:88:61:d3: 6a:fc:b2:8f:82:1d:40:f1:9d:3d:df:17:d9:b5:12: c4:f6:17:2f:fa:31:76:93:6e:1d:da:ea:57:70:82: 7d:32:69:e3:59:d3:c6:ff:00:4b:56:0b:c4:36:b3: 28:c0:a0:d3:c5:61:23:5b:f5:c4:fe:e7:75:de:5b: 8d:c1:43:8a:2f:c8:f0:24:ff:3b:bd:e6:79:55:59: 0d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B7:70:65:87:9D:F9:4D:ED:0A:7B:AD:5F:2E:FE:14:E0:F0:81:B4 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/33 Signature Algorithm: sha256WithRSAEncryption 35:df:03:31:cf:e0:e3:67:84:e5:1f:61:55:c1:7d:18:e5:20: 28:f2:21:57:4c:98:ee:f1:df:4d:ea:2b:64:a5:c5:d4:fd:57: 39:11:9f:a9:da:75:71:77:b0:da:65:01:2d:c0:18:a3:fb:42: 7a:b5:9d:76:c3:81:fe:65:64:16:83:bb:c3:a3:2b:45:34:6b: 74:47:94:36:82:a7:68:9c:9a:b0:56:62:6f:65:20:ec:18:5e: cc:a1:ad:df:f2:6c:13:e0:81:db:80:e8:4a:30:89:8c:4c:53: e6:31:b5:c2:81:58:58:23:9b:d9:14:6c:e4:99:9e:2d:9b:96: 84:a6:29:4f:f0:0e:33:02:8c:9b:bd:27:15:f0:6b:c1:ca:0b: 4c:dd:0f:96:4a:62:18:e7:d1:cd:84:2a:3e:23:e4:de:cd:8c: 4c:18:1a:4f:e2:cd:15:09:d8:1a:14:93:0a:05:9e:e5:6d:61: 6a:e0:a9:b4:a2:1f:df:77:79:cb:a0:06:89:7b:d5:bd:89:1e: d2:85:ce:b2:2f:5b:9e:de:c3:14:b0:0b:bf:f1:bd:8e:98:11: 06:f0:14:70:b2:46:2f:8b:f0:e6:56:23:ad:8a:f0:d9:49:d2: 23:d5:50:35:7c:f5:56:6e:b8:f2:82:99:e2:4b:c2:9d:2f:54: 52:2f:87:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR3KH5R66T/8i23+qAnyskyJIngAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKDc0Qjc3MDY1ODc5REY5NERFRDBBN0JBRDVGMkVGRTE0RTBGMDgxQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDathOMNuj9JzvL3lIXCkCpf2l0 3hv1hJ1GtoPqX0EI0lSnDlZj2KgMJwTeC/B8PmFIzM22OgXiX9OE56sM1aGo9B0x y93omd/5oW4EL4E4wPBNi+Y+ODFKM/hWS5b/lSk9W1bXr5tzTm66QhhoLso1Wvzw wxXyijE1tJe8lHiI/arJ+tkbgLX1lXg91RngrGqc/BA9CAC2FfRdzRGflpKTlJws ZAZ5+6unsAzD6fKiS4hh02r8so+CHUDxnT3fF9m1EsT2Fy/6MXaTbh3a6ldwgn0y aeNZ08b/AEtWC8Q2syjAoNPFYSNb9cT+53XeW43BQ4ovyPAk/zu95nlVWQ19AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdLdwZYed+U3tCnutXy7+FODwgbQwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzMy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQA13wMxz+DjZ4TlH2FVwX0Y5SAo8iFXTJju8d9N6itkpcXU /Vc5EZ+p2nVxd7DaZQEtwBij+0J6tZ12w4H+ZWQWg7vDoytFNGt0R5Q2gqdonJqw VmJvZSDsGF7Moa3f8mwT4IHbgOhKMImMTFPmMbXCgVhYI5vZFGzkmZ4tm5aEpilP 8A4zAoybvScV8GvBygtM3Q+WSmIY59HNhCo+I+TezYxMGBpP4s0VCdgaFJMKBZ7l bWFq4Km0oh/fd3nLoAaJe9W9iR7Shc6yL1ue3sMUsAu/8b2OmBEG8BRwskYvi/Dm ViOtivDZSdIj1VA1fPVWbrjygpniS8KdL1RSL4es -----END CERTIFICATE-----Generated at Fri May 3 09:07:39 2024 by rpki-client on console-fra.rpki-client.org