$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: 50NTertFkFX0auumXDs0Nv6etth85yy5GCfQnSjkV58= Subject key identifier: 50:4E:BD:29:FE:8C:69:85:04:EB:AF:1C:8D:E6:76:CB:76:A0:67:0E Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 1C9D1EA540C86D2A0EC4C5ABCF8E6AEC0D40EAB8 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:00 +0000 ROA not before: Sun 01 Sep 2024 06:55:00 +0000 ROA not after: Sun 31 Aug 2025 07:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9d:1e:a5:40:c8:6d:2a:0e:c4:c5:ab:cf:8e:6a:ec:0d:40:ea:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:00 2024 GMT Not After : Aug 31 07:00:00 2025 GMT Subject: CN=504EBD29FE8C698504EBAF1C8DE676CB76A0670E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2c:e8:7e:53:e1:a5:ea:14:ed:a6:bc:35:65: 5b:03:71:a8:af:99:ee:aa:f8:f9:6e:6c:fd:7e:40: b1:bb:ad:8d:f6:db:05:8a:33:64:ea:5c:91:df:36: 37:e0:dd:b0:2c:6a:31:c4:04:68:03:57:ff:b6:26: 36:21:8e:c9:78:d6:5d:ca:d9:76:01:d2:98:11:95: 8c:58:a6:a1:1b:28:62:ca:47:e4:7e:7c:e4:2d:79: be:59:07:b3:b3:6a:1c:14:b2:7c:81:a4:1d:9c:6b: 4e:79:eb:33:a9:0b:2c:b0:ed:c7:a0:bd:ab:e5:17: 86:f8:4e:fd:a3:03:33:09:f8:1b:50:70:bc:03:8c: 42:77:50:7d:c2:44:d6:ef:fc:8f:87:eb:4a:9f:ad: aa:a2:5d:3d:59:a5:ea:09:52:04:ab:75:7f:66:d7: 94:71:9f:ed:11:5e:f1:19:31:a4:22:11:47:e3:7f: d9:5c:e4:22:44:85:2f:d8:33:ee:c7:9f:c2:97:9b: 0a:db:34:38:02:a9:ca:d7:6a:ef:5d:3e:4e:84:d5: 76:77:cd:a8:a0:3d:7e:7e:d1:bf:66:1d:0a:6a:74: 84:9a:43:ea:e8:c5:7b:0d:ca:6c:68:c2:9c:9f:ac: ac:05:3e:2b:f5:95:09:26:83:ce:11:2a:e6:57:77: 12:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:4E:BD:29:FE:8C:69:85:04:EB:AF:1C:8D:E6:76:CB:76:A0:67:0E X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/34 Signature Algorithm: sha256WithRSAEncryption ad:e3:ca:05:6a:45:8b:2a:8d:d2:34:a7:19:e3:6f:8e:f8:00: 01:c6:60:9e:16:4e:20:c1:0e:d7:1d:e0:35:fc:68:cf:07:a4: a8:7a:bc:f6:45:08:d8:38:d4:0b:a7:2c:c5:aa:67:7f:95:37: 6a:00:6f:ad:a8:84:5d:03:01:af:fd:e0:a7:a7:2a:a4:a5:54: 0e:eb:ee:38:34:ca:f2:79:65:45:e4:a2:dc:ea:a1:08:0a:33: 63:e8:33:de:ed:75:de:75:c7:fe:ba:d9:71:fc:13:d2:d6:73: f3:aa:f7:7a:36:ac:b9:6c:c6:b5:9b:b2:fa:9b:48:50:b1:56: 63:d1:cb:54:a6:0b:fa:9e:85:3f:5d:9d:e4:ea:61:8a:cc:e7: 2c:c3:fb:5d:17:8e:a4:e1:f9:99:17:7a:38:0d:aa:24:23:13: 41:11:50:42:b3:87:9b:e9:05:d0:4f:5a:36:f6:46:28:b4:76: b7:e7:81:a6:4c:24:7b:a9:c9:96:c5:00:87:03:10:c5:4c:86: e3:37:d6:29:7c:74:ad:21:9a:fd:af:66:a8:60:2e:cd:ff:c2: a6:33:0b:2a:c3:f7:f2:90:6b:a5:2a:10:3a:a2:b3:59:1a:df: 14:af:3c:77:0f:d9:ea:e5:50:40:74:c6:a1:51:2b:13:9b:75: 84:c7:4e:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHJ0epUDIbSoOxMWrz45q7A1A6rgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDBaFw0yNTA4MzEwNzAwMDBaMDMxMTAvBgNV BAMTKDUwNEVCRDI5RkU4QzY5ODUwNEVCQUYxQzhERTY3NkNCNzZBMDY3MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdLOh+U+Gl6hTtprw1ZVsDcaiv me6q+PlubP1+QLG7rY322wWKM2TqXJHfNjfg3bAsajHEBGgDV/+2JjYhjsl41l3K 2XYB0pgRlYxYpqEbKGLKR+R+fOQteb5ZB7OzahwUsnyBpB2ca0556zOpCyyw7ceg vavlF4b4Tv2jAzMJ+BtQcLwDjEJ3UH3CRNbv/I+H60qfraqiXT1ZpeoJUgSrdX9m 15Rxn+0RXvEZMaQiEUfjf9lc5CJEhS/YM+7Hn8KXmwrbNDgCqcrXau9dPk6E1XZ3 zaigPX5+0b9mHQpqdISaQ+roxXsNymxowpyfrKwFPiv1lQkmg84RKuZXdxJ3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUE69Kf6MaYUE668cjeZ2y3agZw4wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzQy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCt48oFakWLKo3SNKcZ42+O+AABxmCeFk4gwQ7XHeA1/GjP B6Soerz2RQjYONQLpyzFqmd/lTdqAG+tqIRdAwGv/eCnpyqkpVQO6+44NMryeWVF 5KLc6qEICjNj6DPe7XXedcf+utlx/BPS1nPzqvd6Nqy5bMa1m7L6m0hQsVZj0ctU pgv6noU/XZ3k6mGKzOcsw/tdF46k4fmZF3o4DaokIxNBEVBCs4eb6QXQT1o29kYo tHa354GmTCR7qcmWxQCHAxDFTIbjN9YpfHStIZr9r2aoYC7N/8KmMwsqw/fykGul KhA6orNZGt8Urzx3D9nq5VBAdMahUSsTm3WEx050 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org