$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: CvO5tTC50TW4LUjNAFzPlsVkyHj9SpZpqqCyThX8i0s= Subject key identifier: 99:B4:24:0E:94:5A:47:EA:97:74:E3:86:46:31:EB:9D:E3:FD:40:D2 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 6E4A30931C43AC44FA8859DFB59636B7ED728A6D Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:02 +0000 ROA not before: Sun 01 Sep 2024 06:55:02 +0000 ROA not after: Sun 31 Aug 2025 07:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4a:30:93:1c:43:ac:44:fa:88:59:df:b5:96:36:b7:ed:72:8a:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:02 2024 GMT Not After : Aug 31 07:00:02 2025 GMT Subject: CN=99B4240E945A47EA9774E3864631EB9DE3FD40D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:73:7d:b9:52:8f:8a:af:01:a3:d8:0c:12: a6:58:61:5d:64:67:7c:bb:04:52:d6:17:11:28:7e: d5:17:d0:67:69:3b:d2:49:fe:14:c7:06:6d:0c:9a: 44:fa:b8:f1:9d:d4:37:d7:c4:4d:87:04:32:4c:83: 93:1a:82:b7:70:31:86:fe:d2:de:6f:1e:81:cc:40: f8:57:e9:a4:19:a8:e3:a2:30:dd:45:0f:80:12:9e: 70:57:ce:bb:db:d2:4a:30:65:cd:a3:13:11:50:84: 78:23:11:73:e9:a5:08:98:29:a7:1e:b1:0a:3f:4c: 72:da:30:17:76:9e:0d:89:21:c7:97:5d:a2:26:ac: 1b:da:34:79:f5:70:5e:99:55:cb:70:87:e2:de:7a: a0:c3:02:a8:63:be:26:0d:d6:7c:29:37:f3:7b:fc: a0:a0:95:f7:86:9e:94:1d:9f:b5:e2:03:67:8f:dc: f6:37:77:af:cc:ec:e4:57:fe:52:71:63:1f:3c:62: b7:e0:66:1e:53:02:c7:26:1d:5b:b0:01:46:28:af: 4d:55:76:6f:5e:97:15:73:5a:87:e9:99:81:25:5b: ba:02:48:59:28:0e:79:53:ae:20:f5:f7:40:4e:84: e2:dc:e9:96:96:53:6e:5d:f7:9c:7f:d0:25:7b:cc: c3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B4:24:0E:94:5A:47:EA:97:74:E3:86:46:31:EB:9D:E3:FD:40:D2 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/35 Signature Algorithm: sha256WithRSAEncryption 19:df:c9:44:22:ec:f9:bc:2a:44:b6:b0:4f:17:b5:18:6d:1c: 9b:cb:f2:b8:bd:3b:61:ff:70:64:d6:86:10:c6:6b:ef:8c:b0: 4e:59:71:25:de:01:45:28:7d:c0:03:b2:ae:a5:eb:a0:c3:2c: ce:3d:4f:72:42:fa:b2:7f:01:97:2d:0e:f1:d5:3e:39:52:6d: 25:fc:a5:14:0a:43:ee:b0:a0:60:58:1c:0f:4d:42:57:2b:d6: 3d:25:bf:c1:c7:23:1f:a1:fd:78:9e:44:da:7e:b0:49:eb:98: 52:7e:5f:fa:b9:8d:26:58:89:d5:43:b1:c9:85:fd:16:5f:7f: a6:fc:73:ce:88:08:a6:ac:ae:6b:3c:ab:2f:88:fb:03:cf:15: 5c:2a:25:ba:4e:6c:8a:77:b7:62:1e:bc:11:c6:60:4e:72:73: 2a:f3:69:fc:11:b2:c0:a8:79:9d:32:39:cb:c1:98:71:93:77: 2c:03:fd:8b:41:e7:9c:4e:4c:4a:f9:10:75:92:50:35:5e:5b: 67:c1:f4:fc:5f:28:ec:e2:ae:70:7f:92:a3:6f:a1:c6:bd:15: e0:63:4a:cf:d3:e9:b8:8f:6e:a3:80:51:31:a2:cf:06:8d:10: ef:91:d9:cf:95:29:bf:19:d7:01:45:40:bb:e2:2a:52:a5:9f: 40:3f:54:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbkowkxxDrET6iFnftZY2t+1yim0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDJaFw0yNTA4MzEwNzAwMDJaMDMxMTAvBgNV BAMTKDk5QjQyNDBFOTQ1QTQ3RUE5Nzc0RTM4NjQ2MzFFQjlERTNGRDQwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLpHN9uVKPiq8Bo9gMEqZYYV1k Z3y7BFLWFxEoftUX0GdpO9JJ/hTHBm0MmkT6uPGd1DfXxE2HBDJMg5MagrdwMYb+ 0t5vHoHMQPhX6aQZqOOiMN1FD4ASnnBXzrvb0kowZc2jExFQhHgjEXPppQiYKace sQo/THLaMBd2ng2JIceXXaImrBvaNHn1cF6ZVctwh+LeeqDDAqhjviYN1nwpN/N7 /KCglfeGnpQdn7XiA2eP3PY3d6/M7ORX/lJxYx88YrfgZh5TAscmHVuwAUYor01V dm9elxVzWofpmYElW7oCSFkoDnlTriD190BOhOLc6ZaWU25d95x/0CV7zMPfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmbQkDpRaR+qXdOOGRjHrneP9QNIwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzUy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQAZ38lEIuz5vCpEtrBPF7UYbRyby/K4vTth/3Bk1oYQxmvv jLBOWXEl3gFFKH3AA7KupeugwyzOPU9yQvqyfwGXLQ7x1T45Um0l/KUUCkPusKBg WBwPTUJXK9Y9Jb/BxyMfof14nkTafrBJ65hSfl/6uY0mWInVQ7HJhf0WX3+m/HPO iAimrK5rPKsviPsDzxVcKiW6TmyKd7diHrwRxmBOcnMq82n8EbLAqHmdMjnLwZhx k3csA/2LQeecTkxK+RB1klA1XltnwfT8Xyjs4q5wf5Kjb6HGvRXgY0rP0+m4j26j gFExos8GjRDvkdnPlSm/GdcBRUC74ipSpZ9AP1RJ -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org