$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: sxKM/uuavve8Dm8GBEcvXOGJo0km60Ay+5ZYxunCj70= Subject key identifier: 46:72:7B:A3:ED:CE:C8:3B:D0:01:F9:6A:60:C1:8D:DE:99:DA:42:7E Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 1714A2DC53D3D70BDBE0CD1C79C1450A7720B106 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:04:45 +0000 ROA not before: Fri 09 Feb 2024 10:59:45 +0000 ROA not after: Fri 07 Feb 2025 11:04:45 +0000 asID: 140423 IP address blocks: 2406:20c0::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:14:a2:dc:53:d3:d7:0b:db:e0:cd:1c:79:c1:45:0a:77:20:b1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 10:59:45 2024 GMT Not After : Feb 7 11:04:45 2025 GMT Subject: CN=46727BA3EDCEC83BD001F96A60C18DDE99DA427E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a4:99:b6:45:b4:b6:bb:4d:bd:52:c1:01:f2: 99:7e:4d:b3:55:b6:73:f3:3a:18:65:d9:d5:25:e0: c0:55:36:f5:92:f5:48:46:72:d2:74:66:2c:4e:fc: 23:8f:50:9b:28:db:f7:93:f5:0b:e3:91:59:91:e8: e5:7c:ad:2b:45:00:b1:39:bd:95:14:c0:40:f1:63: 8f:77:4b:e2:6a:b1:33:0a:e6:b9:c6:ba:24:36:e7: 72:1c:0f:01:65:a8:88:ff:be:2f:8f:15:81:d6:51: 01:24:52:43:fc:9f:13:96:a6:af:b9:7d:b6:3f:57: fb:4b:5d:a6:43:25:f7:0d:a5:7e:45:ca:32:f0:cb: 80:bf:c8:de:20:2a:ff:8a:6b:5c:73:40:05:d3:3e: a8:a2:87:93:7e:2c:38:ba:9c:87:e5:12:cb:e7:5e: d3:88:a3:5b:6c:71:4c:12:0a:38:ad:63:3d:04:a1: d6:63:2c:93:f3:35:b4:fe:00:de:99:6b:9d:bd:8b: b1:2d:b4:64:6b:09:a2:87:fe:ef:66:c5:78:2b:ef: ce:0a:4a:7b:e4:52:32:53:d7:d9:e0:0c:ba:d1:51: b4:8e:7b:db:9a:39:7b:9e:9c:de:5d:fd:97:f0:bc: 2a:1b:7a:37:e6:bb:a6:81:58:c3:c3:83:9c:fe:ed: 67:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:72:7B:A3:ED:CE:C8:3B:D0:01:F9:6A:60:C1:8D:DE:99:DA:42:7E X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/36 Signature Algorithm: sha256WithRSAEncryption 83:f6:9d:50:9b:e3:57:61:52:d3:f1:6d:9e:ec:32:8f:3a:93: c4:80:1d:73:80:6e:81:9b:da:fe:c9:fc:d9:4e:9d:de:31:c4: 0c:d6:eb:31:28:9d:d6:53:99:f6:8a:f9:53:b5:da:bc:bc:a1: 40:e3:d8:a3:69:b9:2a:cf:09:78:ff:10:1a:aa:e3:f2:d8:a8: d5:8c:d8:c8:a9:66:c4:f7:e3:c1:df:ce:99:5a:66:ad:46:ee: a8:0b:74:19:90:31:d4:8b:b1:25:17:d2:c0:ec:86:d7:cc:1e: 53:8b:10:f3:d2:56:09:d8:8c:e2:d4:62:da:da:e4:ab:c4:1c: c6:55:60:f8:e8:82:46:26:cf:25:81:ec:55:67:fb:2e:57:5e: 4a:4e:f5:80:17:c5:64:15:ef:c1:6e:06:8a:0e:05:ee:4c:07: 9d:42:57:07:c2:49:fe:a7:7b:99:78:d9:36:ab:d9:ac:45:08: 9d:ea:5e:31:bd:e3:91:6b:c5:4f:94:7e:aa:1e:7c:17:7a:ec: 27:ec:28:22:80:c1:fc:18:66:6a:5c:55:14:a6:89:d6:31:dc: 16:e3:d1:a3:06:89:2b:d7:96:03:ea:3c:e0:ca:d0:cd:39:4e: f3:d2:f4:ee:07:b5:be:f7:88:30:66:ab:d6:fa:db:b5:f6:df: eb:33:cd:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFxSi3FPT1wvb4M0cecFFCncgsQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMDU5NDVaFw0yNTAyMDcxMTA0NDVaMDMxMTAvBgNV BAMTKDQ2NzI3QkEzRURDRUM4M0JEMDAxRjk2QTYwQzE4RERFOTlEQTQyN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVpJm2RbS2u029UsEB8pl+TbNV tnPzOhhl2dUl4MBVNvWS9UhGctJ0ZixO/COPUJso2/eT9QvjkVmR6OV8rStFALE5 vZUUwEDxY493S+JqsTMK5rnGuiQ253IcDwFlqIj/vi+PFYHWUQEkUkP8nxOWpq+5 fbY/V/tLXaZDJfcNpX5FyjLwy4C/yN4gKv+Ka1xzQAXTPqiih5N+LDi6nIflEsvn XtOIo1tscUwSCjitYz0EodZjLJPzNbT+AN6Za529i7EttGRrCaKH/u9mxXgr784K SnvkUjJT19ngDLrRUbSOe9uaOXuenN5d/ZfwvCobejfmu6aBWMPDg5z+7WftAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURnJ7o+3OyDvQAflqYMGN3pnaQn4wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCD9p1Qm+NXYVLT8W2e7DKPOpPEgB1zgG6Bm9r+yfzZTp3e McQM1usxKJ3WU5n2ivlTtdq8vKFA49ijabkqzwl4/xAaquPy2KjVjNjIqWbE9+PB 386ZWmatRu6oC3QZkDHUi7ElF9LA7IbXzB5TixDz0lYJ2Izi1GLa2uSrxBzGVWD4 6IJGJs8lgexVZ/suV15KTvWAF8VkFe/BbgaKDgXuTAedQlcHwkn+p3uZeNk2q9ms RQid6l4xveORa8VPlH6qHnwXeuwn7CgigMH8GGZqXFUUponWMdwW49GjBokr15YD 6jzgytDNOU7z0vTuB7W+94gwZqvW+tu19t/rM82x -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org