$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 5LTOZ8z2VyMXt2jYqAsxjikIW/l1ad4dk98yj+C3Css= Subject key identifier: BD:E7:2B:AF:81:7A:A9:37:E1:14:26:04:EA:77:A6:80:36:9C:39:04 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 6998A3FDA086EC9903D9CF6C400C097DB660D750 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:01 +0000 ROA not before: Sun 01 Oct 2023 05:55:01 +0000 ROA not after: Sun 29 Sep 2024 06:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:98:a3:fd:a0:86:ec:99:03:d9:cf:6c:40:0c:09:7d:b6:60:d7:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:01 2023 GMT Not After : Sep 29 06:00:01 2024 GMT Subject: CN=BDE72BAF817AA937E1142604EA77A680369C3904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:38:da:6a:f4:6b:92:76:52:39:b8:61:99: f6:e6:bf:ee:85:7b:a0:ff:4f:43:90:b1:bc:a8:bd: 8c:a1:2a:88:05:a0:57:da:9f:d3:51:a8:49:c7:3f: 0b:ff:df:25:d5:84:fb:6a:08:09:a9:c6:1f:86:bb: e0:87:d6:82:58:06:5d:3d:d6:c6:a7:47:a8:74:fe: 1a:5d:de:9a:58:dd:a8:f2:42:53:d5:fb:e9:31:2a: 27:1a:d2:cc:29:59:f5:f9:dc:7d:6b:a3:f7:4c:58: 17:09:fb:10:4a:4f:10:53:51:11:78:ce:d3:06:cf: 84:be:b1:56:ca:b6:1e:5c:1a:30:26:cb:4a:f1:17: 73:27:91:be:3b:09:e0:4a:3c:98:fe:64:88:ba:ad: 5c:bd:58:f0:1b:fe:4b:35:2b:d0:c8:ac:b2:6a:36: 28:f7:11:fc:a2:9a:69:23:25:cc:80:93:16:f7:d9: 87:3a:74:a4:f0:91:52:23:d5:16:0f:79:58:4c:e8: 92:74:0d:02:56:06:1c:4c:55:c4:75:16:c7:94:94: ac:6f:fa:0f:61:ef:a8:e3:56:d2:89:67:bf:7c:a0: 10:53:9c:76:a3:03:7d:90:1b:90:d6:6a:a4:d6:d3: 2e:bd:b0:fd:cc:75:ab:b6:dc:75:a8:6f:d9:ac:04: b2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E7:2B:AF:81:7A:A9:37:E1:14:26:04:EA:77:A6:80:36:9C:39:04 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/35 Signature Algorithm: sha256WithRSAEncryption 00:f7:ad:ac:69:be:c7:97:88:ba:93:12:a3:7f:29:47:d0:28: ca:53:8e:4c:36:18:58:f1:0c:4d:d9:1f:d6:fa:0d:92:eb:28: 3f:ff:2e:1c:b4:33:ea:29:96:85:27:d7:83:06:42:07:0a:39: fb:e8:c0:26:4e:8f:9d:6a:93:8f:be:e5:57:1e:77:52:5c:fc: 37:0b:7a:13:b2:af:5a:8b:7f:ed:84:36:5b:08:11:c1:78:65: 40:24:d3:5d:f4:99:34:d1:fb:94:14:cf:f3:9b:36:02:19:d4: 28:f2:d7:af:e2:da:69:73:af:68:77:34:c2:9c:ce:91:76:40: 43:14:db:95:7f:4e:b5:d5:7e:79:d5:2a:15:e6:71:d5:99:bc: 52:ec:03:3e:14:96:40:b5:aa:c7:bd:99:49:28:20:3b:d4:5c: f9:29:3a:23:5a:45:aa:10:49:ff:7a:47:13:5d:2a:67:ad:97: cb:3d:20:36:4c:fa:4e:a8:30:32:93:1b:a4:16:00:8e:4a:5c: f1:1c:77:eb:81:30:08:a7:6b:7d:af:ee:0b:43:e8:4d:29:7b: 88:a8:12:3e:0d:d6:5e:39:7a:0d:77:65:52:5f:cf:67:8d:12: a0:df:75:2b:47:35:b5:34:19:55:e3:53:9e:5a:5d:24:3f:85: 70:b2:49:c5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUaZij/aCG7JkD2c9sQAwJfbZg11AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDFaFw0yNDA5MjkwNjAwMDFaMDMxMTAvBgNV BAMTKEJERTcyQkFGODE3QUE5MzdFMTE0MjYwNEVBNzdBNjgwMzY5QzM5MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC06zjaavRrknZSObhhmfbmv+6F e6D/T0OQsbyovYyhKogFoFfan9NRqEnHPwv/3yXVhPtqCAmpxh+Gu+CH1oJYBl09 1sanR6h0/hpd3ppY3ajyQlPV++kxKica0swpWfX53H1ro/dMWBcJ+xBKTxBTURF4 ztMGz4S+sVbKth5cGjAmy0rxF3Mnkb47CeBKPJj+ZIi6rVy9WPAb/ks1K9DIrLJq Nij3EfyimmkjJcyAkxb32Yc6dKTwkVIj1RYPeVhM6JJ0DQJWBhxMVcR1FseUlKxv +g9h76jjVtKJZ798oBBTnHajA32QG5DWaqTW0y69sP3Mdau23HWob9msBLIJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUvecrr4F6qTfhFCYE6nemgDacOQQwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAoDANBgkqhkiG9w0BAQsFAAOCAQEAAPetrGm+x5eIupMSo38pR9AoylOOTDYY WPEMTdkf1voNkusoP/8uHLQz6imWhSfXgwZCBwo5++jAJk6PnWqTj77lVx53Ulz8 Nwt6E7KvWot/7YQ2WwgRwXhlQCTTXfSZNNH7lBTP85s2AhnUKPLXr+LaaXOvaHc0 wpzOkXZAQxTblX9OtdV+edUqFeZx1Zm8UuwDPhSWQLWqx72ZSSggO9Rc+Sk6I1pF qhBJ/3pHE10qZ62Xyz0gNkz6TqgwMpMbpBYAjkpc8Rx364EwCKdrfa/uC0PoTSl7 iKgSPg3WXjl6DXdlUl/PZ40SoN91K0c1tTQZVeNTnlpdJD+FcLJJxQ== -----END CERTIFICATE-----Generated at Wed May 1 05:56:37 2024 by rpki-client on console-fra.rpki-client.org