$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: rYh1ogDTPgVi+h+IEgkoml7i9QVIUFfsBGBH3KkJwYQ= Subject key identifier: C6:7C:D5:49:CC:B2:B0:FB:23:93:CC:46:95:94:05:B6:FF:45:93:EF Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 05439AE159125FF8948DE3613D475DB3DFD48A05 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:43:9a:e1:59:12:5f:f8:94:8d:e3:61:3d:47:5d:b3:df:d4:8a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=C67CD549CCB2B0FB2393CC46959405B6FF4593EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:90:c1:db:49:ae:78:4d:b8:d4:5d:56:40:c9: d0:5c:72:2e:c6:84:21:dc:b3:c3:50:2b:dc:36:d1: 77:98:d9:86:8c:9a:3d:2c:be:04:1f:62:e9:f6:59: 17:57:49:be:86:f2:48:ca:6e:2f:0b:ee:20:e2:1a: e9:67:49:e4:c9:ab:ae:cc:49:ee:1f:fa:80:d3:95: 1b:42:0a:6c:91:57:1d:8a:4a:30:f7:58:fe:b5:02: 15:5b:ec:36:f8:86:dc:4d:20:83:8c:f8:af:53:d0: 67:12:6b:57:63:09:ce:76:94:bc:e1:45:29:83:3c: 9e:74:da:8a:28:20:7d:11:d2:64:a3:80:82:94:86: a2:ed:cf:b3:c0:25:5f:f1:58:53:d9:d8:9d:e2:e5: be:5b:b8:a5:75:41:16:c6:2c:bb:7f:ff:b9:95:68: fe:db:b9:ef:20:be:89:f8:03:51:77:5c:f8:64:f5: 74:aa:b7:f2:bc:72:21:5e:52:50:7f:0d:f3:f5:d4: aa:b9:73:db:4a:5f:20:1e:67:b4:4a:3f:84:bd:66: 17:e8:2e:89:4a:e7:12:7f:e4:ff:9c:ad:05:7f:71: bc:ab:62:cb:47:9c:ee:54:67:a5:46:01:24:bf:9a: 31:8f:87:d4:fe:bb:f7:a9:d9:d6:45:87:1d:b1:f9: 0c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7C:D5:49:CC:B2:B0:FB:23:93:CC:46:95:94:05:B6:FF:45:93:EF X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/35 Signature Algorithm: sha256WithRSAEncryption 2d:ee:ca:4e:07:37:38:c9:e7:26:a8:3d:60:d3:43:57:1f:05: bb:54:07:96:22:27:dc:97:0f:99:9a:01:6e:32:f3:25:cb:52: e0:3e:22:59:3e:73:0e:49:3b:29:3c:05:98:6d:40:52:fa:ac: d6:f0:a3:8f:4c:b5:56:09:b4:6f:01:ee:cd:5d:b8:8d:4a:33: 51:3e:4d:9d:62:d7:d9:11:8f:7b:8f:b5:e0:2b:58:46:1e:dc: f8:1e:32:5b:fb:1f:e6:62:56:03:1a:ce:ec:72:95:5d:97:d6: 7d:ef:ec:e4:9d:24:b7:3d:f8:73:0c:9d:27:ba:2f:6d:47:cf: 98:27:89:94:9c:66:5c:aa:82:54:6b:7f:af:9e:a9:0d:31:31: 1e:46:fc:aa:5f:5b:e7:6c:14:d7:54:18:b2:12:39:9c:99:36: 1c:c2:1a:8a:fa:9a:18:26:ff:0b:af:3a:6e:f7:52:99:3f:05: cb:16:64:31:07:c7:b3:fc:e6:82:48:af:01:20:ed:59:9d:d4: fb:c6:2f:58:e8:d7:ac:74:10:16:6a:01:d9:68:75:90:cf:52: 73:18:51:c1:bd:4b:c5:96:6f:e3:e6:93:84:ea:d6:cd:85:74: 35:f0:ee:b7:5e:b1:9a:20:38:28:22:33:77:97:78:9b:ba:ce: 48:fe:61:f0 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUBUOa4VkSX/iUjeNhPUdds9/UigUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKEM2N0NENTQ5Q0NCMkIwRkIyMzkzQ0M0Njk1OTQwNUI2RkY0NTkzRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjkMHbSa54TbjUXVZAydBcci7G hCHcs8NQK9w20XeY2YaMmj0svgQfYun2WRdXSb6G8kjKbi8L7iDiGulnSeTJq67M Se4f+oDTlRtCCmyRVx2KSjD3WP61AhVb7Db4htxNIIOM+K9T0GcSa1djCc52lLzh RSmDPJ502oooIH0R0mSjgIKUhqLtz7PAJV/xWFPZ2J3i5b5buKV1QRbGLLt//7mV aP7bue8gvon4A1F3XPhk9XSqt/K8ciFeUlB/DfP11Kq5c9tKXyAeZ7RKP4S9Zhfo LolK5xJ/5P+crQV/cbyrYstHnO5UZ6VGASS/mjGPh9T+u/ep2dZFhx2x+QxXAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUxnzVScyysPsjk8xGlZQFtv9Fk+8wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAoDANBgkqhkiG9w0BAQsFAAOCAQEALe7KTgc3OMnnJqg9YNNDVx8Fu1QHliIn 3JcPmZoBbjLzJctS4D4iWT5zDkk7KTwFmG1AUvqs1vCjj0y1Vgm0bwHuzV24jUoz UT5NnWLX2RGPe4+14CtYRh7c+B4yW/sf5mJWAxrO7HKVXZfWfe/s5J0ktz34cwyd J7ovbUfPmCeJlJxmXKqCVGt/r56pDTExHkb8ql9b52wU11QYshI5nJk2HMIaivqa GCb/C686bvdSmT8FyxZkMQfHs/zmgkivASDtWZ3U+8YvWOjXrHQQFmoB2Wh1kM9S cxhRwb1LxZZv4+aThOrWzYV0NfDut16xmiA4KCIzd5d4m7rOSP5h8A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org