$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa File: 323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa (raw, json) Hash identifier: M5PnwHCCz4w9/tOUSZ9Ldj62K5UC4YWHbzIcyiZN24s= Subject key identifier: A8:F1:95:4C:D3:21:A1:43:21:7F:61:28:FD:60:F2:72:8C:91:9A:79 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 41B1DA13DC482058C56A9FA382427A936115911D Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:02 +0000 ROA not before: Sun 01 Sep 2024 06:55:02 +0000 ROA not after: Sun 31 Aug 2025 07:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:c000::/34 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b1:da:13:dc:48:20:58:c5:6a:9f:a3:82:42:7a:93:61:15:91:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:02 2024 GMT Not After : Aug 31 07:00:02 2025 GMT Subject: CN=A8F1954CD321A143217F6128FD60F2728C919A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e6:bc:ec:a1:50:f1:57:72:7e:31:60:e2:b2: 4b:38:a2:ee:74:02:63:ec:95:20:63:d5:80:6d:45: a5:ea:08:9c:8f:0e:2d:44:46:7f:9f:6e:79:af:cf: a0:dd:27:75:8b:39:66:68:f2:e9:e6:7b:c1:bd:93: c6:78:8a:fd:3e:1a:1c:1a:66:1a:8c:d6:b3:be:b3: 8f:9c:8e:4b:11:9d:65:7c:e3:1b:99:4a:bf:4b:f4: 6b:d9:72:1e:fa:1b:db:ef:97:7b:4c:fc:40:f0:9e: 32:ee:f2:8c:6b:c8:87:a3:a9:47:77:b0:ce:d8:d8: 82:51:f3:82:cd:77:7e:39:a1:1f:e8:cf:29:e0:85: 54:b8:39:9d:96:21:3f:6f:93:05:51:c8:f3:2f:e7: 9f:29:0c:46:06:eb:25:2b:b5:93:87:f6:b0:50:da: ac:8e:1b:d3:79:8e:83:90:ed:55:14:40:f4:28:98: 08:78:ee:4e:63:13:9a:e6:67:a4:0f:ef:e7:18:dc: 43:d1:ad:f8:d3:67:62:23:51:86:55:88:11:b0:bd: 54:a3:5f:42:7c:70:67:60:6b:60:c3:fc:df:3a:2b: 05:9f:b7:8e:f1:f1:75:6b:8d:c6:d3:a6:01:e7:2b: 49:02:2c:6c:a1:1e:ce:1f:bc:62:49:6d:ec:b6:f7: eb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F1:95:4C:D3:21:A1:43:21:7F:61:28:FD:60:F2:72:8C:91:9A:79 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33342d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:c000::/34 Signature Algorithm: sha256WithRSAEncryption a4:10:d2:83:77:b8:45:d4:b9:ce:05:a8:84:de:85:31:dc:f5: 4a:be:7a:e5:06:58:b3:bd:00:9c:b1:a1:6e:c4:a0:5a:cf:0f: d8:8b:ce:6d:b5:89:6f:ab:7b:1c:56:50:78:c3:9d:65:82:df: 53:f7:92:1c:15:cb:c9:e9:69:f5:67:44:cb:e8:c3:ae:42:64: 3d:cd:6a:4e:2e:a7:f3:e6:64:ee:96:4b:a8:0f:30:82:f1:8b: 27:bb:80:cd:14:17:86:95:18:06:1e:d0:f5:b7:a7:bc:c7:f0: 69:38:b0:96:95:ec:f5:a6:f7:80:5a:be:0f:f3:fa:f7:ba:46: b4:13:26:64:4c:03:f9:00:83:74:a8:34:80:ef:21:9d:ab:4f: e6:6d:21:10:b7:a3:33:24:63:6c:39:02:16:a7:0e:95:81:95: 2e:c7:97:ae:13:43:ff:c3:64:9c:43:6e:e2:e4:4a:c7:ce:df: ac:78:67:d7:79:1b:4e:7d:ce:d4:64:77:09:87:8f:f5:c4:09: b0:19:17:a6:6f:b6:0a:4e:be:b8:88:82:46:2e:ca:e4:7e:ce: 12:ec:de:ab:0b:f8:1e:38:d0:41:f3:88:89:71:c0:23:32:ae: 16:f7:a2:fd:37:c5:37:a9:c3:43:0c:4c:cc:d9:fb:59:a7:44: 39:a2:f0:40 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQbHaE9xIIFjFap+jgkJ6k2EVkR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDJaFw0yNTA4MzEwNzAwMDJaMDMxMTAvBgNV BAMTKEE4RjE5NTRDRDMyMUExNDMyMTdGNjEyOEZENjBGMjcyOEM5MTlBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB5rzsoVDxV3J+MWDisks4ou50 AmPslSBj1YBtRaXqCJyPDi1ERn+fbnmvz6DdJ3WLOWZo8unme8G9k8Z4iv0+Ghwa ZhqM1rO+s4+cjksRnWV84xuZSr9L9GvZch76G9vvl3tM/EDwnjLu8oxryIejqUd3 sM7Y2IJR84LNd345oR/ozynghVS4OZ2WIT9vkwVRyPMv558pDEYG6yUrtZOH9rBQ 2qyOG9N5joOQ7VUUQPQomAh47k5jE5rmZ6QP7+cY3EPRrfjTZ2IjUYZViBGwvVSj X0J8cGdga2DD/N86KwWft47x8XVrjcbTpgHnK0kCLGyhHs4fvGJJbey29+sxAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUqPGVTNMhoUMhf2Eo/WDycoyRmnkwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk BiDAwDANBgkqhkiG9w0BAQsFAAOCAQEApBDSg3e4RdS5zgWohN6FMdz1Sr565QZY s70AnLGhbsSgWs8P2IvObbWJb6t7HFZQeMOdZYLfU/eSHBXLyelp9WdEy+jDrkJk Pc1qTi6n8+Zk7pZLqA8wgvGLJ7uAzRQXhpUYBh7Q9benvMfwaTiwlpXs9ab3gFq+ D/P697pGtBMmZEwD+QCDdKg0gO8hnatP5m0hELejMyRjbDkCFqcOlYGVLseXrhND /8NknENu4uRKx87frHhn13kbTn3O1GR3CYeP9cQJsBkXpm+2Ck6+uIiCRi7K5H7O Euzeqwv4HjjQQfOIiXHAIzKuFvei/TfFN6nDQwxMzNn7WadEOaLwQA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org