$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: y7DJjVdhQjLEq9frA04WkKVDDayYCGgRrHJ8Rbb61FY= Subject key identifier: D8:BD:57:7F:89:1D:CB:44:C7:1D:95:24:6E:05:33:C6:9A:E5:A3:82 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5005755C72484D756969C7F41217EC0ACDAC47D7 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 06:00:00 +0000 ROA not before: Sun 01 Sep 2024 05:55:00 +0000 ROA not after: Sun 31 Aug 2025 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:c000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:05:75:5c:72:48:4d:75:69:69:c7:f4:12:17:ec:0a:cd:ac:47:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 05:55:00 2024 GMT Not After : Aug 31 06:00:00 2025 GMT Subject: CN=D8BD577F891DCB44C71D95246E0533C69AE5A382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:57:0c:7f:e7:f2:8f:68:36:1c:4a:1b:b3:10: 75:bc:54:d1:cc:cf:85:2f:be:c8:8d:cd:4e:ae:8f: 26:6a:58:72:2d:90:6a:ed:a2:f5:7d:61:2a:da:e8: 5e:53:d2:c1:3d:b4:52:e1:47:d1:f6:da:ac:a3:89: 56:4f:79:7e:cc:b7:a1:79:a8:81:15:2a:a7:53:df: 7d:9b:2c:ce:4d:45:82:a2:14:0d:48:04:75:00:d2: 25:9e:41:43:79:26:ea:ab:8f:4f:f1:37:ab:3d:f5: 39:b4:3c:6c:47:e7:ce:22:2c:c4:43:c1:e2:aa:5c: ee:c7:8e:aa:1a:b5:e5:22:e0:ef:a4:36:8d:93:88: 7d:35:13:c9:5d:1c:2d:20:7f:39:04:00:a9:2e:24: f3:5d:62:75:5e:04:66:47:9a:74:56:3e:fb:37:bd: b5:46:71:77:43:79:18:93:e8:19:51:1b:c2:80:13: 4b:a6:37:90:9d:e1:6a:d0:bd:7b:75:e5:1d:b5:42: 7e:fc:9f:62:11:3e:23:a4:d5:d2:7f:36:06:19:c3: f2:a4:82:5b:99:30:9e:26:fd:ff:5d:d7:21:3a:fc: 2a:88:36:bd:5e:6a:b8:c8:fb:e2:48:c8:84:57:da: 5a:1c:e4:15:ea:31:79:e8:47:dd:4c:0c:51:ba:63: ff:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BD:57:7F:89:1D:CB:44:C7:1D:95:24:6E:05:33:C6:9A:E5:A3:82 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:c000::/35 Signature Algorithm: sha256WithRSAEncryption be:86:e1:02:3a:10:6f:a6:d0:e3:32:8f:77:3a:09:1c:37:b0: 3c:2c:ed:ed:58:02:02:4d:34:0b:f7:49:13:3c:28:e2:f2:b0: 7e:d2:31:b7:15:c0:81:31:6a:53:5a:18:e5:35:9f:69:36:f4: 26:c2:b2:c3:e7:aa:d6:a9:38:7b:7a:9e:bd:5b:84:aa:8a:b9: 09:35:26:c5:24:a3:bb:9b:d2:13:a5:94:2c:15:e5:43:e6:b7: 39:c4:84:aa:7e:24:ee:a1:72:ec:e4:04:77:35:0b:a1:cf:81: e4:8b:0b:6d:10:de:4f:bf:e6:34:eb:c2:cd:b3:3c:99:39:5c: 9d:39:48:ca:ec:3a:cf:57:86:2f:31:72:49:66:3f:f8:38:d2: ab:c1:32:1a:9c:b5:1d:a6:37:b5:5f:d8:68:c5:05:2e:07:f4: 89:99:d8:fe:b9:c6:c3:bd:99:27:2c:d3:d5:ec:8e:65:f2:4d: 14:51:e7:5f:fc:88:33:97:32:79:5d:38:31:f7:9d:f4:45:d3: c2:54:8e:08:ce:a9:da:c7:64:79:d8:fa:e9:f4:7f:1d:b5:d7: 7f:25:70:13:7d:88:e3:86:ef:42:c9:ef:e8:8c:b8:36:cf:76: b2:b6:2c:7c:c8:52:03:fd:21:6d:14:b5:50:fe:64:ae:f3:0e: e4:62:e7:ba -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUUAV1XHJITXVpacf0EhfsCs2sR9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNTU1MDBaFw0yNTA4MzEwNjAwMDBaMDMxMTAvBgNV BAMTKEQ4QkQ1NzdGODkxRENCNDRDNzFEOTUyNDZFMDUzM0M2OUFFNUEzODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVwx/5/KPaDYcShuzEHW8VNHM z4UvvsiNzU6ujyZqWHItkGrtovV9YSra6F5T0sE9tFLhR9H22qyjiVZPeX7Mt6F5 qIEVKqdT332bLM5NRYKiFA1IBHUA0iWeQUN5Juqrj0/xN6s99Tm0PGxH584iLMRD weKqXO7HjqoateUi4O+kNo2TiH01E8ldHC0gfzkEAKkuJPNdYnVeBGZHmnRWPvs3 vbVGcXdDeRiT6BlRG8KAE0umN5Cd4WrQvXt15R21Qn78n2IRPiOk1dJ/NgYZw/Kk gluZMJ4m/f9d1yE6/CqINr1earjI++JIyIRX2loc5BXqMXnoR91MDFG6Y/+1AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU2L1Xf4kdy0THHZUkbgUzxprlo4IwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAwDANBgkqhkiG9w0BAQsFAAOCAQEAvobhAjoQb6bQ4zKPdzoJHDewPCzt7VgC Ak00C/dJEzwo4vKwftIxtxXAgTFqU1oY5TWfaTb0JsKyw+eq1qk4e3qevVuEqoq5 CTUmxSSju5vSE6WULBXlQ+a3OcSEqn4k7qFy7OQEdzULoc+B5IsLbRDeT7/mNOvC zbM8mTlcnTlIyuw6z1eGLzFySWY/+DjSq8EyGpy1HaY3tV/YaMUFLgf0iZnY/rnG w72ZJyzT1eyOZfJNFFHnX/yIM5cyeV04Mfed9EXTwlSOCM6p2sdkedj66fR/HbXX fyVwE32I44bvQsnv6Iy4Ns92srYsfMhSA/0hbRS1UP5krvMO5GLnug== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org