$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: Epdkdwy08pCG9jLq9IZMuCnEJUgV6UPzfdZtsZsr7y0= Subject key identifier: 97:29:A0:83:FB:C8:65:51:1A:46:70:DC:56:A3:16:26:96:54:CB:30 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 48B7C5F3B1324772E94162B90206B3E81C63E0C5 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Oct 2023 06:00:00 +0000 ROA not before: Sun 01 Oct 2023 05:55:00 +0000 ROA not after: Sun 29 Sep 2024 06:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:c000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:b7:c5:f3:b1:32:47:72:e9:41:62:b9:02:06:b3:e8:1c:63:e0:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Oct 1 05:55:00 2023 GMT Not After : Sep 29 06:00:00 2024 GMT Subject: CN=9729A083FBC865511A4670DC56A316269654CB30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8c:41:fd:c3:31:a1:6d:85:a1:b1:48:ef:28: a4:d1:9c:dc:99:fd:a8:20:0e:5c:e6:d2:87:8a:11: bf:4c:c6:92:06:06:6a:c9:9e:68:0e:4e:4e:d0:20: 65:4a:92:be:85:e3:f7:60:26:1d:5b:f5:d1:e3:68: ae:ff:f2:ab:cd:e1:e8:5a:90:94:e9:ea:a1:fd:da: ad:8e:df:1a:3f:13:63:24:ed:8d:5b:05:27:58:b9: e6:43:a1:05:76:1b:22:59:00:33:c7:74:ad:36:13: 69:a3:62:23:51:a8:e6:3b:6f:52:af:33:e1:f6:0d: 7e:59:90:b3:d6:32:c0:50:20:e4:ab:4a:4d:e7:78: 4a:b7:56:ae:d5:23:63:68:50:b2:15:69:12:f2:77: 61:7e:f6:e9:2b:9f:96:82:eb:54:7c:6e:cd:a9:38: 8b:b6:d1:5c:6a:a6:03:e9:d0:e1:2e:63:77:2e:61: 8a:74:32:e4:74:51:6f:c2:d5:47:83:78:99:eb:e5: 0c:67:17:a5:0f:30:3b:9f:2e:90:89:71:be:60:3a: 63:5d:3e:6b:ee:8d:6e:f6:67:56:b2:20:3e:fc:ec: 85:7e:7a:66:c6:81:9a:43:53:39:b9:6d:4c:b7:37: 36:c8:be:08:6e:66:55:87:a9:44:5e:af:a3:3e:04: 2a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:29:A0:83:FB:C8:65:51:1A:46:70:DC:56:A3:16:26:96:54:CB:30 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:c000::/35 Signature Algorithm: sha256WithRSAEncryption 58:f3:b3:29:86:cf:b7:0c:2c:8d:27:fb:b8:cf:e0:cf:15:d0: 54:fa:51:2e:e0:df:af:15:f3:48:90:22:4a:ab:e8:fa:06:71: 51:cc:fe:1b:c1:cd:94:54:49:d3:bc:6b:4e:2f:59:51:80:59: 82:51:78:67:29:b7:a8:98:b3:21:74:70:19:51:6c:f2:eb:14: 90:3f:2a:f9:a8:8b:1b:b8:b4:cf:a6:1f:95:3b:2c:85:fa:0c: fc:89:52:42:42:bb:aa:66:7d:6d:c5:34:ff:df:9a:1c:32:d2: a1:3f:8e:0d:db:07:27:d2:aa:01:9f:1d:04:d1:26:bc:9d:a5: 6d:91:ba:f3:71:43:f6:ec:47:0a:97:9b:c3:25:d0:fc:7d:9d: 92:58:a2:50:cc:f0:ab:5b:9a:8b:36:2c:8c:01:d9:a3:53:9e: c2:9c:01:34:05:5b:f0:4a:ac:8f:99:db:53:99:ef:03:bd:27: b4:2e:10:1e:41:11:e1:fd:a7:50:fd:cf:15:8b:8b:5e:3e:61: 98:d4:c3:bb:29:00:3b:3e:18:ba:3e:67:d7:4a:57:3d:44:86: df:4a:21:7e:3c:70:b8:de:a0:a8:69:16:43:80:1e:ef:d7:13: c0:00:c0:7b:d3:33:8b:10:67:61:56:77:84:d3:c0:2a:3e:ad: 10:ac:da:fa -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUSLfF87EyR3LpQWK5Agaz6Bxj4MUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yMzEwMDEwNTU1MDBaFw0yNDA5MjkwNjAwMDBaMDMxMTAvBgNV BAMTKDk3MjlBMDgzRkJDODY1NTExQTQ2NzBEQzU2QTMxNjI2OTY1NENCMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXjEH9wzGhbYWhsUjvKKTRnNyZ /aggDlzm0oeKEb9MxpIGBmrJnmgOTk7QIGVKkr6F4/dgJh1b9dHjaK7/8qvN4eha kJTp6qH92q2O3xo/E2Mk7Y1bBSdYueZDoQV2GyJZADPHdK02E2mjYiNRqOY7b1Kv M+H2DX5ZkLPWMsBQIOSrSk3neEq3Vq7VI2NoULIVaRLyd2F+9ukrn5aC61R8bs2p OIu20VxqpgPp0OEuY3cuYYp0MuR0UW/C1UeDeJnr5QxnF6UPMDufLpCJcb5gOmNd PmvujW72Z1ayID787IV+embGgZpDUzm5bUy3NzbIvghuZlWHqURer6M+BCqXAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUlymgg/vIZVEaRnDcVqMWJpZUyzAwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAwDANBgkqhkiG9w0BAQsFAAOCAQEAWPOzKYbPtwwsjSf7uM/gzxXQVPpRLuDf rxXzSJAiSqvo+gZxUcz+G8HNlFRJ07xrTi9ZUYBZglF4Zym3qJizIXRwGVFs8usU kD8q+aiLG7i0z6YflTsshfoM/IlSQkK7qmZ9bcU0/9+aHDLSoT+ODdsHJ9KqAZ8d BNEmvJ2lbZG683FD9uxHCpebwyXQ/H2dkliiUMzwq1uaizYsjAHZo1OewpwBNAVb 8Eqsj5nbU5nvA70ntC4QHkER4f2nUP3PFYuLXj5hmNTDuykAOz4Yuj5n10pXPUSG 30ohfjxwuN6gqGkWQ4Ae79cTwADAe9MzixBnYVZ3hNPAKj6tEKza+g== -----END CERTIFICATE-----Generated at Wed May 1 04:48:04 2024 by rpki-client on console-ams.rpki-client.org