$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: lVKY2d2WriW1RmqKa++p3fMSaXFSC18xfZxYy2qCyrk= Subject key identifier: 73:89:39:49:DD:73:4A:05:FD:DC:BE:D3:00:B6:50:9C:A1:A6:40:0F Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 4057D641C3854F0B71E597ACF52B093EA4BE1158 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 09 Feb 2024 11:08:28 +0000 ROA not before: Fri 09 Feb 2024 11:03:28 +0000 ROA not after: Fri 07 Feb 2025 11:08:28 +0000 asID: 140423 IP address blocks: 2406:20c0:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:57:d6:41:c3:85:4f:0b:71:e5:97:ac:f5:2b:09:3e:a4:be:11:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Feb 9 11:03:28 2024 GMT Not After : Feb 7 11:08:28 2025 GMT Subject: CN=73893949DD734A05FDDCBED300B6509CA1A6400F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:eb:39:48:f8:ea:24:c5:22:ae:d2:29:07:17: 23:0a:df:59:e5:09:da:c3:6b:90:9f:df:cc:ab:d3: 23:5b:7b:7c:b1:5e:99:7c:ae:57:15:62:00:34:47: 7a:09:2f:14:99:ce:e4:9a:64:41:44:cd:98:ef:86: 39:fc:02:ad:32:55:5b:d2:a4:6c:15:4c:ac:6f:e5: 32:fc:d1:32:30:12:af:9c:a5:c7:ad:cf:cb:af:9f: c9:6e:5f:5d:fd:09:9e:e0:ad:74:01:ca:b7:b4:f7: 8d:25:4a:fb:ea:fa:0e:ea:b8:c3:c9:0b:c8:cb:a9: 61:b1:3e:31:f9:d0:f7:4c:82:0c:d1:62:83:ef:16: a4:38:85:5a:f3:1f:40:af:76:a5:34:c6:8c:26:c9: 3a:9d:4e:ac:88:a2:2c:40:b0:36:0a:e7:82:e9:50: d3:5c:fa:2d:04:c5:0c:bf:3f:76:da:bd:52:92:9f: 2a:74:50:92:22:94:9c:42:3f:69:b1:2a:8f:a2:3c: 4f:27:02:af:27:3c:af:ca:68:ef:3c:a4:33:07:e9: 2f:62:5a:be:bf:77:2b:09:6e:f2:11:dd:c9:61:73: 2e:a5:97:45:1a:15:1b:1c:d2:d4:21:a9:33:f0:60: b3:98:1c:0f:67:82:4a:19:55:a2:e0:6b:cc:4f:d4: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:89:39:49:DD:73:4A:05:FD:DC:BE:D3:00:B6:50:9C:A1:A6:40:0F X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a633030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:c000::/36 Signature Algorithm: sha256WithRSAEncryption 9d:97:b2:be:07:91:54:47:a9:96:ef:73:f1:d9:57:3b:53:6a: f4:59:0d:b2:d7:db:b6:f1:62:7c:ca:c1:dd:fe:17:d8:2a:2d: af:d6:4f:a1:f6:8a:63:e0:4e:10:ec:07:eb:83:24:7d:59:40: 37:c3:22:27:19:c5:b9:d5:95:5f:46:8c:06:6d:2d:9b:ae:6b: eb:40:c6:6c:e8:73:a3:9c:d5:49:73:e1:df:1a:03:50:61:64: 5a:fc:13:a5:62:11:f3:5d:31:da:b8:29:eb:be:5d:da:14:35: b2:a2:cb:9c:38:38:3e:af:d0:c6:52:dc:27:5c:5f:d2:c3:22: 87:08:69:05:b3:51:94:c2:0c:68:36:ed:9e:a3:b3:f7:a4:67: 41:06:db:fb:be:b8:01:53:39:85:10:1d:64:b9:6c:66:38:1a: d0:8f:a8:ac:49:d8:83:49:16:27:c3:48:e6:c2:47:e3:ab:a4: 80:d3:ec:2a:0c:cb:70:8d:aa:b6:55:ef:56:dc:81:67:de:f4: 92:58:6e:35:e8:0f:1d:b3:ab:1d:a6:4d:04:b9:11:63:8c:3b: 67:2f:7a:54:80:8a:37:61:dc:7e:20:1e:bc:bd:bb:92:46:8e: e2:3f:9c:48:31:f2:be:08:30:ca:80:17:84:19:66:d4:bf:ea: 8a:d9:e9:94 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQFfWQcOFTwtx5Zes9SsJPqS+EVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDAyMDkxMTAzMjhaFw0yNTAyMDcxMTA4MjhaMDMxMTAvBgNV BAMTKDczODkzOTQ5REQ3MzRBMDVGRERDQkVEMzAwQjY1MDlDQTFBNjQwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6zlI+OokxSKu0ikHFyMK31nl CdrDa5Cf38yr0yNbe3yxXpl8rlcVYgA0R3oJLxSZzuSaZEFEzZjvhjn8Aq0yVVvS pGwVTKxv5TL80TIwEq+cpcetz8uvn8luX139CZ7grXQByre0940lSvvq+g7quMPJ C8jLqWGxPjH50PdMggzRYoPvFqQ4hVrzH0CvdqU0xowmyTqdTqyIoixAsDYK54Lp UNNc+i0ExQy/P3bavVKSnyp0UJIilJxCP2mxKo+iPE8nAq8nPK/KaO88pDMH6S9i Wr6/dysJbvIR3clhcy6ll0UaFRsc0tQhqTPwYLOYHA9ngkoZVaLga8xP1ER5AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUc4k5Sd1zSgX93L7TALZQnKGmQA8wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAwDANBgkqhkiG9w0BAQsFAAOCAQEAnZeyvgeRVEeplu9z8dlXO1Nq9FkNstfb tvFifMrB3f4X2Cotr9ZPofaKY+BOEOwH64MkfVlAN8MiJxnFudWVX0aMBm0tm65r 60DGbOhzo5zVSXPh3xoDUGFkWvwTpWIR810x2rgp675d2hQ1sqLLnDg4Pq/QxlLc J1xf0sMihwhpBbNRlMIMaDbtnqOz96RnQQbb+764AVM5hRAdZLlsZjga0I+orEnY g0kWJ8NI5sJH46ukgNPsKgzLcI2qtlXvVtyBZ970klhuNegPHbOrHaZNBLkRY4w7 Zy96VICKN2HcfiAevL27kkaO4j+cSDHyvggwyoAXhBlm1L/qitnplA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org