$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 3MFbkrq7MUIhlutQBV6L6zmWqDToPx75hlU3tABAft8= Subject key identifier: 84:8A:AE:03:C6:01:63:89:0E:59:E9:7A:42:38:01:03:21:B4:EB:20 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 76B758D01B008C7491117899D3AF5E0BFF25FC74 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:00:01 +0000 ROA not before: Sun 01 Sep 2024 06:55:01 +0000 ROA not after: Sun 31 Aug 2025 07:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:e000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b7:58:d0:1b:00:8c:74:91:11:78:99:d3:af:5e:0b:ff:25:fc:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Sep 1 06:55:01 2024 GMT Not After : Aug 31 07:00:01 2025 GMT Subject: CN=848AAE03C60163890E59E97A4238010321B4EB20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7d:14:26:e5:b8:db:02:b5:64:9a:47:f2:eb: 1b:21:93:e7:6a:1b:43:12:3a:19:d5:98:2e:aa:c0: 15:e5:e5:b2:8f:9e:54:67:89:a2:8b:a2:87:7e:e1: 2f:e2:da:1a:78:ca:87:c1:3b:bf:7e:24:9c:9d:df: 40:d0:ff:39:2d:df:71:65:d0:29:80:b5:7d:61:ca: 46:a1:88:32:60:e1:f7:a6:73:d0:c4:4a:66:cc:fc: cf:f9:9e:6d:19:92:bc:d6:9f:84:5a:5e:c7:50:31: 6c:9e:34:92:b8:e4:62:a2:2a:54:9c:20:78:84:3c: 25:f9:56:6a:09:17:e5:6b:d1:ff:16:49:72:9f:bc: 8e:6c:ef:ef:f0:54:57:67:f1:a8:3f:c0:28:85:ed: c3:9c:d2:54:ad:26:e6:25:da:8e:8f:7d:e0:51:e2: c3:44:29:7e:4e:e9:40:de:f1:0b:b6:8b:c2:41:79: 8c:ed:3a:af:f6:54:f3:aa:ff:1e:5e:51:f6:04:42: 2b:24:31:03:0a:69:d9:4c:e6:3f:05:24:5a:5b:e3: 08:a9:2c:ca:7c:e8:99:1f:05:98:96:b3:e6:3d:fc: d4:60:f0:0b:6d:8a:11:b0:56:f8:b4:0d:ca:32:35: 3f:f3:95:98:af:60:93:88:f0:59:27:22:ad:7b:8e: b1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8A:AE:03:C6:01:63:89:0E:59:E9:7A:42:38:01:03:21:B4:EB:20 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:e000::/35 Signature Algorithm: sha256WithRSAEncryption 78:d9:98:1a:42:5e:2d:1b:0d:e5:d6:47:b8:0c:c9:5c:2d:17: 83:32:09:cb:bc:27:5e:90:b5:c8:1e:b4:33:30:3f:cd:55:7f: 67:56:90:a1:91:99:19:1d:53:da:e7:2a:8b:a9:e9:a1:59:74: 46:ba:57:99:6d:6c:61:23:d8:69:b1:57:20:59:f8:f3:1a:11: fe:97:0a:15:37:7d:11:d4:2f:57:55:2b:8f:90:91:c8:6a:51: 7e:0b:bf:97:57:0f:15:35:92:0a:a6:89:a2:0a:e6:6d:a6:25: f1:57:9b:5e:84:82:ac:f0:34:b5:ce:f8:a9:2e:18:c9:12:70: 7a:db:63:de:01:5b:b2:9b:70:6c:84:d5:9e:83:dc:7d:13:76: 10:69:1e:85:6b:58:5d:15:ae:fd:b0:fa:5e:d2:b6:6b:b9:ba: 29:17:b6:5f:bf:59:db:4c:cf:43:be:4c:f8:b0:d0:a0:73:f6: b6:44:7f:0d:19:50:29:fe:4f:de:e9:05:de:7f:00:a5:b9:aa: 4a:33:f8:cd:91:e3:a0:4a:cd:f0:82:b3:70:68:00:29:81:da: 2a:72:42:de:7d:50:30:58:b4:b4:b7:90:d9:86:5e:6a:3e:34: ee:0e:0a:ca:93:63:88:fb:b9:51:51:8a:87:b0:ad:c4:63:e7: be:e6:dd:39 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUdrdY0BsAjHSREXiZ069eC/8l/HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNDA5MDEwNjU1MDFaFw0yNTA4MzEwNzAwMDFaMDMxMTAvBgNV BAMTKDg0OEFBRTAzQzYwMTYzODkwRTU5RTk3QTQyMzgwMTAzMjFCNEVCMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDffRQm5bjbArVkmkfy6xshk+dq G0MSOhnVmC6qwBXl5bKPnlRniaKLood+4S/i2hp4yofBO79+JJyd30DQ/zkt33Fl 0CmAtX1hykahiDJg4femc9DESmbM/M/5nm0ZkrzWn4RaXsdQMWyeNJK45GKiKlSc IHiEPCX5VmoJF+Vr0f8WSXKfvI5s7+/wVFdn8ag/wCiF7cOc0lStJuYl2o6PfeBR 4sNEKX5O6UDe8Qu2i8JBeYztOq/2VPOq/x5eUfYEQiskMQMKadlM5j8FJFpb4wip LMp86JkfBZiWs+Y9/NRg8AttihGwVvi0DcoyNT/zlZivYJOI8FknIq17jrE7AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUhIquA8YBY4kOWel6QjgBAyG06yAwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjUzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDA4DANBgkqhkiG9w0BAQsFAAOCAQEAeNmYGkJeLRsN5dZHuAzJXC0XgzIJy7wn XpC1yB60MzA/zVV/Z1aQoZGZGR1T2ucqi6npoVl0RrpXmW1sYSPYabFXIFn48xoR /pcKFTd9EdQvV1Urj5CRyGpRfgu/l1cPFTWSCqaJogrmbaYl8VebXoSCrPA0tc74 qS4YyRJwettj3gFbsptwbITVnoPcfRN2EGkehWtYXRWu/bD6XtK2a7m6KRe2X79Z 20zPQ75M+LDQoHP2tkR/DRlQKf5P3ukF3n8ApbmqSjP4zZHjoErN8IKzcGgAKYHa KnJC3n1QMFi0tLeQ2YZeaj407g4KypNjiPu5UVGKh7CtxGPnvubdOQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org