$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 40K8IeLvjQG80pBtw8ttEhnua9euWfXtKXUX1SXt0dk= Subject key identifier: E6:52:1D:24:2D:72:B2:7E:E9:34:5D:54:48:D5:32:4A:C9:D8:D8:A9 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5AC35C0D0CAAAF5618FD97ABC2D21C3D09251F4C Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:02 +0000 ROA not before: Thu 08 Jun 2023 02:55:02 +0000 ROA not after: Thu 06 Jun 2024 03:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c3:5c:0d:0c:aa:af:56:18:fd:97:ab:c2:d2:1c:3d:09:25:1f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:02 2023 GMT Not After : Jun 6 03:00:02 2024 GMT Subject: CN=E6521D242D72B27EE9345D5448D5324AC9D8D8A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:86:e0:6d:b0:8a:df:c1:9b:af:b7:0b:a5: c2:a5:2f:02:10:a8:09:60:c0:eb:9c:7b:c2:f9:72: f2:49:ee:1d:f4:3e:fd:67:70:ab:b6:42:ba:4d:10: dc:e7:4c:aa:70:0b:69:21:dc:12:4d:cd:ea:d2:b1: 9b:86:99:f9:e9:5f:c2:3f:21:27:83:26:24:2f:16: 06:2d:f5:74:0b:93:b3:db:7d:c5:72:98:d5:3d:e6: ea:4b:17:a3:a1:ad:1e:ce:c5:06:86:51:53:f1:80: c3:d3:6e:3c:77:6e:cc:4e:1a:59:9b:c6:49:0b:78: f3:a3:e6:85:ef:59:83:ce:e8:9e:82:0e:08:fc:de: f3:a9:67:b1:c0:5b:f9:53:e2:81:85:61:22:89:c5: a1:53:9d:c0:a4:89:d5:4b:3d:57:ee:8b:cb:e2:08: 2d:3e:69:52:89:34:ec:5e:f3:55:dc:6f:b8:87:d5: 8e:19:54:c9:4c:9f:11:af:07:69:ee:f6:a0:7d:9e: 80:cb:8a:58:46:dc:46:34:49:d1:b8:95:c9:38:4c: ab:29:c4:f5:99:05:84:cb:02:af:4b:86:58:9a:4f: 07:ca:e2:25:6a:29:fa:0b:d7:4d:7f:28:65:f0:9f: 6d:b9:fb:ae:9b:18:1b:5a:6f:a7:09:15:8a:7e:91: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:52:1D:24:2D:72:B2:7E:E9:34:5D:54:48:D5:32:4A:C9:D8:D8:A9 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:5::/48 Signature Algorithm: sha256WithRSAEncryption 9a:be:09:73:5c:4a:0b:0e:2f:53:69:0a:c3:cd:c0:26:7b:34: 3d:c7:88:0b:77:ea:4b:7e:a0:55:74:44:bb:c2:83:f8:0c:57: 9f:e7:7d:f9:df:c4:6e:fe:fb:d2:0a:16:6a:cd:07:59:68:e4: 40:12:cc:67:64:1f:60:70:eb:82:05:33:23:54:0f:c7:5e:dd: 81:12:19:b5:dc:d4:0b:c3:28:ce:f7:2f:15:ac:15:11:a1:80: 9f:d0:ec:0f:ba:33:1c:07:7f:49:c0:80:d1:93:91:fa:f0:43: e1:41:a5:6f:3b:19:07:af:4b:10:16:9b:ec:73:3d:cd:19:d8: 85:bf:55:3d:b7:e7:6f:41:45:51:6e:c5:9b:f6:d9:60:3a:bd: b6:4c:ae:48:34:26:e3:39:71:8f:d4:44:8c:f6:af:e5:df:0d: 10:b1:85:cf:0c:93:88:14:9f:64:b1:58:e9:3b:12:20:57:6f: 2f:fb:0e:9c:67:1a:5c:fa:b5:1b:c6:82:32:4d:23:b3:4c:9a: 4f:45:af:4d:4d:e9:4c:c3:6b:9c:c0:dd:ce:34:79:ea:3d:1c: a9:e8:ce:3f:ac:5a:63:0d:a5:95:fa:ec:30:ae:9a:7f:18:d1: 37:6d:11:78:02:0a:d9:2b:cc:ab:98:19:d3:d7:3b:e6:8e:fd: 3a:a2:1b:66 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWsNcDQyqr1YY/ZerwtIcPQklH0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDJaFw0yNDA2MDYwMzAwMDJaMDMxMTAvBgNV BAMTKEU2NTIxRDI0MkQ3MkIyN0VFOTM0NUQ1NDQ4RDUzMjRBQzlEOEQ4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB54bgbbCK38Gbr7cLpcKlLwIQ qAlgwOuce8L5cvJJ7h30Pv1ncKu2QrpNENznTKpwC2kh3BJNzerSsZuGmfnpX8I/ ISeDJiQvFgYt9XQLk7PbfcVymNU95upLF6OhrR7OxQaGUVPxgMPTbjx3bsxOGlmb xkkLePOj5oXvWYPO6J6CDgj83vOpZ7HAW/lT4oGFYSKJxaFTncCkidVLPVfui8vi CC0+aVKJNOxe81Xcb7iH1Y4ZVMlMnxGvB2nu9qB9noDLilhG3EY0SdG4lck4TKsp xPWZBYTLAq9LhliaTwfK4iVqKfoL101/KGXwn225+66bGBtab6cJFYp+kXZfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU5lIdJC1ysn7pNF1USNUySsnY2KkwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAUw DQYJKoZIhvcNAQELBQADggEBAJq+CXNcSgsOL1NpCsPNwCZ7ND3HiAt36kt+oFV0 RLvCg/gMV5/nffnfxG7++9IKFmrNB1lo5EASzGdkH2Bw64IFMyNUD8de3YESGbXc 1AvDKM73LxWsFRGhgJ/Q7A+6MxwHf0nAgNGTkfrwQ+FBpW87GQevSxAWm+xzPc0Z 2IW/VT23529BRVFuxZv22WA6vbZMrkg0JuM5cY/URIz2r+XfDRCxhc8Mk4gUn2Sx WOk7EiBXby/7DpxnGlz6tRvGgjJNI7NMmk9Fr01N6UzDa5zA3c40eeo9HKnozj+s WmMNpZX67DCumn8Y0TdtEXgCCtkrzKuYGdPXO+aO/TqiG2Y= -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:28 2024 by rpki-client on console-ams.rpki-client.org