$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa File: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (raw, json) Hash identifier: kqAp6pv1eHKNb8P40keUlm1IVxrErqUL8wb5wmptx+E= Subject key identifier: 48:C5:B0:42:EE:20:5A:0A:46:3D:17:53:EE:54:F1:47:F7:68:C6:61 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 543D5C0735E807DCD0043C6D9BB059409CC88E87 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa Signing time: Mon 31 Jul 2023 00:12:20 +0000 ROA not before: Mon 31 Jul 2023 00:07:20 +0000 ROA not after: Mon 29 Jul 2024 00:12:20 +0000 asID: 24532 IP address blocks: 2403:2e00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3d:5c:07:35:e8:07:dc:d0:04:3c:6d:9b:b0:59:40:9c:c8:8e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jul 31 00:07:20 2023 GMT Not After : Jul 29 00:12:20 2024 GMT Subject: CN=48C5B042EE205A0A463D1753EE54F147F768C661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4b:78:fb:a5:ce:54:0c:86:1f:dd:6b:57:f0: ff:b4:33:62:06:b1:75:57:9a:f5:a8:9e:ad:60:74: 85:07:0b:51:e7:91:d8:62:f4:02:25:bf:c4:5d:41: 96:0b:a0:fc:16:4b:e1:a8:c4:f5:fd:15:5f:49:3c: fe:b0:cb:16:ca:2e:58:39:50:5f:61:dc:3b:78:8e: c6:1e:6b:73:77:21:3b:45:9b:cc:ca:34:c6:76:05: f4:07:e0:2e:89:65:8b:f6:42:5f:6a:79:51:e0:6e: e1:83:87:b7:9a:0d:87:9c:bd:de:95:fc:4a:8b:58: 93:2f:fc:3b:57:68:92:a8:4f:b2:e3:7e:cd:c6:3f: 56:d4:2b:02:83:d3:a6:f9:99:08:ba:8e:27:e5:7a: 55:c1:ab:20:07:69:22:95:47:21:5f:ac:c6:30:e6: e4:8b:f9:ed:6e:10:c4:de:7d:63:88:63:f9:d3:79: d0:46:8c:93:58:0b:a2:2a:48:70:23:1d:b4:94:06: 84:24:0f:27:c2:93:76:05:96:44:dd:59:70:6a:14: 0f:84:37:df:fe:6a:8a:ee:47:6d:5f:da:14:5d:43: eb:44:44:75:b9:96:18:ff:1e:bf:d6:e4:2e:cb:33: 45:a3:d0:ce:20:fc:c8:d9:1b:d6:84:b1:41:53:fa: bb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C5:B0:42:EE:20:5A:0A:46:3D:17:53:EE:54:F1:47:F7:68:C6:61 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e00::/32 Signature Algorithm: sha256WithRSAEncryption 5e:68:75:97:a9:0e:c2:86:53:3f:05:66:1d:73:a2:34:c5:80: 71:17:31:91:36:f9:52:10:47:95:14:17:eb:74:47:df:ce:3a: 35:96:67:02:c0:9f:7e:2d:b0:2b:0d:73:5b:ff:35:3b:c2:19: d0:95:18:7d:a4:eb:9d:bc:45:54:67:d7:f3:bc:54:1d:4b:a7: c6:81:35:8f:7a:41:08:55:e2:4f:b1:1a:ec:e2:84:cb:e2:98: b4:82:d4:1e:59:d4:93:5d:cd:d8:b2:71:16:d0:0d:ca:b6:68: 57:c6:69:fd:dc:b3:68:f4:fc:36:ff:bc:38:3e:a2:dd:36:aa: cd:e2:89:7a:ef:fc:b9:2e:f9:3d:79:a8:e9:10:5d:ed:08:49: 6c:38:33:cb:2e:be:10:bf:b5:c2:ad:db:ab:94:48:ed:92:8b: bf:40:e0:5f:3e:29:29:61:86:1b:21:ea:c9:62:ed:ad:c5:93: 52:21:30:29:9d:1f:e6:66:d9:d2:32:e8:89:83:e3:0f:f3:0e: 97:c9:8a:1a:a2:b1:a1:c2:dd:e0:0f:4b:c1:4e:f7:01:64:65: f1:ba:df:8c:4c:65:f2:d1:e6:07:d4:4c:49:76:74:23:4f:cb: d5:f2:2d:69:3c:70:93:0b:f1:1c:92:bd:4f:13:63:86:50:49: 1b:ce:b4:6b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUVD1cBzXoB9zQBDxtm7BZQJzIjocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yMzA3MzEwMDA3MjBaFw0yNDA3MjkwMDEyMjBaMDMxMTAvBgNV BAMTKDQ4QzVCMDQyRUUyMDVBMEE0NjNEMTc1M0VFNTRGMTQ3Rjc2OEM2NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVS3j7pc5UDIYf3WtX8P+0M2IG sXVXmvWonq1gdIUHC1Hnkdhi9AIlv8RdQZYLoPwWS+GoxPX9FV9JPP6wyxbKLlg5 UF9h3Dt4jsYea3N3ITtFm8zKNMZ2BfQH4C6JZYv2Ql9qeVHgbuGDh7eaDYecvd6V /EqLWJMv/DtXaJKoT7Ljfs3GP1bUKwKD06b5mQi6jiflelXBqyAHaSKVRyFfrMYw 5uSL+e1uEMTefWOIY/nTedBGjJNYC6IqSHAjHbSUBoQkDyfCk3YFlkTdWXBqFA+E N9/+aoruR21f2hRdQ+tERHW5lhj/Hr/W5C7LM0Wj0M4g/MjZG9aEsUFT+rsHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUSMWwQu4gWgpGPRdT7lTxR/doxmEwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzQzMDMzM2EzMjY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy4AMA0GCSqGSIb3 DQEBCwUAA4IBAQBeaHWXqQ7ChlM/BWYdc6I0xYBxFzGRNvlSEEeVFBfrdEffzjo1 lmcCwJ9+LbArDXNb/zU7whnQlRh9pOudvEVUZ9fzvFQdS6fGgTWPekEIVeJPsRrs 4oTL4pi0gtQeWdSTXc3YsnEW0A3KtmhXxmn93LNo9Pw2/7w4PqLdNqrN4ol67/y5 Lvk9eajpEF3tCElsODPLLr4Qv7XCrdurlEjtkou/QOBfPikpYYYbIerJYu2txZNS ITApnR/mZtnSMuiJg+MP8w6XyYoaorGhwt3gD0vBTvcBZGXxut+MTGXy0eYH1ExJ dnQjT8vV8i1pPHCTC/Eckr1PE2OGUEkbzrRr -----END CERTIFICATE-----Generated at Wed Apr 17 23:07:51 2024 by rpki-client on console-fra.rpki-client.org