$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: HFf8PdPvDLsNcLBnnkF4prNNECelqSZjf5fXBHlUTJk= Subject key identifier: 22:53:4F:C8:7F:15:B7:28:1D:96:8D:9B:9D:FD:5D:DD:E9:09:CA:38 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 75466D26ECB9537F00BECEE0B3013EA5553E67F2 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 10 Aug 2023 16:00:00 +0000 ROA not before: Thu 10 Aug 2023 15:55:00 +0000 ROA not after: Thu 08 Aug 2024 16:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:cf::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:46:6d:26:ec:b9:53:7f:00:be:ce:e0:b3:01:3e:a5:55:3e:67:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Aug 10 15:55:00 2023 GMT Not After : Aug 8 16:00:00 2024 GMT Subject: CN=22534FC87F15B7281D968D9B9DFD5DDDE909CA38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:4b:d7:f2:15:11:d9:a5:3d:ff:b3:5b:dc: 3b:1a:8b:98:1a:d3:45:24:a3:c8:dd:60:d8:20:e7: fd:60:b9:f5:74:1e:6c:17:8a:38:f4:78:38:11:46: f6:51:e1:70:d3:74:ab:46:c2:a3:af:82:b0:53:9f: 91:67:93:72:3e:9e:8f:86:dd:da:a9:67:72:02:94: 49:00:cf:5c:8e:90:bf:9b:c1:b7:2b:26:e4:7f:d0: 03:dc:ae:8f:49:f1:89:d7:72:dd:95:eb:ab:43:25: b9:95:cd:90:88:6d:5d:a1:34:0f:7f:c1:0b:2b:ea: 10:3f:f7:d8:62:e5:c2:3b:c1:31:9d:0c:5d:22:29: 0a:57:16:39:a3:4b:40:c0:1d:85:2a:90:ed:ef:b9: 35:cb:22:03:cf:9f:0d:9e:54:0c:d3:b2:d0:fa:96: 0f:67:be:ff:9d:7b:9f:67:d9:10:9a:cb:4a:9d:c6: 21:a7:99:1f:87:e8:3d:e7:9d:cb:40:bd:b0:fb:0b: b8:f7:ad:8c:af:7a:2c:dd:77:23:c0:34:34:95:7c: 0d:d2:2e:02:d6:61:96:3f:c3:d1:54:da:7f:73:27: c3:b8:42:96:63:45:2e:a4:44:c6:1d:eb:a3:fb:26: af:78:e9:db:5e:c5:ca:aa:44:5e:a8:29:02:a3:ba: 56:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:53:4F:C8:7F:15:B7:28:1D:96:8D:9B:9D:FD:5D:DD:E9:09:CA:38 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:cf::/48 Signature Algorithm: sha256WithRSAEncryption 71:07:4c:9f:a5:8d:60:a1:76:3d:08:9b:1c:8b:55:96:71:b4: 00:6a:d4:f3:43:cd:d6:4a:95:b1:f4:63:ab:6a:18:bc:c6:43: 6e:d9:ba:9e:9f:21:04:bc:67:df:08:50:25:06:5f:5f:0f:91: aa:89:85:31:ca:f0:bf:d4:95:e8:ac:d6:11:ea:24:bb:ad:d8: c4:3b:5f:a6:bb:c0:50:26:1c:4f:6b:05:3f:38:79:2d:6f:1c: ea:da:94:7e:f7:6a:fb:da:60:04:1d:a6:ee:2d:3b:19:de:e5: 0f:ff:d1:77:ca:9f:25:9a:cd:8c:b6:f0:c5:36:83:e2:aa:05: b3:cc:d3:2a:cf:d2:59:96:dd:df:0a:48:0f:10:76:7b:d0:8f: 7a:d1:b8:82:ec:e8:03:4b:e9:99:74:dd:61:21:28:e7:da:42: 0a:d7:ce:65:bf:8b:4b:9c:3f:c3:bc:0b:ae:e3:b7:bb:2c:30: de:54:c2:d0:9e:75:77:20:bf:10:25:0d:7d:16:51:e8:d1:12: 9f:b3:85:20:74:f6:17:13:49:74:81:cc:f8:ca:47:dd:e1:23: 4a:3a:8b:41:ea:93:ed:c7:d0:8d:ae:87:9b:13:25:a0:65:cf: f6:4f:96:0c:ea:66:c3:1f:d0:f2:88:03:6c:e9:43:f1:f8:44: 08:d0:b1:b7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdUZtJuy5U38Avs7gswE+pVU+Z/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yMzA4MTAxNTU1MDBaFw0yNDA4MDgxNjAwMDBaMDMxMTAvBgNV BAMTKDIyNTM0RkM4N0YxNUI3MjgxRDk2OEQ5QjlERkQ1RERERTkwOUNBMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEGEvX8hUR2aU9/7Nb3Dsai5ga 00Uko8jdYNgg5/1gufV0HmwXijj0eDgRRvZR4XDTdKtGwqOvgrBTn5Fnk3I+no+G 3dqpZ3IClEkAz1yOkL+bwbcrJuR/0APcro9J8YnXct2V66tDJbmVzZCIbV2hNA9/ wQsr6hA/99hi5cI7wTGdDF0iKQpXFjmjS0DAHYUqkO3vuTXLIgPPnw2eVAzTstD6 lg9nvv+de59n2RCay0qdxiGnmR+H6D3nnctAvbD7C7j3rYyveizddyPANDSVfA3S LgLWYZY/w9FU2n9zJ8O4QpZjRS6kRMYd66P7Jq946dtexcqqRF6oKQKjulZrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUIlNPyH8Vtygdlo2bnf1d3ekJyjgwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjM2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAM8w DQYJKoZIhvcNAQELBQADggEBAHEHTJ+ljWChdj0ImxyLVZZxtABq1PNDzdZKlbH0 Y6tqGLzGQ27Zup6fIQS8Z98IUCUGX18PkaqJhTHK8L/Uleis1hHqJLut2MQ7X6a7 wFAmHE9rBT84eS1vHOralH73avvaYAQdpu4tOxne5Q//0XfKnyWazYy28MU2g+Kq BbPM0yrP0lmW3d8KSA8QdnvQj3rRuILs6ANL6Zl03WEhKOfaQgrXzmW/i0ucP8O8 C67jt7ssMN5UwtCedXcgvxAlDX0WUejREp+zhSB09hcTSXSBzPjKR93hI0o6i0Hq k+3H0I2uh5sTJaBlz/ZPlgzqZsMf0PKIA2zpQ/H4RAjQsbc= -----END CERTIFICATE-----Generated at Thu Apr 25 07:17:58 2024 by rpki-client on console-fra.rpki-client.org