$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: DCR66vI75qSxpXSUAv0ctP6uL5yW0qeQzOcdgksu9RM= Subject key identifier: 40:8E:91:69:BE:CA:C7:01:98:96:29:B0:1D:E5:54:CA:2B:10:8B:A4 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 39804678A721344B5DD8575D1F8FF685FBE626F1 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:01 +0000 ROA not before: Thu 08 Jun 2023 02:55:01 +0000 ROA not after: Thu 06 Jun 2024 03:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:80:46:78:a7:21:34:4b:5d:d8:57:5d:1f:8f:f6:85:fb:e6:26:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:01 2023 GMT Not After : Jun 6 03:00:01 2024 GMT Subject: CN=408E9169BECAC701989629B01DE554CA2B108BA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:89:9f:36:5c:a6:32:d5:ff:f2:c3:86:b6:9e: 7c:1c:a6:8d:64:9b:81:f9:79:75:d4:e3:0e:ea:96: 37:a4:19:d7:d1:9f:8c:0a:90:25:03:c8:bd:c9:4d: fd:3d:0a:30:89:a5:c3:cc:38:33:4a:fa:09:9c:91: 8d:55:c5:5f:bd:9e:3b:32:31:b3:d4:ad:a6:d5:69: 91:83:96:60:06:01:ae:d7:46:ed:7a:f3:4f:e5:70: 15:f0:97:4c:b9:55:fc:a6:6f:da:f3:60:3f:6e:cd: 68:82:fe:dc:f0:3a:ba:70:82:ed:3e:c7:27:d3:f9: f5:69:62:e1:e3:30:3c:4c:94:b9:a6:30:06:24:ac: 42:d5:25:ec:43:5f:08:d4:a1:57:bb:f2:87:5b:fc: ba:ad:29:9b:36:6f:9f:f8:7c:0e:2d:1f:cd:05:e9: 7c:03:7f:1f:6f:7b:f1:60:22:93:97:45:33:de:2f: 4b:c1:4e:00:19:1f:5f:66:2f:44:e1:47:98:8c:0a: 22:03:f5:a6:d4:97:8d:94:69:83:4d:00:c9:46:31: 09:e1:9f:d4:9a:80:f6:96:d4:d3:14:32:21:8d:1c: c5:7f:b8:7f:1a:ce:8d:f8:b4:ef:5c:2e:50:1f:70: d1:87:c6:5e:a2:10:fb:1b:1a:0e:e5:be:c0:4a:4e: 66:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:8E:91:69:BE:CA:C7:01:98:96:29:B0:1D:E5:54:CA:2B:10:8B:A4 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:10::/48 Signature Algorithm: sha256WithRSAEncryption 04:07:9b:4f:d5:db:68:49:b3:0f:6b:58:fe:cb:fd:b1:35:0b: 50:af:a5:7d:7f:f5:fb:a0:7b:f7:87:45:32:d9:54:24:58:dc: 16:8a:61:d8:66:0f:66:6d:f3:7f:f8:6a:b9:6b:c4:14:54:ce: 2c:ee:f8:44:a0:61:41:a4:a1:80:a6:59:b4:fb:df:7f:78:fc: 02:10:99:45:a7:62:4c:96:3e:f3:fb:c9:cd:b3:b5:84:3e:18: 50:2e:87:94:c5:09:fb:14:02:3c:ed:bd:e4:7f:bd:5b:20:3d: 9c:e4:a5:1c:07:13:97:af:89:27:ff:22:82:02:91:32:25:88: bc:98:38:1a:26:50:66:ec:2c:8b:46:aa:23:45:49:67:d6:09: de:6b:8f:f4:93:fa:87:57:66:d5:bc:22:3e:70:6c:bf:35:63: df:da:04:2e:04:95:83:cd:63:e9:78:5b:ef:fa:85:7f:d2:f8: 7b:86:91:18:68:98:44:ea:7c:7c:2d:7b:2e:8f:ad:66:c7:30: e9:1f:6c:75:b0:9a:7d:96:0c:57:a4:47:97:39:07:19:f7:6d: 72:b3:6f:28:09:9f:84:1f:54:94:1a:5e:dc:ae:b2:ff:08:89: 8b:fb:fb:41:7e:07:9c:3f:bb:20:03:60:d8:62:10:c3:8e:ca: a6:35:14:0d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOYBGeKchNEtd2FddH4/2hfvmJvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDFaFw0yNDA2MDYwMzAwMDFaMDMxMTAvBgNV BAMTKDQwOEU5MTY5QkVDQUM3MDE5ODk2MjlCMDFERTU1NENBMkIxMDhCQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCriZ82XKYy1f/yw4a2nnwcpo1k m4H5eXXU4w7qljekGdfRn4wKkCUDyL3JTf09CjCJpcPMODNK+gmckY1VxV+9njsy MbPUrabVaZGDlmAGAa7XRu1680/lcBXwl0y5Vfymb9rzYD9uzWiC/tzwOrpwgu0+ xyfT+fVpYuHjMDxMlLmmMAYkrELVJexDXwjUoVe78odb/LqtKZs2b5/4fA4tH80F 6XwDfx9ve/FgIpOXRTPeL0vBTgAZH19mL0ThR5iMCiID9abUl42UaYNNAMlGMQnh n9SagPaW1NMUMiGNHMV/uH8azo34tO9cLlAfcNGHxl6iEPsbGg7lvsBKTmYBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQI6Rab7KxwGYlimwHeVUyisQi6QwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EDANBgkqhkiG9w0BAQsFAAOCAQEABAebT9XbaEmzD2tY/sv9sTULUK+lfX/1+6B7 94dFMtlUJFjcFoph2GYPZm3zf/hquWvEFFTOLO74RKBhQaShgKZZtPvff3j8AhCZ RadiTJY+8/vJzbO1hD4YUC6HlMUJ+xQCPO295H+9WyA9nOSlHAcTl6+JJ/8iggKR MiWIvJg4GiZQZuwsi0aqI0VJZ9YJ3muP9JP6h1dm1bwiPnBsvzVj39oELgSVg81j 6Xhb7/qFf9L4e4aRGGiYROp8fC17Lo+tZscw6R9sdbCafZYMV6RHlzkHGfdtcrNv KAmfhB9UlBpe3K6y/wiJi/v7QX4HnD+7IANg2GIQw47KpjUUDQ== -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:37 2024 by rpki-client on console-ams.rpki-client.org