$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: QxyQgV8yqz3LxaWii/QxxyGdg0KqjSEAWOUCITDyK+M= Subject key identifier: 18:12:F3:99:A4:90:02:C7:83:AD:C4:9A:8D:54:B6:23:7A:9A:87:88 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5E5EF012ECB9D7862A7C79FF8F475011177D9886 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:02 +0000 ROA not before: Thu 09 May 2024 03:55:02 +0000 ROA not after: Thu 08 May 2025 04:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5e:f0:12:ec:b9:d7:86:2a:7c:79:ff:8f:47:50:11:17:7d:98:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:02 2024 GMT Not After : May 8 04:00:02 2025 GMT Subject: CN=1812F399A49002C783ADC49A8D54B6237A9A8788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:c9:49:03:1d:a3:02:c7:eb:31:4f:77:13: a0:33:8d:94:ba:ed:fe:65:76:46:d7:a3:b8:8c:09: 7c:0d:ff:fc:d7:30:58:2c:3b:1d:72:99:27:21:6f: 33:9f:99:68:d6:50:6f:a8:2d:ed:08:69:14:5a:96: 30:ee:59:4a:2f:63:44:25:44:71:6d:9d:02:58:9d: 32:42:7d:56:0d:cd:a1:3c:81:c3:32:7c:0f:fb:3c: 23:d0:56:1f:50:9c:97:3d:87:53:c0:ee:cf:ea:bf: 9a:6f:e7:f6:af:1b:f3:27:cc:e1:b3:67:0e:67:6e: a5:cf:02:6b:1c:1b:65:df:9b:fb:e3:49:ff:e1:e2: 22:87:50:66:47:46:83:89:e6:63:4f:b5:72:3d:c6: 0c:e9:6d:18:e7:c9:70:6d:58:14:91:32:5e:fa:b4: 92:b1:14:a7:b7:1a:aa:0a:f7:4c:49:7f:9d:64:f0: f1:be:3a:a7:05:20:87:a0:04:a7:bd:a4:82:59:5f: aa:3a:57:26:d2:b8:68:27:aa:be:fe:de:49:39:69: 92:7f:88:91:7a:75:9f:c0:46:00:20:40:99:d6:43: 98:05:ca:a7:8c:00:65:8f:70:d7:12:aa:ab:0f:61: 50:a2:3e:65:47:56:67:7a:24:d0:0b:61:87:fa:56: 12:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:12:F3:99:A4:90:02:C7:83:AD:C4:9A:8D:54:B6:23:7A:9A:87:88 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31303a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:10::/48 Signature Algorithm: sha256WithRSAEncryption 26:ab:d7:23:85:58:c0:07:fc:7d:73:2c:e8:86:9c:61:0c:71: d0:29:ec:30:c9:6d:35:f2:2a:b1:7c:8e:46:e4:b8:22:17:f7: 4c:56:1f:69:56:7b:43:45:1a:2d:ed:32:a9:cd:9d:4d:d1:61: 20:1e:22:31:90:94:c4:ee:9a:86:94:ad:61:45:8c:3d:7f:f2: ad:8f:74:13:bb:ab:9b:e2:62:2a:9a:8f:4f:8a:72:62:8e:5d: be:30:28:d0:39:04:a4:7f:1f:e0:37:09:9a:0c:f4:67:92:b4: 32:e3:71:19:af:7c:69:6a:4a:05:2a:e0:dd:f5:25:fa:d8:88: a0:5d:e9:e2:6c:e8:84:5b:fc:c8:4f:b4:2e:47:bf:f5:8c:c3: 7c:c3:e2:12:e3:6a:71:ae:cc:69:de:c6:23:f8:4a:ca:55:07: cb:93:e4:db:3d:a9:c1:34:df:07:97:32:71:82:f2:27:2a:e7: a5:8f:24:d6:c0:ee:4a:95:ec:a0:a0:72:a0:e3:2b:9d:f4:3d: 73:6b:d7:0d:75:c3:34:2e:3b:12:76:57:19:79:83:1b:c2:19: a0:d8:32:35:7c:ea:36:56:de:ca:bd:d8:8b:33:48:7b:86:81: cb:12:15:e3:36:b1:8d:27:92:7a:aa:dc:5f:c4:de:f0:47:17: 1b:53:88:91 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUXl7wEuy514YqfHn/j0dQERd9mIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDJaFw0yNTA1MDgwNDAwMDJaMDMxMTAvBgNV BAMTKDE4MTJGMzk5QTQ5MDAyQzc4M0FEQzQ5QThENTRCNjIzN0E5QTg3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB3MlJAx2jAsfrMU93E6AzjZS6 7f5ldkbXo7iMCXwN//zXMFgsOx1ymSchbzOfmWjWUG+oLe0IaRRaljDuWUovY0Ql RHFtnQJYnTJCfVYNzaE8gcMyfA/7PCPQVh9QnJc9h1PA7s/qv5pv5/avG/MnzOGz Zw5nbqXPAmscG2Xfm/vjSf/h4iKHUGZHRoOJ5mNPtXI9xgzpbRjnyXBtWBSRMl76 tJKxFKe3GqoK90xJf51k8PG+OqcFIIegBKe9pIJZX6o6VybSuGgnqr7+3kk5aZJ/ iJF6dZ/ARgAgQJnWQ5gFyqeMAGWPcNcSqqsPYVCiPmVHVmd6JNALYYf6VhKNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUGBLzmaSQAseDrcSajVS2I3qah4gwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EDANBgkqhkiG9w0BAQsFAAOCAQEAJqvXI4VYwAf8fXMs6IacYQxx0CnsMMltNfIq sXyORuS4Ihf3TFYfaVZ7Q0UaLe0yqc2dTdFhIB4iMZCUxO6ahpStYUWMPX/yrY90 E7urm+JiKpqPT4pyYo5dvjAo0DkEpH8f4DcJmgz0Z5K0MuNxGa98aWpKBSrg3fUl +tiIoF3p4mzohFv8yE+0Lke/9YzDfMPiEuNqca7Mad7GI/hKylUHy5Pk2z2pwTTf B5cycYLyJyrnpY8k1sDuSpXsoKByoOMrnfQ9c2vXDXXDNC47EnZXGXmDG8IZoNgy NXzqNlbeyr3YizNIe4aByxIV4zaxjSeSeqrcX8Te8EcXG1OIkQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org