$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: RJTWv9SLXQPTYC3rzNVUwhTDGWcwVd5YntQvTlNXrzU= Subject key identifier: EA:13:73:36:E0:E8:CD:91:F6:71:E3:C2:56:88:2C:68:61:B9:FB:F0 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 73D4C1576A4E33063D49BA393E37420C665481D9 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:01 +0000 ROA not before: Thu 09 May 2024 03:55:01 +0000 ROA not after: Thu 08 May 2025 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d4:c1:57:6a:4e:33:06:3d:49:ba:39:3e:37:42:0c:66:54:81:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:01 2024 GMT Not After : May 8 04:00:01 2025 GMT Subject: CN=EA137336E0E8CD91F671E3C256882C6861B9FBF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:0b:e6:5b:2a:a9:73:e1:59:75:94:a4:42: 67:1e:04:34:00:64:21:67:b0:52:fd:3c:71:bd:cc: 3e:fd:95:02:fb:da:58:02:41:ee:73:f3:df:35:44: b1:a8:c6:6a:e7:a0:4a:e3:b7:40:f1:2e:89:aa:71: a0:c6:91:da:54:72:fc:03:c9:bc:47:e0:5e:13:18: 0a:82:38:93:64:1f:ea:8c:fd:c0:c5:26:96:54:48: f3:6f:b9:0e:8d:3e:77:72:92:81:b9:98:b3:89:fb: d4:6f:8e:07:42:3a:56:eb:fb:d7:9e:0c:eb:4e:58: 04:68:22:19:5a:76:2d:2e:c2:c8:da:e7:3b:5d:93: b3:e7:ed:7d:40:36:b0:ba:a1:92:ff:0b:49:1b:3f: 82:25:c4:44:1a:bc:fe:c4:47:00:d1:bc:a5:c2:20: e6:69:75:b6:45:5d:9a:dc:c2:aa:c1:34:85:ca:37: 12:87:e5:34:da:bf:ba:83:2d:70:9f:25:e3:9a:5e: fa:ea:26:f7:5a:99:b2:be:91:bf:9a:81:f6:d2:d3: 86:98:36:f8:a4:67:88:a2:ce:8d:f8:9a:e7:f2:cf: 44:2c:69:29:c6:e5:1d:e8:dc:46:7e:d1:99:b2:10: 17:3e:14:0a:c1:f3:89:24:dd:7f:5c:28:15:1d:2e: af:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:13:73:36:E0:E8:CD:91:F6:71:E3:C2:56:88:2C:68:61:B9:FB:F0 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:11::/48 Signature Algorithm: sha256WithRSAEncryption 83:dc:ec:e2:8e:7d:5f:41:5c:6d:cd:0b:1e:25:c2:bc:a0:59: 77:39:52:8b:df:94:33:65:d7:0d:52:93:42:47:26:3b:67:fe: 5b:f6:1b:b0:66:bb:01:a4:e9:c9:b4:d1:06:b5:d4:9a:d4:d4: 05:c3:2f:a5:f1:28:81:33:de:48:3e:82:c7:1b:8f:8a:51:3b: b5:cc:50:ce:5b:64:6f:3d:66:50:48:fb:3a:5b:b4:bb:09:10: 7a:8b:18:db:44:7a:2a:d8:75:0f:ad:cf:2a:54:39:e8:d8:e1: 18:25:5e:81:39:cf:66:01:d7:81:f9:1d:92:a1:d2:db:72:69: 3f:1b:64:e1:12:5c:ec:15:b3:f9:5d:e4:94:50:b7:c3:36:0e: d9:3d:a8:74:f3:dd:b5:7f:81:8a:f5:aa:ad:60:33:49:03:f3: 39:09:67:87:e9:18:c0:51:c3:fd:e4:09:16:46:7f:53:4a:e8: 4e:ad:a0:53:53:66:de:40:65:7f:5f:63:60:0f:06:44:4c:94: 3d:2d:28:79:36:69:7b:16:f0:8d:e4:54:75:5e:ab:0e:b6:26: c2:73:43:ac:4b:fd:6d:d8:d7:02:b4:aa:ae:a5:67:96:59:e5: 13:5d:53:d8:98:18:e9:a5:a8:e0:fa:13:b4:e2:c8:1d:ab:30: cf:4a:bd:20 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUc9TBV2pOMwY9Sbo5PjdCDGZUgdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDFaFw0yNTA1MDgwNDAwMDFaMDMxMTAvBgNV BAMTKEVBMTM3MzM2RTBFOENEOTFGNjcxRTNDMjU2ODgyQzY4NjFCOUZCRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoQgvmWyqpc+FZdZSkQmceBDQA ZCFnsFL9PHG9zD79lQL72lgCQe5z8981RLGoxmrnoErjt0DxLomqcaDGkdpUcvwD ybxH4F4TGAqCOJNkH+qM/cDFJpZUSPNvuQ6NPndykoG5mLOJ+9RvjgdCOlbr+9ee DOtOWARoIhladi0uwsja5ztdk7Pn7X1ANrC6oZL/C0kbP4IlxEQavP7ERwDRvKXC IOZpdbZFXZrcwqrBNIXKNxKH5TTav7qDLXCfJeOaXvrqJvdambK+kb+agfbS04aY NvikZ4iizo34mufyz0QsaSnG5R3o3EZ+0ZmyEBc+FArB84kk3X9cKBUdLq+DAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU6hNzNuDozZH2cePCVogsaGG5+/AwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA ETANBgkqhkiG9w0BAQsFAAOCAQEAg9zs4o59X0Fcbc0LHiXCvKBZdzlSi9+UM2XX DVKTQkcmO2f+W/YbsGa7AaTpybTRBrXUmtTUBcMvpfEogTPeSD6CxxuPilE7tcxQ zltkbz1mUEj7Olu0uwkQeosY20R6Kth1D63PKlQ56NjhGCVegTnPZgHXgfkdkqHS 23JpPxtk4RJc7BWz+V3klFC3wzYO2T2odPPdtX+BivWqrWAzSQPzOQlnh+kYwFHD /eQJFkZ/U0roTq2gU1Nm3kBlf19jYA8GREyUPS0oeTZpexbwjeRUdV6rDrYmwnND rEv9bdjXArSqrqVnllnlE11T2JgY6aWo4PoTtOLIHaswz0q9IA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org