$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: X46c6s/VqkVyXx/DiAu3Nsh1QhNTHenU0Oc7ZG3SMG4= Subject key identifier: 61:16:62:1D:EA:6F:7E:45:CC:EE:58:A8:D8:B5:F5:2F:4C:AC:CA:96 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 8F4CEF2AF491D94CB43929025E78D93F2BB8FE Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:01 +0000 ROA not before: Thu 08 Jun 2023 02:55:01 +0000 ROA not after: Thu 06 Jun 2024 03:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8f:4c:ef:2a:f4:91:d9:4c:b4:39:29:02:5e:78:d9:3f:2b:b8:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:01 2023 GMT Not After : Jun 6 03:00:01 2024 GMT Subject: CN=6116621DEA6F7E45CCEE58A8D8B5F52F4CACCA96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d3:23:82:bb:b6:d1:a4:a9:5f:f1:44:18:47: b7:18:b9:3c:a0:86:a9:32:82:91:91:7c:fc:ad:57: 73:0b:d3:ce:0f:f6:a0:97:3a:65:e9:64:c6:b7:15: b6:2d:68:9d:b2:89:63:77:6d:ab:c6:d5:ad:67:d8: 50:2b:0c:96:86:20:ab:b4:ee:ed:e5:db:0c:8b:6f: cb:af:28:9b:51:79:92:0f:bf:d4:0a:a3:56:0f:85: 06:c6:59:5a:74:06:af:f5:a3:c3:08:b8:28:ba:f8: 63:95:96:da:ba:2e:ab:02:f1:3f:24:06:78:b4:34: 72:de:6a:6e:b9:7b:81:87:06:a4:5b:5f:cf:25:28: 3d:f5:44:66:db:b1:e1:aa:dc:68:d2:71:ec:9b:ec: 8d:97:ae:a5:ad:72:32:95:47:22:ec:9c:43:36:e7: e8:fd:73:fa:86:f2:d1:4a:99:39:7e:33:41:97:34: 6b:6b:1c:b5:7c:14:b0:f7:5b:33:b2:0c:54:0b:dd: ca:2f:55:c1:8e:ff:35:60:ce:a8:9c:9a:65:2b:5c: 76:64:93:44:d4:25:cd:e7:5b:97:77:03:76:91:c4: 98:e0:b0:6f:6e:80:f3:9a:e2:39:bc:18:cc:7f:0f: 1a:20:a9:d0:a5:1c:5c:00:77:0d:cc:7b:4b:18:bb: 23:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:16:62:1D:EA:6F:7E:45:CC:EE:58:A8:D8:B5:F5:2F:4C:AC:CA:96 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:11::/48 Signature Algorithm: sha256WithRSAEncryption 20:c2:21:a0:bb:35:b1:1c:f9:f2:cf:56:b8:f2:da:e9:c7:e5: d6:55:b1:6c:ba:32:d3:c8:09:7f:a8:fa:35:34:b6:1b:54:af: 86:cb:1e:e6:71:5c:87:79:90:10:0d:6a:f2:62:b4:b8:56:aa: 77:66:e5:08:a0:d5:0b:56:c6:b2:6b:de:fd:a5:9c:e3:1f:2b: 0f:6f:31:3f:43:1d:05:fb:76:7a:a9:b6:0d:55:25:48:8b:82: 5d:8e:8b:df:a5:34:b3:20:2e:79:70:f2:32:b1:35:76:f4:6e: b5:0f:ce:2c:1b:cb:dd:94:27:91:2a:f3:e0:e8:16:c2:28:08: 90:86:47:4a:83:4c:0a:6b:78:38:7b:4a:6c:38:4d:e4:b7:9b: 0e:70:ca:18:9b:cc:9b:47:0f:52:06:e0:14:c8:62:47:e8:f5: 9a:af:a6:b0:31:e4:5f:39:2e:d3:9f:06:dd:14:5d:07:5d:4d: 01:84:4f:bd:4c:c8:64:18:b0:80:54:36:58:8d:58:6c:cf:b2: c2:6e:e4:a6:f5:65:e3:28:b8:3d:13:ed:b9:4b:9f:57:a8:6e: 1c:e3:08:16:1b:77:ef:2e:c3:24:4d:d1:26:7e:4c:8f:da:60: 6d:53:9d:d3:f9:9e:9f:f1:5d:27:07:7c:9b:02:44:bb:9a:af: ea:17:d1:6e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAI9M7yr0kdlMtDkpAl542T8ruP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDFaFw0yNDA2MDYwMzAwMDFaMDMxMTAvBgNV BAMTKDYxMTY2MjFERUE2RjdFNDVDQ0VFNThBOEQ4QjVGNTJGNENBQ0NBOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0yOCu7bRpKlf8UQYR7cYuTyg hqkygpGRfPytV3ML084P9qCXOmXpZMa3FbYtaJ2yiWN3bavG1a1n2FArDJaGIKu0 7u3l2wyLb8uvKJtReZIPv9QKo1YPhQbGWVp0Bq/1o8MIuCi6+GOVltq6LqsC8T8k Bni0NHLeam65e4GHBqRbX88lKD31RGbbseGq3GjSceyb7I2XrqWtcjKVRyLsnEM2 5+j9c/qG8tFKmTl+M0GXNGtrHLV8FLD3WzOyDFQL3covVcGO/zVgzqicmmUrXHZk k0TUJc3nW5d3A3aRxJjgsG9ugPOa4jm8GMx/DxogqdClHFwAdw3Me0sYuyO5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYRZiHepvfkXM7lio2LX1L0ysypYwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA ETANBgkqhkiG9w0BAQsFAAOCAQEAIMIhoLs1sRz58s9WuPLa6cfl1lWxbLoy08gJ f6j6NTS2G1Svhsse5nFch3mQEA1q8mK0uFaqd2blCKDVC1bGsmve/aWc4x8rD28x P0MdBft2eqm2DVUlSIuCXY6L36U0syAueXDyMrE1dvRutQ/OLBvL3ZQnkSrz4OgW wigIkIZHSoNMCmt4OHtKbDhN5LebDnDKGJvMm0cPUgbgFMhiR+j1mq+msDHkXzku 058G3RRdB11NAYRPvUzIZBiwgFQ2WI1YbM+ywm7kpvVl4yi4PRPtuUufV6huHOMI Fht37y7DJE3RJn5Mj9pgbVOd0/men/FdJwd8mwJEu5qv6hfRbg== -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:37 2024 by rpki-client on console-ams.rpki-client.org