$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 4wQzrm+i1v5qUyVKJjkO7HH+MEjS5+U+8152BYfrVKI= Subject key identifier: 8D:7D:D9:BA:35:52:46:E6:36:18:9A:A4:B3:B3:8F:EE:B9:81:5B:D7 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 1137D79D89B6A056D0284D7317BA0BE923642867 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 03:00:01 +0000 ROA not before: Thu 09 May 2024 02:55:01 +0000 ROA not after: Thu 08 May 2025 03:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:37:d7:9d:89:b6:a0:56:d0:28:4d:73:17:ba:0b:e9:23:64:28:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 02:55:01 2024 GMT Not After : May 8 03:00:01 2025 GMT Subject: CN=8D7DD9BA355246E636189AA4B3B38FEEB9815BD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:60:27:db:36:5f:18:ca:4e:e1:08:cb:92:b0: 01:5a:0f:57:61:83:22:04:40:9f:a3:14:60:41:5a: cd:be:56:fa:7a:9e:7e:52:06:09:74:f6:6d:b1:01: 25:03:85:f2:fb:77:ff:ba:09:14:2f:bf:e5:14:63: 89:d1:99:67:df:bd:27:b5:65:c1:bb:d8:30:9c:62: 68:99:a9:09:27:67:a2:6d:04:b4:85:da:25:42:da: 9d:5b:7d:c1:f5:22:b9:93:cb:f8:3c:ca:03:31:5c: 22:89:fa:49:5e:cc:3d:f7:55:69:6c:c0:84:54:af: b7:ba:2f:3d:6d:25:09:e2:f9:12:0a:2c:20:e7:c5: 2f:2f:54:26:f6:b8:c9:ac:17:e0:dc:be:9f:0c:1e: e4:8c:e8:c8:84:33:6e:23:76:2d:da:f8:98:29:bf: 78:28:1c:a6:ae:0c:1e:5c:4f:42:84:c4:fc:9b:3e: f6:35:3b:2c:ab:c8:72:e3:2f:fc:d5:40:4f:a7:c5: b1:8e:d4:2a:da:0e:08:9b:79:fa:17:46:27:af:38: 58:0e:ef:84:97:0f:74:c6:19:71:47:6e:58:be:fc: 14:dd:07:a7:c6:bf:c8:66:79:13:2f:ac:76:64:77: bb:cd:05:24:81:5a:9b:c3:98:12:da:17:48:8a:e3: e4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7D:D9:BA:35:52:46:E6:36:18:9A:A4:B3:B3:8F:EE:B9:81:5B:D7 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:12::/48 Signature Algorithm: sha256WithRSAEncryption 76:8a:bd:a5:0b:23:20:05:9d:95:ea:d2:c3:30:59:2c:9b:bc: 69:04:f7:d3:73:c2:4d:d7:c5:2f:c2:b9:5f:a1:56:60:94:c1: 76:30:b3:ea:0c:10:44:d6:3f:ff:59:c1:21:87:02:81:62:32: 73:a9:48:e3:0b:88:50:4f:7a:b1:51:2d:1d:d1:1b:1c:e9:e4: a3:c1:7f:e9:98:6e:16:2a:00:5a:c3:c8:61:d1:ae:8f:8f:3a: fa:ff:3e:d8:dc:9b:63:22:2e:86:fb:31:c6:29:aa:7f:3c:98: 91:ce:26:ea:ab:55:fc:c1:46:a9:f7:3c:c7:ec:03:41:17:f7: 9b:85:12:28:44:5f:7f:7a:e2:e5:3e:f4:65:22:e6:83:cb:52: eb:bf:8a:74:9d:45:07:00:d0:95:e7:78:73:e0:a8:fa:ff:1e: 97:28:24:31:f5:53:4e:38:61:e2:76:5a:03:93:4b:69:a0:e7: 84:79:30:2d:97:ee:9e:3a:bf:e7:c6:a0:98:10:ed:fe:b0:4b: fd:bf:87:50:46:bb:1d:de:9f:56:9a:cd:66:1e:e6:39:f8:11: b7:61:9c:37:ed:73:30:37:06:d4:73:b2:6b:df:0e:6d:af:fd: 8a:7f:32:3c:ff:91:2d:be:e2:af:58:1b:15:72:e8:ec:ca:95: 27:ab:47:e6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUETfXnYm2oFbQKE1zF7oL6SNkKGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMjU1MDFaFw0yNTA1MDgwMzAwMDFaMDMxMTAvBgNV BAMTKDhEN0REOUJBMzU1MjQ2RTYzNjE4OUFBNEIzQjM4RkVFQjk4MTVCRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnYCfbNl8Yyk7hCMuSsAFaD1dh gyIEQJ+jFGBBWs2+Vvp6nn5SBgl09m2xASUDhfL7d/+6CRQvv+UUY4nRmWffvSe1 ZcG72DCcYmiZqQknZ6JtBLSF2iVC2p1bfcH1IrmTy/g8ygMxXCKJ+klezD33VWls wIRUr7e6Lz1tJQni+RIKLCDnxS8vVCb2uMmsF+Dcvp8MHuSM6MiEM24jdi3a+Jgp v3goHKauDB5cT0KExPybPvY1OyyryHLjL/zVQE+nxbGO1CraDgibefoXRievOFgO 74SXD3TGGXFHbli+/BTdB6fGv8hmeRMvrHZkd7vNBSSBWpvDmBLaF0iK4+S3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUjX3ZujVSRuY2GJqks7OP7rmBW9cwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EjANBgkqhkiG9w0BAQsFAAOCAQEAdoq9pQsjIAWdlerSwzBZLJu8aQT303PCTdfF L8K5X6FWYJTBdjCz6gwQRNY//1nBIYcCgWIyc6lI4wuIUE96sVEtHdEbHOnko8F/ 6ZhuFioAWsPIYdGuj486+v8+2NybYyIuhvsxximqfzyYkc4m6qtV/MFGqfc8x+wD QRf3m4USKERff3ri5T70ZSLmg8tS67+KdJ1FBwDQled4c+Co+v8elygkMfVTTjhh 4nZaA5NLaaDnhHkwLZfunjq/58agmBDt/rBL/b+HUEa7Hd6fVprNZh7mOfgRt2Gc N+1zMDcG1HOya98Oba/9in8yPP+RLb7ir1gbFXLo7MqVJ6tH5g== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org