$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 4KPh+jgGOUiyLZQmV19GI+Y5p+0PDlJoxa+sG4b18fw= Subject key identifier: 6B:4F:22:4D:1A:53:A3:D7:6F:86:03:4D:E9:82:A2:F9:67:E1:B1:6B Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 35F6DCE405A7957F82FE60CFED9DF533D69504F4 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:00 +0000 ROA not before: Thu 08 Jun 2023 02:55:00 +0000 ROA not after: Thu 06 Jun 2024 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f6:dc:e4:05:a7:95:7f:82:fe:60:cf:ed:9d:f5:33:d6:95:04:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:00 2023 GMT Not After : Jun 6 03:00:00 2024 GMT Subject: CN=6B4F224D1A53A3D76F86034DE982A2F967E1B16B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:79:a5:8e:9c:60:e9:0b:7c:92:4b:ac:9f: 8b:a2:6c:4d:3e:ef:c1:2c:3d:28:d0:3e:43:bc:ac: be:cc:ab:60:75:cd:f4:2b:eb:a7:bd:8e:d4:09:63: 82:c9:b6:fa:be:71:d7:ec:d2:19:5a:90:56:f9:07: 92:7b:69:c5:37:9f:e1:a5:ac:09:cf:b0:df:52:e1: 13:7c:88:e1:e1:99:ef:48:b4:0d:1b:b5:06:42:d5: 89:f2:f0:ef:c9:81:0e:66:36:f7:7b:e8:e6:72:46: fb:18:4b:ce:d7:19:a3:99:50:55:d3:49:3c:d7:84: 67:f5:9a:b6:1f:54:0a:56:82:2c:33:a3:81:ca:86: 99:0b:ff:7c:67:bb:5f:01:2e:62:81:f3:df:41:81: b5:a0:74:71:b3:22:50:1d:38:b7:e1:cb:e4:c7:23: 59:67:7c:81:d6:40:5c:34:50:e0:b2:08:82:4c:1d: 1f:0e:d5:3a:76:9c:f4:76:20:a4:71:fb:4b:83:f3: 38:07:40:53:fe:1d:4b:90:bc:40:c6:9b:9b:fd:45: dd:b9:5f:6f:58:f8:61:3b:05:c4:99:9c:79:a5:dc: 34:87:35:37:c5:6b:02:93:7a:92:8b:75:92:ef:46: 48:a4:6a:65:02:6a:b9:06:d8:2b:9b:d7:85:96:7d: 62:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4F:22:4D:1A:53:A3:D7:6F:86:03:4D:E9:82:A2:F9:67:E1:B1:6B X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:12::/48 Signature Algorithm: sha256WithRSAEncryption 17:a6:3a:6a:1d:8f:85:10:b5:42:0d:57:a0:8d:e2:90:a9:e5: 0e:2a:af:3f:38:eb:6f:cf:e1:7d:f7:c7:f0:ac:52:ae:f6:b3: 11:51:7d:07:00:7e:27:59:2b:94:2c:30:9e:75:b4:24:0e:bc: 63:71:59:3b:29:3f:26:85:0c:19:77:bc:32:a5:4c:e2:0f:ee: 4c:80:df:eb:b1:6a:6e:ad:be:2e:d1:1a:4c:ef:8f:97:c6:18: e0:36:08:7e:df:d6:40:0d:4b:5c:9c:80:59:99:3c:08:85:49: 3e:79:1d:99:b8:79:2d:b1:90:ce:74:28:67:f1:bb:fd:10:2a: 5a:6d:d7:9e:9e:c6:19:78:94:f4:df:2a:61:8a:bc:e9:1c:cc: 6f:e6:82:b2:cb:a2:f8:83:da:be:e2:f3:2e:99:d9:c9:b8:b0: 20:db:30:47:62:9d:fc:95:a1:16:d9:02:16:4f:cc:b0:31:46: c5:0b:29:a8:b2:aa:d7:81:c5:07:00:4b:b5:e0:73:8e:da:c9: 9d:95:ba:a3:58:0d:2c:53:a7:bb:01:b3:86:ba:71:0e:58:c5: 70:5a:c0:76:65:7f:0c:31:0b:df:af:af:85:17:e4:e4:30:73: c6:0b:57:a9:03:b4:63:f4:c7:dc:90:0e:0f:8f:8b:f3:91:17: 3c:0e:47:53 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUNfbc5AWnlX+C/mDP7Z31M9aVBPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDBaFw0yNDA2MDYwMzAwMDBaMDMxMTAvBgNV BAMTKDZCNEYyMjREMUE1M0EzRDc2Rjg2MDM0REU5ODJBMkY5NjdFMUIxNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/wnmljpxg6Qt8kkusn4uibE0+ 78EsPSjQPkO8rL7Mq2B1zfQr66e9jtQJY4LJtvq+cdfs0hlakFb5B5J7acU3n+Gl rAnPsN9S4RN8iOHhme9ItA0btQZC1Yny8O/JgQ5mNvd76OZyRvsYS87XGaOZUFXT STzXhGf1mrYfVApWgiwzo4HKhpkL/3xnu18BLmKB899BgbWgdHGzIlAdOLfhy+TH I1lnfIHWQFw0UOCyCIJMHR8O1Tp2nPR2IKRx+0uD8zgHQFP+HUuQvEDGm5v9Rd25 X29Y+GE7BcSZnHml3DSHNTfFawKTepKLdZLvRkikamUCarkG2Cub14WWfWKDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUa08iTRpTo9dvhgNN6YKi+WfhsWswHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA EjANBgkqhkiG9w0BAQsFAAOCAQEAF6Y6ah2PhRC1Qg1XoI3ikKnlDiqvPzjrb8/h fffH8KxSrvazEVF9BwB+J1krlCwwnnW0JA68Y3FZOyk/JoUMGXe8MqVM4g/uTIDf 67Fqbq2+LtEaTO+Pl8YY4DYIft/WQA1LXJyAWZk8CIVJPnkdmbh5LbGQznQoZ/G7 /RAqWm3Xnp7GGXiU9N8qYYq86RzMb+aCssui+IPavuLzLpnZybiwINswR2Kd/JWh FtkCFk/MsDFGxQspqLKq14HFBwBLteBzjtrJnZW6o1gNLFOnuwGzhrpxDljFcFrA dmV/DDEL36+vhRfk5DBzxgtXqQO0Y/TH3JAOD4+L85EXPA5HUw== -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:37 2024 by rpki-client on console-ams.rpki-client.org