$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: KFLl6rRyp+Cyjz+qxWKqbZh73oKUTkFTES4pJL+RI1w= Subject key identifier: A8:4D:12:1B:54:79:39:BA:3D:49:C9:42:CB:B5:CF:A1:51:47:AD:54 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 696E343445A1186060303696ECBC942787B329EA Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:02 +0000 ROA not before: Thu 08 Jun 2023 02:55:02 +0000 ROA not after: Thu 06 Jun 2024 03:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:6e:34:34:45:a1:18:60:60:30:36:96:ec:bc:94:27:87:b3:29:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:02 2023 GMT Not After : Jun 6 03:00:02 2024 GMT Subject: CN=A84D121B547939BA3D49C942CBB5CFA15147AD54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:26:df:94:d3:51:d6:39:4d:d9:3f:a4:99: 4a:a2:47:7e:3f:66:bb:f0:45:f4:07:8f:8d:cc:ac: 58:26:5c:5f:c6:87:06:d6:c4:70:6e:b8:42:64:10: e6:50:16:5f:68:8d:69:0c:0b:f2:c1:f5:3d:0a:d3: 6f:ab:a8:80:24:df:12:6c:45:d6:75:98:90:d2:9e: 29:5d:c3:1a:9a:bb:95:03:25:a9:9a:af:c8:4e:60: cd:54:85:cb:fe:b4:a2:c9:0d:e4:5a:1b:0b:dd:4b: 40:8b:c6:ec:86:74:e6:06:5b:2a:17:2e:d7:b5:6b: b8:89:03:d6:9b:0c:5d:af:9a:35:f3:c5:d3:c5:94: 8a:84:aa:7f:01:26:97:4e:50:dd:ef:d5:1f:d1:8e: 50:e4:07:76:a7:ae:34:29:ee:b7:11:04:0e:90:e4: 06:b5:49:64:c8:14:7b:db:c8:b6:e0:f5:65:1f:43: 9c:0a:69:11:f7:e3:dc:03:69:af:37:13:1d:95:75: f7:09:4a:21:d5:16:c6:42:f8:10:2c:6a:4c:d7:f2: f6:40:09:48:de:bd:18:31:0e:4d:2c:f0:73:3b:9f: 34:04:ba:58:a8:df:7d:0b:1f:07:2a:28:a8:c3:2a: 15:30:58:b0:3e:85:a5:e3:2f:5d:07:5a:49:32:20: 70:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:4D:12:1B:54:79:39:BA:3D:49:C9:42:CB:B5:CF:A1:51:47:AD:54 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:14::/48 Signature Algorithm: sha256WithRSAEncryption 35:d4:32:ba:59:5e:9a:67:b8:1c:78:c3:3d:5f:6d:aa:0f:40: 10:c9:ab:23:9a:95:a8:2b:37:df:0a:19:85:7a:34:79:09:0d: a0:bd:5b:64:06:f3:0a:60:42:26:58:85:27:a3:24:df:a4:01: 0a:f5:0c:ca:02:e0:27:bc:67:a7:ef:f1:b4:e3:3f:4b:28:07: e7:f3:56:2f:0e:da:8d:d1:a4:5a:bf:77:ae:8c:d6:72:62:52: 37:d5:4c:5f:9f:33:fa:8e:82:22:15:6a:ff:44:4e:0d:aa:26: 3f:dc:c9:51:4d:41:2f:e5:14:71:80:e9:ce:2b:83:5c:ef:87: bd:f7:a3:f4:16:10:6a:7a:2d:fa:43:53:9b:71:91:81:e1:d7: 2c:d9:a7:cf:89:50:0e:50:cc:5a:d5:2c:b6:83:56:e7:b3:61: df:0d:4a:4f:94:34:22:82:74:2b:09:61:b1:6b:86:f1:5b:46: 90:05:83:7d:d1:15:33:8f:36:70:de:3d:24:ed:d0:71:3f:c7: c3:bd:c4:4d:7e:49:71:78:40:59:79:97:61:76:cf:7e:76:2c: 01:27:dc:2d:6b:1a:bd:36:3c:62:48:2a:57:91:a6:08:a1:0e: dd:1a:4e:c8:70:82:71:96:17:07:10:27:fc:67:b9:4a:b1:1d: 59:fa:53:0b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUaW40NEWhGGBgMDaW7LyUJ4ezKeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDJaFw0yNDA2MDYwMzAwMDJaMDMxMTAvBgNV BAMTKEE4NEQxMjFCNTQ3OTM5QkEzRDQ5Qzk0MkNCQjVDRkExNTE0N0FENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEFibflNNR1jlN2T+kmUqiR34/ ZrvwRfQHj43MrFgmXF/GhwbWxHBuuEJkEOZQFl9ojWkMC/LB9T0K02+rqIAk3xJs RdZ1mJDSnildwxqau5UDJamar8hOYM1Uhcv+tKLJDeRaGwvdS0CLxuyGdOYGWyoX Lte1a7iJA9abDF2vmjXzxdPFlIqEqn8BJpdOUN3v1R/RjlDkB3anrjQp7rcRBA6Q 5Aa1SWTIFHvbyLbg9WUfQ5wKaRH349wDaa83Ex2VdfcJSiHVFsZC+BAsakzX8vZA CUjevRgxDk0s8HM7nzQEulio330LHwcqKKjDKhUwWLA+haXjL10HWkkyIHCNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUqE0SG1R5Obo9SclCy7XPoVFHrVQwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FDANBgkqhkiG9w0BAQsFAAOCAQEANdQyullemme4HHjDPV9tqg9AEMmrI5qVqCs3 3woZhXo0eQkNoL1bZAbzCmBCJliFJ6Mk36QBCvUMygLgJ7xnp+/xtOM/SygH5/NW Lw7ajdGkWr93rozWcmJSN9VMX58z+o6CIhVq/0RODaomP9zJUU1BL+UUcYDpziuD XO+Hvfej9BYQanot+kNTm3GRgeHXLNmnz4lQDlDMWtUstoNW57Nh3w1KT5Q0IoJ0 KwlhsWuG8VtGkAWDfdEVM482cN49JO3QcT/Hw73ETX5JcXhAWXmXYXbPfnYsASfc LWsavTY8YkgqV5GmCKEO3RpOyHCCcZYXBxAn/Ge5SrEdWfpTCw== -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:37 2024 by rpki-client on console-ams.rpki-client.org