$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: fZbow80lbl1tUzdeRLpipyro+0U3YnVmm12lQWkFbpg= Subject key identifier: 1B:CE:43:62:CC:3D:1E:52:A8:B8:E8:65:9D:56:22:B3:08:9B:61:44 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 565B2A55B206D46D9342698CA5595CA57E6F1ED4 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:00 +0000 ROA not before: Thu 09 May 2024 03:55:00 +0000 ROA not after: Thu 08 May 2025 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:5b:2a:55:b2:06:d4:6d:93:42:69:8c:a5:59:5c:a5:7e:6f:1e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:00 2024 GMT Not After : May 8 04:00:00 2025 GMT Subject: CN=1BCE4362CC3D1E52A8B8E8659D5622B3089B6144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:68:2e:f8:6e:65:a0:f7:ab:03:60:0d:2e: 40:0c:f6:3c:4a:e8:b7:c1:89:f3:52:c6:76:00:54: 0b:40:9d:38:77:b2:35:d0:50:72:9d:1c:79:06:d2: 19:d1:ca:72:fd:9f:74:2d:a8:1b:a4:b6:9d:e5:69: 76:d5:5e:74:03:f2:59:9d:fb:bb:78:d8:a7:d6:3f: 68:b8:db:57:69:11:f6:6f:cf:0c:be:95:c6:9e:e3: 5c:b6:e0:50:5b:ff:fd:71:f4:66:ab:9c:5c:61:c8: 6d:88:8c:74:21:01:24:60:63:6e:23:52:f4:50:90: 23:27:a3:cd:90:ed:ca:14:c7:32:1c:a7:b7:af:e8: f2:05:06:42:3d:85:fe:d2:43:09:a7:19:3a:43:71: 0e:4f:2f:90:3e:0a:f5:26:b3:fe:b2:c4:ca:40:a9: 42:d4:ce:2f:e3:47:0e:05:dd:2a:2b:90:04:a8:ac: 36:ad:fa:82:53:0a:97:19:34:f2:52:44:97:81:90: ad:7b:6d:b1:be:9f:21:72:af:55:d7:1e:9a:5b:55: bd:c2:63:b8:a0:e5:bd:32:e3:78:8a:ca:66:b3:32: f2:ee:67:bb:ce:25:71:1a:7a:1e:5d:cc:63:7d:de: d6:5d:17:97:c5:dd:64:31:13:ea:30:28:0a:3c:ae: a2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CE:43:62:CC:3D:1E:52:A8:B8:E8:65:9D:56:22:B3:08:9B:61:44 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31343a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:14::/48 Signature Algorithm: sha256WithRSAEncryption 5e:24:59:ea:4f:1a:5a:bc:ee:b6:ed:ac:84:19:96:00:3f:c1: a9:65:56:4f:3e:e3:3e:0b:30:aa:8f:67:55:51:00:b7:36:98: 2d:35:70:a2:a3:27:b7:9a:6a:d0:dd:ec:a5:d4:7b:7e:53:b1: cf:43:4c:54:e7:be:9d:5d:47:59:0b:7a:d3:e5:bc:8e:e6:6d: 08:15:85:4f:b1:00:64:13:76:5c:c5:ce:dd:74:64:75:d6:3f: a9:b9:5f:c4:61:78:76:42:c6:ad:36:c9:c1:fb:27:de:69:a4: bf:41:bd:63:e7:a7:2f:11:b7:14:5f:e9:60:33:73:e6:9c:c0: 81:55:a1:1c:14:7d:65:90:eb:2f:6d:b7:3d:fc:04:c3:44:82: 55:15:1c:b9:70:e5:7b:db:43:82:99:a8:03:e2:29:c5:ab:73: 0e:dd:ed:ff:4e:a2:9a:8b:b9:a9:02:bc:4c:b1:b6:5a:eb:1a: 32:c4:00:db:2d:19:40:54:ba:31:14:dd:2b:c2:b2:ea:63:79: b6:50:2f:61:9b:fb:d7:35:25:71:6d:7b:ea:0c:5b:7d:d3:34: cf:a8:ae:6c:fa:01:ad:a6:4b:25:7f:6d:d5:d8:7d:5f:12:0e: 29:1b:4e:90:20:a1:64:5c:76:e0:47:b4:79:11:56:60:03:be: f2:41:ca:9f -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUVlsqVbIG1G2TQmmMpVlcpX5vHtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDBaFw0yNTA1MDgwNDAwMDBaMDMxMTAvBgNV BAMTKDFCQ0U0MzYyQ0MzRDFFNTJBOEI4RTg2NTlENTYyMkIzMDg5QjYxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxmmgu+G5loPerA2ANLkAM9jxK 6LfBifNSxnYAVAtAnTh3sjXQUHKdHHkG0hnRynL9n3QtqBuktp3laXbVXnQD8lmd +7t42KfWP2i421dpEfZvzwy+lcae41y24FBb//1x9GarnFxhyG2IjHQhASRgY24j UvRQkCMno82Q7coUxzIcp7ev6PIFBkI9hf7SQwmnGTpDcQ5PL5A+CvUms/6yxMpA qULUzi/jRw4F3SorkASorDat+oJTCpcZNPJSRJeBkK17bbG+nyFyr1XXHppbVb3C Y7ig5b0y43iKymazMvLuZ7vOJXEaeh5dzGN93tZdF5fF3WQxE+owKAo8rqK5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUG85DYsw9HlKouOhlnVYiswibYUQwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FDANBgkqhkiG9w0BAQsFAAOCAQEAXiRZ6k8aWrzutu2shBmWAD/BqWVWTz7jPgsw qo9nVVEAtzaYLTVwoqMnt5pq0N3spdR7flOxz0NMVOe+nV1HWQt60+W8juZtCBWF T7EAZBN2XMXO3XRkddY/qblfxGF4dkLGrTbJwfsn3mmkv0G9Y+enLxG3FF/pYDNz 5pzAgVWhHBR9ZZDrL223PfwEw0SCVRUcuXDle9tDgpmoA+IpxatzDt3t/06imou5 qQK8TLG2WusaMsQA2y0ZQFS6MRTdK8Ky6mN5tlAvYZv71zUlcW176gxbfdM0z6iu bPoBraZLJX9t1dh9XxIOKRtOkCChZFx24Ee0eRFWYAO+8kHKnw== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org