$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: OCpGXZywCo1EgGLYShv2/t+AfDN39fJQ0K7EsfCQkeY= Subject key identifier: B2:A1:61:92:A3:25:74:BD:5E:A8:E8:A1:2B:FE:9D:36:93:72:5B:15 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 22CB00D52CA00CB4E113C61450869B9651DB1E40 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:00 +0000 ROA not before: Thu 08 Jun 2023 02:55:00 +0000 ROA not after: Thu 06 Jun 2024 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:cb:00:d5:2c:a0:0c:b4:e1:13:c6:14:50:86:9b:96:51:db:1e:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:00 2023 GMT Not After : Jun 6 03:00:00 2024 GMT Subject: CN=B2A16192A32574BD5EA8E8A12BFE9D3693725B15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:17:a7:c9:63:9b:7d:c5:ee:16:e7:aa:d2:f6: 5b:f2:f4:12:49:c8:a5:37:96:9c:47:85:fa:3c:b4: da:09:30:34:7e:f8:bc:dd:e6:1d:84:2e:e3:ed:65: 9d:5e:cc:d6:d3:1a:b2:2f:47:7d:3f:ce:d7:25:af: 66:21:65:ef:1c:48:a9:9c:a3:79:2c:b3:06:af:2b: 9a:87:a3:f0:53:0f:bb:21:11:c9:03:4e:39:0e:14: b6:92:f1:dd:99:cc:9f:81:31:ce:b2:e1:27:5a:38: 80:20:ba:3c:5a:12:a5:41:f6:05:77:85:d7:9e:13: 05:f2:20:65:09:17:65:2a:7b:2f:41:99:02:52:49: 1d:61:59:a1:92:c7:44:48:6b:a9:fb:78:cc:a4:ba: 3a:61:4d:d7:e4:d5:d1:f8:ef:f5:67:3c:9b:a8:9c: e3:cd:a5:79:69:fd:8d:81:ab:e5:b2:49:a8:6d:f9: ea:d0:e7:2e:36:b5:f5:46:f6:4c:13:72:20:e6:75: 16:d7:e8:38:75:31:8f:9c:35:22:a6:94:ba:f5:40: 68:51:71:24:a4:a2:f4:9f:9e:9d:be:c2:b9:8f:5e: 93:94:d4:ef:08:9a:d3:54:31:44:95:de:c1:c6:a7: 81:8c:e9:d8:b3:94:6a:80:8d:d5:1b:4f:7c:77:d4: 31:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A1:61:92:A3:25:74:BD:5E:A8:E8:A1:2B:FE:9D:36:93:72:5B:15 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:15::/48 Signature Algorithm: sha256WithRSAEncryption 43:3f:c0:c0:49:65:b7:8a:c9:25:ab:b1:15:0f:82:ac:c5:74: 03:21:41:06:7a:8f:0b:00:fd:95:19:bd:a7:23:98:73:b9:1a: 0b:57:e5:2f:60:68:9f:b0:90:fe:ad:de:f7:47:d4:0c:cf:bd: 10:2f:5d:96:59:d9:0a:ce:94:9a:56:33:b2:95:4b:80:37:7d: a3:a2:d9:5b:6a:23:b6:55:a0:5e:b7:91:a4:11:55:82:b9:0b: b4:4e:41:f4:5d:0c:ba:34:36:f1:2b:b3:3e:ae:60:7d:bd:6f: b7:6d:e5:84:ba:73:ac:f9:83:a0:31:c9:df:65:c1:a6:f9:6a: ac:63:3b:1b:16:44:e5:dc:72:04:ec:40:ea:d3:e1:47:f9:ff: aa:27:3c:c0:bf:79:3a:5d:0f:02:04:71:e4:43:fa:01:ed:aa: 6f:01:5e:dd:86:5a:a1:24:85:81:99:7f:1f:bc:e5:af:01:cd: 06:d3:bc:8e:56:26:7c:a1:2b:9c:6f:b2:03:7b:1f:4c:53:d1: 9e:6d:3c:0d:e1:7e:b2:00:07:8e:2a:ac:47:fc:42:93:f7:ca: 47:ab:09:6e:33:e9:c0:bc:cd:c5:99:3e:0c:06:26:2f:97:f4: 4a:cf:5d:80:94:c3:af:01:ff:fc:7e:ea:f7:a0:7b:5e:82:6c: 9f:a3:bf:39 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIssA1SygDLThE8YUUIabllHbHkAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDBaFw0yNDA2MDYwMzAwMDBaMDMxMTAvBgNV BAMTKEIyQTE2MTkyQTMyNTc0QkQ1RUE4RThBMTJCRkU5RDM2OTM3MjVCMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/F6fJY5t9xe4W56rS9lvy9BJJ yKU3lpxHhfo8tNoJMDR++Lzd5h2ELuPtZZ1ezNbTGrIvR30/ztclr2YhZe8cSKmc o3ksswavK5qHo/BTD7shEckDTjkOFLaS8d2ZzJ+BMc6y4SdaOIAgujxaEqVB9gV3 hdeeEwXyIGUJF2Uqey9BmQJSSR1hWaGSx0RIa6n7eMykujphTdfk1dH47/VnPJuo nOPNpXlp/Y2Bq+WySaht+erQ5y42tfVG9kwTciDmdRbX6Dh1MY+cNSKmlLr1QGhR cSSkovSfnp2+wrmPXpOU1O8ImtNUMUSV3sHGp4GM6dizlGqAjdUbT3x31DEzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUsqFhkqMldL1eqOihK/6dNpNyWxUwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FTANBgkqhkiG9w0BAQsFAAOCAQEAQz/AwEllt4rJJauxFQ+CrMV0AyFBBnqPCwD9 lRm9pyOYc7kaC1flL2Bon7CQ/q3e90fUDM+9EC9dllnZCs6UmlYzspVLgDd9o6LZ W2ojtlWgXreRpBFVgrkLtE5B9F0MujQ28SuzPq5gfb1vt23lhLpzrPmDoDHJ32XB pvlqrGM7GxZE5dxyBOxA6tPhR/n/qic8wL95Ol0PAgRx5EP6Ae2qbwFe3YZaoSSF gZl/H7zlrwHNBtO8jlYmfKErnG+yA3sfTFPRnm08DeF+sgAHjiqsR/xCk/fKR6sJ bjPpwLzNxZk+DAYmL5f0Ss9dgJTDrwH//H7q96B7XoJsn6O/OQ== -----END CERTIFICATE-----Generated at Wed Apr 24 01:48:20 2024 by rpki-client on console-fra.rpki-client.org