$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: p2LmSRom1+ALbzIyY6UMyaBCsRycEfpY+T5lbdUMTIY= Subject key identifier: EE:A8:56:AD:BF:D7:89:05:1C:8C:F0:8C:16:05:B4:E4:D9:F3:BF:AA Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 69457D54CB6812B133880AB6BA4735BD93BA98FC Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 03:00:01 +0000 ROA not before: Thu 09 May 2024 02:55:01 +0000 ROA not after: Thu 08 May 2025 03:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:45:7d:54:cb:68:12:b1:33:88:0a:b6:ba:47:35:bd:93:ba:98:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 02:55:01 2024 GMT Not After : May 8 03:00:01 2025 GMT Subject: CN=EEA856ADBFD789051C8CF08C1605B4E4D9F3BFAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1a:3c:b8:f6:3e:28:c3:b8:9e:ec:af:0d:ff: 6f:f3:8a:2f:7c:eb:00:bc:fa:00:c8:55:a4:5b:a9: 22:7e:21:3d:05:eb:36:0c:cd:d8:92:ea:af:87:06: a0:c3:2e:15:01:c3:b0:a2:1e:d2:0d:54:47:bf:7d: 52:41:0b:67:6f:dc:18:02:29:b8:39:ff:f7:e5:26: 29:fe:17:4d:76:32:d1:ed:a9:6a:12:f3:fa:a9:77: 50:d1:2a:ff:c7:62:7d:8b:c6:07:d5:13:2f:88:e0: 38:ce:83:8e:76:f3:e9:7a:4f:0e:ef:f6:7c:26:d8: 0a:c0:c1:95:46:3f:fc:3f:a8:e1:70:6c:51:d9:16: cf:40:12:85:ab:08:f6:4a:07:42:a3:a4:d4:cb:56: 5f:3e:c5:62:e0:4f:3d:07:58:4e:b5:6c:06:82:c2: ae:67:43:05:d0:7e:48:2b:65:57:a7:0a:cd:e4:ef: ef:6d:80:38:23:7d:dd:b4:cd:f5:db:8b:bd:c9:94: df:2a:86:26:12:98:12:2c:73:58:f1:53:4c:b1:f0: 99:84:a7:d9:9f:93:32:e5:29:93:b9:b6:98:0b:1a: ea:96:60:dc:64:e7:c2:c1:c7:d9:b1:87:25:b8:5b: e6:d1:de:48:01:70:35:d9:15:09:2e:88:da:d4:a2: 39:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A8:56:AD:BF:D7:89:05:1C:8C:F0:8C:16:05:B4:E4:D9:F3:BF:AA X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a31353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:15::/48 Signature Algorithm: sha256WithRSAEncryption 94:84:d0:d4:50:55:7c:3e:35:14:91:77:b3:c0:2d:5d:3c:c3: 00:a2:f8:8a:61:b4:df:b8:5c:e7:92:40:99:3b:00:4d:65:cb: 6f:24:2e:b3:dd:0f:48:17:fc:59:94:d8:a3:83:30:31:a4:3b: e8:43:21:31:fa:47:c3:db:91:64:d0:d5:41:dc:02:b8:28:ff: b1:80:8d:8d:77:8c:40:49:5b:af:1d:24:e1:0a:93:27:16:b8: ac:e7:4c:af:ac:df:3e:46:50:e6:d5:d6:36:bf:08:0a:60:c3: 13:d3:05:57:fb:d0:65:81:0c:d0:b7:16:bd:00:ac:f5:e1:76: 66:71:99:e1:94:50:d3:f6:fc:b6:99:09:3b:5d:6e:44:3d:b8: 2a:fe:a3:ac:b2:23:f5:9c:4d:8a:e9:c4:ae:54:68:34:5f:61: 73:7e:51:c7:7b:07:06:47:19:d7:6f:56:26:6e:5c:7a:08:9e: 61:73:4a:65:53:4e:26:2a:03:ed:c0:9b:1f:5e:be:fe:40:2a: e9:cf:76:56:c3:cd:be:95:8f:9b:3e:e5:6c:73:85:96:6a:bf: 1a:65:76:32:8f:3d:27:80:7a:3c:b1:5a:a2:5b:aa:bb:82:4e: 65:29:b9:34:16:1b:23:18:a9:2a:49:52:ed:1b:6e:79:6d:67: 56:d9:1c:21 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUaUV9VMtoErEziAq2ukc1vZO6mPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMjU1MDFaFw0yNTA1MDgwMzAwMDFaMDMxMTAvBgNV BAMTKEVFQTg1NkFEQkZENzg5MDUxQzhDRjA4QzE2MDVCNEU0RDlGM0JGQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCGjy49j4ow7ie7K8N/2/zii98 6wC8+gDIVaRbqSJ+IT0F6zYMzdiS6q+HBqDDLhUBw7CiHtINVEe/fVJBC2dv3BgC Kbg5//flJin+F012MtHtqWoS8/qpd1DRKv/HYn2LxgfVEy+I4DjOg4528+l6Tw7v 9nwm2ArAwZVGP/w/qOFwbFHZFs9AEoWrCPZKB0KjpNTLVl8+xWLgTz0HWE61bAaC wq5nQwXQfkgrZVenCs3k7+9tgDgjfd20zfXbi73JlN8qhiYSmBIsc1jxU0yx8JmE p9mfkzLlKZO5tpgLGuqWYNxk58LBx9mxhyW4W+bR3kgBcDXZFQkuiNrUojnjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU7qhWrb/XiQUcjPCMFgW05Nnzv6owHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCqkAA FTANBgkqhkiG9w0BAQsFAAOCAQEAlITQ1FBVfD41FJF3s8AtXTzDAKL4imG037hc 55JAmTsATWXLbyQus90PSBf8WZTYo4MwMaQ76EMhMfpHw9uRZNDVQdwCuCj/sYCN jXeMQElbrx0k4QqTJxa4rOdMr6zfPkZQ5tXWNr8ICmDDE9MFV/vQZYEM0LcWvQCs 9eF2ZnGZ4ZRQ0/b8tpkJO11uRD24Kv6jrLIj9ZxNiunErlRoNF9hc35Rx3sHBkcZ 129WJm5cegieYXNKZVNOJioD7cCbH16+/kAq6c92VsPNvpWPmz7lbHOFlmq/GmV2 Mo89J4B6PLFaoluqu4JOZSm5NBYbIxipKklS7RtueW1nVtkcIQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org