$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: fZNdjy6FWwzUM+HjWW74emrC0elfOnysiClW8aiKmPg= Subject key identifier: 9B:12:EE:BE:B4:97:D9:D6:BB:5F:71:8F:34:92:E4:DC:E9:F5:2E:40 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 3C4770BAC16A7F2625BB66DD606EF259E685336D Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:00 +0000 ROA not before: Thu 09 May 2024 03:55:00 +0000 ROA not after: Thu 08 May 2025 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:47:70:ba:c1:6a:7f:26:25:bb:66:dd:60:6e:f2:59:e6:85:33:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:00 2024 GMT Not After : May 8 04:00:00 2025 GMT Subject: CN=9B12EEBEB497D9D6BB5F718F3492E4DCE9F52E40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:83:56:cf:96:d0:7e:19:46:6d:c6:33:b9: 6a:d0:00:c7:2f:c3:e9:e2:16:9a:52:d3:a6:23:34: 73:0f:53:67:29:bc:02:80:e7:d6:49:4a:9e:0c:2d: a6:a0:4f:8f:f0:5c:d6:6e:fc:46:8d:02:ba:6a:6c: 53:0f:33:e1:59:ea:ae:f7:11:10:1a:fb:83:8a:03: 32:ea:bf:ed:ed:b3:b0:d7:1d:cb:65:4a:6c:4c:1d: 6c:a5:7d:9a:7c:f8:8e:ce:57:ad:dd:20:89:07:24: 17:2e:8b:bc:8e:fe:90:83:d5:d5:80:93:5a:c3:2a: 89:ca:ca:23:1b:a7:83:3f:76:f4:3b:34:1a:01:fb: f1:01:47:0d:be:20:38:ca:59:2b:c4:a1:45:30:75: dc:b9:85:52:3a:73:9c:e4:3e:fd:8f:cf:63:c3:93: d6:2b:d9:41:9b:7e:6a:90:2c:69:be:a7:0a:c9:42: f3:9a:a8:b1:88:af:23:40:b3:3d:15:24:2a:55:71: 34:67:8e:ee:f6:1b:1a:de:8a:84:0d:f2:ee:e4:39: 44:88:78:e2:13:ec:84:da:41:22:d7:01:66:db:aa: e6:fb:99:85:dd:d3:d7:01:22:98:34:62:48:ac:ba: 15:2a:6f:c5:69:fe:44:5b:5b:9b:de:cf:8d:a1:38: db:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:12:EE:BE:B4:97:D9:D6:BB:5F:71:8F:34:92:E4:DC:E9:F5:2E:40 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a313a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:1::/48 Signature Algorithm: sha256WithRSAEncryption 0b:83:ac:91:60:cb:5d:f5:dd:61:34:03:fe:67:6a:d9:64:5a: 89:e5:2c:1d:c1:73:5c:85:3b:df:cb:98:05:00:83:d3:24:0c: 08:52:ba:0c:4b:6d:de:ef:77:8a:20:89:ba:41:a6:8b:83:72: b5:9e:07:19:86:6e:66:8f:75:e4:32:3b:ac:ee:85:49:d8:78: b9:77:f0:34:66:8b:4d:93:bb:52:e9:7f:f9:93:96:b4:c4:86: 4f:8d:cb:2b:bd:50:e4:16:60:18:07:8a:4d:29:55:2a:d6:90: 46:09:9a:70:76:3c:09:c8:cc:70:a8:2b:27:c3:e1:e5:35:44: 71:08:4d:c5:13:d5:f8:1f:d3:4c:8a:12:85:d6:84:45:08:2e: 1e:40:d7:9a:3e:49:cb:3a:21:cf:04:bd:7e:e5:e3:c7:0e:2e: ed:25:9b:45:af:fb:74:99:a9:04:7a:f7:3b:1a:9c:57:63:fc: a8:ae:3d:e0:10:1b:4f:27:bf:a5:fe:29:05:61:0c:1c:e5:8b: 3a:51:60:56:64:1e:fb:64:bc:c0:ba:fd:f1:3e:8b:74:2d:ce: 3d:60:6a:98:89:9d:4f:d8:39:c7:bb:61:4d:8c:cb:66:fc:3e: 1f:8e:56:70:60:75:3a:43:cd:7b:9f:b8:65:06:08:fd:aa:b2: 33:01:19:30 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPEdwusFqfyYlu2bdYG7yWeaFM20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDBaFw0yNTA1MDgwNDAwMDBaMDMxMTAvBgNV BAMTKDlCMTJFRUJFQjQ5N0Q5RDZCQjVGNzE4RjM0OTJFNERDRTlGNTJFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtZ4NWz5bQfhlGbcYzuWrQAMcv w+niFppS06YjNHMPU2cpvAKA59ZJSp4MLaagT4/wXNZu/EaNArpqbFMPM+FZ6q73 ERAa+4OKAzLqv+3ts7DXHctlSmxMHWylfZp8+I7OV63dIIkHJBcui7yO/pCD1dWA k1rDKonKyiMbp4M/dvQ7NBoB+/EBRw2+IDjKWSvEoUUwddy5hVI6c5zkPv2Pz2PD k9Yr2UGbfmqQLGm+pwrJQvOaqLGIryNAsz0VJCpVcTRnju72GxreioQN8u7kOUSI eOIT7ITaQSLXAWbbqub7mYXd09cBIpg0YkisuhUqb8Vp/kRbW5vez42hONtVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUmxLuvrSX2da7X3GPNJLk3On1LkAwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAEw DQYJKoZIhvcNAQELBQADggEBAAuDrJFgy1313WE0A/5natlkWonlLB3Bc1yFO9/L mAUAg9MkDAhSugxLbd7vd4ogibpBpouDcrWeBxmGbmaPdeQyO6zuhUnYeLl38DRm i02Tu1Lpf/mTlrTEhk+Nyyu9UOQWYBgHik0pVSrWkEYJmnB2PAnIzHCoKyfD4eU1 RHEITcUT1fgf00yKEoXWhEUILh5A15o+Scs6Ic8EvX7l48cOLu0lm0Wv+3SZqQR6 9zsanFdj/KiuPeAQG08nv6X+KQVhDBzlizpRYFZkHvtkvMC6/fE+i3Qtzj1gapiJ nU/YOce7YU2My2b8Ph+OVnBgdTpDzXufuGUGCP2qsjMBGTA= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org