$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: oG3hRw02A/VJcpALaVX+ijnVAyl7RIdoxeeKuQlUGcs= Subject key identifier: 44:95:A1:15:BA:BA:02:A4:BE:47:99:CE:51:7B:84:58:DE:7C:0A:90 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 2D7EFE7393CE1FD3ACBF0C5F2E4F0AF13F7202A5 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:02 +0000 ROA not before: Thu 08 Jun 2023 02:55:02 +0000 ROA not after: Thu 06 Jun 2024 03:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7e:fe:73:93:ce:1f:d3:ac:bf:0c:5f:2e:4f:0a:f1:3f:72:02:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:02 2023 GMT Not After : Jun 6 03:00:02 2024 GMT Subject: CN=4495A115BABA02A4BE4799CE517B8458DE7C0A90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0f:3e:5d:9e:0f:f8:99:6e:82:4c:8b:87:17: de:17:99:87:14:73:5c:79:21:3f:9d:7e:70:72:f4: 95:b0:d3:7c:00:95:44:71:ed:56:96:e2:01:e6:ce: e7:9e:ed:e6:4e:14:2d:c9:e8:aa:35:2f:12:d4:b4: 2a:79:c5:71:60:43:c5:22:89:65:9a:de:38:82:51: 95:e3:2f:97:a8:82:6e:82:8b:52:c4:0a:88:8c:e3: 74:4e:bb:cf:5e:df:4a:0a:ed:20:d1:df:2f:17:c3: 5f:3e:c2:5f:2c:a3:cd:d2:56:c6:cc:7e:f9:72:46: c7:be:12:13:b9:91:b2:07:32:1a:37:92:e2:7d:39: 42:ec:27:48:95:3c:c3:c0:af:c2:6f:78:ae:91:dc: b4:f9:c4:ff:ed:13:1b:58:da:a4:6c:5c:fb:2e:67: 70:e8:d8:dc:e7:39:58:da:86:0b:62:f2:3d:ba:01: dd:2a:ba:22:67:f0:f7:f5:d7:20:24:56:ca:87:74: c1:9a:8b:a4:98:67:df:40:69:3f:76:a4:8e:59:21: 2a:b6:cb:ec:3f:bd:9b:98:0a:7d:d0:00:a5:7a:66: 8f:1d:67:9e:b1:d6:31:41:b3:72:cc:41:c6:7d:11: 28:e0:8f:e0:78:aa:c1:09:7c:5b:52:0d:37:b4:4b: 3f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:95:A1:15:BA:BA:02:A4:BE:47:99:CE:51:7B:84:58:DE:7C:0A:90 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:2::/48 Signature Algorithm: sha256WithRSAEncryption 68:05:41:26:2d:7c:cb:f4:a9:5e:71:e1:db:24:e6:f2:17:ea: d1:b6:8a:c4:6b:8b:74:92:87:3a:84:cf:d2:e1:2f:a3:d4:d5: af:43:e0:9b:25:f9:0f:e4:18:f4:69:6d:8e:d8:e7:d9:2a:75: ac:6c:3d:84:af:4a:24:20:a8:05:8a:a1:32:e4:7a:d7:99:e7: 43:d8:ca:20:bc:dd:ee:26:97:17:7e:ff:01:73:e0:ff:d8:2c: 2c:5b:cf:e3:4c:ab:3a:ad:63:f8:64:5f:43:fa:6f:78:4d:89: 6d:af:05:f4:65:ad:f0:fc:bc:ac:49:42:84:ac:7a:47:43:2e: 4f:75:71:25:71:78:98:71:f1:98:c9:f8:8d:a7:6b:d8:59:c7: ed:7b:76:40:4f:93:84:87:aa:98:60:d6:22:28:07:09:f2:5f: fa:fe:84:7b:18:fa:06:d2:b8:a3:c4:5d:cd:51:f6:0b:3a:26: a7:9a:c2:f4:88:68:23:03:4b:a5:0b:0a:40:38:87:fb:73:17: f5:13:71:42:66:7c:c1:8e:c1:e0:e2:0d:8e:89:bb:f0:f2:98: bf:24:b8:46:00:50:51:3a:84:26:82:05:cb:4a:bc:d3:fc:93: 2a:2a:03:4a:01:74:f8:c9:2c:52:35:c1:7e:2b:36:b1:30:90: e5:0b:3e:ae -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULX7+c5POH9OsvwxfLk8K8T9yAqUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDJaFw0yNDA2MDYwMzAwMDJaMDMxMTAvBgNV BAMTKDQ0OTVBMTE1QkFCQTAyQTRCRTQ3OTlDRTUxN0I4NDU4REU3QzBBOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWDz5dng/4mW6CTIuHF94XmYcU c1x5IT+dfnBy9JWw03wAlURx7VaW4gHmzuee7eZOFC3J6Ko1LxLUtCp5xXFgQ8Ui iWWa3jiCUZXjL5eogm6Ci1LECoiM43ROu89e30oK7SDR3y8Xw18+wl8so83SVsbM fvlyRse+EhO5kbIHMho3kuJ9OULsJ0iVPMPAr8JveK6R3LT5xP/tExtY2qRsXPsu Z3Do2NznOVjahgti8j26Ad0quiJn8Pf11yAkVsqHdMGai6SYZ99AaT92pI5ZISq2 y+w/vZuYCn3QAKV6Zo8dZ56x1jFBs3LMQcZ9ESjgj+B4qsEJfFtSDTe0Sz8xAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURJWhFbq6AqS+R5nOUXuEWN58CpAwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAIw DQYJKoZIhvcNAQELBQADggEBAGgFQSYtfMv0qV5x4dsk5vIX6tG2isRri3SShzqE z9LhL6PU1a9D4Jsl+Q/kGPRpbY7Y59kqdaxsPYSvSiQgqAWKoTLketeZ50PYyiC8 3e4mlxd+/wFz4P/YLCxbz+NMqzqtY/hkX0P6b3hNiW2vBfRlrfD8vKxJQoSsekdD Lk91cSVxeJhx8ZjJ+I2na9hZx+17dkBPk4SHqphg1iIoBwnyX/r+hHsY+gbSuKPE Xc1R9gs6JqeawvSIaCMDS6ULCkA4h/tzF/UTcUJmfMGOweDiDY6Ju/DymL8kuEYA UFE6hCaCBctKvNP8kyoqA0oBdPjJLFI1wX4rNrEwkOULPq4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:40 2024 by rpki-client on console-ams.rpki-client.org