$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: eXs+87LW5capRr4Eu/VfiLH0QanrLfFdJwQsIClY1h8= Subject key identifier: 24:4D:16:02:70:94:BD:66:80:C4:15:AB:01:44:B1:94:DE:08:3E:16 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 3B8A7262F002CC1CF6BC989B29760DBD51FC7221 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:01 +0000 ROA not before: Thu 09 May 2024 03:55:01 +0000 ROA not after: Thu 08 May 2025 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8a:72:62:f0:02:cc:1c:f6:bc:98:9b:29:76:0d:bd:51:fc:72:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:01 2024 GMT Not After : May 8 04:00:01 2025 GMT Subject: CN=244D16027094BD6680C415AB0144B194DE083E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:59:da:e0:f2:b3:a8:29:ac:63:e3:6c:ac:ed: c5:1a:6f:26:f1:c7:b5:fb:99:56:53:9a:7d:29:92: e7:d0:91:d6:fa:76:71:2c:06:6e:0b:2e:67:d4:00: 84:bb:d6:5f:6a:38:64:bd:5c:36:ba:56:de:5b:bd: 92:9d:53:83:f4:50:64:8e:19:a1:4a:ce:fd:85:03: b3:66:3c:aa:67:5a:2f:07:63:bd:58:b8:40:20:36: 9f:1d:ee:dc:b8:9f:98:f6:0d:e6:39:90:e2:63:cf: 9e:97:d3:b9:09:de:b6:95:6c:4e:78:51:cb:a9:7e: 4d:b3:00:59:cd:5f:68:94:1a:31:c0:91:fc:b7:73: 45:e3:82:e3:c9:02:70:80:e6:dd:a1:b7:63:6d:4f: bc:63:ae:56:70:87:bc:ed:b3:ef:4f:68:78:90:3f: 62:01:39:95:e0:c8:02:87:66:6f:41:2d:80:ee:3d: bc:e0:b2:ea:1b:88:51:76:94:01:a3:05:7c:46:6d: 2d:79:21:e2:1d:5b:fb:34:92:f6:72:b1:94:60:43: b2:94:93:77:e6:ee:a0:f8:55:8f:1f:b1:cb:8e:60: b2:cc:e4:ff:d7:59:1b:83:ae:87:e1:21:ce:bb:a9: 9d:98:35:24:c0:c7:4e:a4:40:ee:23:ed:f8:0a:20: 5b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4D:16:02:70:94:BD:66:80:C4:15:AB:01:44:B1:94:DE:08:3E:16 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a323a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:2::/48 Signature Algorithm: sha256WithRSAEncryption 47:71:3c:59:78:57:76:4e:6c:3a:6a:5f:cd:57:2d:3a:0a:45: c2:01:41:29:2d:b2:51:82:b7:b9:66:5b:35:02:50:d9:02:28: 57:9f:0a:2c:5f:54:4d:4c:ed:ee:4b:13:b9:6e:04:a2:02:59: 42:c4:2c:5d:18:ad:7d:0e:20:23:49:6b:af:fb:7d:05:34:76: 2f:33:c4:7e:06:a0:e8:ab:84:3d:56:53:2e:96:19:92:15:af: 39:fe:e4:7e:71:c0:5c:46:00:05:74:d1:ae:2e:9d:bb:4f:7d: 07:1b:53:68:76:ba:3d:9d:f1:68:c8:96:01:12:99:1c:3f:be: 77:df:0a:34:7a:11:d3:40:38:3a:51:f8:04:76:01:01:55:38: 9a:40:ec:54:ec:62:1a:08:a9:c1:06:c4:13:a7:ec:ba:0c:b1: c2:f8:6d:35:7d:6b:d5:01:ba:8c:9d:47:00:90:67:e2:d9:9a: c6:15:92:23:46:29:58:8f:fc:e9:69:b9:2c:0a:3d:8b:9a:23: 4b:06:47:69:6e:25:f4:0d:1b:29:9a:a3:bb:e0:8c:a9:1e:6c: f8:0c:7d:41:d7:73:b5:4b:58:77:e6:b2:74:bc:55:56:ae:c7: 28:13:43:e7:19:e3:e7:c9:5a:65:17:65:d7:8d:f2:f7:2d:a3: 40:47:45:e3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUO4pyYvACzBz2vJibKXYNvVH8ciEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDFaFw0yNTA1MDgwNDAwMDFaMDMxMTAvBgNV BAMTKDI0NEQxNjAyNzA5NEJENjY4MEM0MTVBQjAxNDRCMTk0REUwODNFMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvWdrg8rOoKaxj42ys7cUabybx x7X7mVZTmn0pkufQkdb6dnEsBm4LLmfUAIS71l9qOGS9XDa6Vt5bvZKdU4P0UGSO GaFKzv2FA7NmPKpnWi8HY71YuEAgNp8d7ty4n5j2DeY5kOJjz56X07kJ3raVbE54 Ucupfk2zAFnNX2iUGjHAkfy3c0XjguPJAnCA5t2ht2NtT7xjrlZwh7zts+9PaHiQ P2IBOZXgyAKHZm9BLYDuPbzgsuobiFF2lAGjBXxGbS15IeIdW/s0kvZysZRgQ7KU k3fm7qD4VY8fscuOYLLM5P/XWRuDrofhIc67qZ2YNSTAx06kQO4j7fgKIFupAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUJE0WAnCUvWaAxBWrAUSxlN4IPhYwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAIw DQYJKoZIhvcNAQELBQADggEBAEdxPFl4V3ZObDpqX81XLToKRcIBQSktslGCt7lm WzUCUNkCKFefCixfVE1M7e5LE7luBKICWULELF0YrX0OICNJa6/7fQU0di8zxH4G oOirhD1WUy6WGZIVrzn+5H5xwFxGAAV00a4unbtPfQcbU2h2uj2d8WjIlgESmRw/ vnffCjR6EdNAODpR+AR2AQFVOJpA7FTsYhoIqcEGxBOn7LoMscL4bTV9a9UBuoyd RwCQZ+LZmsYVkiNGKViP/OlpuSwKPYuaI0sGR2luJfQNGymao7vgjKkebPgMfUHX c7VLWHfmsnS8VVauxygTQ+cZ4+fJWmUXZdeN8vcto0BHReM= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org