$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: n4/mD+LWp/R6YRXcqrg7JkDRjfGUVfKc3IbAGoqD0ik= Subject key identifier: 1F:DB:A6:EC:A9:D1:64:A8:5E:E8:67:93:18:46:C4:D4:DC:92:5A:26 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 018A64692A7EBD333972BF815B8A923603E8A504 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:01 +0000 ROA not before: Thu 09 May 2024 03:55:01 +0000 ROA not after: Thu 08 May 2025 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8a:64:69:2a:7e:bd:33:39:72:bf:81:5b:8a:92:36:03:e8:a5:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:01 2024 GMT Not After : May 8 04:00:01 2025 GMT Subject: CN=1FDBA6ECA9D164A85EE867931846C4D4DC925A26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:95:2d:8b:92:9b:12:3b:bd:73:20:83:98:4e: e0:ac:4a:57:2f:cd:08:8c:4a:24:c2:f0:3f:75:1b: 51:3b:d3:00:08:ef:32:53:b4:1e:d6:17:ee:c4:40: 3e:90:dd:14:f0:e1:1b:5f:bd:17:93:a9:65:e7:b3: 7a:ff:75:df:b2:9d:7f:92:6a:5f:62:f8:3f:3a:5b: 04:33:5a:cc:f4:87:24:9a:95:9b:16:f1:25:06:e8: 45:e3:b8:0a:f8:16:35:75:9b:2f:4d:da:53:6a:d3: 84:6e:b0:9b:d6:8e:32:0f:c4:84:b0:6e:36:4e:c1: f8:75:b3:49:f3:54:cc:e5:1c:99:38:bd:30:d1:40: f6:71:d4:db:b2:a2:5b:27:ef:79:2f:86:9f:48:66: 79:e1:cf:2f:74:90:bd:1f:66:50:80:ff:95:63:e4: 7e:f5:b5:a8:d0:84:c0:44:72:46:ef:37:9c:24:2e: 63:f5:67:b1:ed:e8:9a:bd:1c:e9:f3:81:8c:b3:47: 69:b0:61:20:7f:62:15:de:31:5e:51:63:d0:2d:1d: 65:0c:bc:5a:18:a5:cc:e6:fb:e8:da:2b:4b:cc:b5: 7e:cc:00:01:d3:12:8a:13:e2:bc:a3:d6:1c:fe:75: 46:60:5e:e1:e2:9d:ea:56:d7:cb:04:df:44:ce:71: d4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DB:A6:EC:A9:D1:64:A8:5E:E8:67:93:18:46:C4:D4:DC:92:5A:26 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a343a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:4::/48 Signature Algorithm: sha256WithRSAEncryption 9d:0e:b7:0c:14:2e:35:8c:02:6f:80:99:b5:cf:03:c7:10:fe: ad:f7:04:bf:b6:91:7d:fc:d6:56:18:bf:b3:da:22:73:13:90: fa:46:1e:b2:12:73:6a:1d:db:57:06:9c:ff:c1:38:09:86:be: d9:97:75:b9:48:8d:98:9b:49:5e:d2:19:46:22:ff:a4:8b:0c: 8b:a2:0f:cb:14:d6:71:8c:b1:0e:67:a5:19:fe:84:b6:bf:9d: 81:03:17:ba:87:58:dd:40:39:33:a3:1d:23:0d:47:5c:bd:30: da:82:89:aa:7b:50:d0:60:a4:18:de:ae:ee:0e:e8:ff:1d:c4: ad:b3:36:7f:37:d5:4a:16:11:f4:73:2e:86:14:b8:b9:05:a7: 47:3b:8a:2e:57:c6:39:8b:03:cb:29:98:ec:6f:02:c8:2e:84: d3:8a:09:1b:c0:6e:a6:f5:b6:b8:7d:1c:10:11:ff:fe:e3:21: b9:09:bf:4e:1a:ee:a4:04:03:46:21:be:3e:48:58:5d:3e:21: f6:03:6d:cd:a3:ca:c2:e8:4e:0e:d5:bb:60:38:a0:7b:76:b3: ca:2c:1d:00:18:cc:b4:10:94:f7:99:c9:b6:11:9c:18:d9:f9: f1:45:2c:99:af:7b:9e:a9:9c:f7:bd:a6:56:29:5c:6c:80:75: 97:a7:eb:a8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAYpkaSp+vTM5cr+BW4qSNgPopQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDFaFw0yNTA1MDgwNDAwMDFaMDMxMTAvBgNV BAMTKDFGREJBNkVDQTlEMTY0QTg1RUU4Njc5MzE4NDZDNEQ0REM5MjVBMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDilS2LkpsSO71zIIOYTuCsSlcv zQiMSiTC8D91G1E70wAI7zJTtB7WF+7EQD6Q3RTw4RtfvReTqWXns3r/dd+ynX+S al9i+D86WwQzWsz0hySalZsW8SUG6EXjuAr4FjV1my9N2lNq04RusJvWjjIPxISw bjZOwfh1s0nzVMzlHJk4vTDRQPZx1Nuyolsn73kvhp9IZnnhzy90kL0fZlCA/5Vj 5H71tajQhMBEckbvN5wkLmP1Z7Ht6Jq9HOnzgYyzR2mwYSB/YhXeMV5RY9AtHWUM vFoYpczm++jaK0vMtX7MAAHTEooT4ryj1hz+dUZgXuHinepW18sE30TOcdQZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUH9um7KnRZKhe6GeTGEbE1NySWiYwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAQw DQYJKoZIhvcNAQELBQADggEBAJ0OtwwULjWMAm+AmbXPA8cQ/q33BL+2kX381lYY v7PaInMTkPpGHrISc2od21cGnP/BOAmGvtmXdblIjZibSV7SGUYi/6SLDIuiD8sU 1nGMsQ5npRn+hLa/nYEDF7qHWN1AOTOjHSMNR1y9MNqCiap7UNBgpBjeru4O6P8d xK2zNn831UoWEfRzLoYUuLkFp0c7ii5XxjmLA8spmOxvAsguhNOKCRvAbqb1trh9 HBAR//7jIbkJv04a7qQEA0Yhvj5IWF0+IfYDbc2jysLoTg7Vu2A4oHt2s8osHQAY zLQQlPeZybYRnBjZ+fFFLJmve56pnPe9plYpXGyAdZen66g= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org