$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: UxQCsgWlY3QpFq1pdcLc7mTlzysN0vxqNs3EwVx5g7Q= Subject key identifier: D0:2D:3C:02:59:62:FD:BD:B7:DC:4C:98:D2:89:7A:07:E9:9E:4A:1A Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 3D78525C6FEBEFD82CC1DF208DA3FB23B7DF51AF Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:01 +0000 ROA not before: Thu 09 May 2024 03:55:01 +0000 ROA not after: Thu 08 May 2025 04:00:01 +0000 asID: 137330 IP address blocks: 2402:aa40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:78:52:5c:6f:eb:ef:d8:2c:c1:df:20:8d:a3:fb:23:b7:df:51:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:01 2024 GMT Not After : May 8 04:00:01 2025 GMT Subject: CN=D02D3C025962FDBDB7DC4C98D2897A07E99E4A1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:62:d3:78:68:53:a4:66:db:32:cc:92:1b:97: 53:c3:d9:00:7b:70:6a:ef:01:c5:42:05:62:1f:39: e3:63:7a:49:06:14:fb:c6:48:3f:18:26:23:6b:35: ce:18:0e:7e:2b:35:72:b4:17:ce:28:a8:f2:04:4f: 3c:85:aa:43:71:a7:f5:f5:7f:26:e7:d1:d3:56:52: 43:86:d3:08:c0:1f:4b:6c:9a:b2:67:6f:7c:44:d8: d0:07:35:d7:0c:88:89:25:42:06:dd:9d:9f:7e:5b: 99:25:e2:04:e6:95:be:3c:69:85:be:8c:cf:fb:95: 04:00:a3:9d:4f:11:52:e2:06:1e:af:9e:9d:ea:70: 87:52:b3:f0:49:7a:76:81:7f:18:7e:3b:8f:a4:f9: 0c:d3:2c:85:5e:a1:bb:5d:aa:39:d5:6a:20:4e:74: f0:cd:3f:61:8b:d5:d4:33:81:b0:02:15:b7:17:27: 51:9f:66:95:dc:56:7e:b4:ab:dd:c9:f6:2e:9c:0a: 9a:c2:d7:e9:d5:f8:1c:c5:0b:26:f8:aa:ce:88:51: 5a:8b:49:32:50:cb:63:3b:c1:be:8e:92:79:8c:17: e6:6b:dc:64:91:92:22:d6:d5:2a:f6:1f:5b:72:02: 70:73:65:a0:b1:ab:10:7a:8a:91:8b:81:e1:b0:34: a1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2D:3C:02:59:62:FD:BD:B7:DC:4C:98:D2:89:7A:07:E9:9E:4A:1A X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a353a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:5::/48 Signature Algorithm: sha256WithRSAEncryption 92:59:49:8d:ef:05:86:28:d0:66:52:10:54:57:3b:55:d9:ad: b5:4f:35:8b:dd:a1:e5:c1:c5:a9:e9:dd:76:14:ff:33:fa:3b: b0:db:52:91:fb:9f:75:d3:3e:18:77:0f:26:c9:ed:32:98:8c: 66:d4:d2:11:3e:54:26:e1:51:0a:75:3f:d1:13:4f:9f:17:ee: 71:b4:5e:57:01:ac:97:4c:1f:2d:df:03:78:ac:6e:06:fb:d2: b7:ba:d5:f0:df:d2:59:db:fa:55:71:30:52:52:5f:95:99:93: 08:29:a1:d4:c7:59:a6:5e:60:52:b3:2f:34:00:dd:b2:cf:cb: 48:ba:3c:64:f6:5b:89:13:67:ac:87:c6:b6:ff:b7:14:61:9b: 30:d6:40:01:87:a0:79:93:c8:76:78:21:30:d8:72:be:b4:c1: 50:97:85:d1:60:07:40:e7:7d:0f:5c:64:a7:14:17:d3:4d:3c: e3:f6:94:48:f3:37:a3:4e:38:88:2c:14:ad:78:60:12:5e:ca: 89:77:a3:31:d1:70:20:98:0b:be:63:19:b2:fc:cc:fb:07:9b: 28:dd:21:b3:08:10:0e:51:19:6c:0f:38:20:73:61:42:fe:de: 2f:02:06:33:60:23:52:d6:5a:39:b3:ef:29:f2:7b:20:ef:c2: a4:9a:fe:48 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPXhSXG/r79gswd8gjaP7I7ffUa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDFaFw0yNTA1MDgwNDAwMDFaMDMxMTAvBgNV BAMTKEQwMkQzQzAyNTk2MkZEQkRCN0RDNEM5OEQyODk3QTA3RTk5RTRBMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/YtN4aFOkZtsyzJIbl1PD2QB7 cGrvAcVCBWIfOeNjekkGFPvGSD8YJiNrNc4YDn4rNXK0F84oqPIETzyFqkNxp/X1 fybn0dNWUkOG0wjAH0tsmrJnb3xE2NAHNdcMiIklQgbdnZ9+W5kl4gTmlb48aYW+ jM/7lQQAo51PEVLiBh6vnp3qcIdSs/BJenaBfxh+O4+k+QzTLIVeobtdqjnVaiBO dPDNP2GL1dQzgbACFbcXJ1GfZpXcVn60q93J9i6cCprC1+nV+BzFCyb4qs6IUVqL STJQy2M7wb6OknmMF+Zr3GSRkiLW1Sr2H1tyAnBzZaCxqxB6ipGLgeGwNKHjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU0C08Alli/b233EyY0ol6B+meShowHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAUw DQYJKoZIhvcNAQELBQADggEBAJJZSY3vBYYo0GZSEFRXO1XZrbVPNYvdoeXBxanp 3XYU/zP6O7DbUpH7n3XTPhh3DybJ7TKYjGbU0hE+VCbhUQp1P9ETT58X7nG0XlcB rJdMHy3fA3isbgb70re61fDf0lnb+lVxMFJSX5WZkwgpodTHWaZeYFKzLzQA3bLP y0i6PGT2W4kTZ6yHxrb/txRhmzDWQAGHoHmTyHZ4ITDYcr60wVCXhdFgB0DnfQ9c ZKcUF9NNPOP2lEjzN6NOOIgsFK14YBJeyol3ozHRcCCYC75jGbL8zPsHmyjdIbMI EA5RGWwPOCBzYUL+3i8CBjNgI1LWWjmz7ynyeyDvwqSa/kg= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org