$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: R4g9MX8FF3IMRP2nwwbAMSL2rQePrVI6Rob2I4HZpL0= Subject key identifier: B7:25:F5:C5:CF:9B:EF:32:45:9D:CD:35:44:47:8C:1A:9C:F2:02:50 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 10D6AC93D8B9EE489427D2B0D857E6E0A343ADF5 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:02 +0000 ROA not before: Thu 08 Jun 2023 02:55:02 +0000 ROA not after: Thu 06 Jun 2024 03:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d6:ac:93:d8:b9:ee:48:94:27:d2:b0:d8:57:e6:e0:a3:43:ad:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:02 2023 GMT Not After : Jun 6 03:00:02 2024 GMT Subject: CN=B725F5C5CF9BEF32459DCD3544478C1A9CF20250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:ce:ae:c8:bb:8e:a9:d9:aa:c0:e9:3e:fc: 21:da:50:8c:24:6e:ac:55:3a:39:ed:80:37:1c:ec: 23:27:ac:cd:d7:a6:4f:3f:99:ef:bc:e7:8b:6c:d5: 90:e2:eb:ce:b4:f1:03:f8:d7:f4:a2:3c:11:00:b9: 57:e4:42:a4:7d:16:f2:13:66:a4:e7:8a:75:bb:76: c1:b7:4b:50:db:09:f9:34:0b:96:9d:92:f4:56:59: 8e:4e:31:81:55:1f:5c:6e:2e:1a:61:8b:1e:e2:ce: f4:f3:07:60:0c:30:c8:80:6a:1e:a4:03:9f:fe:e7: 09:3b:ef:12:b0:09:85:82:4a:d1:64:be:b6:fd:d1: 43:87:28:30:12:2a:8c:14:f9:fa:76:8f:95:99:8e: dc:81:ec:35:3b:4f:4c:7c:7f:56:75:fb:7a:20:8d: 42:50:eb:3a:d2:a5:b2:e1:51:33:71:e1:a0:27:c8: ed:80:83:b7:35:ed:85:74:2e:d0:8d:7e:9a:47:08: e9:14:04:65:c6:80:ec:c3:1b:dd:28:cb:74:48:16: a0:47:6b:0c:b3:a4:b7:92:d7:da:d5:b7:d5:98:cf: 4f:40:20:b0:56:59:31:2e:f0:a1:06:ea:9d:3f:62: 6b:16:15:4f:74:91:1e:a0:fc:34:47:a4:b4:a0:6f: 0c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:25:F5:C5:CF:9B:EF:32:45:9D:CD:35:44:47:8C:1A:9C:F2:02:50 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:6::/48 Signature Algorithm: sha256WithRSAEncryption 1a:64:3c:28:56:c0:c5:d9:22:57:b5:8a:71:f4:af:18:3c:ef: 66:89:7b:b7:16:c9:c5:b5:62:3f:ca:35:0c:7b:3e:dc:2b:e7: 64:45:24:47:73:4d:47:a7:0f:f8:80:cb:d1:b7:6c:dd:f1:14: c5:3f:6b:43:07:f6:4e:d4:e7:5f:69:b7:fe:58:ee:32:da:ed: 14:d5:45:ee:e5:20:ae:37:8f:ca:ed:cf:d5:3f:b1:13:cd:49: f1:61:ac:84:ab:91:74:25:35:e4:20:a0:22:32:1d:90:90:03: c5:f3:61:d5:0c:37:70:0a:11:84:bc:7c:33:77:38:b7:29:30: f3:89:d7:81:dd:39:39:b2:0f:ca:b5:80:27:18:c5:b8:ee:79: 72:4b:b7:9b:7a:2b:e1:a2:6b:a0:64:fa:71:23:17:8e:bf:1a: ea:ae:bc:1c:de:66:2d:90:04:52:fd:4c:11:43:e4:f0:df:3c: e4:54:8e:a0:b0:ca:e8:0f:d9:dc:86:a1:e0:10:aa:f7:e6:87: 56:32:ab:70:44:19:ec:b8:48:b1:5e:42:67:e0:06:ff:71:d9: e8:d1:5e:ac:b6:7d:d0:e9:57:cb:21:91:6f:54:0f:c0:d7:9f: 28:01:fb:8f:f8:83:d9:98:be:5f:7f:2f:72:50:e3:18:f5:cf: 33:bb:78:ab -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUENask9i57kiUJ9Kw2Ffm4KNDrfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDJaFw0yNDA2MDYwMzAwMDJaMDMxMTAvBgNV BAMTKEI3MjVGNUM1Q0Y5QkVGMzI0NTlEQ0QzNTQ0NDc4QzFBOUNGMjAyNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6f86uyLuOqdmqwOk+/CHaUIwk bqxVOjntgDcc7CMnrM3Xpk8/me+854ts1ZDi68608QP41/SiPBEAuVfkQqR9FvIT ZqTninW7dsG3S1DbCfk0C5adkvRWWY5OMYFVH1xuLhphix7izvTzB2AMMMiAah6k A5/+5wk77xKwCYWCStFkvrb90UOHKDASKowU+fp2j5WZjtyB7DU7T0x8f1Z1+3og jUJQ6zrSpbLhUTNx4aAnyO2Ag7c17YV0LtCNfppHCOkUBGXGgOzDG90oy3RIFqBH awyzpLeS19rVt9WYz09AILBWWTEu8KEG6p0/YmsWFU90kR6g/DRHpLSgbwzzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtyX1xc+b7zJFnc01REeMGpzyAlAwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAYw DQYJKoZIhvcNAQELBQADggEBABpkPChWwMXZIle1inH0rxg872aJe7cWycW1Yj/K NQx7Ptwr52RFJEdzTUenD/iAy9G3bN3xFMU/a0MH9k7U519pt/5Y7jLa7RTVRe7l IK43j8rtz9U/sRPNSfFhrISrkXQlNeQgoCIyHZCQA8XzYdUMN3AKEYS8fDN3OLcp MPOJ14HdOTmyD8q1gCcYxbjueXJLt5t6K+Gia6Bk+nEjF46/GuquvBzeZi2QBFL9 TBFD5PDfPORUjqCwyugP2dyGoeAQqvfmh1Yyq3BEGey4SLFeQmfgBv9x2ejRXqy2 fdDpV8shkW9UD8DXnygB+4/4g9mYvl9/L3JQ4xj1zzO7eKs= -----END CERTIFICATE-----Generated at Wed Apr 24 01:48:20 2024 by rpki-client on console-fra.rpki-client.org