$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: g5FKXh+RNZYScR1iwqZYdSxRJgAVq9w8f1edizZYibI= Subject key identifier: B0:EA:C6:87:96:DB:8C:FE:E4:BC:E6:CA:AF:08:F6:C7:93:FC:1D:D8 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 1C610F529984177B2A5BEAD54CE6666DCA19B4C4 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:00 +0000 ROA not before: Thu 09 May 2024 03:55:00 +0000 ROA not after: Thu 08 May 2025 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:61:0f:52:99:84:17:7b:2a:5b:ea:d5:4c:e6:66:6d:ca:19:b4:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:00 2024 GMT Not After : May 8 04:00:00 2025 GMT Subject: CN=B0EAC68796DB8CFEE4BCE6CAAF08F6C793FC1DD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:03:6a:26:15:95:1b:31:e2:0a:37:08:b1:0c: f9:2e:49:95:80:17:8c:cf:e6:c2:6e:4c:c3:39:67: 51:19:f5:b9:19:47:26:7a:20:7b:dc:40:af:6c:8d: e9:ee:3c:cd:ad:fd:0a:a5:65:4b:3b:1b:94:11:2e: 1e:1f:00:d8:a3:7a:2d:c1:b4:38:29:7a:ad:5c:c1: 40:6b:8f:68:0d:22:ff:bf:2a:75:1e:e4:7c:e7:5e: b0:98:58:8e:75:16:49:08:48:f6:7a:3e:5c:09:f4: 1e:78:4d:74:4c:7c:d8:05:ef:a8:f0:f5:a2:b7:63: 17:48:d6:d1:31:99:00:ed:37:f7:09:eb:f8:ce:64: a9:b5:ec:7b:03:1a:a6:79:44:30:e9:bf:e2:09:d6: 77:1e:c6:13:92:56:ac:2d:f1:60:a9:13:ae:d0:05: 6c:5e:92:74:33:54:0b:81:61:95:94:5a:6a:8d:52: 41:6b:aa:05:b8:9f:97:85:fe:c0:cb:bc:d5:30:3a: fd:0e:41:8c:24:a0:cb:f9:26:a7:e1:3a:6c:7f:c5: dc:6d:eb:d1:ea:51:9f:52:25:f9:9c:08:5d:e0:fc: c4:5e:01:29:ac:f2:14:0a:7d:e5:24:a5:f3:2c:1e: 23:e9:c0:3f:ba:24:fd:93:39:ce:17:50:a4:1d:8c: 28:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EA:C6:87:96:DB:8C:FE:E4:BC:E6:CA:AF:08:F6:C7:93:FC:1D:D8 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a363a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:6::/48 Signature Algorithm: sha256WithRSAEncryption 67:5b:b1:85:b6:25:e0:21:5d:a5:d6:71:3a:a8:8f:01:ba:34: 96:8e:ee:f8:2d:84:fa:da:f4:b7:16:05:94:37:96:1c:6b:8a: c4:fd:00:3c:b6:8e:f8:86:7f:6e:a5:9b:7a:de:32:a4:e1:bf: ba:ad:3d:d9:37:c8:ce:b0:2a:5e:9f:f8:01:dd:9e:f2:a5:02: 33:cf:e6:9e:51:f8:04:da:1a:30:79:9b:c6:48:74:03:27:26: 93:71:70:b4:71:f0:e1:b7:18:a3:a4:12:ac:49:89:c1:33:a6: 35:cf:ea:b3:70:b4:5c:7d:4c:2b:85:24:03:07:cb:b6:25:de: 10:85:d5:64:eb:73:7a:2a:09:4b:a1:74:3f:5e:6d:fc:e6:a0: d5:03:28:80:c4:39:ea:6d:30:81:38:68:14:91:54:b8:50:3a: ff:c0:78:2c:16:ce:39:82:88:dd:9c:9e:f3:3c:41:e7:e9:f2: 4f:61:c7:63:82:b8:46:1b:fc:f7:e5:8b:9a:8a:8d:04:8b:e6: da:90:fc:e4:a6:e5:c1:76:37:24:96:97:8a:db:e3:a5:02:49: 98:7b:c0:1f:d5:6a:fe:3a:cd:a3:48:c6:fb:3f:ad:f1:b2:1d: 9f:93:30:d4:e2:3a:e4:a3:27:81:bc:f5:70:37:70:62:53:7f: 1f:c4:df:e0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHGEPUpmEF3sqW+rVTOZmbcoZtMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDBaFw0yNTA1MDgwNDAwMDBaMDMxMTAvBgNV BAMTKEIwRUFDNjg3OTZEQjhDRkVFNEJDRTZDQUFGMDhGNkM3OTNGQzFERDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbA2omFZUbMeIKNwixDPkuSZWA F4zP5sJuTMM5Z1EZ9bkZRyZ6IHvcQK9sjenuPM2t/QqlZUs7G5QRLh4fANijei3B tDgpeq1cwUBrj2gNIv+/KnUe5HznXrCYWI51FkkISPZ6PlwJ9B54TXRMfNgF76jw 9aK3YxdI1tExmQDtN/cJ6/jOZKm17HsDGqZ5RDDpv+IJ1ncexhOSVqwt8WCpE67Q BWxeknQzVAuBYZWUWmqNUkFrqgW4n5eF/sDLvNUwOv0OQYwkoMv5JqfhOmx/xdxt 69HqUZ9SJfmcCF3g/MReASms8hQKfeUkpfMsHiPpwD+6JP2TOc4XUKQdjCitAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsOrGh5bbjP7kvObKrwj2x5P8HdgwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAYw DQYJKoZIhvcNAQELBQADggEBAGdbsYW2JeAhXaXWcTqojwG6NJaO7vgthPra9LcW BZQ3lhxrisT9ADy2jviGf26lm3reMqThv7qtPdk3yM6wKl6f+AHdnvKlAjPP5p5R +ATaGjB5m8ZIdAMnJpNxcLRx8OG3GKOkEqxJicEzpjXP6rNwtFx9TCuFJAMHy7Yl 3hCF1WTrc3oqCUuhdD9ebfzmoNUDKIDEOeptMIE4aBSRVLhQOv/AeCwWzjmCiN2c nvM8Qefp8k9hx2OCuEYb/Pfli5qKjQSL5tqQ/OSm5cF2NySWl4rb46UCSZh7wB/V av46zaNIxvs/rfGyHZ+TMNTiOuSjJ4G89XA3cGJTfx/E3+A= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org