$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: IeWFMtaqBJBeKUmZ02yFo5+6S+FKc1ivLw4CgOr9f/Y= Subject key identifier: D5:CA:9F:89:10:6E:13:79:CB:99:E7:29:96:89:13:91:A5:60:79:F4 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 442D774DD19706C51855798CAD40125BAA50626E Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 03:00:00 +0000 ROA not before: Thu 09 May 2024 02:55:00 +0000 ROA not after: Thu 08 May 2025 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:2d:77:4d:d1:97:06:c5:18:55:79:8c:ad:40:12:5b:aa:50:62:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 02:55:00 2024 GMT Not After : May 8 03:00:00 2025 GMT Subject: CN=D5CA9F89106E1379CB99E72996891391A56079F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:5f:2d:4f:13:e7:04:bb:8c:53:ef:9d:b7: ba:60:7c:bc:03:82:9e:97:e7:57:1b:d7:e0:cd:98: 96:b9:8d:21:29:70:0d:7e:39:06:b1:a2:f6:92:22: fa:47:9b:73:bc:91:a0:83:8c:7d:e5:dc:cf:30:77: 7d:66:7e:70:f6:f8:e2:a5:2e:7a:1a:24:b5:52:3a: c9:e6:58:e8:70:4e:ac:20:07:68:c9:fc:8f:ce:0b: fc:f8:68:ab:c2:26:9a:99:51:77:2c:89:b9:e1:4b: 54:b6:ef:0d:47:2f:26:26:90:07:a1:8b:63:52:03: 70:fc:9e:cf:74:59:36:61:4d:d0:9b:55:7f:ef:b8: f4:a1:e6:c6:b9:35:47:fa:e3:12:60:8e:8f:d8:b8: 16:e8:5e:5a:91:27:2e:6d:e9:c2:15:b3:e8:9a:a0: 84:cc:a7:67:cc:01:01:75:d2:67:d6:74:12:46:98: ea:50:29:6c:7d:78:7a:2d:2c:23:5e:e8:91:4e:6d: 27:72:b7:4e:6a:f9:d8:32:4d:15:3e:37:9a:52:88: 9f:1e:3f:a0:07:49:8c:27:03:1b:a0:2a:7e:ad:4c: 9c:79:57:e5:84:c6:9f:98:97:59:a5:c8:53:0a:86: 8c:10:cc:aa:80:10:39:05:95:a7:43:36:73:ab:f3: 9d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CA:9F:89:10:6E:13:79:CB:99:E7:29:96:89:13:91:A5:60:79:F4 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:7::/48 Signature Algorithm: sha256WithRSAEncryption 15:9e:da:b6:4a:83:b8:fb:af:89:c7:c8:af:5a:d2:de:17:a0: 41:f8:13:f4:65:8d:f7:d6:b5:9c:fb:4e:2f:65:e4:f9:05:d3: 74:5c:61:f4:5b:26:47:b5:31:98:8f:e5:9e:01:c6:a0:94:90: b5:91:60:1a:aa:47:b3:3b:97:e8:c3:f5:b7:3f:33:21:5f:b3: 82:b2:7f:bd:26:dc:45:37:9d:46:5c:49:24:63:13:7d:d1:27: 3d:a7:37:d4:d7:c6:a9:bb:8c:64:9c:bb:a9:ca:5a:6e:e8:8f: 42:23:37:51:de:21:8c:84:13:42:c7:0f:92:e1:cb:43:68:84: 5f:76:d3:7d:05:06:a1:72:5c:3d:34:88:4e:c5:e7:bb:64:cd: c3:9c:7e:ae:91:d0:19:2d:7e:b9:58:ab:f1:ab:1b:cf:71:06: 9d:b0:52:77:51:d2:5b:88:79:3a:0d:03:79:45:98:7d:31:41: a9:ad:55:cb:7b:a4:8b:8e:fa:4d:21:8e:dc:fd:bb:d3:4d:b0: 03:b5:32:d5:b1:7c:8d:b6:f6:ba:35:26:56:51:48:18:75:3e: 5d:cd:f2:c0:a1:e2:01:0c:d9:01:33:50:33:7f:de:eb:09:a0: b6:34:3f:a2:9e:47:c8:ce:6b:d9:c0:67:db:b8:e4:08:a6:c2: 5e:e2:ac:04 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURC13TdGXBsUYVXmMrUASW6pQYm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMjU1MDBaFw0yNTA1MDgwMzAwMDBaMDMxMTAvBgNV BAMTKEQ1Q0E5Rjg5MTA2RTEzNzlDQjk5RTcyOTk2ODkxMzkxQTU2MDc5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEr18tTxPnBLuMU++dt7pgfLwD gp6X51cb1+DNmJa5jSEpcA1+OQaxovaSIvpHm3O8kaCDjH3l3M8wd31mfnD2+OKl LnoaJLVSOsnmWOhwTqwgB2jJ/I/OC/z4aKvCJpqZUXcsibnhS1S27w1HLyYmkAeh i2NSA3D8ns90WTZhTdCbVX/vuPSh5sa5NUf64xJgjo/YuBboXlqRJy5t6cIVs+ia oITMp2fMAQF10mfWdBJGmOpQKWx9eHotLCNe6JFObSdyt05q+dgyTRU+N5pSiJ8e P6AHSYwnAxugKn6tTJx5V+WExp+Yl1mlyFMKhowQzKqAEDkFladDNnOr852tAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU1cqfiRBuE3nLmecplokTkaVgefQwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAcw DQYJKoZIhvcNAQELBQADggEBABWe2rZKg7j7r4nHyK9a0t4XoEH4E/RljffWtZz7 Ti9l5PkF03RcYfRbJke1MZiP5Z4BxqCUkLWRYBqqR7M7l+jD9bc/MyFfs4Kyf70m 3EU3nUZcSSRjE33RJz2nN9TXxqm7jGScu6nKWm7oj0IjN1HeIYyEE0LHD5Lhy0No hF92030FBqFyXD00iE7F57tkzcOcfq6R0BktfrlYq/GrG89xBp2wUndR0luIeToN A3lFmH0xQamtVct7pIuO+k0hjtz9u9NNsAO1MtWxfI229ro1JlZRSBh1Pl3N8sCh 4gEM2QEzUDN/3usJoLY0P6KeR8jOa9nAZ9u45Aimwl7irAQ= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org