$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: dSvA2Olz55Wfs2rUJPKAYYt2qKJtrcWnV9LKKsKQM6o= Subject key identifier: 08:85:EB:00:08:48:4A:B8:3A:1F:B3:EB:CB:44:2C:F9:21:F3:8E:7D Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6F762D95E5F67B0DEADEFBDE024A463708CC2899 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:00 +0000 ROA not before: Thu 08 Jun 2023 02:55:00 +0000 ROA not after: Thu 06 Jun 2024 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:76:2d:95:e5:f6:7b:0d:ea:de:fb:de:02:4a:46:37:08:cc:28:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:00 2023 GMT Not After : Jun 6 03:00:00 2024 GMT Subject: CN=0885EB0008484AB83A1FB3EBCB442CF921F38E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8e:10:36:41:c7:c6:4b:9f:f2:69:b3:f2:6f: 3e:83:83:3a:5e:6f:da:df:cf:ce:d1:fa:0f:43:e4: 11:64:e1:06:06:1f:bc:d3:33:ae:48:5b:df:0a:83: c6:28:34:a4:21:ea:6d:00:e0:4f:44:a6:de:d1:6e: 85:53:2a:cd:d4:f3:85:c7:e4:b5:6b:47:48:43:d2: 2a:c9:98:03:df:5a:56:2e:d9:13:47:94:8a:f9:33: 88:e3:11:65:2b:c8:29:1a:de:ef:be:ac:79:09:41: b6:88:7f:ce:cb:f5:4a:79:e5:d0:97:34:7e:2c:87: e2:1f:1b:d8:4c:6c:6b:4c:96:8f:2d:66:55:fc:f8: aa:59:ea:1b:dc:78:a0:1e:01:13:81:f4:9e:3e:c0: 0f:b1:2e:c7:01:19:0d:85:53:79:d7:50:f0:da:dd: 1e:1e:6e:12:3e:f8:86:1d:a6:1a:b1:e0:62:d4:8f: 15:49:1d:93:bf:6e:32:a2:94:51:1c:a6:cf:a9:42: 0c:47:cf:3a:e7:70:e0:1e:d6:62:ba:73:34:4d:19: 4b:fa:d2:b1:b4:15:33:ca:2f:78:fd:56:56:55:0c: 69:98:6f:8b:f4:6c:f7:fc:d6:d9:47:a0:7d:57:3b: b6:08:d3:a2:ff:08:4f:64:f3:56:f3:64:c9:c7:f7: cb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:85:EB:00:08:48:4A:B8:3A:1F:B3:EB:CB:44:2C:F9:21:F3:8E:7D X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a373a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:7::/48 Signature Algorithm: sha256WithRSAEncryption 2c:e8:25:d9:c7:0c:ab:55:41:7d:5d:a0:9c:b9:da:73:c6:78: da:dc:58:7e:de:cc:f7:00:9e:89:04:b8:92:e5:6b:09:fb:d2: d7:47:a7:fd:d8:72:bd:44:16:0a:df:03:43:d0:07:8d:95:56: 81:92:8f:96:15:f3:0f:e4:13:77:49:3b:9a:db:ab:ae:e5:dc: ce:64:e9:0f:26:17:e7:07:d3:fe:77:c4:6d:79:6a:26:ce:44: a9:5c:d3:e9:a3:a9:c6:58:27:1b:15:9b:87:b2:33:13:87:26: 1c:34:38:d2:86:f1:e6:86:7d:6d:6d:5c:ef:5a:8c:b5:bb:d0: a3:a6:2f:4a:82:9e:16:0e:91:82:aa:f1:53:4e:7e:42:ac:ec: 7b:07:11:7a:08:ab:6d:25:ca:46:a8:fd:88:eb:0f:08:41:43: cb:63:5c:c0:8f:1e:5e:c1:5c:1a:70:7e:94:6f:44:6e:01:d5: 21:79:c7:21:1a:42:05:93:ce:27:5d:93:d0:cc:0b:c7:7a:3f: 1c:64:27:29:0a:dd:8f:3b:e0:ed:02:39:fa:7f:37:79:67:13: 45:5b:e4:8e:e5:b6:7e:a4:9e:39:af:09:2c:ef:1b:2d:62:94: 02:c0:0a:3f:b6:8c:98:cc:c3:ed:ed:8d:ce:44:5c:19:e8:f0: 8a:91:03:16 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUb3YtleX2ew3q3vveAkpGNwjMKJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDBaFw0yNDA2MDYwMzAwMDBaMDMxMTAvBgNV BAMTKDA4ODVFQjAwMDg0ODRBQjgzQTFGQjNFQkNCNDQyQ0Y5MjFGMzhFN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmjhA2QcfGS5/yabPybz6Dgzpe b9rfz87R+g9D5BFk4QYGH7zTM65IW98Kg8YoNKQh6m0A4E9Ept7RboVTKs3U84XH 5LVrR0hD0irJmAPfWlYu2RNHlIr5M4jjEWUryCka3u++rHkJQbaIf87L9Up55dCX NH4sh+IfG9hMbGtMlo8tZlX8+KpZ6hvceKAeAROB9J4+wA+xLscBGQ2FU3nXUPDa 3R4ebhI++IYdphqx4GLUjxVJHZO/bjKilFEcps+pQgxHzzrncOAe1mK6czRNGUv6 0rG0FTPKL3j9VlZVDGmYb4v0bPf81tlHoH1XO7YI06L/CE9k81bzZMnH98tNAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCIXrAAhISrg6H7Pry0Qs+SHzjn0wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAcw DQYJKoZIhvcNAQELBQADggEBACzoJdnHDKtVQX1doJy52nPGeNrcWH7ezPcAnokE uJLlawn70tdHp/3Ycr1EFgrfA0PQB42VVoGSj5YV8w/kE3dJO5rbq67l3M5k6Q8m F+cH0/53xG15aibORKlc0+mjqcZYJxsVm4eyMxOHJhw0ONKG8eaGfW1tXO9ajLW7 0KOmL0qCnhYOkYKq8VNOfkKs7HsHEXoIq20lykao/YjrDwhBQ8tjXMCPHl7BXBpw fpRvRG4B1SF5xyEaQgWTziddk9DMC8d6PxxkJykK3Y874O0COfp/N3lnE0Vb5I7l tn6knjmvCSzvGy1ilALACj+2jJjMw+3tjc5EXBno8IqRAxY= -----END CERTIFICATE-----Generated at Wed Apr 24 01:48:20 2024 by rpki-client on console-fra.rpki-client.org