$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: oY069+/KIIHcgZ4RYbvnReDRYhmMVqzVZRWA0sgsKmk= Subject key identifier: B1:77:6C:B6:78:5E:33:A6:C1:B9:11:2D:37:96:D5:05:81:89:29:31 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 6B32DBE3D757BC3E5FF67C29D2E100683339B9DD Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:00 +0000 ROA not before: Thu 08 Jun 2023 02:55:00 +0000 ROA not after: Thu 06 Jun 2024 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:32:db:e3:d7:57:bc:3e:5f:f6:7c:29:d2:e1:00:68:33:39:b9:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:00 2023 GMT Not After : Jun 6 03:00:00 2024 GMT Subject: CN=B1776CB6785E33A6C1B9112D3796D50581892931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:4e:38:02:a4:4c:46:e9:d6:07:3e:c0:09: b8:36:b6:8b:68:fd:d7:dd:bc:f9:fe:66:68:d6:0e: ca:b3:c2:97:56:03:d8:bc:ff:1c:73:20:e7:e6:f4: fb:59:0e:6a:52:8a:bd:1c:a9:5f:64:a6:b6:70:1e: 27:7a:5b:c7:f8:78:d2:41:83:70:f0:a4:ac:fe:1a: ad:95:7a:40:75:8f:35:c8:dc:e6:92:c5:bc:ec:67: 6f:61:b5:67:4a:7e:08:3c:72:5a:e1:a8:ef:4b:26: 6a:2c:52:bf:99:4f:71:1d:f0:6c:c3:d4:2e:cc:e3: 75:e9:f9:86:bc:af:0c:04:06:65:29:02:89:02:d9: c7:3b:8a:ef:63:bc:51:3f:53:6d:d3:f6:27:71:ba: 4f:92:7a:b2:da:83:8a:47:93:3a:12:17:6e:ae:81: 91:42:b1:7e:99:3d:67:2f:c1:7c:df:37:ff:c7:55: 79:25:b5:bf:08:55:ca:0a:d8:c0:47:77:81:f0:23: e1:33:fd:91:b7:97:6d:e4:52:5f:f2:10:1f:27:4e: 31:ed:43:d1:09:97:22:10:8d:7d:de:b7:a8:57:6a: 8b:66:d8:b0:e0:eb:3a:8b:b0:b1:b8:74:e5:38:1e: d2:81:54:f3:fa:2c:ca:44:b9:b0:00:3f:82:d5:6f: fc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:77:6C:B6:78:5E:33:A6:C1:B9:11:2D:37:96:D5:05:81:89:29:31 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:8::/48 Signature Algorithm: sha256WithRSAEncryption 7c:c2:c5:78:7c:fa:05:d6:b0:6e:44:40:b1:37:0a:81:bb:f2: 80:e6:d0:8e:df:a5:02:cb:44:d3:6c:c7:2d:29:08:91:04:f2: 15:09:62:83:10:7a:f9:35:82:ce:50:e0:c4:d2:1e:07:76:04: cb:a6:4a:3c:48:1c:b2:66:bc:b9:3d:92:c9:72:bd:1f:bc:f7: 21:ad:64:bb:0d:e2:c5:3d:3a:41:ab:16:18:7c:42:1a:90:4d: 25:fb:e6:5e:80:48:29:28:ca:0b:18:47:85:6e:d8:c5:e1:f3: ef:49:cc:74:a4:ab:dd:a8:98:4b:30:a1:f6:7a:a7:08:38:a1: 5a:4a:c6:54:00:8a:d0:57:57:11:e4:5c:ed:37:8b:81:7c:b4: b7:51:38:69:89:89:26:9b:92:66:2e:dd:ef:b7:b2:87:da:8e: fb:84:de:94:65:d5:d0:ad:85:11:00:01:0b:87:0f:76:72:1d: a8:77:6c:00:6d:67:67:bc:29:da:08:56:8b:8a:e3:18:96:86: df:98:49:7d:f2:e4:a5:73:2e:92:c3:f7:48:aa:97:14:99:a2: 06:eb:44:b9:e0:97:3c:66:53:e7:f1:65:71:63:63:56:eb:0a: 02:5e:fe:27:a1:3a:e1:1f:40:05:c6:6b:ef:81:b1:dc:cc:c4: c8:9a:8d:d7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUazLb49dXvD5f9nwp0uEAaDM5ud0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDBaFw0yNDA2MDYwMzAwMDBaMDMxMTAvBgNV BAMTKEIxNzc2Q0I2Nzg1RTMzQTZDMUI5MTEyRDM3OTZENTA1ODE4OTI5MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbqU44AqRMRunWBz7ACbg2toto /dfdvPn+ZmjWDsqzwpdWA9i8/xxzIOfm9PtZDmpSir0cqV9kprZwHid6W8f4eNJB g3DwpKz+Gq2VekB1jzXI3OaSxbzsZ29htWdKfgg8clrhqO9LJmosUr+ZT3Ed8GzD 1C7M43Xp+Ya8rwwEBmUpAokC2cc7iu9jvFE/U23T9idxuk+SerLag4pHkzoSF26u gZFCsX6ZPWcvwXzfN//HVXkltb8IVcoK2MBHd4HwI+Ez/ZG3l23kUl/yEB8nTjHt Q9EJlyIQjX3et6hXaotm2LDg6zqLsLG4dOU4HtKBVPP6LMpEubAAP4LVb/zXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsXdstnheM6bBuREtN5bVBYGJKTEwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAgw DQYJKoZIhvcNAQELBQADggEBAHzCxXh8+gXWsG5EQLE3CoG78oDm0I7fpQLLRNNs xy0pCJEE8hUJYoMQevk1gs5Q4MTSHgd2BMumSjxIHLJmvLk9kslyvR+89yGtZLsN 4sU9OkGrFhh8QhqQTSX75l6ASCkoygsYR4Vu2MXh8+9JzHSkq92omEswofZ6pwg4 oVpKxlQAitBXVxHkXO03i4F8tLdROGmJiSabkmYu3e+3sofajvuE3pRl1dCthREA AQuHD3ZyHah3bABtZ2e8KdoIVouK4xiWht+YSX3y5KVzLpLD90iqlxSZogbrRLng lzxmU+fxZXFjY1brCgJe/iehOuEfQAXGa++BsdzMxMiajdc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:40 2024 by rpki-client on console-ams.rpki-client.org