$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: 61cygP0rj8IkPbdSH8JyllzFRqUqP5ARgAki2TQCxmc= Subject key identifier: A2:FF:00:8F:6B:7E:54:DC:FD:7F:28:BD:39:0B:FE:4F:C4:66:05:17 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 338A42296576925C25147DF760D84A8AC1E76A5D Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 03:00:00 +0000 ROA not before: Thu 09 May 2024 02:55:00 +0000 ROA not after: Thu 08 May 2025 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8a:42:29:65:76:92:5c:25:14:7d:f7:60:d8:4a:8a:c1:e7:6a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 02:55:00 2024 GMT Not After : May 8 03:00:00 2025 GMT Subject: CN=A2FF008F6B7E54DCFD7F28BD390BFE4FC4660517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:92:35:29:a8:d9:da:ba:31:b4:ce:09:86: 03:12:97:33:c2:0b:0b:37:65:9f:21:a9:91:d0:34: c3:8f:bc:cd:0e:5b:e3:a6:00:6d:7b:44:1c:66:36: 62:e5:1f:a3:df:8b:33:8c:41:f2:bf:03:7d:61:2a: f3:90:27:09:04:df:d0:e0:41:8a:2a:9b:f6:a0:b1: 52:72:fc:7c:49:d2:ba:c0:03:18:c0:ee:86:c1:48: 49:c4:76:d7:1b:4f:fb:0a:51:3e:b2:c9:53:c0:30: 70:bd:a5:aa:d4:53:98:e0:51:a9:b7:15:5b:ad:33: 09:f4:94:9c:f7:98:08:44:17:0c:66:07:bb:ae:46: 2f:dd:cb:9d:cc:e0:6f:82:88:cd:fe:aa:d0:bb:a6: fa:04:07:b3:54:4e:38:48:a8:ee:f9:40:51:f9:01: 24:15:28:88:d3:55:22:02:01:85:98:76:19:5c:2c: 95:64:c2:59:5b:78:a9:4b:d7:c7:e0:5d:11:93:b1: 5e:c7:0e:e2:99:05:ab:73:38:9a:23:0c:4c:a0:d6: 8c:5d:5f:ba:56:3d:9f:17:25:0c:e1:d5:7d:cf:fc: 9c:8b:ff:45:94:59:be:90:01:ea:e6:0e:7a:a3:a0: 72:84:21:81:d3:f8:0d:57:f0:9a:6e:db:2c:88:e7: 3d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FF:00:8F:6B:7E:54:DC:FD:7F:28:BD:39:0B:FE:4F:C4:66:05:17 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a383a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:8::/48 Signature Algorithm: sha256WithRSAEncryption 39:0e:5c:9b:b6:e0:0f:af:e5:70:cd:2b:00:f7:d8:d8:9e:9c: ce:91:0f:d1:62:c9:a1:31:1f:91:ab:e8:5c:e2:65:3b:2b:1d: c8:ad:e9:23:50:64:ec:68:03:40:e8:4f:36:00:55:89:49:4a: 63:90:75:d8:5c:4e:c3:81:13:32:f1:c7:c4:08:fe:bd:22:67: a5:e9:fb:27:28:16:64:09:be:d6:60:40:28:6b:e7:c8:8b:df: 22:2f:6e:be:57:84:a6:73:31:e8:c7:91:ee:dc:b9:70:91:18: 7a:c0:38:27:94:5f:94:9d:66:2a:70:54:5d:65:05:fe:9e:02: 4c:31:2d:74:43:3d:04:18:ab:b7:48:d5:a7:41:30:d1:51:88: 43:16:2b:e6:83:d7:90:a8:01:72:6d:7a:57:c0:f8:5a:b7:74: 2a:56:95:5b:0f:2f:d5:d0:b6:17:1f:0f:02:3c:e0:6b:cb:b8: be:3a:68:7a:36:08:f0:ee:91:3b:0e:c0:6b:c1:58:c0:21:0b: 29:df:1b:bd:5e:64:10:01:dc:ae:42:8a:b1:7b:59:47:fe:e2: d5:31:de:bd:ee:ec:5c:7a:e0:d9:89:db:fd:2c:a1:25:87:40: b6:a2:4f:4f:f3:bc:e7:6f:c7:06:50:34:76:ee:ab:0a:4d:67: d5:2b:2c:1f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUM4pCKWV2klwlFH33YNhKisHnal0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMjU1MDBaFw0yNTA1MDgwMzAwMDBaMDMxMTAvBgNV BAMTKEEyRkYwMDhGNkI3RTU0RENGRDdGMjhCRDM5MEJGRTRGQzQ2NjA1MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiYJI1KajZ2roxtM4JhgMSlzPC Cws3ZZ8hqZHQNMOPvM0OW+OmAG17RBxmNmLlH6PfizOMQfK/A31hKvOQJwkE39Dg QYoqm/agsVJy/HxJ0rrAAxjA7obBSEnEdtcbT/sKUT6yyVPAMHC9parUU5jgUam3 FVutMwn0lJz3mAhEFwxmB7uuRi/dy53M4G+CiM3+qtC7pvoEB7NUTjhIqO75QFH5 ASQVKIjTVSICAYWYdhlcLJVkwllbeKlL18fgXRGTsV7HDuKZBatzOJojDEyg1oxd X7pWPZ8XJQzh1X3P/JyL/0WUWb6QAermDnqjoHKEIYHT+A1X8Jpu2yyI5z2JAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUov8Aj2t+VNz9fyi9OQv+T8RmBRcwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAgw DQYJKoZIhvcNAQELBQADggEBADkOXJu24A+v5XDNKwD32NienM6RD9FiyaExH5Gr 6FziZTsrHcit6SNQZOxoA0DoTzYAVYlJSmOQddhcTsOBEzLxx8QI/r0iZ6Xp+yco FmQJvtZgQChr58iL3yIvbr5XhKZzMejHke7cuXCRGHrAOCeUX5SdZipwVF1lBf6e AkwxLXRDPQQYq7dI1adBMNFRiEMWK+aD15CoAXJtelfA+Fq3dCpWlVsPL9XQthcf DwI84GvLuL46aHo2CPDukTsOwGvBWMAhCynfG71eZBAB3K5CirF7WUf+4tUx3r3u 7Fx64NmJ2/0soSWHQLaiT0/zvOdvxwZQNHbuqwpNZ9UrLB8= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org