$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: QBAnIydev0ENyOc1NnijGKdXahjloWlnQC2bxpcGdnw= Subject key identifier: 24:1E:60:E7:86:02:8D:CB:8C:3C:BB:B6:11:F5:DD:FF:AE:1A:6F:DB Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 7CD66D47AE901EF9BD2237361AB4A13DB602731F Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 08 Jun 2023 03:00:02 +0000 ROA not before: Thu 08 Jun 2023 02:55:02 +0000 ROA not after: Thu 06 Jun 2024 03:00:02 +0000 asID: 137330 IP address blocks: 2402:aa40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d6:6d:47:ae:90:1e:f9:bd:22:37:36:1a:b4:a1:3d:b6:02:73:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jun 8 02:55:02 2023 GMT Not After : Jun 6 03:00:02 2024 GMT Subject: CN=241E60E786028DCB8C3CBBB611F5DDFFAE1A6FDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b5:a0:b6:a3:90:fe:bc:0c:84:c1:cd:73:90: 30:81:4d:6a:fc:ba:e3:c0:55:0b:9b:f5:a1:7d:83: c2:dc:7c:42:d7:a4:ab:49:8b:03:65:3a:54:e1:75: 56:cb:f0:6c:87:f3:0b:03:68:58:cc:52:db:b8:f3: 4f:4b:71:70:3c:d4:5a:c9:b4:2d:18:b1:f9:e1:a9: ff:ac:19:d3:f4:d9:7e:53:fa:7f:d6:28:70:8b:0c: 9e:6e:29:6f:cc:1f:7d:ff:9f:5d:f7:98:ab:83:bc: 52:9f:f0:df:e5:c9:d3:a8:3c:6a:c4:20:b8:d4:1a: 92:85:8e:50:4b:ef:42:17:68:96:12:7e:ac:b0:ba: b4:a2:c1:48:f2:a8:42:55:54:52:34:37:b0:c5:58: d7:12:e7:cb:f1:a0:97:c1:64:f6:35:1a:fc:a5:9e: 86:30:68:9b:49:30:be:2c:fd:4e:b5:9c:3b:6f:f6: ab:20:40:12:6b:e2:53:21:c5:97:26:68:1a:10:c9: 7c:19:ca:69:5c:f7:be:f1:87:bb:c9:17:46:cf:01: 38:ae:1a:1b:3e:84:01:a4:ab:1a:b2:ce:52:f3:a3: cf:af:d5:f6:5b:dd:ca:20:42:ba:33:db:8b:0a:ed: f3:b7:50:38:ce:64:2d:87:fd:d0:fd:75:34:4f:d0: 71:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1E:60:E7:86:02:8D:CB:8C:3C:BB:B6:11:F5:DD:FF:AE:1A:6F:DB X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:9::/48 Signature Algorithm: sha256WithRSAEncryption 4e:27:e7:43:ec:d3:51:39:68:09:13:f9:f1:f0:d8:7f:dd:e3: 12:ea:8e:e4:ac:ea:46:af:25:50:93:03:2c:54:78:a8:2c:c5: ef:7f:32:6d:5b:6c:2f:74:01:bd:37:ca:03:f3:ce:1e:63:93: 3d:2f:eb:34:36:3d:de:9d:94:17:76:c3:72:ad:8b:bc:40:63: 09:0b:e9:0c:dd:42:85:3e:ab:56:c7:ae:fa:0f:22:e7:8a:d2: 95:d0:46:ea:56:5b:99:c7:c9:a7:1a:0a:9b:5f:49:4c:b7:a1: 6e:b4:45:7a:ae:dd:a1:bd:88:26:ec:ed:c5:75:65:6f:4f:ca: d9:9c:08:02:3e:eb:d7:70:a4:fb:52:fe:a1:35:a3:ae:f0:43: 35:c1:ff:09:47:5d:b2:f1:dd:74:d8:9f:43:29:fa:43:05:74: d7:e6:68:29:9b:6a:66:23:4c:e9:52:6a:e8:2d:b7:de:3f:96: c8:75:a9:f1:35:cc:e9:bd:68:71:99:3a:96:9a:6a:bd:7b:a6: be:0c:b4:9f:73:31:eb:f4:81:c5:83:64:3e:04:ca:d4:dc:6a: c6:87:50:42:dc:e5:7a:0f:c9:3d:c7:7e:14:21:5b:3a:19:21: f1:de:db:af:aa:6f:12:82:79:ed:88:2c:6f:9c:03:b9:bf:f8: c8:58:b8:3b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfNZtR66QHvm9Ijc2GrShPbYCcx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA2MDgwMjU1MDJaFw0yNDA2MDYwMzAwMDJaMDMxMTAvBgNV BAMTKDI0MUU2MEU3ODYwMjhEQ0I4QzNDQkJCNjExRjVEREZGQUUxQTZGREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRtaC2o5D+vAyEwc1zkDCBTWr8 uuPAVQub9aF9g8LcfELXpKtJiwNlOlThdVbL8GyH8wsDaFjMUtu4809LcXA81FrJ tC0Ysfnhqf+sGdP02X5T+n/WKHCLDJ5uKW/MH33/n133mKuDvFKf8N/lydOoPGrE ILjUGpKFjlBL70IXaJYSfqywurSiwUjyqEJVVFI0N7DFWNcS58vxoJfBZPY1Gvyl noYwaJtJML4s/U61nDtv9qsgQBJr4lMhxZcmaBoQyXwZymlc977xh7vJF0bPATiu Ghs+hAGkqxqyzlLzo8+v1fZb3cogQroz24sK7fO3UDjOZC2H/dD9dTRP0HGrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUJB5g54YCjcuMPLu2EfXd/64ab9swHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAkw DQYJKoZIhvcNAQELBQADggEBAE4n50Ps01E5aAkT+fHw2H/d4xLqjuSs6kavJVCT AyxUeKgsxe9/Mm1bbC90Ab03ygPzzh5jkz0v6zQ2Pd6dlBd2w3Kti7xAYwkL6Qzd QoU+q1bHrvoPIueK0pXQRupWW5nHyacaCptfSUy3oW60RXqu3aG9iCbs7cV1ZW9P ytmcCAI+69dwpPtS/qE1o67wQzXB/wlHXbLx3XTYn0Mp+kMFdNfmaCmbamYjTOlS augtt94/lsh1qfE1zOm9aHGZOpaaar17pr4MtJ9zMev0gcWDZD4EytTcasaHUELc 5XoPyT3HfhQhWzoZIfHe26+qbxKCee2ILG+cA7m/+MhYuDs= -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:40 2024 by rpki-client on console-ams.rpki-client.org