$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa File: 323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa (raw, json) Hash identifier: bi9uA3JKqeELOUi1PoLxXB/NKB06leF/UebSioChmVE= Subject key identifier: 5A:F8:B6:11:FE:4B:2C:9C:E7:EA:D9:FB:A8:D0:29:F6:B4:89:04:2B Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 315C34284A4715BB376C13A3AFC400D7E11DF584 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa Signing time: Thu 09 May 2024 04:00:00 +0000 ROA not before: Thu 09 May 2024 03:55:00 +0000 ROA not after: Thu 08 May 2025 04:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5c:34:28:4a:47:15:bb:37:6c:13:a3:af:c4:00:d7:e1:1d:f5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: May 9 03:55:00 2024 GMT Not After : May 8 04:00:00 2025 GMT Subject: CN=5AF8B611FE4B2C9CE7EAD9FBA8D029F6B489042B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b0:18:eb:ae:9e:d8:41:ad:84:d6:4e:b5:c3: 5a:7f:19:52:45:a2:32:15:6a:4f:0a:0f:98:46:97: d0:a1:39:0d:db:dc:d6:a9:d6:09:2c:02:18:46:5c: f5:03:bd:d7:c9:b0:27:5c:de:a5:0b:cf:7a:fe:6a: f0:03:3d:0f:d8:8b:fc:8a:85:2a:5f:1a:ee:c0:61: 07:ca:7c:a7:f4:d3:c5:91:ea:62:0c:01:e8:f4:d6: 99:e0:04:de:8a:ad:36:08:a4:a2:26:8c:8f:87:4d: ed:04:b0:c0:77:05:20:fb:b9:ef:a3:42:8d:30:7c: 6b:e8:f6:f0:98:a7:11:0f:44:58:62:7b:35:36:1d: 83:94:63:da:8c:76:c6:59:3b:b6:8f:d7:3e:42:bf: b9:ac:f4:7c:79:d8:cd:84:f2:0a:47:af:ff:a5:70: b8:a7:e1:ae:a2:27:31:fe:f7:6b:27:e5:e2:48:d9: 01:61:00:ca:4b:9b:3a:24:db:39:08:1d:2d:05:f7: ba:64:50:5e:3f:3d:05:4b:32:2f:a5:4f:51:66:3b: fa:42:c2:68:bf:2a:93:52:03:13:3f:e9:86:3f:a9: fa:71:ea:21:9b:c2:96:fd:fa:88:d2:73:94:5d:ec: 2c:fa:d5:23:d9:ef:a2:ba:46:ab:68:59:45:ba:6b: 5c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F8:B6:11:FE:4B:2C:9C:E7:EA:D9:FB:A8:D0:29:F6:B4:89:04:2B X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a393a3a2f34382d3438203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40:9::/48 Signature Algorithm: sha256WithRSAEncryption 61:cc:c2:af:75:2e:6f:17:83:24:e8:d9:46:ea:7a:a5:5c:13: 80:1e:3b:01:b1:29:ae:e4:b9:1c:5e:3d:62:cc:8e:e4:c3:01: 42:22:3f:89:ac:68:44:0b:cd:84:27:bd:f5:99:7f:c1:e5:7c: 49:21:7b:cd:b8:ef:96:e2:78:94:85:99:b3:ff:55:0e:ec:3b: 69:a3:2c:cb:51:95:a6:69:d5:81:da:92:75:f8:8d:fc:00:7c: 32:80:6e:ae:d6:eb:58:d4:9e:80:c9:e1:6c:dc:40:bc:8e:7f: dc:08:ca:be:d2:47:4a:a2:ac:51:f2:76:b3:bf:7e:86:cb:39: 93:57:45:ed:04:66:30:fe:15:07:31:e0:8d:5d:ca:74:68:d2: 59:c8:2c:c9:7f:19:97:39:db:74:28:19:c9:dd:c0:94:37:f6: b6:1c:63:ea:2d:f3:28:d1:a4:8f:5a:d3:73:26:e4:ab:14:30: 0e:04:9b:57:cd:1a:85:41:d4:c0:37:8b:93:9b:37:2f:47:dd: 81:e6:18:64:17:e1:49:ca:3c:e8:7b:73:e1:7e:a2:de:f3:29: 0c:3c:e8:48:a8:c4:fb:3c:0c:f5:03:95:2a:d7:2d:ec:18:89: 5d:ed:06:0f:e5:17:44:c1:bc:8a:18:43:2a:64:ad:9d:87:46: e6:d9:0e:ee -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMVw0KEpHFbs3bBOjr8QA1+Ed9YQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA1MDkwMzU1MDBaFw0yNTA1MDgwNDAwMDBaMDMxMTAvBgNV BAMTKDVBRjhCNjExRkU0QjJDOUNFN0VBRDlGQkE4RDAyOUY2QjQ4OTA0MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sBjrrp7YQa2E1k61w1p/GVJF ojIVak8KD5hGl9ChOQ3b3Nap1gksAhhGXPUDvdfJsCdc3qULz3r+avADPQ/Yi/yK hSpfGu7AYQfKfKf008WR6mIMAej01pngBN6KrTYIpKImjI+HTe0EsMB3BSD7ue+j Qo0wfGvo9vCYpxEPRFhiezU2HYOUY9qMdsZZO7aP1z5Cv7ms9Hx52M2E8gpHr/+l cLin4a6iJzH+92sn5eJI2QFhAMpLmzok2zkIHS0F97pkUF4/PQVLMi+lT1FmO/pC wmi/KpNSAxM/6YY/qfpx6iGbwpb9+ojSc5Rd7Cz61SPZ76K6RqtoWUW6a1ypAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUWvi2Ef5LLJzn6tn7qNAp9rSJBCswHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqpAAAkw DQYJKoZIhvcNAQELBQADggEBAGHMwq91Lm8XgyTo2UbqeqVcE4AeOwGxKa7kuRxe PWLMjuTDAUIiP4msaEQLzYQnvfWZf8HlfEkhe82475bieJSFmbP/VQ7sO2mjLMtR laZp1YHaknX4jfwAfDKAbq7W61jUnoDJ4WzcQLyOf9wIyr7SR0qirFHydrO/fobL OZNXRe0EZjD+FQcx4I1dynRo0lnILMl/GZc523QoGcndwJQ39rYcY+ot8yjRpI9a 03Mm5KsUMA4Em1fNGoVB1MA3i5ObNy9H3YHmGGQX4UnKPOh7c+F+ot7zKQw86Eio xPs8DPUDlSrXLewYiV3tBg/lF0TBvIoYQypkrZ2HRubZDu4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org