$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa File: 323430323a616134303a3a2f33322d3332203d3e20313337333330.roa (raw, json) Hash identifier: e/yjVod/7lR4uj/RENV7JfH5TX+LSB9hPgqV7eSiKp4= Subject key identifier: 04:19:68:3E:BD:41:73:16:39:2A:9B:36:1F:E2:F1:03:38:55:22:43 Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 4C33D6CFE63E62B1F1EDBE9C7D2EA8DAF15249F7 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa Signing time: Fri 26 Jul 2024 03:00:00 +0000 ROA not before: Fri 26 Jul 2024 02:55:00 +0000 ROA not after: Fri 25 Jul 2025 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:33:d6:cf:e6:3e:62:b1:f1:ed:be:9c:7d:2e:a8:da:f1:52:49:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jul 26 02:55:00 2024 GMT Not After : Jul 25 03:00:00 2025 GMT Subject: CN=0419683EBD417316392A9B361FE2F10338552243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:bd:33:db:de:1c:a9:e7:41:b2:2a:1f:e8: 83:49:4f:de:cf:8e:d4:96:6b:bf:93:72:29:5d:49: 76:38:60:e7:91:ef:3f:ca:28:88:3c:c4:b3:64:21: 64:f4:57:99:d8:30:e1:3d:1d:ff:2e:f1:ae:15:9a: 7e:91:7f:48:bf:76:9c:17:ad:32:79:32:46:87:e8: 5d:9c:e2:36:6b:89:59:fc:91:8e:27:d6:6f:51:2b: 97:58:23:ce:a6:7b:ee:43:04:ec:85:6a:b1:f4:59: f9:1f:f6:08:7c:28:30:9d:5b:33:2a:7c:c4:b4:1c: f1:e3:45:b9:9b:86:f0:3c:64:03:7e:7f:3d:32:0f: 3a:0d:ad:c6:0d:fa:21:78:f0:b7:5b:ce:0c:ac:c6: da:1a:0c:f9:e7:a8:02:bd:04:88:2b:17:4a:cc:a2: 15:8c:c5:08:fa:4d:3f:a9:43:b3:34:e0:04:e1:e8: dd:c7:0b:a5:36:64:cb:0e:58:bb:2b:98:92:5e:40: 78:8a:00:d3:0d:0d:ca:c1:88:23:d5:0a:9b:3f:6d: 81:dc:3f:e1:a1:4b:63:04:af:44:ce:c4:8d:3c:8c: 38:45:23:15:29:35:1b:e0:e8:51:ee:5a:cc:0c:ed: 88:f5:b6:24:30:f1:65:fa:49:93:b1:5d:3a:01:87: bb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:19:68:3E:BD:41:73:16:39:2A:9B:36:1F:E2:F1:03:38:55:22:43 X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40::/32 Signature Algorithm: sha256WithRSAEncryption 83:9d:3d:93:51:4a:65:6e:14:44:99:64:c3:2d:e8:3f:6e:5e: 7d:e1:a0:53:da:40:15:ee:cc:35:d9:ae:c3:a4:cf:46:9d:0a: de:ac:f1:85:5d:e7:ce:c6:91:31:d4:f6:ea:99:af:d8:1d:59: e3:f1:7d:b2:63:30:02:de:7c:8d:68:00:f8:0f:75:a2:2a:66: 09:dc:17:60:d9:ac:a2:02:2c:2c:3d:1c:3a:fd:dd:d4:11:f2: c1:8e:65:84:f8:b1:33:64:81:fb:ce:30:80:df:98:a2:62:80: 37:44:d8:f1:a7:4c:67:31:64:1f:f5:d1:d0:ea:72:bb:0d:8f: 62:af:a3:e9:fe:49:a4:5b:17:86:04:3f:e0:a4:ee:f1:c8:63: 49:9f:a1:61:c3:c4:54:9e:0e:21:fc:d7:40:92:49:1f:d5:68: cb:31:28:4f:14:7a:45:56:a1:38:cd:a0:f2:83:c0:76:44:c9: a0:7d:51:64:03:65:20:87:70:26:72:61:3c:7c:1a:2e:f8:c4: b8:1e:56:1e:17:df:48:b3:10:d4:28:12:88:e1:8e:5c:ea:c3: fa:f7:3f:4e:b3:43:dd:31:22:b6:a9:a2:ee:37:c9:bd:44:75: 07:4a:38:04:ce:91:51:a3:33:e0:6b:65:70:bb:9a:08:e4:3c: 60:62:25:79 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTDPWz+Y+YrHx7b6cfS6o2vFSSfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA3MjYwMjU1MDBaFw0yNTA3MjUwMzAwMDBaMDMxMTAvBgNV BAMTKDA0MTk2ODNFQkQ0MTczMTYzOTJBOUIzNjFGRTJGMTAzMzg1NTIyNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31L0z294cqedBsiof6INJT97P jtSWa7+TcildSXY4YOeR7z/KKIg8xLNkIWT0V5nYMOE9Hf8u8a4Vmn6Rf0i/dpwX rTJ5MkaH6F2c4jZriVn8kY4n1m9RK5dYI86me+5DBOyFarH0Wfkf9gh8KDCdWzMq fMS0HPHjRbmbhvA8ZAN+fz0yDzoNrcYN+iF48LdbzgysxtoaDPnnqAK9BIgrF0rM ohWMxQj6TT+pQ7M04ATh6N3HC6U2ZMsOWLsrmJJeQHiKANMNDcrBiCPVCps/bYHc P+GhS2MEr0TOxI08jDhFIxUpNRvg6FHuWswM7Yj1tiQw8WX6SZOxXToBh7s1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUBBloPr1BcxY5Kps2H+LxAzhVIkMwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCqkAwDQYJKoZI hvcNAQELBQADggEBAIOdPZNRSmVuFESZZMMt6D9uXn3hoFPaQBXuzDXZrsOkz0ad Ct6s8YVd587GkTHU9uqZr9gdWePxfbJjMALefI1oAPgPdaIqZgncF2DZrKICLCw9 HDr93dQR8sGOZYT4sTNkgfvOMIDfmKJigDdE2PGnTGcxZB/10dDqcrsNj2Kvo+n+ SaRbF4YEP+Ck7vHIY0mfoWHDxFSeDiH810CSSR/VaMsxKE8UekVWoTjNoPKDwHZE yaB9UWQDZSCHcCZyYTx8Gi74xLgeVh4X30izENQoEojhjlzqw/r3P06zQ90xIrap ou43yb1EdQdKOATOkVGjM+BrZXC7mgjkPGBiJXk= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org