$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa File: 323430323a616134303a3a2f33322d3332203d3e20313337333330.roa (raw, json) Hash identifier: 7L+OrXZb/IHxC/saCv0h1AKy5mIpFkE+yfJW6mTf1N0= Subject key identifier: D0:0C:30:BE:F9:A2:54:AC:2E:21:35:3C:55:F1:76:DD:16:BC:A8:8F Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5AE84F5DB6BCEC8C39EDF4E9FE86EA307A053ED4 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa Signing time: Fri 25 Aug 2023 03:00:00 +0000 ROA not before: Fri 25 Aug 2023 02:55:00 +0000 ROA not after: Fri 23 Aug 2024 03:00:00 +0000 asID: 137330 IP address blocks: 2402:aa40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e8:4f:5d:b6:bc:ec:8c:39:ed:f4:e9:fe:86:ea:30:7a:05:3e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Aug 25 02:55:00 2023 GMT Not After : Aug 23 03:00:00 2024 GMT Subject: CN=D00C30BEF9A254AC2E21353C55F176DD16BCA88F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:a3:94:ec:13:f6:55:68:2b:6b:d8:3f:27: f4:69:2a:28:5e:b3:a5:8d:43:51:04:ca:89:a4:9b: 44:14:90:0f:ab:2b:4f:8d:fc:73:82:f7:7b:34:3c: 5f:30:6b:ae:42:de:93:5b:5c:0f:8f:0e:77:cc:6e: 74:46:ad:2d:a5:9c:f2:4d:f6:b6:24:dd:05:45:ee: 5e:12:12:55:51:ee:6e:0a:fa:4d:ad:ae:cd:0a:df: 7a:57:5b:b3:9c:8a:55:de:a2:ab:27:01:72:09:ea: 7e:a1:89:4a:36:15:37:a5:53:df:8d:ef:61:59:47: 7f:8b:72:2e:23:e7:e9:0c:c5:2f:10:57:00:32:a3: 3b:70:10:90:3b:be:6c:8b:c8:38:33:5f:39:0a:d1: 62:55:e6:5e:89:1e:28:d3:a4:19:a0:f3:b3:fb:1d: 2f:89:dc:cf:fa:9d:60:c3:9f:70:b9:3a:59:24:c5: 12:06:fd:aa:a9:c6:0f:c6:1a:ce:ce:37:e4:2b:ea: d1:c4:c1:fa:17:18:e5:ad:f2:c6:9c:d3:9e:20:a1: b1:e2:24:75:00:e1:06:81:39:b3:aa:56:c1:60:eb: 2b:b9:02:38:51:07:52:10:e9:5f:6f:7d:e0:f1:24: ef:36:72:b5:64:1a:a2:37:55:4c:f7:11:34:3f:5a: b9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:0C:30:BE:F9:A2:54:AC:2E:21:35:3C:55:F1:76:DD:16:BC:A8:8F X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/323430323a616134303a3a2f33322d3332203d3e20313337333330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:aa40::/32 Signature Algorithm: sha256WithRSAEncryption 03:6d:e0:43:44:5d:6c:9f:b7:d8:19:71:53:9e:38:64:6d:0e: 4d:e8:68:0a:94:aa:1e:16:f7:cb:a8:70:7d:07:58:f7:2e:29: 40:6b:a5:ae:49:20:f0:88:51:a7:b1:a0:96:82:dd:cc:ed:c7: a7:42:13:90:63:10:6b:51:ea:1d:5c:36:67:8f:d5:e1:72:60: a4:48:ad:a6:7b:88:8d:ce:72:ab:78:bc:37:f5:c4:b1:8f:46: 2b:b9:c4:fa:ea:be:e3:33:77:81:0f:a8:fc:8f:53:8c:ff:16: 07:a1:59:ee:0f:fa:92:38:e7:31:e1:84:e1:8e:35:9c:65:49: d0:de:7a:ad:d7:65:f0:ec:e3:9c:0f:1e:96:d9:83:11:a1:cb: dd:cc:83:f5:56:e8:4f:6b:5a:bf:fe:d8:4f:c3:a2:22:a6:64: b2:ab:fc:9f:d1:c4:10:6f:ed:a5:64:1a:ae:45:01:bb:fe:c9: c5:44:88:6f:ee:e7:4d:e6:33:e1:fc:6e:75:07:85:e5:91:51: 5d:99:b2:2a:6d:2a:e8:92:90:c4:f2:24:34:07:31:b7:e8:fc: 2b:ae:64:d3:9f:2e:4c:22:12:37:41:9e:1b:91:8a:1e:ee:06: 8b:38:fb:ec:24:fa:d5:84:43:99:46:21:e9:ea:fd:65:4a:25: 8e:52:42:8d -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWuhPXba87Iw57fTp/obqMHoFPtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yMzA4MjUwMjU1MDBaFw0yNDA4MjMwMzAwMDBaMDMxMTAvBgNV BAMTKEQwMEMzMEJFRjlBMjU0QUMyRTIxMzUzQzU1RjE3NkREMTZCQ0E4OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpnKOU7BP2VWgra9g/J/RpKihe s6WNQ1EEyomkm0QUkA+rK0+N/HOC93s0PF8wa65C3pNbXA+PDnfMbnRGrS2lnPJN 9rYk3QVF7l4SElVR7m4K+k2trs0K33pXW7OcilXeoqsnAXIJ6n6hiUo2FTelU9+N 72FZR3+Lci4j5+kMxS8QVwAyoztwEJA7vmyLyDgzXzkK0WJV5l6JHijTpBmg87P7 HS+J3M/6nWDDn3C5OlkkxRIG/aqpxg/GGs7ON+Qr6tHEwfoXGOWt8sac054gobHi JHUA4QaBObOqVsFg6yu5AjhRB1IQ6V9vfeDxJO82crVkGqI3VUz3ETQ/WrmRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU0AwwvvmiVKwuITU8VfF23Ra8qI8wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMyMzQzMDMyM2E2MTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCqkAwDQYJKoZI hvcNAQELBQADggEBAANt4ENEXWyft9gZcVOeOGRtDk3oaAqUqh4W98uocH0HWPcu KUBrpa5JIPCIUaexoJaC3cztx6dCE5BjEGtR6h1cNmeP1eFyYKRIraZ7iI3Ocqt4 vDf1xLGPRiu5xPrqvuMzd4EPqPyPU4z/FgehWe4P+pI45zHhhOGONZxlSdDeeq3X ZfDs45wPHpbZgxGhy93Mg/VW6E9rWr/+2E/DoiKmZLKr/J/RxBBv7aVkGq5FAbv+ ycVEiG/u503mM+H8bnUHheWRUV2ZsiptKuiSkMTyJDQHMbfo/CuuZNOfLkwiEjdB nhuRih7uBos4++wk+tWEQ5lGIenq/WVKJY5SQo0= -----END CERTIFICATE-----Generated at Wed Apr 24 01:48:20 2024 by rpki-client on console-fra.rpki-client.org