$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa File: 323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa (raw, json) Hash identifier: 1GZOrXQN3z5L0qm7b+3s4slqnOrLe7UZneVIMn3meNQ= Subject key identifier: C0:CA:26:53:6D:3D:50:E2:C3:C0:F9:2E:69:00:D1:07:A6:8C:EA:72 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 55471B3452D53AEBE820CC550468B353B12E9572 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa Signing time: Thu 27 Jul 2023 14:00:03 +0000 ROA not before: Thu 27 Jul 2023 13:55:03 +0000 ROA not after: Thu 25 Jul 2024 14:00:03 +0000 asID: 138814 IP address blocks: 2404:97c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:47:1b:34:52:d5:3a:eb:e8:20:cc:55:04:68:b3:53:b1:2e:95:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 27 13:55:03 2023 GMT Not After : Jul 25 14:00:03 2024 GMT Subject: CN=C0CA26536D3D50E2C3C0F92E6900D107A68CEA72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:e9:09:2b:0e:56:9c:72:85:c6:38:b0:cb: 74:89:3c:30:ed:df:a8:1c:38:a4:aa:92:d2:58:bd: ce:16:f0:46:00:ec:7e:0a:9d:12:7c:46:54:89:e7: 5e:5b:e5:44:01:72:c6:4d:45:8e:f3:1f:c0:b2:7c: 47:aa:95:7c:7f:33:42:54:7c:f8:91:37:bc:aa:44: 53:f4:09:3b:93:70:e8:51:ab:05:84:6a:54:3e:cc: 0d:78:f8:8c:08:ba:2d:6e:60:78:4d:cd:c0:54:b9: bd:26:f7:1d:d0:86:d3:e5:4c:e1:89:b1:6b:36:68: 26:42:da:47:08:d2:3c:61:1b:19:22:5a:86:15:ca: 51:0e:bc:93:7c:75:c1:c5:78:ae:46:af:1a:43:99: 16:a6:ca:e7:09:bc:af:0c:0c:b7:33:25:9c:7a:1c: 70:90:73:57:70:53:fe:8c:6e:f0:06:ba:5b:d2:ef: b2:41:cf:7c:bb:e4:24:04:10:52:2e:89:c6:2f:c2: 16:29:56:3b:32:3e:b8:67:72:bf:f8:5d:56:8d:a6: a2:a5:20:53:63:a6:21:bb:5d:33:32:5a:52:72:28: ab:41:24:6d:84:66:70:ed:bd:38:3a:79:50:98:e4: bc:35:a7:8d:fe:93:20:dc:90:63:9b:2e:3d:8d:08: a8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CA:26:53:6D:3D:50:E2:C3:C0:F9:2E:69:00:D1:07:A6:8C:EA:72 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313030303a3a2f33362d3336203d3e20313338383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 97:d7:ba:11:24:d8:05:18:1c:95:ba:57:f7:03:5e:55:83:2f: ea:1b:02:43:39:f3:ed:fe:04:fd:c1:c1:f8:cf:4a:67:c3:62: 6b:3c:88:79:96:70:8c:11:cc:76:be:77:37:12:d7:a4:33:91: 20:12:02:bd:32:ff:76:18:a8:a6:c1:2c:aa:5e:2e:16:93:6d: b9:65:78:b3:35:86:5b:c6:bc:41:89:89:c9:65:3f:55:1f:9d: f0:8d:50:96:ab:96:19:4e:7c:a8:c7:e2:bb:83:de:84:4a:c6: d6:bb:92:b4:1a:8c:82:88:71:ef:74:1d:0a:ad:18:39:0b:13: 7a:12:03:ee:e7:64:a8:09:f3:1a:f1:2b:f7:fb:ba:79:1f:dd: 76:1f:3e:02:2d:92:9c:c5:98:bd:da:d3:90:40:9c:79:ba:35: 3f:a2:a0:35:7b:e0:48:4f:97:40:f1:00:c8:b5:fe:cd:e1:d5: 1c:2c:1b:0f:d4:c4:33:23:d6:5f:48:86:6d:5e:74:77:c6:5d: 77:25:09:b0:ff:7a:5a:c7:dc:95:58:48:7e:1f:43:c6:f6:2e: 22:1b:28:e3:74:ae:0e:ba:09:45:45:64:87:43:46:22:10:e6: 1f:15:ad:f5:d1:67:38:b1:ce:3d:22:82:ea:e5:40:1f:cc:1f: 35:8e:da:0f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUVUcbNFLVOuvoIMxVBGizU7EulXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yMzA3MjcxMzU1MDNaFw0yNDA3MjUxNDAwMDNaMDMxMTAvBgNV BAMTKEMwQ0EyNjUzNkQzRDUwRTJDM0MwRjkyRTY5MDBEMTA3QTY4Q0VBNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8OOkJKw5WnHKFxjiwy3SJPDDt 36gcOKSqktJYvc4W8EYA7H4KnRJ8RlSJ515b5UQBcsZNRY7zH8CyfEeqlXx/M0JU fPiRN7yqRFP0CTuTcOhRqwWEalQ+zA14+IwIui1uYHhNzcBUub0m9x3QhtPlTOGJ sWs2aCZC2kcI0jxhGxkiWoYVylEOvJN8dcHFeK5GrxpDmRamyucJvK8MDLczJZx6 HHCQc1dwU/6MbvAGulvS77JBz3y75CQEEFIuicYvwhYpVjsyPrhncr/4XVaNpqKl IFNjpiG7XTMyWlJyKKtBJG2EZnDtvTg6eVCY5Lw1p43+kyDckGObLj2NCKjVAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUwMomU209UOLDwPkuaQDRB6aM6nIwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAEDANBgkqhkiG9w0BAQsFAAOCAQEAl9e6ESTYBRgclbpX9wNeVYMv6hsCQznz 7f4E/cHB+M9KZ8NiazyIeZZwjBHMdr53NxLXpDORIBICvTL/dhiopsEsql4uFpNt uWV4szWGW8a8QYmJyWU/VR+d8I1QlquWGU58qMfiu4PehErG1ruStBqMgohx73Qd Cq0YOQsTehID7udkqAnzGvEr9/u6eR/ddh8+Ai2SnMWYvdrTkECcebo1P6KgNXvg SE+XQPEAyLX+zeHVHCwbD9TEMyPWX0iGbV50d8ZddyUJsP96WsfclVhIfh9DxvYu Ihso43SuDroJRUVkh0NGIhDmHxWt9dFnOLHOPSKC6uVAH8wfNY7aDw== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:42 2024 by rpki-client on console-fra.rpki-client.org