$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa File: 323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa (raw, json) Hash identifier: mAS75lCTGbzHEnWR90xFkwtpmNeAjwcxkDKsBnVJR1I= Subject key identifier: 28:D6:FB:2E:A5:EE:EF:4F:6A:5C:07:40:1A:8A:2E:2C:D9:F1:5A:76 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 4E419713CAA268F43C75CDB49F4D2D32986F724D Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa Signing time: Thu 27 Jul 2023 14:00:02 +0000 ROA not before: Thu 27 Jul 2023 13:55:02 +0000 ROA not after: Thu 25 Jul 2024 14:00:02 +0000 asID: 138814 IP address blocks: 2404:97c0:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:41:97:13:ca:a2:68:f4:3c:75:cd:b4:9f:4d:2d:32:98:6f:72:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Jul 27 13:55:02 2023 GMT Not After : Jul 25 14:00:02 2024 GMT Subject: CN=28D6FB2EA5EEEF4F6A5C07401A8A2E2CD9F15A76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:26:10:b4:08:b8:e4:d7:91:74:07:31:5b:c0: 13:5d:d2:f5:a0:4b:45:f9:6e:79:be:2b:a2:49:d1: bf:d2:bf:ed:b1:30:33:4b:f1:24:2d:b2:3f:49:39: 9d:6d:84:b2:4c:b7:d7:08:17:85:20:7c:af:a5:6c: 0c:2e:14:a7:62:e8:d8:fd:6c:b7:da:42:5c:0f:df: 0f:7f:57:a0:4a:41:4a:44:2e:63:ce:08:09:1f:dd: a1:46:f6:88:cf:f9:42:05:0a:84:93:7d:98:10:24: 8f:01:56:18:c5:33:5d:7a:51:6f:32:d1:f2:44:67: 3f:7c:d4:da:d9:ab:b6:ed:65:78:14:be:22:78:f7: 95:23:b5:a0:b6:4f:e2:8a:75:36:cc:f5:db:c6:67: 01:22:74:7b:cc:00:03:71:77:61:3b:31:f7:0e:68: 77:99:8e:66:28:c4:61:0b:89:b5:be:4c:e1:fb:33: 70:fa:72:7d:f4:de:82:b1:07:44:e7:9d:70:e8:cb: 13:d6:82:4f:da:e0:23:35:25:8a:d6:5e:e5:c4:52: f3:bf:ea:0c:ed:19:34:cb:cc:a6:84:45:cd:58:1d: 86:96:3f:d8:d1:c0:9b:74:ad:b9:3f:00:34:40:8c: dc:76:51:ec:8a:fc:6f:27:d8:46:b5:41:d7:7c:50: 06:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D6:FB:2E:A5:EE:EF:4F:6A:5C:07:40:1A:8A:2E:2C:D9:F1:5A:76 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a353030303a3a2f33362d3336203d3e20313338383134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:5000::/36 Signature Algorithm: sha256WithRSAEncryption ae:45:64:36:ce:c4:98:6a:ba:b4:1e:02:9e:d6:e1:a7:9e:cc: 16:46:09:d6:8b:c8:f0:b7:3f:ff:70:be:81:10:cd:e6:66:69: 5e:5f:97:b4:4a:94:78:fb:b7:98:df:67:f6:32:9e:de:3b:76: 50:47:41:a3:ef:ba:bf:62:c3:d7:67:ee:24:e4:fe:d2:57:65: e9:f9:c9:4d:f8:31:21:1c:27:76:3d:06:f2:31:14:e8:81:5a: ba:73:c3:39:4f:ea:cc:91:e8:94:a4:12:eb:2f:e2:31:fe:a2: 6b:37:7b:55:a7:e7:48:d1:21:ca:3e:58:4b:f2:59:fa:1d:db: 00:0a:1e:ba:16:45:4d:78:74:82:c4:1f:56:91:95:e9:35:bc: f0:78:46:62:b1:09:73:c0:df:2f:38:34:f8:91:c4:40:b1:5a: 09:49:50:81:eb:0b:12:1a:a3:cd:3c:e7:c9:7b:a8:f3:bf:5b: 4a:7e:41:3a:50:29:26:07:76:11:c1:90:4f:68:2b:70:c3:a0: c6:3a:2e:a8:51:0f:02:77:d4:30:f1:af:97:c6:77:c9:0f:c0: 44:00:23:91:7d:cb:32:1b:1c:28:81:3a:55:cb:57:56:d8:ff: 57:70:85:33:48:f6:f1:35:6d:77:23:90:8d:b5:1d:44:d1:f8: 05:ae:ef:d1 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUTkGXE8qiaPQ8dc20n00tMphvck0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yMzA3MjcxMzU1MDJaFw0yNDA3MjUxNDAwMDJaMDMxMTAvBgNV BAMTKDI4RDZGQjJFQTVFRUVGNEY2QTVDMDc0MDFBOEEyRTJDRDlGMTVBNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJhC0CLjk15F0BzFbwBNd0vWg S0X5bnm+K6JJ0b/Sv+2xMDNL8SQtsj9JOZ1thLJMt9cIF4UgfK+lbAwuFKdi6Nj9 bLfaQlwP3w9/V6BKQUpELmPOCAkf3aFG9ojP+UIFCoSTfZgQJI8BVhjFM116UW8y 0fJEZz981NrZq7btZXgUviJ495UjtaC2T+KKdTbM9dvGZwEidHvMAANxd2E7MfcO aHeZjmYoxGELibW+TOH7M3D6cn303oKxB0TnnXDoyxPWgk/a4CM1JYrWXuXEUvO/ 6gztGTTLzKaERc1YHYaWP9jRwJt0rbk/ADRAjNx2UeyK/G8n2Ea1Qdd8UAaRAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUKNb7LqXu709qXAdAGoouLNnxWnYwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzUzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzgzODMxMzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAUDANBgkqhkiG9w0BAQsFAAOCAQEArkVkNs7EmGq6tB4Cntbhp57MFkYJ1ovI 8Lc//3C+gRDN5mZpXl+XtEqUePu3mN9n9jKe3jt2UEdBo++6v2LD12fuJOT+0ldl 6fnJTfgxIRwndj0G8jEU6IFaunPDOU/qzJHolKQS6y/iMf6iazd7VafnSNEhyj5Y S/JZ+h3bAAoeuhZFTXh0gsQfVpGV6TW88HhGYrEJc8DfLzg0+JHEQLFaCUlQgesL EhqjzTznyXuo879bSn5BOlApJgd2EcGQT2grcMOgxjouqFEPAnfUMPGvl8Z3yQ/A RAAjkX3LMhscKIE6VctXVtj/V3CFM0j28TVtdyOQjbUdRNH4Ba7v0Q== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:42 2024 by rpki-client on console-fra.rpki-client.org