$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: sw0SlIxt+FA7pZy4rkUInlCn0uAcgR4nYJ5Re3N9oxc= Subject key identifier: F5:1B:2D:3D:18:06:64:0D:96:12:DF:96:66:43:57:F2:4D:A6:B8:C2 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 03CA8CC8FE7C1917E53C48740C142958DAF57DFE Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:34:07 +0000 ROA not before: Fri 09 Aug 2024 11:29:07 +0000 ROA not after: Fri 08 Aug 2025 11:34:07 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ca:8c:c8:fe:7c:19:17:e5:3c:48:74:0c:14:29:58:da:f5:7d:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:29:07 2024 GMT Not After : Aug 8 11:34:07 2025 GMT Subject: CN=F51B2D3D1806640D9612DF96664357F24DA6B8C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1d:71:9c:38:de:35:09:96:b3:04:f7:ad:49: 42:cd:04:9f:26:46:8b:f1:be:f5:84:fa:77:03:9a: f2:ba:2e:76:59:07:5d:d1:7a:82:33:03:c6:b4:21: 98:65:fa:a2:e3:82:ca:c0:e0:e5:8a:bf:f6:0a:7d: d9:c4:f3:8f:0f:9a:d8:af:b1:51:0e:25:6b:45:5f: a8:97:11:03:f8:de:9e:d0:7e:27:a5:80:8c:9c:24: 32:99:42:83:67:15:1e:45:42:bc:4f:71:be:d5:e5: ad:5e:1f:8c:2e:78:53:81:6a:1f:80:8e:2f:cc:e4: 9e:fd:e8:ab:7c:56:0f:1f:a4:d6:86:30:98:b5:e0: 74:03:01:99:6b:c0:c9:fa:2c:42:cf:61:cb:68:a8: de:8a:f0:9e:9b:97:b9:05:1f:a1:a9:f0:2b:42:52: 42:24:9d:02:0e:36:29:e5:ab:ef:86:05:79:23:45: 65:f0:31:a2:b2:81:2d:33:6d:f2:2e:f7:36:70:d0: a5:0c:93:5c:a4:ce:9d:6f:77:b0:64:df:eb:f3:25: b5:97:c9:38:57:15:1e:8b:c0:7b:78:ad:44:05:9d: ff:d2:b2:1d:57:4b:0b:52:95:03:f5:61:2f:56:48: 23:aa:c8:ba:ab:1f:af:c3:44:3f:7f:5e:9b:06:c7: 58:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1B:2D:3D:18:06:64:0D:96:12:DF:96:66:43:57:F2:4D:A6:B8:C2 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption b1:5c:a5:a7:d1:b4:ba:b2:39:c9:5f:a6:1a:10:22:f5:59:01: 42:01:c2:55:4c:13:29:5f:38:30:87:53:09:7f:d5:6b:ab:fc: 85:e3:82:81:0f:0a:c1:31:9c:2b:4b:d4:62:3a:06:fa:7c:7a: 55:99:c7:15:cc:ae:a7:b5:3f:00:a3:4a:b7:4c:0e:e3:22:e7: e2:c1:16:17:fe:e9:6a:77:89:b7:3a:fe:b4:d4:14:13:fe:9b: 9b:41:9f:68:c3:4f:9a:0e:ba:1d:c9:94:db:dd:19:84:b1:2c: cc:9f:92:30:4a:3e:a7:a8:7a:ab:c2:09:59:d7:e3:b4:10:ea: 5b:0a:13:d9:37:b4:0b:7d:b5:e3:94:fe:05:a6:4c:ee:9a:db: 27:d7:b3:aa:d1:5d:7c:18:84:bb:19:29:55:93:9b:35:7f:ae: c7:84:64:29:eb:6f:ec:65:93:60:ae:e0:a9:2a:ef:57:94:fb: 28:f7:f1:55:62:19:8d:9a:cf:06:cc:f7:be:9e:92:53:16:97: ed:3a:7b:de:e0:a1:8c:f6:6a:44:32:df:65:74:20:df:2d:77: 5f:99:6d:04:27:f2:5f:33:5a:36:66:da:57:9c:ba:3a:00:33: 40:21:b6:e8:b2:1a:8b:f9:ae:f1:5c:0d:8c:47:e3:23:d4:83: ad:c9:64:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUA8qMyP58GRflPEh0DBQpWNr1ff4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTI5MDdaFw0yNTA4MDgxMTM0MDdaMDMxMTAvBgNV BAMTKEY1MUIyRDNEMTgwNjY0MEQ5NjEyREY5NjY2NDM1N0YyNERBNkI4QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKHXGcON41CZazBPetSULNBJ8m RovxvvWE+ncDmvK6LnZZB13ReoIzA8a0IZhl+qLjgsrA4OWKv/YKfdnE848Pmtiv sVEOJWtFX6iXEQP43p7QfielgIycJDKZQoNnFR5FQrxPcb7V5a1eH4wueFOBah+A ji/M5J796Kt8Vg8fpNaGMJi14HQDAZlrwMn6LELPYctoqN6K8J6bl7kFH6Gp8CtC UkIknQIONinlq++GBXkjRWXwMaKygS0zbfIu9zZw0KUMk1ykzp1vd7Bk3+vzJbWX yThXFR6LwHt4rUQFnf/Ssh1XSwtSlQP1YS9WSCOqyLqrH6/DRD9/XpsGx1hXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9RstPRgGZA2WEt+WZkNX8k2muMIwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQCxXKWn0bS6sjnJX6YaECL1WQFCAcJVTBMp Xzgwh1MJf9Vrq/yF44KBDwrBMZwrS9RiOgb6fHpVmccVzK6ntT8Ao0q3TA7jIufi wRYX/ulqd4m3Ov601BQT/pubQZ9ow0+aDrodyZTb3RmEsSzMn5IwSj6nqHqrwglZ 1+O0EOpbChPZN7QLfbXjlP4Fpkzumtsn17Oq0V18GIS7GSlVk5s1f67HhGQp62/s ZZNgruCpKu9XlPso9/FVYhmNms8GzPe+npJTFpftOnve4KGM9mpEMt9ldCDfLXdf mW0EJ/JfM1o2ZtpXnLo6ADNAIbboshqL+a7xXA2MR+Mj1IOtyWQX -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:24 2024 by rpki-client on console-ams.rpki-client.org