$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: +efjUKkfN7wyOn1gEZ4iK+HOgdi5kSwgmzRJxOnk92c= Subject key identifier: E8:0F:4E:AF:A0:2A:1A:5F:7A:EE:C2:64:86:B2:65:9E:64:C5:92:E3 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 3E57C624CA53094CA2EC31ECB9D544550E8B1C10 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:37:21 +0000 ROA not before: Fri 09 Aug 2024 11:32:21 +0000 ROA not after: Fri 08 Aug 2025 11:37:21 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:57:c6:24:ca:53:09:4c:a2:ec:31:ec:b9:d5:44:55:0e:8b:1c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:32:21 2024 GMT Not After : Aug 8 11:37:21 2025 GMT Subject: CN=E80F4EAFA02A1A5F7AEEC26486B2659E64C592E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:33:ff:14:d1:3b:10:d5:29:5e:fb:aa:b7:f3: c9:26:89:3c:d7:61:9c:cc:e6:7a:29:db:10:bb:c4: 12:de:40:af:2d:88:6d:cb:1e:38:8e:c4:63:7b:bc: 9f:98:6a:4c:22:42:ab:d3:31:d6:9c:cc:56:ed:d2: d4:0e:db:ca:42:36:df:32:39:7a:2f:35:5d:c2:e8: 29:61:c3:5a:1a:47:73:e7:2b:8f:99:70:e2:3b:d9: 30:61:2b:cf:3a:c7:89:20:69:ed:c2:1f:01:02:58: fa:a9:1e:0a:2d:22:38:be:c8:06:f3:d4:c0:56:07: 7f:a3:83:99:b7:4b:ab:12:d7:dc:5d:c0:cb:52:c3: fd:0b:b0:ab:1a:b0:39:fe:55:ce:56:2a:68:5b:b2: 4d:2f:19:81:c2:60:71:d0:b3:b7:9f:b9:57:79:b2: 10:13:d6:0d:c7:8b:17:5d:a4:cb:e8:ae:48:b9:2a: 71:dc:57:5e:fc:02:c3:e7:e3:27:78:ea:ca:fb:db: 6f:99:6b:8c:d8:6a:28:54:a1:6f:04:24:16:e2:89: 2f:0f:fe:6d:8e:c7:dd:23:e9:52:79:42:e4:80:38: aa:27:90:4c:29:b5:50:3d:6d:83:b7:ec:d5:cb:0e: 34:c0:e4:6a:14:d1:cf:15:5f:29:e8:81:f4:20:55: 2b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0F:4E:AF:A0:2A:1A:5F:7A:EE:C2:64:86:B2:65:9E:64:C5:92:E3 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 34:04:84:f9:69:64:2b:df:71:62:83:ef:d7:31:fa:7f:6b:db: 8e:df:f4:fe:8e:9a:f6:e3:00:d2:de:94:bd:f6:ff:a6:88:df: 6b:95:3d:14:77:ce:17:b6:89:3d:33:a3:ba:70:14:7b:ad:ca: 70:6c:f2:18:27:05:3c:11:6c:fa:87:a7:fe:ce:b6:d8:be:da: 23:27:88:a0:7e:5d:42:c2:ec:89:fa:ec:a7:eb:5a:10:f3:20: 5f:5f:a8:78:91:b7:da:46:ae:ff:34:ca:82:dc:84:38:fa:67: a9:44:60:b0:44:ec:36:6e:fd:fb:92:dd:3f:4d:56:ef:d3:bf: 4a:62:ea:85:8c:d3:0e:af:39:9f:c6:fb:63:81:c5:b6:db:f7: a6:3e:d1:df:d8:7e:9b:95:91:73:8e:a2:ee:46:0f:7c:e3:32: 9e:b3:d9:be:0f:71:67:09:13:79:5f:ea:ee:41:f1:a4:16:ff: 40:a3:3d:7e:15:a7:7e:7f:77:32:bd:e4:71:9a:53:15:59:72: d5:d0:8b:c4:16:41:b4:82:9b:e8:30:63:56:b2:2f:70:c9:8f: 86:15:c6:85:2b:c5:c2:fd:d2:9d:f4:aa:15:26:ef:c7:f0:14: 73:f3:93:4d:77:79:59:29:41:1c:4b:7b:86:b6:62:3d:17:0b: bd:6f:6f:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPlfGJMpTCUyi7DHsudVEVQ6LHBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTMyMjFaFw0yNTA4MDgxMTM3MjFaMDMxMTAvBgNV BAMTKEU4MEY0RUFGQTAyQTFBNUY3QUVFQzI2NDg2QjI2NTlFNjRDNTkyRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTM/8U0TsQ1Sle+6q388kmiTzX YZzM5nop2xC7xBLeQK8tiG3LHjiOxGN7vJ+YakwiQqvTMdaczFbt0tQO28pCNt8y OXovNV3C6Clhw1oaR3PnK4+ZcOI72TBhK886x4kgae3CHwECWPqpHgotIji+yAbz 1MBWB3+jg5m3S6sS19xdwMtSw/0LsKsasDn+Vc5WKmhbsk0vGYHCYHHQs7efuVd5 shAT1g3HixddpMvorki5KnHcV178AsPn4yd46sr722+Za4zYaihUoW8EJBbiiS8P /m2Ox90j6VJ5QuSAOKonkEwptVA9bYO37NXLDjTA5GoU0c8VXynogfQgVSvbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6A9Or6AqGl967sJkhrJlnmTFkuMwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQA0BIT5aWQr33Fig+/XMfp/a9uO3/T+jpr2 4wDS3pS99v+miN9rlT0Ud84Xtok9M6O6cBR7rcpwbPIYJwU8EWz6h6f+zrbYvtoj J4igfl1CwuyJ+uyn61oQ8yBfX6h4kbfaRq7/NMqC3IQ4+mepRGCwROw2bv37kt0/ TVbv079KYuqFjNMOrzmfxvtjgcW22/emPtHf2H6blZFzjqLuRg984zKes9m+D3Fn CRN5X+ruQfGkFv9Aoz1+Fad+f3cyveRxmlMVWXLV0IvEFkG0gpvoMGNWsi9wyY+G FcaFK8XC/dKd9KoVJu/H8BRz85NNd3lZKUEcS3uGtmI9Fwu9b286 -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org