$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: v0m70RT7TsMBD2CfWXOxviOzxM9VbD9adOYfqtuzcmg= Subject key identifier: F0:53:11:41:79:70:7B:5D:2C:11:2F:1F:9B:9B:46:5C:BC:FF:54:29 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 44F97F234A3BA91E7B23615410C6596909AEBE82 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:34:36 +0000 ROA not before: Fri 09 Aug 2024 11:29:36 +0000 ROA not after: Fri 08 Aug 2025 11:34:36 +0000 asID: 153087 IP address blocks: 2404:97c0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f9:7f:23:4a:3b:a9:1e:7b:23:61:54:10:c6:59:69:09:ae:be:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:29:36 2024 GMT Not After : Aug 8 11:34:36 2025 GMT Subject: CN=F053114179707B5D2C112F1F9B9B465CBCFF5429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:eb:1c:9c:da:6c:9e:0c:61:3d:27:c7:6d:8d: e3:72:d5:85:13:15:70:4e:99:ba:4b:37:65:91:b5: 73:15:be:29:02:e9:aa:8a:83:9c:eb:cb:b6:98:43: 16:cc:52:03:c0:65:00:f6:08:2a:b6:38:02:c2:4e: f0:92:a9:63:cc:d7:d8:ad:71:84:3a:b3:88:49:89: 6e:60:9b:a3:3f:f5:76:a2:9f:e9:3d:dc:bc:d5:e2: 1b:2e:7f:e7:f1:39:9c:8a:0d:44:97:cc:54:6e:7d: 80:63:5d:5a:5b:8e:56:38:64:ba:6f:02:22:f6:85: 86:e4:40:1a:23:a2:e0:65:b0:1a:df:1d:3f:eb:1c: 5e:ab:9b:f1:cf:57:2b:9c:a5:a6:fa:30:4e:f1:ba: df:6a:4a:f4:b6:a0:ee:4c:72:8b:b3:d9:ee:15:7a: f7:c7:89:35:47:2e:d8:9f:bf:af:44:6b:3b:e0:43: d7:9e:e5:49:56:0e:38:d9:2e:5c:42:32:1a:24:3b: 38:1a:2c:37:63:dc:32:c5:a7:e0:b1:35:13:d7:f4: 67:d5:f6:5c:ea:ed:59:a7:0d:46:a8:63:ad:46:b3: 14:df:11:8d:f5:ba:5c:59:b5:9e:94:38:45:2d:c4: 1e:c1:ba:ce:25:d2:1a:f1:1a:75:2a:c9:74:91:4a: bf:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:53:11:41:79:70:7B:5D:2C:11:2F:1F:9B:9B:46:5C:BC:FF:54:29 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:222::/48 Signature Algorithm: sha256WithRSAEncryption 94:2c:9a:66:5f:f6:6f:a0:ec:b0:79:38:59:bd:48:16:ed:34: fd:84:6c:c4:62:e8:ae:67:ce:e3:b8:ff:6e:d2:e4:43:43:d3: c6:bd:ff:44:29:08:d1:e5:0e:a2:d2:ed:b3:61:ee:90:85:9b: b7:50:a4:e9:be:4e:c9:bb:8d:c6:d1:fe:81:0c:dc:ec:45:de: 0a:f7:70:63:34:9a:67:fe:17:96:a6:fa:7b:94:9f:9c:69:08: 26:ca:c7:1b:3c:27:32:40:53:27:07:57:85:b6:dd:74:c5:e7: ef:67:12:f2:7b:d1:b9:3a:d9:ef:40:c3:c1:51:5b:bc:67:7c: a8:bc:4d:dd:cd:78:ef:3e:1c:d4:1b:af:75:77:ad:7c:46:60: 15:ea:05:0c:e5:e5:a7:e4:19:ea:88:da:bf:fb:67:d6:1e:9c: 18:98:05:69:91:1f:6d:a3:e7:43:7b:93:60:49:e0:d1:05:24: 1c:a3:05:33:6d:fd:8d:50:c1:88:32:a6:f2:b2:3d:38:91:6d: fa:45:90:e5:c8:1d:46:bd:8e:0d:09:7a:22:e9:8e:c4:35:4e: 75:97:19:ac:72:cf:6a:c4:67:d2:d7:aa:b4:14:86:5d:c2:5d: 3a:f5:31:1c:32:d0:1e:6e:4b:65:12:63:fe:dc:f6:de:da:10: 0d:b9:26:6a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURPl/I0o7qR57I2FUEMZZaQmuvoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTI5MzZaFw0yNTA4MDgxMTM0MzZaMDMxMTAvBgNV BAMTKEYwNTMxMTQxNzk3MDdCNUQyQzExMkYxRjlCOUI0NjVDQkNGRjU0MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk6xyc2myeDGE9J8dtjeNy1YUT FXBOmbpLN2WRtXMVvikC6aqKg5zry7aYQxbMUgPAZQD2CCq2OALCTvCSqWPM19it cYQ6s4hJiW5gm6M/9Xain+k93LzV4hsuf+fxOZyKDUSXzFRufYBjXVpbjlY4ZLpv AiL2hYbkQBojouBlsBrfHT/rHF6rm/HPVyucpab6ME7xut9qSvS2oO5Mcouz2e4V evfHiTVHLtifv69EazvgQ9ee5UlWDjjZLlxCMhokOzgaLDdj3DLFp+CxNRPX9GfV 9lzq7VmnDUaoY61GsxTfEY31ulxZtZ6UOEUtxB7Bus4l0hrxGnUqyXSRSr/xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8FMRQXlwe10sES8fm5tGXLz/VCkwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQCULJpmX/ZvoOyweThZvUgW7TT9hGzEYuiu Z87juP9u0uRDQ9PGvf9EKQjR5Q6i0u2zYe6QhZu3UKTpvk7Ju43G0f6BDNzsRd4K 93BjNJpn/heWpvp7lJ+caQgmyscbPCcyQFMnB1eFtt10xefvZxLye9G5OtnvQMPB UVu8Z3yovE3dzXjvPhzUG691d618RmAV6gUM5eWn5BnqiNq/+2fWHpwYmAVpkR9t o+dDe5NgSeDRBSQcowUzbf2NUMGIMqbysj04kW36RZDlyB1GvY4NCXoi6Y7ENU51 lxmscs9qxGfS16q0FIZdwl069TEcMtAebktlEmP+3Pbe2hANuSZq -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org