$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 12eKUXGhIz6FHVGhhjWlfvlhTiivVo5sPJpz1GDHaMw= Subject key identifier: 5C:8C:42:30:B7:44:DF:43:20:F6:B5:77:D8:47:6B:6C:7C:6C:F0:F2 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 5CDE98FA95F6C43AAE172259385E7E9D12AD5A22 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:35:03 +0000 ROA not before: Fri 09 Aug 2024 11:30:03 +0000 ROA not after: Fri 08 Aug 2025 11:35:03 +0000 asID: 153087 IP address blocks: 2404:97c0:223::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:de:98:fa:95:f6:c4:3a:ae:17:22:59:38:5e:7e:9d:12:ad:5a:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:30:03 2024 GMT Not After : Aug 8 11:35:03 2025 GMT Subject: CN=5C8C4230B744DF4320F6B577D8476B6C7C6CF0F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:cc:3b:00:fe:46:60:bc:03:a8:14:51:d6: a2:8e:4a:22:97:2f:d2:42:9e:b9:cb:dc:fd:f8:92: cc:0b:df:40:42:3d:c1:10:4b:0b:2c:1a:b1:a7:8c: 22:79:aa:2e:a2:04:77:d5:ee:8a:ed:43:25:f4:87: 18:e1:6f:f9:f2:46:62:0a:6a:37:ae:95:f2:bc:2f: 72:ed:3e:93:50:7b:81:a0:c3:de:ab:92:c3:96:9a: 5b:cb:4a:6d:08:d0:8c:2c:33:2a:1a:06:5c:11:a9: cd:ef:db:b4:2e:b6:4a:f2:c9:fe:2e:9e:6b:99:31: d8:30:88:7c:8e:f7:07:ab:89:65:8b:e8:42:d2:34: b1:e1:44:0c:f4:6f:1f:22:c2:cd:d9:f8:5a:25:c7: aa:94:6c:ce:f7:64:ce:50:47:8d:b3:2e:b8:dd:59: 34:3d:c3:02:5e:47:13:0b:6e:4e:97:e2:83:f6:7c: f5:7b:88:8d:8a:d6:52:95:08:eb:41:b9:47:71:a4: 5f:7b:35:68:83:e6:0b:0e:72:f2:27:e1:79:cd:2a: f6:45:dc:90:95:0c:fb:91:17:92:52:fb:0b:51:e3: 3c:21:43:9a:08:a2:2d:b3:21:8c:bb:92:5a:3b:54: 3c:07:74:34:dc:c7:89:8c:6f:30:f6:05:18:a5:fd: 20:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8C:42:30:B7:44:DF:43:20:F6:B5:77:D8:47:6B:6C:7C:6C:F0:F2 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:223::/48 Signature Algorithm: sha256WithRSAEncryption b5:16:2f:d5:2f:4f:6a:b0:a1:9d:3d:b5:74:5a:cc:09:fe:1f: fd:23:10:5f:9e:9b:90:7b:ff:26:9a:4a:d5:5a:b3:4c:80:32: 84:51:3e:17:16:15:d5:32:fb:f6:1e:a8:44:cd:23:42:c6:75: 9d:21:5b:37:6f:52:75:9a:87:b9:59:c7:00:51:2b:53:8f:b2: 74:a3:4e:5a:61:72:0e:17:dc:af:e9:bd:bd:78:94:0a:c5:5f: 2c:f4:ea:79:8c:4a:ea:78:1a:7a:8b:4f:42:f6:c3:5d:be:5d: 5f:7e:54:99:4f:7b:be:b7:2e:e2:a8:24:e9:96:11:1c:8e:44: b0:6b:e5:99:1c:6f:66:7f:24:17:7e:11:4d:17:c6:ed:14:c3: 60:9d:45:5c:a5:1d:29:ae:57:62:24:7c:f3:a8:b5:94:50:4a: 47:6b:f6:12:f3:5b:2d:dc:31:eb:c8:51:28:82:54:5b:36:d4: 71:00:7a:dd:a3:32:f5:af:81:6e:a9:10:f6:2a:8e:06:98:21: 36:a0:3f:05:a2:e9:32:85:93:bf:0e:c0:64:95:dc:66:c6:67: 06:e3:f2:7e:54:8e:63:df:d1:6d:fa:7c:1c:e6:02:76:3e:ed: 55:1b:bb:92:47:dd:b1:ef:a4:55:dd:82:3c:c7:f7:cb:2f:39: b6:af:08:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXN6Y+pX2xDquFyJZOF5+nRKtWiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTMwMDNaFw0yNTA4MDgxMTM1MDNaMDMxMTAvBgNV BAMTKDVDOEM0MjMwQjc0NERGNDMyMEY2QjU3N0Q4NDc2QjZDN0M2Q0YwRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Ssw7AP5GYLwDqBRR1qKOSiKX L9JCnrnL3P34kswL30BCPcEQSwssGrGnjCJ5qi6iBHfV7ortQyX0hxjhb/nyRmIK ajeulfK8L3LtPpNQe4Ggw96rksOWmlvLSm0I0IwsMyoaBlwRqc3v27Qutkryyf4u nmuZMdgwiHyO9weriWWL6ELSNLHhRAz0bx8iws3Z+Folx6qUbM73ZM5QR42zLrjd WTQ9wwJeRxMLbk6X4oP2fPV7iI2K1lKVCOtBuUdxpF97NWiD5gsOcvIn4XnNKvZF 3JCVDPuRF5JS+wtR4zwhQ5oIoi2zIYy7klo7VDwHdDTcx4mMbzD2BRil/SDVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXIxCMLdE30Mg9rV32EdrbHxs8PIwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIjMA0GCSqGSIb3DQEBCwUAA4IBAQC1Fi/VL09qsKGdPbV0WswJ/h/9IxBfnpuQ e/8mmkrVWrNMgDKEUT4XFhXVMvv2HqhEzSNCxnWdIVs3b1J1moe5WccAUStTj7J0 o05aYXIOF9yv6b29eJQKxV8s9Op5jErqeBp6i09C9sNdvl1fflSZT3u+ty7iqCTp lhEcjkSwa+WZHG9mfyQXfhFNF8btFMNgnUVcpR0prldiJHzzqLWUUEpHa/YS81st 3DHryFEoglRbNtRxAHrdozL1r4FuqRD2Ko4GmCE2oD8FoukyhZO/DsBkldxmxmcG 4/J+VI5j39Ft+nwc5gJ2Pu1VG7uSR92x76RV3YI8x/fLLzm2rwiH -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org