$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: balnJcNONLw8SBYvt7tVe9VLlUUBAlIKjs8CUCdy5n0= Subject key identifier: DC:49:EA:FD:AD:05:7D:26:7B:FE:99:DA:9A:56:44:E1:73:3A:7B:82 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 11A9694035EAA794B554B03662C372C5B7DE9476 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:35:24 +0000 ROA not before: Fri 09 Aug 2024 11:30:24 +0000 ROA not after: Fri 08 Aug 2025 11:35:24 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a9:69:40:35:ea:a7:94:b5:54:b0:36:62:c3:72:c5:b7:de:94:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:30:24 2024 GMT Not After : Aug 8 11:35:24 2025 GMT Subject: CN=DC49EAFDAD057D267BFE99DA9A5644E1733A7B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:19:62:cc:bb:49:16:d1:27:58:0c:2e:cc:ec: 0d:2f:7d:c7:3d:a8:6d:2c:bc:e0:98:a8:f3:93:58: 91:16:78:a4:0f:3d:33:af:f7:26:be:05:ce:79:d3: e9:70:22:e3:88:43:50:81:1c:16:13:12:02:bd:fd: f5:97:56:66:a7:85:87:35:eb:8b:68:aa:7e:6e:7e: 73:04:e6:2e:09:08:4f:75:90:8f:23:04:7f:74:25: 59:46:b8:73:ac:40:91:65:82:74:f8:38:af:96:c3: 79:39:0b:05:6b:2b:0e:c5:81:fe:25:b6:32:1e:6b: 60:55:fc:3f:e9:77:08:02:e4:e6:ba:c1:d3:2b:db: 36:7c:c8:93:79:ba:0b:6b:cf:09:b5:16:74:a9:5f: ad:d1:d0:f7:3a:ff:ca:4a:7d:c1:57:54:88:d2:1d: de:af:b3:13:1a:97:85:ba:cc:bb:1e:84:73:d4:3b: b8:75:6d:d9:fe:86:ae:f8:53:d0:b6:90:55:64:5a: d3:70:af:b3:cd:19:cf:c3:31:3a:3d:76:0a:6d:55: 41:a9:ef:0c:e9:c0:24:47:e8:7b:81:92:99:73:69: ab:48:4e:51:79:47:c1:2c:e6:f8:c3:a7:a9:e1:09: a2:f7:41:00:bd:cb:1d:0d:14:eb:13:25:a6:38:64: e9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:49:EA:FD:AD:05:7D:26:7B:FE:99:DA:9A:56:44:E1:73:3A:7B:82 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/48 Signature Algorithm: sha256WithRSAEncryption 50:19:3a:70:61:3a:af:04:81:1a:41:80:cf:1c:f0:7d:21:26: d5:01:a3:c8:37:8d:46:2e:a3:3b:b8:a8:33:21:af:f1:1f:5d: cd:64:9d:fc:ad:0c:12:50:9b:28:69:14:5b:15:6f:8e:9c:1b: e2:7f:7d:69:bc:d7:c3:1e:ed:eb:d0:5f:87:3f:96:d7:58:90: 1a:86:c6:d1:32:1f:0a:5d:10:dd:4a:6a:ec:7b:7a:d2:42:84: 00:df:1a:f7:0e:c8:1f:66:42:b8:36:7d:59:e4:4c:a0:fb:99: ed:01:28:2d:54:e1:01:f9:31:88:83:ba:21:c4:63:2c:b2:f6: 01:c5:2d:82:f8:42:3a:95:40:11:33:b3:75:3e:a4:b1:75:2a: 0c:5c:37:a9:68:ac:bb:ed:52:f9:c0:53:d3:34:3b:2f:5e:7f: 05:49:1e:df:59:4d:3c:43:3d:04:3b:67:49:48:74:93:8b:08: e6:d9:42:57:08:e4:3e:66:d8:12:f5:c0:19:c5:ac:60:c4:19: a7:a8:69:6c:72:91:ed:9e:76:44:40:68:2e:c5:48:c3:6b:59: 87:51:d0:b5:1c:42:7c:4a:ae:5e:28:52:9a:50:64:10:82:be: 12:33:cf:11:d3:b3:a9:87:05:e9:eb:68:15:d4:65:8b:db:03: 16:04:a8:aa -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEalpQDXqp5S1VLA2YsNyxbfelHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTMwMjRaFw0yNTA4MDgxMTM1MjRaMDMxMTAvBgNV BAMTKERDNDlFQUZEQUQwNTdEMjY3QkZFOTlEQTlBNTY0NEUxNzMzQTdCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkGWLMu0kW0SdYDC7M7A0vfcc9 qG0svOCYqPOTWJEWeKQPPTOv9ya+Bc550+lwIuOIQ1CBHBYTEgK9/fWXVmanhYc1 64toqn5ufnME5i4JCE91kI8jBH90JVlGuHOsQJFlgnT4OK+Ww3k5CwVrKw7Fgf4l tjIea2BV/D/pdwgC5Oa6wdMr2zZ8yJN5ugtrzwm1FnSpX63R0Pc6/8pKfcFXVIjS Hd6vsxMal4W6zLsehHPUO7h1bdn+hq74U9C2kFVkWtNwr7PNGc/DMTo9dgptVUGp 7wzpwCRH6HuBkplzaatITlF5R8Es5vjDp6nhCaL3QQC9yx0NFOsTJaY4ZOlpAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU3Enq/a0FfSZ7/pnamlZE4XM6e4IwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBAFAZOnBhOq8EgRpBgM8c8H0hJtUBo8g3 jUYuozu4qDMhr/EfXc1knfytDBJQmyhpFFsVb46cG+J/fWm818Me7evQX4c/ltdY kBqGxtEyHwpdEN1Kaux7etJChADfGvcOyB9mQrg2fVnkTKD7me0BKC1U4QH5MYiD uiHEYyyy9gHFLYL4QjqVQBEzs3U+pLF1KgxcN6lorLvtUvnAU9M0Oy9efwVJHt9Z TTxDPQQ7Z0lIdJOLCObZQlcI5D5m2BL1wBnFrGDEGaeoaWxyke2edkRAaC7FSMNr WYdR0LUcQnxKrl4oUppQZBCCvhIzzxHTs6mHBenraBXUZYvbAxYEqKo= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:24 2024 by rpki-client on console-ams.rpki-client.org