$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: gCaNhu3Q/cmRYN9/q1F0/I+o03gKJFZPjRNbpd2rXjU= Subject key identifier: 64:7F:08:50:FB:58:16:B1:1B:86:11:3F:F6:02:E0:36:B3:37:CA:79 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 3AFABD4C1BED4E14042818EB02A3F2F8DA350046 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 13:09:52 +0000 ROA not before: Fri 02 Aug 2024 13:04:52 +0000 ROA not after: Fri 01 Aug 2025 13:09:52 +0000 asID: 153087 IP address blocks: 2404:97c0:103::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fa:bd:4c:1b:ed:4e:14:04:28:18:eb:02:a3:f2:f8:da:35:00:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 13:04:52 2024 GMT Not After : Aug 1 13:09:52 2025 GMT Subject: CN=647F0850FB5816B11B86113FF602E036B337CA79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8e:f4:4e:6a:10:14:8a:49:87:b3:6a:5a:71: b3:38:5f:fc:6c:59:a7:c0:6b:90:ce:b7:57:af:1a: 43:e3:94:8c:1b:45:12:79:3e:f7:4e:cc:d7:b4:7e: bf:cc:54:90:fb:fc:af:cb:be:fb:41:42:69:b2:c5: 4d:af:1c:6a:3f:32:b7:e0:d3:b0:6c:c2:f4:82:d6: f9:ba:8a:3c:79:95:6c:97:52:9f:e4:23:a8:4c:e2: dd:23:f9:41:1d:18:32:8e:40:2b:b7:7c:28:03:c6: f7:da:6d:8d:4f:96:59:d6:b9:d1:b1:cd:a8:49:3f: 2b:f8:7f:cd:4d:9d:97:4c:5c:2b:fb:16:62:1a:eb: e2:6f:ec:4e:ce:60:4c:26:63:11:a1:59:d9:7f:fa: 84:ed:1a:63:ca:0a:bb:50:c1:d4:35:f5:fa:ce:a8: b6:84:8a:6c:ee:eb:62:d0:61:cf:ff:51:90:6a:a3: 65:92:ac:50:86:4b:3d:14:d6:1c:07:97:b7:8a:e7: 48:97:5b:cf:6e:b3:d9:11:be:28:3f:ed:62:e2:41: 19:9c:6a:2f:76:9c:49:8b:13:13:d7:53:94:b5:da: 6a:37:44:3a:e7:79:79:c3:53:bc:2b:29:77:f1:78: bb:40:22:16:88:95:89:b9:fc:29:65:dd:e8:a0:1c: a6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7F:08:50:FB:58:16:B1:1B:86:11:3F:F6:02:E0:36:B3:37:CA:79 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3130333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:103::/48 Signature Algorithm: sha256WithRSAEncryption c3:ef:a2:ac:e7:59:55:7c:39:6a:71:e2:38:e2:1b:4f:d7:93: 89:39:9a:aa:c2:07:38:3f:fb:1f:ce:bb:ac:e2:d8:cc:b5:5f: df:36:2b:f4:7d:d0:b4:99:2e:08:68:d3:8f:9b:f2:6b:e4:f9: 37:de:13:36:d0:07:42:fe:cb:c6:b7:48:61:29:49:53:24:d6: 41:75:fc:72:37:35:7c:35:f6:e9:09:fa:64:ff:81:d3:25:c6: 01:37:8f:58:4e:ec:e1:de:6d:03:8d:e3:d5:fe:f3:fb:80:cd: a7:f1:09:89:d9:ce:a4:2b:4d:64:59:6c:d8:57:94:02:26:42: 85:d1:fc:27:ef:39:ef:dc:60:d7:1d:ae:1e:ba:3f:21:5f:4f: f0:ea:b8:8a:40:fa:e1:4a:7d:07:c5:7b:99:a2:94:c6:85:18: ac:1b:9c:84:8d:5f:fd:2a:12:9c:51:71:d3:2a:fb:56:95:96: 93:9d:ef:07:f3:6e:68:5a:2b:a3:04:3f:8c:a6:ad:98:92:ae: a3:8f:bc:1c:f3:fb:82:93:ef:f6:0c:db:10:77:a7:5f:61:eb: 99:8d:07:12:ad:bd:5d:05:f9:98:da:26:c0:1f:52:6c:7c:62: 88:12:8d:b6:e9:6c:af:27:8e:f6:e0:41:10:73:74:bd:3b:e5: 77:07:b6:27 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOvq9TBvtThQEKBjrAqPy+No1AEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMzA0NTJaFw0yNTA4MDExMzA5NTJaMDMxMTAvBgNV BAMTKDY0N0YwODUwRkI1ODE2QjExQjg2MTEzRkY2MDJFMDM2QjMzN0NBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrjvROahAUikmHs2pacbM4X/xs WafAa5DOt1evGkPjlIwbRRJ5PvdOzNe0fr/MVJD7/K/LvvtBQmmyxU2vHGo/Mrfg 07BswvSC1vm6ijx5lWyXUp/kI6hM4t0j+UEdGDKOQCu3fCgDxvfabY1PllnWudGx zahJPyv4f81NnZdMXCv7FmIa6+Jv7E7OYEwmYxGhWdl/+oTtGmPKCrtQwdQ19frO qLaEimzu62LQYc//UZBqo2WSrFCGSz0U1hwHl7eK50iXW89us9kRvig/7WLiQRmc ai92nEmLExPXU5S12mo3RDrneXnDU7wrKXfxeLtAIhaIlYm5/Cll3eigHKY1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZH8IUPtYFrEbhhE/9gLgNrM3ynkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzMDMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAEDMA0GCSqGSIb3DQEBCwUAA4IBAQDD76Ks51lVfDlqceI44htP15OJOZqqwgc4 P/sfzrus4tjMtV/fNiv0fdC0mS4IaNOPm/Jr5Pk33hM20AdC/svGt0hhKUlTJNZB dfxyNzV8NfbpCfpk/4HTJcYBN49YTuzh3m0DjePV/vP7gM2n8QmJ2c6kK01kWWzY V5QCJkKF0fwn7znv3GDXHa4euj8hX0/w6riKQPrhSn0HxXuZopTGhRisG5yEjV/9 KhKcUXHTKvtWlZaTne8H825oWiujBD+Mpq2Ykq6jj7wc8/uCk+/2DNsQd6dfYeuZ jQcSrb1dBfmY2ibAH1JsfGKIEo226WyvJ4724EEQc3S9O+V3B7Yn -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org