$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: NFkRw8bwxFLIifX7aQiKZVV8CWqOItWrH8iNT2mFb50= Subject key identifier: 60:67:8A:34:96:2C:A9:A7:4F:1D:78:0B:76:E6:EA:73:4F:E3:33:58 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 206FB8037013DD579011F4466EFE2CEAED4F11EF Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa Signing time: Thu 08 Aug 2024 01:49:10 +0000 ROA not before: Thu 08 Aug 2024 01:44:10 +0000 ROA not after: Thu 07 Aug 2025 01:49:10 +0000 asID: 153087 IP address blocks: 2404:97c0:1530::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:6f:b8:03:70:13:dd:57:90:11:f4:46:6e:fe:2c:ea:ed:4f:11:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 8 01:44:10 2024 GMT Not After : Aug 7 01:49:10 2025 GMT Subject: CN=60678A34962CA9A74F1D780B76E6EA734FE33358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:43:ae:08:3f:aa:2c:f7:55:92:56:80:ec:3c: f3:52:45:4f:63:6b:1c:95:f7:f5:35:42:9c:9a:94: 78:24:23:09:10:36:89:ee:3c:9e:07:29:a4:67:0f: c6:26:e6:2b:4d:05:48:e2:13:2d:9e:87:b1:25:63: be:d9:79:fc:39:bf:51:14:fc:43:f3:8c:43:fb:12: 5b:db:9f:1f:85:e0:b0:61:a1:19:d5:ca:01:0b:28: 39:7c:73:42:f4:20:f1:90:3c:3b:39:a3:03:86:dd: e0:df:37:9f:90:d5:ea:fb:85:48:3c:6a:32:e4:bd: 18:50:78:db:08:60:7d:8d:7d:4b:60:e2:d5:ec:2c: de:db:fe:7a:73:31:b4:d1:b8:c8:43:4a:8f:15:2d: 82:19:ca:60:25:48:76:ef:47:ae:19:d7:47:fd:c7: 46:d8:69:75:96:2e:db:82:eb:08:e3:c4:77:ef:0d: b0:e4:33:a1:4b:73:50:09:a9:97:de:6f:a7:ae:ce: de:4f:89:70:49:46:66:57:29:f7:5d:2b:84:9a:ef: 51:06:51:a2:c0:19:bd:ff:75:8e:05:7b:0f:17:7e: 21:22:18:0a:dd:90:f2:0f:1e:ce:5a:29:5f:55:4f: 87:cf:9a:2f:13:e6:5d:a6:4d:e0:f9:cf:93:cc:bb: 33:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:67:8A:34:96:2C:A9:A7:4F:1D:78:0B:76:E6:EA:73:4F:E3:33:58 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a313533303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1530::/48 Signature Algorithm: sha256WithRSAEncryption 06:63:a1:7b:f4:9a:9f:73:14:cc:ab:c1:86:ae:2b:21:7e:89: dd:37:55:62:7a:c6:4d:c5:02:18:24:10:5a:24:1e:fa:8b:df: eb:b2:b4:c5:3f:68:ae:02:23:73:c8:61:60:e5:89:a4:78:1d: 97:1d:1a:22:c3:d3:3f:db:98:bd:34:c6:4f:d9:75:bb:14:05: 70:87:e0:a3:db:20:6a:1f:f0:b2:46:02:4d:a1:15:d4:3b:21: 58:eb:52:42:66:26:2f:62:bb:5c:b0:cd:fd:e9:6a:18:e5:88: 32:6c:54:23:8c:cd:03:5b:fe:4d:43:62:19:81:98:97:6e:55: 83:d8:fd:6d:ae:a1:bc:1a:4e:2c:78:e0:48:24:ee:50:a0:c8: 2c:f9:79:15:0c:9d:a1:e3:8c:e2:da:13:bf:3b:70:5a:ae:0f: 79:61:4a:ea:a3:16:f4:76:34:08:54:c3:57:24:29:e7:73:b4: 88:1a:54:42:3c:9d:ed:4c:29:35:ca:4c:a4:66:04:99:31:bf: ae:ad:de:ab:67:50:f9:2e:be:9d:15:f6:56:b6:a7:02:29:15: 69:6a:9d:b7:be:af:91:ce:a3:2c:05:44:a1:02:67:4e:f2:65: 8d:46:4a:01:63:b6:b4:6e:d0:26:c5:be:0b:09:8a:3d:68:f5: 6e:1c:40:63 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUIG+4A3AT3VeQEfRGbv4s6u1PEe8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDgwMTQ0MTBaFw0yNTA4MDcwMTQ5MTBaMDMxMTAvBgNV BAMTKDYwNjc4QTM0OTYyQ0E5QTc0RjFENzgwQjc2RTZFQTczNEZFMzMzNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXQ64IP6os91WSVoDsPPNSRU9j axyV9/U1QpyalHgkIwkQNonuPJ4HKaRnD8Ym5itNBUjiEy2eh7ElY77Zefw5v1EU /EPzjEP7Elvbnx+F4LBhoRnVygELKDl8c0L0IPGQPDs5owOG3eDfN5+Q1er7hUg8 ajLkvRhQeNsIYH2NfUtg4tXsLN7b/npzMbTRuMhDSo8VLYIZymAlSHbvR64Z10f9 x0bYaXWWLtuC6wjjxHfvDbDkM6FLc1AJqZfeb6euzt5PiXBJRmZXKfddK4Sa71EG UaLAGb3/dY4Few8XfiEiGArdkPIPHs5aKV9VT4fPmi8T5l2mTeD5z5PMuzOJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUYGeKNJYsqadPHXgLdubqc0/jM1gwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNTMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAFTAwDQYJKoZIhvcNAQELBQADggEBAAZjoXv0mp9zFMyrwYauKyF+id03VWJ6 xk3FAhgkEFokHvqL3+uytMU/aK4CI3PIYWDliaR4HZcdGiLD0z/bmL00xk/ZdbsU BXCH4KPbIGof8LJGAk2hFdQ7IVjrUkJmJi9iu1ywzf3pahjliDJsVCOMzQNb/k1D YhmBmJduVYPY/W2uobwaTix44Egk7lCgyCz5eRUMnaHjjOLaE787cFquD3lhSuqj FvR2NAhUw1ckKedztIgaVEI8ne1MKTXKTKRmBJkxv66t3qtnUPkuvp0V9la2pwIp FWlqnbe+r5HOoywFRKECZ07yZY1GSgFjtrRu0CbFvgsJij1o9W4cQGM= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org