$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: YqUfM9PLqSwgA+lzyt/BfWam9PpmyySLJibmhOM7Kd8= Subject key identifier: 32:71:09:78:50:B8:EB:DB:D6:67:B2:4C:E9:FA:42:69:B0:6D:FE:B8 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 355228865BA1B31EA9F1466FF345FEBF58AF4DD0 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:43:14 +0000 ROA not before: Fri 02 Aug 2024 12:38:14 +0000 ROA not after: Fri 01 Aug 2025 12:43:14 +0000 asID: 153087 IP address blocks: 2404:97c0:162::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:52:28:86:5b:a1:b3:1e:a9:f1:46:6f:f3:45:fe:bf:58:af:4d:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:38:14 2024 GMT Not After : Aug 1 12:43:14 2025 GMT Subject: CN=3271097850B8EBDBD667B24CE9FA4269B06DFEB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b0:1a:cc:a3:5c:98:7f:8d:a3:6c:da:11:e1: eb:7d:85:de:0c:22:0f:73:ef:68:51:65:04:6a:02: f2:09:10:95:f0:4a:c5:d4:42:5b:c7:2d:9e:d3:73: 74:1f:33:35:32:5f:f2:2b:70:31:11:f5:0c:39:37: c6:65:60:59:fc:b6:70:95:5e:5d:ee:d5:74:05:7f: d1:8a:a7:7a:b1:47:02:49:c9:27:b6:e2:eb:01:20: cb:20:07:bc:97:5a:a2:bf:c5:d4:45:f0:a8:9f:76: 7b:33:45:36:cb:62:e1:a4:f6:bb:27:77:d6:29:07: b9:fc:19:d7:aa:0c:00:47:cd:86:fa:55:e0:7f:e3: e3:0e:c3:68:00:d2:e6:9b:b8:43:b0:9c:83:6b:c4: 07:3c:78:3b:6e:69:0d:35:d0:12:47:5c:14:64:5b: 75:fe:29:f5:ba:20:06:8e:e4:71:28:9c:96:64:96: b6:5f:84:67:82:b0:8c:fe:cc:8f:a5:78:a0:84:0c: 8c:3e:46:f2:ce:5c:08:00:e0:24:35:57:04:d2:38: 31:cc:34:01:1e:91:16:bf:67:14:65:04:ef:a2:de: f4:92:25:a9:3e:71:52:bf:48:d6:6a:02:22:af:cc: 15:9c:75:7a:af:5c:43:ba:28:ce:34:f1:28:90:ae: 0e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:71:09:78:50:B8:EB:DB:D6:67:B2:4C:E9:FA:42:69:B0:6D:FE:B8 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:162::/48 Signature Algorithm: sha256WithRSAEncryption 58:d7:64:48:d0:9f:dd:46:cb:07:94:f4:e9:33:f9:fd:2e:7f: fa:61:54:d3:31:e1:d5:b7:df:75:46:13:ca:b8:64:d7:49:b4: ef:c7:c7:02:b8:54:d7:47:c8:ca:fe:65:ea:8f:37:78:57:ba: 67:fc:01:cd:e9:4d:5f:47:29:22:59:1b:a2:fe:72:4f:a8:9c: 2c:79:11:48:a3:1f:20:35:ee:de:99:40:84:85:35:92:27:5b: 52:07:5d:42:a1:12:15:c2:d9:56:01:cd:45:6e:61:1f:5b:18: 03:7d:4b:83:a5:dc:df:7c:81:a1:ad:cb:99:4d:70:88:00:34: 8f:d6:8b:b3:40:03:f3:0b:4a:a6:71:cd:75:fa:2b:be:d7:f4: 4f:e9:f9:cf:c0:57:e2:bc:22:0e:b5:74:b9:2f:ea:05:a2:0b: 6e:46:49:fd:5d:a4:9a:d3:2c:86:c9:2c:a4:52:33:4b:3b:a8: cf:c9:f6:06:0c:08:15:08:87:67:7c:73:16:22:80:c0:7b:63: c5:6d:1f:31:e6:74:dd:e7:8a:59:ff:61:50:80:3b:47:a5:77: 21:bb:8b:4a:99:6d:c3:9f:8c:6e:06:29:47:0e:98:f5:01:c8: 51:32:27:7c:6c:7e:8b:78:e4:8f:67:ff:3c:5f:4a:58:1f:6a: ac:80:cd:0c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNVIohluhsx6p8UZv80X+v1ivTdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjM4MTRaFw0yNTA4MDExMjQzMTRaMDMxMTAvBgNV BAMTKDMyNzEwOTc4NTBCOEVCREJENjY3QjI0Q0U5RkE0MjY5QjA2REZFQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhsBrMo1yYf42jbNoR4et9hd4M Ig9z72hRZQRqAvIJEJXwSsXUQlvHLZ7Tc3QfMzUyX/IrcDER9Qw5N8ZlYFn8tnCV Xl3u1XQFf9GKp3qxRwJJySe24usBIMsgB7yXWqK/xdRF8KifdnszRTbLYuGk9rsn d9YpB7n8GdeqDABHzYb6VeB/4+MOw2gA0uabuEOwnINrxAc8eDtuaQ010BJHXBRk W3X+KfW6IAaO5HEonJZklrZfhGeCsIz+zI+leKCEDIw+RvLOXAgA4CQ1VwTSODHM NAEekRa/ZxRlBO+i3vSSJak+cVK/SNZqAiKvzBWcdXqvXEO6KM408SiQrg49AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMnEJeFC469vWZ7JM6fpCabBt/rgwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFiMA0GCSqGSIb3DQEBCwUAA4IBAQBY12RI0J/dRssHlPTpM/n9Ln/6YVTTMeHV t991RhPKuGTXSbTvx8cCuFTXR8jK/mXqjzd4V7pn/AHN6U1fRykiWRui/nJPqJws eRFIox8gNe7emUCEhTWSJ1tSB11CoRIVwtlWAc1FbmEfWxgDfUuDpdzffIGhrcuZ TXCIADSP1ouzQAPzC0qmcc11+iu+1/RP6fnPwFfivCIOtXS5L+oFogtuRkn9XaSa 0yyGySykUjNLO6jPyfYGDAgVCIdnfHMWIoDAe2PFbR8x5nTd54pZ/2FQgDtHpXch u4tKmW3Dn4xuBilHDpj1AchRMid8bH6LeOSPZ/88X0pYH2qsgM0M -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org