$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: M/X6IPyR3NZgS1Nh/7695sLcaTl4eOpTBZ0njK7Xz3Y= Subject key identifier: B1:A3:81:4D:E5:9B:01:D5:32:FA:DA:0F:F1:9E:68:F2:68:EF:00:EC Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 68887FAC166E1123BCB4B2D15316BA7A683BC887 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 13:06:52 +0000 ROA not before: Fri 02 Aug 2024 13:01:52 +0000 ROA not after: Fri 01 Aug 2025 13:06:52 +0000 asID: 153087 IP address blocks: 2404:97c0:163::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:88:7f:ac:16:6e:11:23:bc:b4:b2:d1:53:16:ba:7a:68:3b:c8:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 13:01:52 2024 GMT Not After : Aug 1 13:06:52 2025 GMT Subject: CN=B1A3814DE59B01D532FADA0FF19E68F268EF00EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:09:f9:d8:7a:c0:18:f6:ad:64:02:51:c4:d1: 8b:2e:48:85:54:17:7d:83:17:98:47:0c:96:83:a5: c7:13:e7:99:2f:1f:49:de:ec:18:f9:16:90:95:59: d9:e7:c1:27:fb:f8:dc:14:da:bb:42:2b:57:00:78: d3:25:5c:da:c0:40:58:b0:89:f6:c2:17:84:34:9c: bd:50:35:f6:81:4a:89:7b:6f:c5:66:6e:dc:3d:b6: c0:09:57:16:94:50:ba:67:c0:96:07:50:7b:62:e8: 0c:08:70:1e:d0:9e:f8:b2:fe:fe:24:d0:73:2a:39: e9:26:1b:64:92:f5:51:88:82:e1:73:a2:f4:07:0f: 4a:fb:95:67:e2:b5:cd:37:0a:a7:d2:aa:47:ff:44: 72:1b:0e:ce:96:94:99:52:f8:b0:b2:f1:01:ec:ad: 10:18:67:a2:8b:c6:03:c2:a7:7e:41:57:b4:08:ad: 76:7b:27:20:b8:2d:06:e1:e5:ed:f4:ad:ab:e5:62: 57:e4:70:64:3e:14:c4:3a:ed:bb:ea:fc:e2:1e:1d: ba:26:64:bf:f1:8f:83:40:1f:1d:81:dc:dd:a1:d8: ab:dd:57:ef:e8:44:e0:72:3e:d3:7d:91:ca:0c:d8: ad:fe:77:0d:0f:dc:a7:02:12:4f:b0:cf:9c:3c:e4: b2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A3:81:4D:E5:9B:01:D5:32:FA:DA:0F:F1:9E:68:F2:68:EF:00:EC X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3136333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:163::/48 Signature Algorithm: sha256WithRSAEncryption 44:79:1b:2f:e9:47:61:be:38:dc:77:96:38:3c:79:08:17:71: f0:2f:dc:c1:38:e8:d6:67:f0:e5:10:11:8a:ae:61:7f:e0:48: 7c:da:da:a2:13:f4:4a:a8:79:da:f6:1a:c8:5a:6d:95:64:e7: 1a:ae:13:bd:b3:3f:5b:b3:9b:a6:de:64:48:20:44:c6:df:c7: 56:4e:f7:da:19:0f:d4:67:fe:d8:38:17:52:c4:77:2a:3f:55: 5b:83:b0:fd:3f:04:0a:84:0f:d8:db:d6:ac:6f:eb:b6:0d:3d: 94:83:50:f2:ef:58:32:56:e4:cf:fe:4b:6b:e3:3f:ef:39:cd: 70:a6:4a:a8:22:ee:65:1e:5e:b7:a0:19:83:c3:a7:35:11:e9: 29:55:d6:4f:69:51:b4:a8:ca:8d:6d:94:93:04:54:c4:1b:ae: 50:0a:01:00:9e:7e:e9:f0:97:2a:a2:a0:8c:64:0b:65:c8:68: 98:39:72:05:9a:11:71:a7:fa:79:ad:b6:87:6e:5b:d6:41:cd: c6:6d:a3:b7:dd:cb:69:60:b6:60:92:60:43:9e:9b:05:dd:26: cb:ed:db:41:d8:5f:d6:9a:f4:c1:ea:f1:17:a0:97:07:06:0f: b0:99:32:36:ca:2f:52:5f:3c:18:8b:7f:54:5f:29:b2:8b:61: 78:1b:9e:21 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaIh/rBZuESO8tLLRUxa6emg7yIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMzAxNTJaFw0yNTA4MDExMzA2NTJaMDMxMTAvBgNV BAMTKEIxQTM4MTRERTU5QjAxRDUzMkZBREEwRkYxOUU2OEYyNjhFRjAwRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXCfnYesAY9q1kAlHE0YsuSIVU F32DF5hHDJaDpccT55kvH0ne7Bj5FpCVWdnnwSf7+NwU2rtCK1cAeNMlXNrAQFiw ifbCF4Q0nL1QNfaBSol7b8Vmbtw9tsAJVxaUULpnwJYHUHti6AwIcB7Qnviy/v4k 0HMqOekmG2SS9VGIguFzovQHD0r7lWfitc03CqfSqkf/RHIbDs6WlJlS+LCy8QHs rRAYZ6KLxgPCp35BV7QIrXZ7JyC4LQbh5e30ravlYlfkcGQ+FMQ67bvq/OIeHbom ZL/xj4NAHx2B3N2h2KvdV+/oROByPtN9kcoM2K3+dw0P3KcCEk+wz5w85LJbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsaOBTeWbAdUy+toP8Z5o8mjvAOwwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFjMA0GCSqGSIb3DQEBCwUAA4IBAQBEeRsv6Udhvjjcd5Y4PHkIF3HwL9zBOOjW Z/DlEBGKrmF/4Eh82tqiE/RKqHna9hrIWm2VZOcarhO9sz9bs5um3mRIIETG38dW TvfaGQ/UZ/7YOBdSxHcqP1Vbg7D9PwQKhA/Y29asb+u2DT2Ug1Dy71gyVuTP/ktr 4z/vOc1wpkqoIu5lHl63oBmDw6c1EekpVdZPaVG0qMqNbZSTBFTEG65QCgEAnn7p 8JcqoqCMZAtlyGiYOXIFmhFxp/p5rbaHblvWQc3GbaO33ctpYLZgkmBDnpsF3SbL 7dtB2F/WmvTB6vEXoJcHBg+wmTI2yi9SXzwYi39UXymyi2F4G54h -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org