$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: pdyI4+XuPfKmP3Zd1I9x9bNNl2lapMFRhuHZB7HJSw4= Subject key identifier: AA:32:B1:3B:75:A9:E3:F5:F2:6E:84:48:97:27:12:6A:5A:E0:76:53 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 4529C21154CE6F71DA6A88369E86E54566CBCEBC Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:43:57 +0000 ROA not before: Fri 02 Aug 2024 12:38:57 +0000 ROA not after: Fri 01 Aug 2025 12:43:57 +0000 asID: 153087 IP address blocks: 2404:97c0:2144::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:29:c2:11:54:ce:6f:71:da:6a:88:36:9e:86:e5:45:66:cb:ce:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:38:57 2024 GMT Not After : Aug 1 12:43:57 2025 GMT Subject: CN=AA32B13B75A9E3F5F26E84489727126A5AE07653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:76:92:b7:c5:3d:5f:80:84:7c:ae:b7:08:af: bb:53:c7:b7:cb:67:6c:5f:a4:fb:5c:f8:af:93:c6: 1b:23:26:35:5b:2a:61:d5:f6:54:6a:5b:e8:c0:73: 0c:f9:b9:1c:83:63:0d:56:c7:6b:92:9e:94:83:d9: 84:8d:97:41:23:5d:8c:1a:aa:54:72:a6:48:79:22: 56:61:12:91:05:b7:2c:58:cc:86:4b:c1:ad:49:76: 17:36:77:69:7f:2a:79:82:96:de:71:1f:41:a4:ef: 88:5a:c1:8e:4a:93:44:ec:8f:f4:d8:62:77:e1:22: e2:3e:f8:17:df:8f:cf:b9:fb:95:b3:ec:ef:41:24: b0:8d:a5:11:6a:f2:a0:f7:05:16:de:95:13:d7:55: 49:83:df:54:d8:e1:00:7d:a8:a7:ba:f3:82:b6:07: 25:3a:7b:30:f3:18:35:5c:95:bb:03:2e:52:13:3d: c7:b2:1d:ea:4a:ac:e4:0d:7b:54:52:e3:72:d9:e1: 9e:b1:5f:0e:7a:80:fc:d5:87:50:e9:ec:00:68:13: 2d:15:48:ca:c5:fa:17:4d:a7:f3:96:76:cb:07:05: b0:1f:88:9b:4a:68:60:69:d8:03:b4:80:2b:54:fa: e5:02:6a:06:4d:7b:76:5c:82:89:54:b5:12:f5:65: 02:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:32:B1:3B:75:A9:E3:F5:F2:6E:84:48:97:27:12:6A:5A:E0:76:53 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323134343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2144::/48 Signature Algorithm: sha256WithRSAEncryption 07:51:8a:a0:e9:78:ed:61:5b:63:45:29:2c:1c:2b:96:39:54: da:a9:a6:1f:9c:6a:5a:2d:e5:58:82:52:4f:96:b3:71:34:91: 18:1b:ea:d5:61:25:d1:21:28:3b:3e:07:9f:4a:61:97:fb:7b: 68:49:88:65:18:23:84:dd:48:cd:31:3e:ac:19:2e:10:02:8a: c1:5b:ee:7d:1b:59:80:a1:b1:30:90:60:1c:11:50:cb:12:e8: 64:ff:a5:31:1b:00:17:46:a2:56:46:91:90:e2:15:41:78:b9: 01:8f:2c:a8:be:cf:a3:c9:c6:db:89:92:3f:7b:e1:d1:b2:2f: a1:1d:79:6a:b4:14:47:b9:22:f3:25:03:36:d5:67:51:1c:91: 42:f9:b8:b5:48:a9:02:63:68:9b:72:a9:40:d4:7a:30:e3:3d: 85:90:fd:a2:fc:4e:22:a8:1a:99:14:60:55:ec:f9:93:4c:97: 9e:62:21:36:7a:fb:c6:01:5d:c0:f6:b3:ea:79:30:14:4a:f5: ad:c4:e1:a4:0f:e7:4a:7e:94:ed:61:c8:a3:cf:5f:c0:a7:34: 56:c5:81:60:93:06:05:7b:33:f2:2c:c2:70:41:30:21:c9:60: be:e3:8b:dc:2d:82:58:0d:59:38:d7:8e:6b:fb:e0:14:9e:05: d5:7c:b9:6e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURSnCEVTOb3Haaog2noblRWbLzrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjM4NTdaFw0yNTA4MDExMjQzNTdaMDMxMTAvBgNV BAMTKEFBMzJCMTNCNzVBOUUzRjVGMjZFODQ0ODk3MjcxMjZBNUFFMDc2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKdpK3xT1fgIR8rrcIr7tTx7fL Z2xfpPtc+K+TxhsjJjVbKmHV9lRqW+jAcwz5uRyDYw1Wx2uSnpSD2YSNl0EjXYwa qlRypkh5IlZhEpEFtyxYzIZLwa1Jdhc2d2l/KnmClt5xH0Gk74hawY5Kk0Tsj/TY YnfhIuI++Bffj8+5+5Wz7O9BJLCNpRFq8qD3BRbelRPXVUmD31TY4QB9qKe684K2 ByU6ezDzGDVclbsDLlITPceyHepKrOQNe1RS43LZ4Z6xXw56gPzVh1Dp7ABoEy0V SMrF+hdNp/OWdssHBbAfiJtKaGBp2AO0gCtU+uUCagZNe3ZcgolUtRL1ZQJvAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUqjKxO3Wp4/XyboRIlycSalrgdlMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM0MzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIUQwDQYJKoZIhvcNAQELBQADggEBAAdRiqDpeO1hW2NFKSwcK5Y5VNqpph+c alot5ViCUk+Ws3E0kRgb6tVhJdEhKDs+B59KYZf7e2hJiGUYI4TdSM0xPqwZLhAC isFb7n0bWYChsTCQYBwRUMsS6GT/pTEbABdGolZGkZDiFUF4uQGPLKi+z6PJxtuJ kj974dGyL6EdeWq0FEe5IvMlAzbVZ1EckUL5uLVIqQJjaJtyqUDUejDjPYWQ/aL8 TiKoGpkUYFXs+ZNMl55iITZ6+8YBXcD2s+p5MBRK9a3E4aQP50p+lO1hyKPPX8Cn NFbFgWCTBgV7M/IswnBBMCHJYL7ji9wtglgNWTjXjmv74BSeBdV8uW4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org