$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 8ln3SqH3hIvmH/lqN+z8Gss0J176zJNv7FlBRBPLuIU= Subject key identifier: 2D:7F:D4:90:E5:1B:13:D3:18:0C:DA:D7:8C:E0:68:13:ED:CB:4B:ED Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 173F7E89B717C34C89E26BF9ED124FC9DFA94360 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:44:41 +0000 ROA not before: Fri 02 Aug 2024 12:39:41 +0000 ROA not after: Fri 01 Aug 2025 12:44:41 +0000 asID: 153087 IP address blocks: 2404:97c0:2167::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:3f:7e:89:b7:17:c3:4c:89:e2:6b:f9:ed:12:4f:c9:df:a9:43:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:39:41 2024 GMT Not After : Aug 1 12:44:41 2025 GMT Subject: CN=2D7FD490E51B13D3180CDAD78CE06813EDCB4BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:7b:0f:b1:4e:6e:39:7f:d1:02:c9:98:46: b6:e8:0b:b9:93:96:ba:e8:98:25:b6:28:ce:a7:c7: ee:63:a9:d1:c6:fa:21:a7:14:77:45:27:7c:53:ca: e2:4c:5f:5d:4a:bb:e1:61:31:34:29:fe:8d:a2:80: 4b:01:e8:1c:77:87:7b:73:36:e8:80:11:cd:c6:f1: 24:e3:08:75:0f:16:79:5a:b1:ac:45:7a:c9:86:e1: 93:5b:42:1e:90:ce:36:8a:e2:da:97:df:0e:2f:45: 14:28:5a:fb:05:1b:20:eb:b3:ab:e4:54:d1:37:0e: 9d:e5:24:37:6c:d3:00:7d:a8:3f:cb:8a:ea:88:f9: d4:ef:01:e6:57:9d:34:92:b2:64:88:63:a0:4c:f3: b1:31:6d:18:44:57:00:c2:04:f0:97:4d:20:e0:c3: 54:8c:ac:49:ab:4b:50:fa:d7:3f:f8:9d:37:f3:08: 34:c7:c6:5e:43:ec:a9:33:a4:15:53:a9:03:32:8c: 1f:ee:95:ac:4a:53:b7:4f:9d:af:41:b2:3e:49:f6: 53:8f:4c:df:aa:55:9f:1b:8c:e2:ce:10:20:d9:6d: 6b:f3:3c:f8:0c:a6:4a:dd:22:03:d1:e4:ec:00:7e: dd:15:36:7e:06:65:ef:28:c1:8d:c0:f7:6b:54:93: 1b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7F:D4:90:E5:1B:13:D3:18:0C:DA:D7:8C:E0:68:13:ED:CB:4B:ED X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136373a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2167::/48 Signature Algorithm: sha256WithRSAEncryption 86:fd:b8:1a:6d:9a:4b:56:2b:6b:22:60:85:15:7b:bf:e9:f9: 84:49:ef:25:03:78:1d:79:ed:34:98:05:da:a2:0b:63:f9:3a: 22:67:2e:36:dc:87:22:09:cb:91:60:03:05:ec:e1:31:e7:0a: 07:eb:b4:65:2c:07:6a:50:fa:e1:e1:d3:7a:76:bd:ca:39:40: 09:d1:18:5a:94:e9:21:f1:64:e3:47:85:3f:e2:cd:9b:05:95: 22:81:f7:00:07:e8:92:df:b2:cc:4b:31:89:00:c4:ab:a8:62: 0c:8e:ff:29:00:1f:34:f0:51:7a:e6:f1:20:96:d6:a8:2d:44: 8f:f6:03:b4:7d:e2:1b:67:f8:8d:1d:9a:2c:31:f1:46:ab:aa: df:04:ae:ac:c0:ca:4b:99:95:18:e8:98:0e:fd:38:1f:f7:22: 6b:02:15:02:e1:0b:f2:8d:02:ad:a7:f1:16:1c:b4:dd:76:b9: e0:e7:34:b2:52:38:a6:36:f1:6b:9d:52:ee:cc:9f:ee:35:47: 32:2b:3c:2b:62:46:cc:62:e0:67:e5:ae:ea:4e:41:fe:df:52: 95:07:a8:80:67:c9:25:f5:df:48:dc:c8:64:5c:97:89:f6:66: 3d:46:35:8f:64:67:ad:08:36:52:21:bf:73:de:8b:c6:11:75: 7d:1d:5c:b8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFz9+ibcXw0yJ4mv57RJPyd+pQ2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjM5NDFaFw0yNTA4MDExMjQ0NDFaMDMxMTAvBgNV BAMTKDJEN0ZENDkwRTUxQjEzRDMxODBDREFENzhDRTA2ODEzRURDQjRCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV8HsPsU5uOX/RAsmYRrboC7mT lrromCW2KM6nx+5jqdHG+iGnFHdFJ3xTyuJMX11Ku+FhMTQp/o2igEsB6Bx3h3tz NuiAEc3G8STjCHUPFnlasaxFesmG4ZNbQh6QzjaK4tqX3w4vRRQoWvsFGyDrs6vk VNE3Dp3lJDds0wB9qD/LiuqI+dTvAeZXnTSSsmSIY6BM87ExbRhEVwDCBPCXTSDg w1SMrEmrS1D61z/4nTfzCDTHxl5D7KkzpBVTqQMyjB/ulaxKU7dPna9Bsj5J9lOP TN+qVZ8bjOLOECDZbWvzPPgMpkrdIgPR5OwAft0VNn4GZe8owY3A92tUkxutAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQULX/UkOUbE9MYDNrXjOBoE+3LS+0wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM2Mzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIWcwDQYJKoZIhvcNAQELBQADggEBAIb9uBptmktWK2siYIUVe7/p+YRJ7yUD eB157TSYBdqiC2P5OiJnLjbchyIJy5FgAwXs4THnCgfrtGUsB2pQ+uHh03p2vco5 QAnRGFqU6SHxZONHhT/izZsFlSKB9wAH6JLfssxLMYkAxKuoYgyO/ykAHzTwUXrm 8SCW1qgtRI/2A7R94htn+I0dmiwx8Uarqt8ErqzAykuZlRjomA79OB/3ImsCFQLh C/KNAq2n8RYctN12ueDnNLJSOKY28WudUu7Mn+41RzIrPCtiRsxi4GflrupOQf7f UpUHqIBnySX130jcyGRcl4n2Zj1GNY9kZ60INlIhv3Pei8YRdX0dXLg= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org