$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: QRvkmB4Qz+ziiAWPIJmTsg8k4Vcwrf/zv3walgS1vEM= Subject key identifier: 8E:C8:F8:41:6E:7D:5A:3A:5F:E6:F0:08:A4:C7:9C:4B:F8:9C:9A:13 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 5D2011F8D7A5BA281FA71B98BB006A309139BD59 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:44:59 +0000 ROA not before: Fri 02 Aug 2024 12:39:59 +0000 ROA not after: Fri 01 Aug 2025 12:44:59 +0000 asID: 153087 IP address blocks: 2404:97c0:2168::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:20:11:f8:d7:a5:ba:28:1f:a7:1b:98:bb:00:6a:30:91:39:bd:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:39:59 2024 GMT Not After : Aug 1 12:44:59 2025 GMT Subject: CN=8EC8F8416E7D5A3A5FE6F008A4C79C4BF89C9A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b8:9e:a1:86:92:a0:7a:c2:c7:e1:a2:9f:f5: 4f:f9:6e:94:87:f6:db:f9:0b:7e:ec:8a:a6:9e:6b: a2:b4:60:43:a3:da:9d:95:df:f9:a9:94:26:47:c2: 0e:8c:a5:d3:37:f1:f0:8a:d9:6b:f1:a7:66:80:5f: 0f:43:75:5b:e4:f9:de:dc:84:13:a8:b2:9b:59:ab: 8f:60:ea:ec:29:d9:a8:a8:27:e1:3b:f0:68:77:e9: 11:eb:08:6c:a6:b6:6d:53:20:fe:74:a0:87:6a:78: ce:ad:99:ea:4a:ff:ff:01:30:04:e7:93:8e:13:08: c5:ba:bf:53:de:db:b3:f3:a8:38:84:4b:c0:e4:6e: c4:90:ae:14:d7:eb:31:fc:ab:2f:51:b0:33:06:1f: 79:66:32:8f:af:a5:78:e1:fa:45:98:e2:62:9e:15: 27:fd:7a:6d:0c:80:f1:c0:07:4d:f9:bb:01:a7:67: 3f:3b:b9:6f:6d:f6:a7:a7:33:67:19:49:86:af:7e: 9c:b2:8c:43:9e:86:c3:c9:82:c6:27:61:b0:c6:9c: 3a:8b:fd:c2:de:87:9d:9d:3e:37:53:63:41:98:72: 7c:70:1a:4b:98:92:9c:21:5f:58:62:c4:8b:89:22: 6b:ee:9d:ee:cb:bb:10:b2:39:c1:d6:0c:b7:ee:f7: fb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C8:F8:41:6E:7D:5A:3A:5F:E6:F0:08:A4:C7:9C:4B:F8:9C:9A:13 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323136383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2168::/48 Signature Algorithm: sha256WithRSAEncryption 31:ea:c1:94:bb:6e:1c:50:ba:2e:7e:81:b8:fb:ac:d0:ad:69: b4:45:2b:f5:67:bb:9f:25:b8:35:a5:2a:b7:eb:00:6e:19:bc: f6:53:ca:fe:85:d8:89:56:49:93:b5:ed:af:3e:18:92:f7:dc: c1:53:2f:15:74:39:9b:83:95:6c:93:ec:dd:b9:e4:b4:c9:4a: 5e:2d:80:ea:b1:21:7c:14:b2:bd:b7:a9:9d:7b:74:b5:e3:0d: 8e:15:56:0d:98:4a:02:66:1c:96:b0:be:52:02:75:42:85:55: 80:09:38:bc:26:0f:98:75:67:f0:df:a3:07:3d:17:ea:8c:0d: 68:d4:e3:c1:85:31:2f:d3:41:4b:94:1e:d8:fb:f9:e2:12:6e: 1f:92:ed:cf:4d:e3:6d:71:73:ca:f2:88:30:69:14:db:23:0c: 6d:ff:3a:d6:1d:a3:49:e0:3b:35:34:ff:6a:c4:b8:a6:1d:8d: ba:5e:69:77:88:61:13:12:d0:b0:97:6c:59:eb:44:af:03:4c: ff:a1:64:67:19:70:63:8a:78:2a:0d:20:f2:01:30:09:b3:62: 28:d7:56:36:65:ea:62:58:5e:7e:b2:7e:fd:fd:22:ce:c1:f7: 48:a6:78:14:9c:db:80:3a:96:cf:a3:f6:9f:6d:17:db:e4:8e: ed:1a:d2:49 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXSAR+NeluigfpxuYuwBqMJE5vVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjM5NTlaFw0yNTA4MDExMjQ0NTlaMDMxMTAvBgNV BAMTKDhFQzhGODQxNkU3RDVBM0E1RkU2RjAwOEE0Qzc5QzRCRjg5QzlBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1uJ6hhpKgesLH4aKf9U/5bpSH 9tv5C37siqaea6K0YEOj2p2V3/mplCZHwg6MpdM38fCK2Wvxp2aAXw9DdVvk+d7c hBOosptZq49g6uwp2aioJ+E78Gh36RHrCGymtm1TIP50oIdqeM6tmepK//8BMATn k44TCMW6v1Pe27PzqDiES8DkbsSQrhTX6zH8qy9RsDMGH3lmMo+vpXjh+kWY4mKe FSf9em0MgPHAB035uwGnZz87uW9t9qenM2cZSYavfpyyjEOehsPJgsYnYbDGnDqL /cLeh52dPjdTY0GYcnxwGkuYkpwhX1hixIuJImvune7LuxCyOcHWDLfu9/srAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjsj4QW59Wjpf5vAIpMecS/icmhMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM2Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIWgwDQYJKoZIhvcNAQELBQADggEBADHqwZS7bhxQui5+gbj7rNCtabRFK/Vn u58luDWlKrfrAG4ZvPZTyv6F2IlWSZO17a8+GJL33MFTLxV0OZuDlWyT7N255LTJ Sl4tgOqxIXwUsr23qZ17dLXjDY4VVg2YSgJmHJawvlICdUKFVYAJOLwmD5h1Z/Df owc9F+qMDWjU48GFMS/TQUuUHtj7+eISbh+S7c9N421xc8ryiDBpFNsjDG3/OtYd o0ngOzU0/2rEuKYdjbpeaXeIYRMS0LCXbFnrRK8DTP+hZGcZcGOKeCoNIPIBMAmz YijXVjZl6mJYXn6yfv39Is7B90imeBSc24A6ls+j9p9tF9vkju0a0kk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org