$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: WU9iIJCCEVszUCkVzbrQn4pzh0NjSrijWkQICqlPZH8= Subject key identifier: FF:A2:BA:F7:FA:6A:FA:63:3F:F7:2F:BF:35:2A:24:35:DA:89:54:93 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7D9E551797E103E9FCCFC1F2927555CD25233B9E Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:45:19 +0000 ROA not before: Fri 02 Aug 2024 12:40:19 +0000 ROA not after: Fri 01 Aug 2025 12:45:19 +0000 asID: 153087 IP address blocks: 2404:97c0:2182::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9e:55:17:97:e1:03:e9:fc:cf:c1:f2:92:75:55:cd:25:23:3b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:40:19 2024 GMT Not After : Aug 1 12:45:19 2025 GMT Subject: CN=FFA2BAF7FA6AFA633FF72FBF352A2435DA895493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:c6:60:82:06:34:22:a9:fb:ca:95:4e:ec: 85:21:7b:25:02:63:5c:f4:c9:9b:72:68:c0:d5:67: 43:e7:d4:ed:10:f8:12:7e:b0:c9:92:a4:fd:27:eb: 40:07:94:c7:4e:79:49:58:83:9c:77:de:4a:79:d4: 81:22:28:79:94:af:1a:46:e8:c3:8f:59:33:14:46: 8b:f6:67:c1:08:4f:a0:f1:e4:1a:21:2a:a6:84:7c: 24:be:40:12:52:cc:32:26:eb:b9:c3:fe:82:bc:e5: 40:d0:d8:08:ca:fe:51:12:25:11:e5:65:53:45:84: 18:f7:38:f4:7d:76:47:9d:6a:72:31:02:bc:be:3f: 5c:22:f5:ba:bd:54:31:cc:d7:1f:d2:67:20:16:f5: 8c:70:99:56:27:90:1e:71:bc:20:bc:90:3a:28:91: 80:38:45:fd:8b:bf:22:4f:ea:cb:6d:52:bf:61:ad: 95:1a:20:c5:4e:19:16:28:75:d4:f0:1d:60:93:2e: ec:1f:d0:70:5f:3d:3e:a0:f9:5a:5f:9d:92:51:33: 3e:24:f9:5d:e7:a4:9f:93:1a:33:bb:16:f0:13:5c: 01:49:eb:fe:bb:ef:0f:29:ea:88:96:2f:43:f4:54: 96:ab:6c:78:cc:ec:8e:47:48:04:36:0b:ca:d4:61: 83:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A2:BA:F7:FA:6A:FA:63:3F:F7:2F:BF:35:2A:24:35:DA:89:54:93 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323138323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2182::/48 Signature Algorithm: sha256WithRSAEncryption 20:c9:45:f4:d6:24:d9:a0:86:70:aa:74:3b:c9:d7:09:25:e1: 8c:b1:c6:79:93:24:77:6a:ef:31:66:8e:73:44:ba:39:75:d6: 73:0a:dc:16:fd:bd:b8:b3:6d:89:f0:c0:b7:2d:38:ff:cc:2f: 62:1b:41:09:cc:a5:d9:a5:95:83:59:80:f4:bc:7d:46:75:47: 7d:e4:f6:46:e1:8b:8d:ba:9b:69:83:85:a2:cb:b7:e5:0b:80: 95:5e:7f:ef:2c:03:59:05:68:a6:0c:7f:74:db:b8:f8:d4:84: f1:ef:93:74:c1:7a:93:20:e7:1d:91:e0:3a:d1:d7:f0:29:a0: ab:de:00:d6:27:6e:31:d7:54:33:9a:45:2d:f2:3f:81:b0:c6: f7:2f:5f:63:fa:96:e1:1d:5e:8a:07:5a:56:12:66:61:0d:01: 9d:2c:17:1b:67:1d:f8:69:97:f1:e2:d7:32:a9:d1:20:77:c3: c0:64:6b:ae:7d:d6:6c:60:54:ef:34:e2:2a:c1:1f:fe:b3:cf: 5e:09:2f:65:57:db:ed:fb:33:7a:9e:6b:cc:d5:aa:05:cc:c7: 91:b7:ee:e7:69:4a:cd:54:b0:d8:8f:d1:7d:78:cc:d1:c9:57: e1:a0:f4:8d:e8:16:65:d9:8b:ca:49:cc:6e:51:7f:c3:ce:b6: 32:56:36:5c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfZ5VF5fhA+n8z8HyknVVzSUjO54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQwMTlaFw0yNTA4MDExMjQ1MTlaMDMxMTAvBgNV BAMTKEZGQTJCQUY3RkE2QUZBNjMzRkY3MkZCRjM1MkEyNDM1REE4OTU0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFy8ZgggY0Iqn7ypVO7IUheyUC Y1z0yZtyaMDVZ0Pn1O0Q+BJ+sMmSpP0n60AHlMdOeUlYg5x33kp51IEiKHmUrxpG 6MOPWTMURov2Z8EIT6Dx5BohKqaEfCS+QBJSzDIm67nD/oK85UDQ2AjK/lESJRHl ZVNFhBj3OPR9dkedanIxAry+P1wi9bq9VDHM1x/SZyAW9YxwmVYnkB5xvCC8kDoo kYA4Rf2LvyJP6sttUr9hrZUaIMVOGRYoddTwHWCTLuwf0HBfPT6g+VpfnZJRMz4k +V3npJ+TGjO7FvATXAFJ6/677w8p6oiWL0P0VJarbHjM7I5HSAQ2C8rUYYPfAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/6K69/pq+mM/9y+/NSokNdqJVJMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMTM4MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIYIwDQYJKoZIhvcNAQELBQADggEBACDJRfTWJNmghnCqdDvJ1wkl4YyxxnmT JHdq7zFmjnNEujl11nMK3Bb9vbizbYnwwLctOP/ML2IbQQnMpdmllYNZgPS8fUZ1 R33k9kbhi426m2mDhaLLt+ULgJVef+8sA1kFaKYMf3TbuPjUhPHvk3TBepMg5x2R 4DrR1/ApoKveANYnbjHXVDOaRS3yP4GwxvcvX2P6luEdXooHWlYSZmENAZ0sFxtn Hfhpl/Hi1zKp0SB3w8Bka6591mxgVO804irBH/6zz14JL2VX2+37M3qea8zVqgXM x5G37udpSs1UsNiP0X14zNHJV+Gg9I3oFmXZi8pJzG5Rf8POtjJWNlw= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org