$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: K57WXzz9MbDkgfoU9eCrsO4BqWMNJAt8aorQnZqK7Zk= Subject key identifier: 02:18:19:7D:BD:9A:FF:07:25:5B:2E:75:40:62:C0:F3:40:3F:E0:EC Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 18A4283872D42B67E45E1FD1AB897134AC395959 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:45:35 +0000 ROA not before: Fri 02 Aug 2024 12:40:35 +0000 ROA not after: Fri 01 Aug 2025 12:45:35 +0000 asID: 153087 IP address blocks: 2404:97c0:2222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a4:28:38:72:d4:2b:67:e4:5e:1f:d1:ab:89:71:34:ac:39:59:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:40:35 2024 GMT Not After : Aug 1 12:45:35 2025 GMT Subject: CN=0218197DBD9AFF07255B2E754062C0F3403FE0EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:20:56:82:ff:bd:79:7f:48:7a:7e:e1:3a:2c: 53:92:53:b8:7e:bf:0b:78:c9:b1:fa:7b:18:cf:b4: ee:a3:47:6c:82:a8:87:7e:90:f5:ac:fc:59:cd:03: 46:d6:a5:08:e5:62:b5:2f:0b:f1:7e:70:bd:cd:62: be:51:2a:ef:fb:b5:0b:a0:ae:88:ea:90:78:03:58: f2:12:02:c9:32:ec:09:a2:38:18:9c:90:cc:c4:c9: 61:05:39:a6:16:d1:a7:dc:bd:46:a9:7d:20:af:df: 10:1d:fa:af:ed:71:48:10:1f:9a:2c:d6:f7:d4:0a: 8b:f9:28:95:36:54:e2:ec:7a:83:e4:85:ee:de:da: 1a:e2:4e:c0:96:fa:29:24:94:f3:49:aa:f0:4e:58: 6e:64:00:b1:c8:65:8f:18:db:88:3b:fc:30:c5:24: 97:f1:4b:da:a1:06:02:78:d5:77:38:68:b8:d7:72: 43:72:68:07:22:44:c3:16:4c:fe:40:05:d6:64:42: 1b:98:61:d6:4f:a2:61:f9:96:a2:cf:b7:01:e8:9b: d5:d3:3f:aa:ca:8b:75:ee:71:35:06:b8:71:0c:fb: 4c:8d:d3:a2:ef:ad:4e:8d:69:5d:62:8f:47:a8:52: ed:27:87:b0:25:0a:35:13:49:c1:62:30:aa:66:a0: 34:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:18:19:7D:BD:9A:FF:07:25:5B:2E:75:40:62:C0:F3:40:3F:E0:EC X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2222::/48 Signature Algorithm: sha256WithRSAEncryption 31:ee:c2:1c:21:b9:46:cc:f3:3f:ba:4f:6d:89:6d:96:e3:db: bc:cf:8e:a7:d6:40:2f:e1:0a:de:fa:af:0a:5d:42:58:9d:76: cb:e9:68:69:36:79:0a:70:b3:dd:e4:41:a7:17:96:14:0e:bf: 7c:b4:d8:15:2b:a9:f2:a9:b3:35:d3:b9:bf:0d:8e:88:7f:23: 44:8d:c0:2a:ae:e5:d9:b2:2b:67:45:fd:06:3c:af:a8:c1:0f: 0d:12:71:ab:15:79:2e:62:55:e1:68:b2:f1:99:66:2a:30:5d: 70:35:c6:1e:c6:5d:d4:c1:c7:75:e2:28:c0:4c:61:b1:03:5f: c5:95:14:dd:88:e3:9e:63:2f:27:91:1b:5e:ff:1f:33:4d:7a: 42:50:d1:04:88:8a:6b:24:19:4c:52:39:81:c0:53:17:e7:6e: d2:d8:d5:86:77:da:16:67:ee:0d:ac:af:94:39:93:ca:5c:a7: c1:e5:88:00:8d:f7:7d:45:e7:dd:e7:ee:13:7e:fc:9e:99:a3: 76:f8:71:65:1d:d0:f1:c8:21:5c:d1:b9:59:ba:3d:2d:cf:a9: ef:42:88:10:2c:2a:62:13:fa:75:4a:43:e5:53:eb:86:ec:32: f2:be:d0:35:46:89:d8:ab:3d:43:f4:3c:50:97:09:5d:95:51: 31:17:fa:ee -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGKQoOHLUK2fkXh/Rq4lxNKw5WVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQwMzVaFw0yNTA4MDExMjQ1MzVaMDMxMTAvBgNV BAMTKDAyMTgxOTdEQkQ5QUZGMDcyNTVCMkU3NTQwNjJDMEYzNDAzRkUwRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9IFaC/715f0h6fuE6LFOSU7h+ vwt4ybH6exjPtO6jR2yCqId+kPWs/FnNA0bWpQjlYrUvC/F+cL3NYr5RKu/7tQug rojqkHgDWPISAsky7AmiOBickMzEyWEFOaYW0afcvUapfSCv3xAd+q/tcUgQH5os 1vfUCov5KJU2VOLseoPkhe7e2hriTsCW+ikklPNJqvBOWG5kALHIZY8Y24g7/DDF JJfxS9qhBgJ41Xc4aLjXckNyaAciRMMWTP5ABdZkQhuYYdZPomH5lqLPtwHom9XT P6rKi3XucTUGuHEM+0yN06LvrU6NaV1ij0eoUu0nh7AlCjUTScFiMKpmoDSBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUAhgZfb2a/wclWy51QGLA80A/4OwwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiIwDQYJKoZIhvcNAQELBQADggEBADHuwhwhuUbM8z+6T22JbZbj27zPjqfW QC/hCt76rwpdQliddsvpaGk2eQpws93kQacXlhQOv3y02BUrqfKpszXTub8Njoh/ I0SNwCqu5dmyK2dF/QY8r6jBDw0ScasVeS5iVeFosvGZZiowXXA1xh7GXdTBx3Xi KMBMYbEDX8WVFN2I455jLyeRG17/HzNNekJQ0QSIimskGUxSOYHAUxfnbtLY1YZ3 2hZn7g2sr5Q5k8pcp8HliACN931F593n7hN+/J6Zo3b4cWUd0PHIIVzRuVm6PS3P qe9CiBAsKmIT+nVKQ+VT64bsMvK+0DVGidirPUP0PFCXCV2VUTEX+u4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org