$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: V9bzjc+pnmTwKeqEC9B65qll47PDCChG6FYPvE9eOpQ= Subject key identifier: FF:1E:54:9E:AD:18:73:DB:18:35:5B:D0:33:51:AF:59:BE:9F:9E:83 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 262A19BD088F9E6896730C4E47050CA997A21880 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:45:55 +0000 ROA not before: Fri 02 Aug 2024 12:40:55 +0000 ROA not after: Fri 01 Aug 2025 12:45:55 +0000 asID: 153087 IP address blocks: 2404:97c0:2225::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:2a:19:bd:08:8f:9e:68:96:73:0c:4e:47:05:0c:a9:97:a2:18:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:40:55 2024 GMT Not After : Aug 1 12:45:55 2025 GMT Subject: CN=FF1E549EAD1873DB18355BD03351AF59BE9F9E83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:02:ae:e0:ff:11:f4:f4:46:40:d4:56:c2: 64:a8:74:5d:46:87:ea:fb:d7:64:0c:73:6f:65:58: 80:ef:40:07:7e:4a:85:8c:0e:8d:35:2e:52:c4:6d: 1a:c3:b9:b5:22:ac:e3:9e:ae:d1:e0:99:70:27:68: 58:8d:6c:8a:9a:bc:d4:3a:5a:1b:9a:b5:b7:16:1a: ed:f0:31:e8:73:f0:43:f2:d4:59:5e:32:94:97:f2: 85:25:bd:0f:e0:9c:c9:e3:bc:2a:49:b8:fa:fe:07: 11:64:b7:a8:94:92:76:e4:f2:5f:da:06:01:91:57: 79:48:c1:49:30:57:f3:33:c3:82:99:ec:f9:f5:ab: a8:a8:ca:6c:90:58:b5:b8:89:5f:bd:33:8d:53:7d: 5e:79:af:00:f5:91:8c:f1:51:9a:86:f5:47:cd:3b: c4:60:a2:60:82:6e:25:a5:b9:4f:12:cb:2b:ea:39: 54:63:87:5b:de:fc:74:45:0b:d8:43:95:fb:51:52: d5:64:52:da:51:5c:a7:3b:d8:11:10:66:59:a9:2f: 2d:4c:90:d1:7b:ac:17:85:9c:37:1c:5c:f1:ab:8b: 6a:24:19:7f:8f:b1:85:30:a0:b5:ac:2e:eb:43:f7: 4c:aa:b3:64:7c:60:c2:28:d1:66:b5:18:a0:f5:8c: dd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:1E:54:9E:AD:18:73:DB:18:35:5B:D0:33:51:AF:59:BE:9F:9E:83 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232353a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2225::/48 Signature Algorithm: sha256WithRSAEncryption 99:de:47:32:54:67:1c:57:af:88:cb:be:b2:e3:70:8c:79:4d: 71:59:6d:16:cc:f9:66:67:ca:7c:5b:50:2f:3c:71:e9:ba:b1: 33:4d:7d:b2:54:9b:62:70:07:60:f1:1b:ca:e1:76:07:0e:c8: c9:ed:04:30:eb:ef:f0:5e:5e:93:e2:33:68:be:6e:2e:3a:41: 4e:55:ff:8f:93:ca:bc:9b:f3:23:55:aa:92:d5:7e:7c:c1:1a: 6f:89:de:de:1c:48:6f:ee:96:4d:a9:c4:46:16:29:6d:d4:6d: 73:3f:95:26:87:5c:cb:51:de:02:18:d4:67:02:2d:6b:06:df: 61:1e:e8:b3:3d:44:39:22:a2:d3:8d:8c:5c:b0:68:91:cc:00: d5:de:05:08:ec:fa:82:1b:f5:08:d7:7e:73:1f:01:25:85:43: ae:16:09:5b:80:5f:01:a8:fe:d5:d7:22:70:6f:6b:60:44:60: d4:a2:55:55:61:b8:78:b2:d3:08:d6:13:bf:db:0d:99:b7:11: 0d:d8:e5:c4:77:4c:bb:74:70:6c:83:1c:6f:0a:51:59:0e:87: b7:f1:3e:c1:3f:bf:0f:e6:d9:6e:82:1e:ea:e9:e0:ac:27:21: be:c0:76:28:35:f2:b8:9f:b7:82:f8:5d:18:e7:fa:0f:d8:4e: d3:5a:59:26 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJioZvQiPnmiWcwxORwUMqZeiGIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQwNTVaFw0yNTA4MDExMjQ1NTVaMDMxMTAvBgNV BAMTKEZGMUU1NDlFQUQxODczREIxODM1NUJEMDMzNTFBRjU5QkU5RjlFODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrCQKu4P8R9PRGQNRWwmSodF1G h+r712QMc29lWIDvQAd+SoWMDo01LlLEbRrDubUirOOertHgmXAnaFiNbIqavNQ6 WhuatbcWGu3wMehz8EPy1FleMpSX8oUlvQ/gnMnjvCpJuPr+BxFkt6iUknbk8l/a BgGRV3lIwUkwV/Mzw4KZ7Pn1q6ioymyQWLW4iV+9M41TfV55rwD1kYzxUZqG9UfN O8RgomCCbiWluU8SyyvqOVRjh1ve/HRFC9hDlftRUtVkUtpRXKc72BEQZlmpLy1M kNF7rBeFnDccXPGri2okGX+PsYUwoLWsLutD90yqs2R8YMIo0Wa1GKD1jN0ZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/x5Unq0Yc9sYNVvQM1GvWb6fnoMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiUwDQYJKoZIhvcNAQELBQADggEBAJneRzJUZxxXr4jLvrLjcIx5TXFZbRbM +WZnynxbUC88cem6sTNNfbJUm2JwB2DxG8rhdgcOyMntBDDr7/BeXpPiM2i+bi46 QU5V/4+Tyryb8yNVqpLVfnzBGm+J3t4cSG/ulk2pxEYWKW3UbXM/lSaHXMtR3gIY 1GcCLWsG32Ee6LM9RDkiotONjFywaJHMANXeBQjs+oIb9QjXfnMfASWFQ64WCVuA XwGo/tXXInBva2BEYNSiVVVhuHiy0wjWE7/bDZm3EQ3Y5cR3TLt0cGyDHG8KUVkO h7fxPsE/vw/m2W6CHurp4KwnIb7Adig18rift4L4XRjn+g/YTtNaWSY= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org