$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: rIdABADY+ZAaeYePIeVE6PrkRBe0+wtZs93W+UWrmLk= Subject key identifier: B8:43:EE:1B:93:1D:2F:EB:13:54:67:3A:71:FA:30:80:A0:83:CD:19 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 486FB95F5DD82A63475CD16694F30CE538C2A40F Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:46:07 +0000 ROA not before: Fri 02 Aug 2024 12:41:07 +0000 ROA not after: Fri 01 Aug 2025 12:46:07 +0000 asID: 153087 IP address blocks: 2404:97c0:2226::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6f:b9:5f:5d:d8:2a:63:47:5c:d1:66:94:f3:0c:e5:38:c2:a4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:41:07 2024 GMT Not After : Aug 1 12:46:07 2025 GMT Subject: CN=B843EE1B931D2FEB1354673A71FA3080A083CD19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2f:f4:00:d7:4a:f0:9b:ff:34:39:2c:70:58: 33:c4:6a:26:6e:a2:15:7d:a8:71:d7:40:d5:15:d2: c3:b4:9b:a6:07:4a:7b:6e:0e:87:0e:b0:5e:4d:d3: dc:f1:53:73:fb:dc:9e:6c:98:53:e7:ca:31:35:87: 35:0c:f7:a7:a2:c0:99:8a:42:cb:7c:72:a3:d6:f0: a1:a7:1b:a4:be:8c:58:97:8d:d7:54:06:a8:57:03: 1d:4a:d4:f8:04:5d:6c:75:39:6f:96:69:76:30:ea: b7:33:b6:74:2b:8f:2d:d7:c1:ff:4c:41:82:1d:7f: 9c:03:98:6a:4d:dc:f6:2b:7d:2f:d7:57:97:59:9e: ac:71:c7:b5:a4:1a:a2:d9:07:18:02:54:ce:84:ad: b2:71:41:91:b4:7f:22:f2:e1:8d:50:fc:d4:90:cd: b8:ad:dd:01:62:c0:dc:6b:da:c7:7a:76:14:7d:a6: c5:05:ff:c3:d0:8f:5f:46:08:c8:10:7c:38:90:7f: 03:61:90:b1:d0:7e:3a:7e:f6:9d:c8:bc:44:47:bc: d7:fb:39:49:45:39:c2:33:b9:1e:9d:aa:30:4e:76: fc:eb:f5:a6:2c:a3:19:99:28:d8:e1:ef:99:66:9a: 26:54:8f:2e:0c:05:fc:3e:69:30:15:b9:fe:bf:c5: 05:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:43:EE:1B:93:1D:2F:EB:13:54:67:3A:71:FA:30:80:A0:83:CD:19 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2226::/48 Signature Algorithm: sha256WithRSAEncryption 28:38:d5:5a:73:63:5c:b0:5c:55:4f:7f:ae:f2:95:3b:73:1f: 60:e5:2d:9b:1d:05:ea:33:5e:f4:4e:61:6d:2d:8f:12:9a:6a: 0a:a8:31:16:9c:62:dc:ff:08:5d:cb:42:29:6b:98:7e:8f:0d: 40:d1:46:a4:c2:06:4b:ce:d2:63:e2:c7:a3:6e:03:dd:35:8c: 62:70:33:fe:93:f7:55:35:78:fd:40:40:83:6d:07:75:d3:9e: f0:51:27:95:8e:37:9b:ec:f0:42:99:24:00:17:5d:75:7e:3e: 53:1b:8f:f6:18:e6:0e:ed:29:78:6c:04:5a:f4:1e:27:dc:bf: 1f:5e:d8:a4:06:ed:f8:ad:55:38:f5:f4:d0:45:b5:a7:0d:a1: 15:1c:58:d2:bc:98:96:e6:10:4b:c0:c1:21:34:01:74:b7:c5: b1:db:b8:67:bb:ec:81:e9:7b:5d:e3:b9:25:1e:cd:79:8c:b8: 06:79:e8:5a:0d:52:1e:22:1b:6d:75:eb:2f:98:c5:e5:6d:df: c6:42:b9:26:5b:f1:32:7a:9f:78:87:e1:44:1f:d3:3c:76:89: e3:0c:32:31:1c:91:0a:5a:db:3f:0e:74:7a:54:82:11:c2:31: 58:05:0b:94:e7:cb:d3:5a:02:ef:f8:8d:bd:27:a7:d5:4c:de: 0f:69:aa:38 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUSG+5X13YKmNHXNFmlPMM5TjCpA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQxMDdaFw0yNTA4MDExMjQ2MDdaMDMxMTAvBgNV BAMTKEI4NDNFRTFCOTMxRDJGRUIxMzU0NjczQTcxRkEzMDgwQTA4M0NEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnL/QA10rwm/80OSxwWDPEaiZu ohV9qHHXQNUV0sO0m6YHSntuDocOsF5N09zxU3P73J5smFPnyjE1hzUM96eiwJmK Qst8cqPW8KGnG6S+jFiXjddUBqhXAx1K1PgEXWx1OW+WaXYw6rcztnQrjy3Xwf9M QYIdf5wDmGpN3PYrfS/XV5dZnqxxx7WkGqLZBxgCVM6ErbJxQZG0fyLy4Y1Q/NSQ zbit3QFiwNxr2sd6dhR9psUF/8PQj19GCMgQfDiQfwNhkLHQfjp+9p3IvERHvNf7 OUlFOcIzuR6dqjBOdvzr9aYsoxmZKNjh75lmmiZUjy4MBfw+aTAVuf6/xQUTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUuEPuG5MdL+sTVGc6cfowgKCDzRkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIiYwDQYJKoZIhvcNAQELBQADggEBACg41VpzY1ywXFVPf67ylTtzH2DlLZsd BeozXvROYW0tjxKaagqoMRacYtz/CF3LQilrmH6PDUDRRqTCBkvO0mPix6NuA901 jGJwM/6T91U1eP1AQINtB3XTnvBRJ5WON5vs8EKZJAAXXXV+PlMbj/YY5g7tKXhs BFr0Hifcvx9e2KQG7fitVTj19NBFtacNoRUcWNK8mJbmEEvAwSE0AXS3xbHbuGe7 7IHpe13juSUezXmMuAZ56FoNUh4iG2116y+YxeVt38ZCuSZb8TJ6n3iH4UQf0zx2 ieMMMjEckQpa2z8OdHpUghHCMVgFC5Tny9NaAu/4jb0np9VM3g9pqjg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org