$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 8fZ3bhqEO0MWGEf2eYJIk/GZS6S1rGNNQJDupsTqEKw= Subject key identifier: 21:EB:5A:24:6A:C4:05:29:01:C8:4C:28:D6:8E:9B:76:77:69:3D:14 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 1A835FED4C1C15DBBA5B953F5B7B72C7E6B52942 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:47:35 +0000 ROA not before: Fri 02 Aug 2024 12:42:35 +0000 ROA not after: Fri 01 Aug 2025 12:47:35 +0000 asID: 153087 IP address blocks: 2404:97c0:2229::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:83:5f:ed:4c:1c:15:db:ba:5b:95:3f:5b:7b:72:c7:e6:b5:29:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:42:35 2024 GMT Not After : Aug 1 12:47:35 2025 GMT Subject: CN=21EB5A246AC4052901C84C28D68E9B7677693D14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f8:08:cc:14:38:cf:8a:16:0b:6d:f6:f3:f6: 3d:b5:5c:e1:c9:bf:14:b2:72:3a:04:c1:29:18:99: f5:f2:4a:fa:e5:a3:b9:4a:cc:db:d2:ee:45:9a:da: 7a:5e:12:1a:28:55:eb:2d:82:82:34:34:8a:a3:81: 4e:0c:79:7e:cd:6f:bf:ec:1e:db:39:6f:04:21:9f: 87:23:52:da:46:49:56:fd:fb:97:b5:b8:3a:10:ba: 03:c8:f3:64:c2:40:86:97:2d:a3:af:03:f7:17:83: 59:b2:83:1b:8a:89:42:4e:81:e7:3e:a5:42:21:8c: b7:38:bc:50:09:24:74:04:b2:89:9f:ad:70:b9:09: eb:a4:21:7a:25:66:1b:57:69:d7:1b:80:ca:65:e2: 57:fb:28:a9:e8:e5:3f:a1:88:bb:a3:aa:3d:66:50: bb:85:95:e8:87:26:1b:d4:64:46:71:e9:79:6f:ef: 3a:87:ad:65:b5:e1:d0:a8:de:49:92:af:26:6d:2c: c4:b0:c1:50:83:0c:2f:ec:33:d4:91:fb:bf:16:3c: 81:2c:14:a6:b7:ca:a5:6d:66:1a:bc:fe:15:cb:bb: d2:26:2d:41:c9:fc:47:d7:d6:7e:68:28:5e:96:cd: b0:fb:e3:ae:e5:a3:bd:89:f8:ba:e8:fe:32:ac:f9: ea:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EB:5A:24:6A:C4:05:29:01:C8:4C:28:D6:8E:9B:76:77:69:3D:14 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323232393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2229::/48 Signature Algorithm: sha256WithRSAEncryption 8a:8d:33:52:6e:8e:3e:24:f9:8e:af:2b:66:55:ae:1c:b9:9f: 91:22:45:d3:b9:08:2f:41:40:91:9a:5b:b3:dd:85:81:bd:06: 46:8d:24:c8:4c:c6:5c:82:13:30:36:df:52:04:db:db:86:a6: 58:02:6e:71:3d:a2:c5:28:1a:7b:29:ed:ac:9f:13:cb:30:ea: c2:73:a1:d3:7e:7c:c6:16:11:f4:90:69:99:8c:d4:fe:8d:88: 76:1f:a0:96:4f:fc:a6:b2:d1:a6:25:bd:7e:8a:ea:38:72:a9: 8d:7b:61:cf:f5:b7:32:cf:8e:e2:a1:8d:f5:6d:57:cc:fe:0d: d9:6d:52:b2:78:56:11:4c:0f:93:0f:27:43:b7:af:4a:5e:91: 76:3b:b2:b8:03:44:83:18:6c:45:ca:eb:1b:65:3c:e9:36:84: f2:32:c2:14:3a:b1:b2:b0:6f:1c:d9:6b:30:a4:d4:1f:7b:2a: 62:a3:f1:0e:35:27:8a:84:a8:3d:1f:bf:30:68:2b:b1:9e:94: ae:df:0e:b3:97:0d:05:83:1d:a4:a7:ca:17:d4:ce:df:18:b6: 81:df:2c:7f:57:9e:49:e1:73:c1:7f:42:42:51:53:cd:1c:cd: 5b:b4:de:36:1d:6b:f1:fd:26:ab:d5:d0:80:85:79:bc:98:1a: 19:7a:88:49 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGoNf7UwcFdu6W5U/W3tyx+a1KUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQyMzVaFw0yNTA4MDExMjQ3MzVaMDMxMTAvBgNV BAMTKDIxRUI1QTI0NkFDNDA1MjkwMUM4NEMyOEQ2OEU5Qjc2Nzc2OTNEMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw+AjMFDjPihYLbfbz9j21XOHJ vxSycjoEwSkYmfXySvrlo7lKzNvS7kWa2npeEhooVestgoI0NIqjgU4MeX7Nb7/s Hts5bwQhn4cjUtpGSVb9+5e1uDoQugPI82TCQIaXLaOvA/cXg1mygxuKiUJOgec+ pUIhjLc4vFAJJHQEsomfrXC5CeukIXolZhtXadcbgMpl4lf7KKno5T+hiLujqj1m ULuFleiHJhvUZEZx6Xlv7zqHrWW14dCo3kmSryZtLMSwwVCDDC/sM9SR+78WPIEs FKa3yqVtZhq8/hXLu9ImLUHJ/EfX1n5oKF6WzbD7467lo72J+Lro/jKs+erlAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIetaJGrEBSkByEwo1o6bdndpPRQwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIikwDQYJKoZIhvcNAQELBQADggEBAIqNM1Jujj4k+Y6vK2ZVrhy5n5EiRdO5 CC9BQJGaW7PdhYG9BkaNJMhMxlyCEzA231IE29uGplgCbnE9osUoGnsp7ayfE8sw 6sJzodN+fMYWEfSQaZmM1P6NiHYfoJZP/Kay0aYlvX6K6jhyqY17Yc/1tzLPjuKh jfVtV8z+DdltUrJ4VhFMD5MPJ0O3r0pekXY7srgDRIMYbEXK6xtlPOk2hPIywhQ6 sbKwbxzZazCk1B97KmKj8Q41J4qEqD0fvzBoK7GelK7fDrOXDQWDHaSnyhfUzt8Y toHfLH9Xnknhc8F/QkJRU80czVu03jYda/H9JqvV0ICFebyYGhl6iEk= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org