$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: gSUgpfCEpfxAK8JvDreuHQqJGhWQ1hZDrtdqxMucnVQ= Subject key identifier: 60:CB:62:BB:72:24:00:FB:A1:DD:00:85:01:DF:E3:B2:87:14:CD:AE Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7DBA5DB0CED7627B8121587CFE3C306EE641B7CB Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa Signing time: Sat 03 Aug 2024 08:41:51 +0000 ROA not before: Sat 03 Aug 2024 08:36:51 +0000 ROA not after: Sat 02 Aug 2025 08:41:51 +0000 asID: 153087 IP address blocks: 2404:97c0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ba:5d:b0:ce:d7:62:7b:81:21:58:7c:fe:3c:30:6e:e6:41:b7:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 3 08:36:51 2024 GMT Not After : Aug 2 08:41:51 2025 GMT Subject: CN=60CB62BB722400FBA1DD008501DFE3B28714CDAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:b2:e3:3a:51:95:5a:c5:a3:27:e3:60:97: 79:ad:a2:d1:bd:9f:60:16:0c:be:e9:e4:49:2a:42: 44:d1:7e:95:a6:ef:63:f4:e3:cc:e9:b7:75:1d:63: 29:05:e1:ad:48:9d:f1:9d:56:d9:3c:56:d8:a3:8a: 66:b5:f0:db:ba:e7:aa:28:c1:c0:50:22:38:9c:7b: e2:78:32:2d:84:e6:3a:e1:bc:dd:24:4c:c7:97:65: eb:e0:34:0e:ab:c9:5d:6d:cb:be:39:47:85:2e:f3: 8b:52:1a:97:b6:51:84:2e:68:1b:03:f0:17:0d:b9: f3:7c:ff:db:12:86:2b:f7:6f:c0:f7:99:a9:f7:58: af:89:64:a3:86:1a:43:ad:0f:77:5b:7e:7d:ed:09: 61:57:95:07:37:10:fb:41:cc:ce:7c:a4:9e:c1:68: d7:c3:75:9e:36:19:0b:d2:5b:84:59:0e:d6:5d:28: 9c:01:80:cb:07:9d:7a:64:5f:d3:b8:30:db:49:79: 7f:da:9e:04:e8:84:d6:24:b8:e8:b8:77:aa:bc:01: 81:a4:dd:d4:10:e1:09:cd:27:6e:30:4c:b7:57:64: 9f:e4:1f:82:ae:88:7c:2e:49:57:64:4e:5a:11:7a: 5f:d9:ce:be:db:72:70:98:d1:83:be:1f:d4:24:ec: bc:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CB:62:BB:72:24:00:FB:A1:DD:00:85:01:DF:E3:B2:87:14:CD:AE X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:222::/48 Signature Algorithm: sha256WithRSAEncryption 19:24:66:56:10:c1:5d:da:16:1c:d7:ab:bb:1f:dd:9c:a4:df: 16:da:9b:e7:4c:90:ca:57:86:80:bb:f5:28:d9:6b:31:32:be: 80:ff:f8:fd:5b:9c:eb:75:01:21:61:a9:79:41:15:f7:7e:b3: a2:1c:3f:13:8e:15:2c:0a:c7:94:50:07:6f:d7:13:87:67:1b: e8:42:39:67:ee:ee:73:b9:24:46:0a:d7:f6:ed:4f:27:84:6e: 84:bb:7f:6f:d3:65:da:d1:96:7f:fe:4c:5f:d6:3c:03:95:5d: b3:41:47:2e:59:0a:be:21:f8:af:30:d1:d6:cd:b8:85:05:b7: a9:89:6d:e7:90:17:c9:34:d8:bb:2e:11:cc:06:a8:fe:fe:e2: ed:12:c5:13:78:d9:0b:e3:44:ae:2e:c5:8d:44:95:ce:f8:ca: 05:cc:85:6e:2f:0c:e9:14:98:d9:eb:53:74:aa:34:3f:0e:01: fe:a3:dc:ac:64:49:5c:51:cf:c2:c8:36:97:86:8f:65:c7:61: d8:1a:e3:2c:c1:9a:a8:13:67:89:da:ed:9a:99:84:70:35:79: 5c:91:1f:24:7e:b2:77:c3:a0:da:68:9f:6c:92:61:82:e7:3c: 06:d7:08:b6:61:96:34:91:53:02:c3:26:19:51:7c:3a:31:fe: 20:02:d8:a4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfbpdsM7XYnuBIVh8/jwwbuZBt8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDMwODM2NTFaFw0yNTA4MDIwODQxNTFaMDMxMTAvBgNV BAMTKDYwQ0I2MkJCNzIyNDAwRkJBMUREMDA4NTAxREZFM0IyODcxNENEQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLmrLjOlGVWsWjJ+Ngl3mtotG9 n2AWDL7p5EkqQkTRfpWm72P048zpt3UdYykF4a1InfGdVtk8Vtijima18Nu656oo wcBQIjice+J4Mi2E5jrhvN0kTMeXZevgNA6ryV1ty745R4Uu84tSGpe2UYQuaBsD 8BcNufN8/9sShiv3b8D3man3WK+JZKOGGkOtD3dbfn3tCWFXlQc3EPtBzM58pJ7B aNfDdZ42GQvSW4RZDtZdKJwBgMsHnXpkX9O4MNtJeX/angTohNYkuOi4d6q8AYGk 3dQQ4QnNJ24wTLdXZJ/kH4KuiHwuSVdkTloRel/Zzr7bcnCY0YO+H9Qk7LyhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYMtiu3IkAPuh3QCFAd/jsocUza4wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQAZJGZWEMFd2hYc16u7H92cpN8W2pvnTJDK V4aAu/Uo2WsxMr6A//j9W5zrdQEhYal5QRX3frOiHD8TjhUsCseUUAdv1xOHZxvo Qjln7u5zuSRGCtf27U8nhG6Eu39v02Xa0ZZ//kxf1jwDlV2zQUcuWQq+IfivMNHW zbiFBbepiW3nkBfJNNi7LhHMBqj+/uLtEsUTeNkL40SuLsWNRJXO+MoFzIVuLwzp FJjZ61N0qjQ/DgH+o9ysZElcUc/CyDaXho9lx2HYGuMswZqoE2eJ2u2amYRwNXlc kR8kfrJ3w6DaaJ9skmGC5zwG1wi2YZY0kVMCwyYZUXw6Mf4gAtik -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org