$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 12pdM9rfbbkYajK/nwmDGtWUUhxH3JX87vj6ihCil6g= Subject key identifier: 55:08:E6:62:1A:C4:49:62:DA:F9:37:33:8E:BB:1D:28:0A:F2:1F:0D Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 47F58F0ED5D615FF69CE90CE94DF23570D3C2369 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:48:14 +0000 ROA not before: Fri 02 Aug 2024 12:43:14 +0000 ROA not after: Fri 01 Aug 2025 12:48:14 +0000 asID: 153087 IP address blocks: 2404:97c0:2230::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f5:8f:0e:d5:d6:15:ff:69:ce:90:ce:94:df:23:57:0d:3c:23:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:43:14 2024 GMT Not After : Aug 1 12:48:14 2025 GMT Subject: CN=5508E6621AC44962DAF937338EBB1D280AF21F0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:7e:e9:cc:31:dd:48:2c:d7:39:1a:f9:7f: a8:04:e3:44:a2:5a:d1:bf:ab:8d:49:40:61:42:72: e4:1a:60:2f:e4:77:31:8d:a1:6f:24:c5:91:e2:8e: 64:5f:13:ea:d2:7a:8e:c4:88:25:8d:49:cc:a4:67: c8:48:5d:f2:1e:4c:9e:14:03:5f:8b:fc:f6:b8:29: 4c:df:e8:5f:1f:20:80:00:fa:a2:9b:d3:6f:8b:ae: eb:cf:99:34:94:68:78:e6:89:e5:0e:51:0e:01:3e: b9:81:77:96:46:ec:3f:e1:ae:47:e4:33:28:c7:8c: db:b2:59:73:eb:59:65:b4:e4:f9:5d:8d:9a:14:40: 4b:38:f8:28:2b:89:2e:04:69:f0:8d:1f:39:78:31: 32:aa:be:1b:5b:65:00:df:e2:3c:00:4e:ba:c7:0c: 67:93:b4:b1:90:d4:96:6f:83:b1:02:dc:d2:4c:a0: fe:26:63:ce:65:11:b0:88:f6:c7:02:2e:a7:a7:23: e7:62:be:ee:fc:dc:38:5d:6b:18:b5:94:03:62:57: de:62:b3:5f:cc:58:6c:9a:6a:e1:ab:e2:0b:48:e6: 46:ff:a2:2d:3c:5d:c4:ec:91:be:2f:a8:94:a0:00: a8:18:f8:f9:2d:94:9d:2a:3e:13:4c:46:91:ae:08: 46:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:08:E6:62:1A:C4:49:62:DA:F9:37:33:8E:BB:1D:28:0A:F2:1F:0D X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2230::/48 Signature Algorithm: sha256WithRSAEncryption 2d:27:c6:bc:6d:6e:4c:11:ee:64:1c:e0:93:cd:70:98:9f:6e: c0:bd:29:4a:aa:1b:29:34:c7:4b:40:87:d1:ab:6e:94:1b:44: 40:ec:56:93:1c:92:62:61:c5:5a:fa:82:a8:8b:7a:c6:49:1e: 9c:76:44:5b:5c:bf:78:99:60:1d:4b:a7:d6:0b:4c:76:7b:b1: 44:0d:b8:1e:f8:6f:6c:07:c7:c2:ce:f1:45:ba:89:57:0a:2b: 38:ed:80:ed:3a:1d:1b:72:95:4c:19:f9:d3:a0:bf:07:22:6f: b6:fa:10:d7:5b:d5:89:d2:8b:ea:11:d3:20:97:66:ca:82:3b: 76:52:3e:6b:f2:2b:c7:e9:43:d8:29:87:ba:a1:1b:b9:bc:d8: 00:97:4f:ee:c1:cb:11:d5:e9:35:4c:94:0d:45:86:6b:7a:00: 3e:49:e1:3b:ab:ab:6f:11:54:e2:be:6c:f3:e7:54:4a:dd:85: 36:83:32:80:05:f2:6a:56:be:cd:65:4e:3f:4f:64:5c:c3:ce: e4:72:f8:79:23:06:2b:99:d2:ee:97:35:b5:34:cc:81:d5:44: a8:5f:82:e1:6e:f8:80:24:9f:17:c4:bd:0e:d2:1c:a5:6b:d5: 31:25:97:86:8f:bf:8a:fc:cc:fc:87:08:0c:86:c3:a9:80:17: 8f:81:07:40 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUR/WPDtXWFf9pzpDOlN8jVw08I2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQzMTRaFw0yNTA4MDExMjQ4MTRaMDMxMTAvBgNV BAMTKDU1MDhFNjYyMUFDNDQ5NjJEQUY5MzczMzhFQkIxRDI4MEFGMjFGMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9HH7pzDHdSCzXORr5f6gE40Si WtG/q41JQGFCcuQaYC/kdzGNoW8kxZHijmRfE+rSeo7EiCWNScykZ8hIXfIeTJ4U A1+L/Pa4KUzf6F8fIIAA+qKb02+LruvPmTSUaHjmieUOUQ4BPrmBd5ZG7D/hrkfk MyjHjNuyWXPrWWW05PldjZoUQEs4+CgriS4EafCNHzl4MTKqvhtbZQDf4jwATrrH DGeTtLGQ1JZvg7EC3NJMoP4mY85lEbCI9scCLqenI+divu783Dhdaxi1lANiV95i s1/MWGyaauGr4gtI5kb/oi08XcTskb4vqJSgAKgY+PktlJ0qPhNMRpGuCEYhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUVQjmYhrESWLa+TczjrsdKAryHw0wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjAwDQYJKoZIhvcNAQELBQADggEBAC0nxrxtbkwR7mQc4JPNcJifbsC9KUqq Gyk0x0tAh9GrbpQbREDsVpMckmJhxVr6gqiLesZJHpx2RFtcv3iZYB1Lp9YLTHZ7 sUQNuB74b2wHx8LO8UW6iVcKKzjtgO06HRtylUwZ+dOgvwcib7b6ENdb1YnSi+oR 0yCXZsqCO3ZSPmvyK8fpQ9gph7qhG7m82ACXT+7ByxHV6TVMlA1Fhmt6AD5J4Tur q28RVOK+bPPnVErdhTaDMoAF8mpWvs1lTj9PZFzDzuRy+HkjBiuZ0u6XNbU0zIHV RKhfguFu+IAknxfEvQ7SHKVr1TEll4aPv4r8zPyHCAyGw6mAF4+BB0A= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org