$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: CKOSskeAm2nfGcDVr1osAf6fjb/NnIAkUcOOybgpO88= Subject key identifier: A0:0D:B6:19:6D:93:E4:8D:5C:C8:A4:53:B6:62:EC:08:5D:B7:40:18 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 02166B2EA9676E3537561B91FA09BB6187E8AB75 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:48:29 +0000 ROA not before: Fri 02 Aug 2024 12:43:29 +0000 ROA not after: Fri 01 Aug 2025 12:48:29 +0000 asID: 153087 IP address blocks: 2404:97c0:2231::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:16:6b:2e:a9:67:6e:35:37:56:1b:91:fa:09:bb:61:87:e8:ab:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:43:29 2024 GMT Not After : Aug 1 12:48:29 2025 GMT Subject: CN=A00DB6196D93E48D5CC8A453B662EC085DB74018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:9a:83:b8:d3:04:87:c7:cc:28:ae:cd:a3: 18:74:da:37:de:1a:3b:19:ca:cf:11:14:5e:55:12: 4b:8e:42:db:81:e7:6b:42:28:23:c4:59:9e:f1:db: 94:a8:01:1f:d8:b4:a3:27:60:76:9e:7e:83:b0:95: 9a:0b:93:7e:05:e1:e0:24:bb:76:8a:43:4a:b8:6f: 08:44:3f:74:de:6f:57:dd:59:b8:36:e1:1f:01:52: b7:d8:b6:1a:28:fd:49:bc:a1:96:40:5c:b0:d6:a4: 4f:a0:06:f2:dd:78:11:e7:84:3d:3f:a3:32:59:33: 0e:15:b0:40:dd:b8:06:9d:88:ec:83:df:2a:a1:5b: 2a:6a:bf:6d:7f:54:f9:9d:bc:56:eb:75:da:ab:01: ca:f8:91:2e:57:c8:10:4a:c3:3d:97:27:95:92:50: 7b:13:d0:3d:6c:16:02:74:4d:49:a7:d0:ec:67:f3: 01:72:86:0e:0c:f6:7e:a7:d4:14:db:9a:fc:15:81: 9a:f4:bf:c1:c8:5e:00:6d:57:08:ae:96:7e:f8:b7: f7:43:2f:4d:e8:71:b4:23:ab:f1:d7:03:76:49:43: 5f:c4:62:61:8e:9b:ac:ef:47:00:f1:75:09:2b:63: 05:ce:60:ea:de:31:e1:0e:9c:2f:f2:7d:51:1c:17: c6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0D:B6:19:6D:93:E4:8D:5C:C8:A4:53:B6:62:EC:08:5D:B7:40:18 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2231::/48 Signature Algorithm: sha256WithRSAEncryption 9e:61:15:80:ab:b7:5b:58:c7:5b:36:80:26:0b:b0:8f:91:91: 29:9a:b7:ca:c6:3a:92:b9:02:de:d2:c7:b9:f1:0c:91:37:76: 51:47:5a:07:05:16:a6:ec:37:e8:56:4f:00:33:82:19:4f:d5: 03:f1:e5:9b:72:b1:d0:4c:37:7b:d8:b2:56:dd:f5:e5:f4:e8: 60:8a:73:91:6a:a8:fd:36:f9:b2:4d:b3:8b:ad:d8:ef:7f:11: d8:3d:2d:52:5f:29:7b:66:63:0e:99:8f:95:50:02:18:b9:08: e8:c0:4d:c3:32:e7:e6:33:c7:af:3e:2e:0b:a3:f6:2f:fe:74: d0:4c:82:2e:19:ca:ff:6c:90:eb:27:36:89:61:d1:f8:7b:db: b5:74:d9:99:ec:7a:69:d6:f4:25:7f:17:08:f2:ab:a3:b7:91: 80:5d:7a:e8:6e:5d:43:eb:c6:29:6f:ea:b9:fe:91:ad:4a:41: aa:24:3e:d0:c0:6e:19:ac:d6:a8:40:8c:0d:d4:13:1c:74:f6: 26:0d:5f:b7:f6:27:bd:f8:0f:1a:c3:bb:06:63:e6:6c:9a:de: d3:32:7a:56:61:f7:cc:07:ac:e0:25:2a:c8:64:6a:ac:05:7e: 84:97:9f:b4:7f:74:8d:37:8b:59:07:fc:7a:b3:d2:47:5c:34: 62:b7:ed:80 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAhZrLqlnbjU3VhuR+gm7YYfoq3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQzMjlaFw0yNTA4MDExMjQ4MjlaMDMxMTAvBgNV BAMTKEEwMERCNjE5NkQ5M0U0OEQ1Q0M4QTQ1M0I2NjJFQzA4NURCNzQwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC815qDuNMEh8fMKK7Noxh02jfe GjsZys8RFF5VEkuOQtuB52tCKCPEWZ7x25SoAR/YtKMnYHaefoOwlZoLk34F4eAk u3aKQ0q4bwhEP3Teb1fdWbg24R8BUrfYthoo/Um8oZZAXLDWpE+gBvLdeBHnhD0/ ozJZMw4VsEDduAadiOyD3yqhWypqv21/VPmdvFbrddqrAcr4kS5XyBBKwz2XJ5WS UHsT0D1sFgJ0TUmn0Oxn8wFyhg4M9n6n1BTbmvwVgZr0v8HIXgBtVwiuln74t/dD L03ocbQjq/HXA3ZJQ1/EYmGOm6zvRwDxdQkrYwXOYOreMeEOnC/yfVEcF8ZrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUoA22GW2T5I1cyKRTtmLsCF23QBgwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjEwDQYJKoZIhvcNAQELBQADggEBAJ5hFYCrt1tYx1s2gCYLsI+RkSmat8rG OpK5At7Sx7nxDJE3dlFHWgcFFqbsN+hWTwAzghlP1QPx5ZtysdBMN3vYslbd9eX0 6GCKc5FqqP02+bJNs4ut2O9/Edg9LVJfKXtmYw6Zj5VQAhi5COjATcMy5+Yzx68+ Lguj9i/+dNBMgi4Zyv9skOsnNolh0fh727V02ZnsemnW9CV/Fwjyq6O3kYBdeuhu XUPrxilv6rn+ka1KQaokPtDAbhms1qhAjA3UExx09iYNX7f2J734DxrDuwZj5mya 3tMyelZh98wHrOAlKshkaqwFfoSXn7R/dI03i1kH/Hqz0kdcNGK37YA= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org