$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: wpLaelvn/7RgRvLo42A5O/3rh/0Mudl2HwL4C6SF0so= Subject key identifier: AF:E4:99:19:D1:8E:83:D2:C6:50:A4:ED:2B:EA:31:61:16:08:1E:C1 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 6EEAC548B7031A3AC92A6913C044E662D89B429C Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:48:43 +0000 ROA not before: Fri 02 Aug 2024 12:43:43 +0000 ROA not after: Fri 01 Aug 2025 12:48:43 +0000 asID: 153087 IP address blocks: 2404:97c0:2232::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ea:c5:48:b7:03:1a:3a:c9:2a:69:13:c0:44:e6:62:d8:9b:42:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:43:43 2024 GMT Not After : Aug 1 12:48:43 2025 GMT Subject: CN=AFE49919D18E83D2C650A4ED2BEA316116081EC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:e8:4e:fc:8e:23:0f:f2:d3:e4:ef:64:b6: 38:b6:8d:96:d0:6f:cb:1b:b0:b5:20:46:56:b3:20: 14:91:02:49:f9:01:fa:b5:aa:2d:c8:cf:6c:5f:45: 00:b3:28:d5:fb:aa:29:30:b8:5c:51:a3:57:18:8e: bf:20:a2:67:bd:97:75:f7:c1:09:60:33:12:8f:79: a7:af:e3:89:9d:02:13:84:29:43:34:db:0c:59:2b: 1f:10:57:68:97:28:2f:df:86:b5:04:b5:ae:7e:ed: be:9a:56:cc:12:e5:d8:33:85:b5:f9:bb:1a:8d:fc: a0:81:b7:67:e5:9f:3a:9d:8c:44:a1:4a:32:5c:c8: 85:fb:7d:86:f4:17:47:3d:b4:54:6c:e9:d8:02:ef: b5:05:27:09:e9:b5:36:7f:51:f6:9f:d7:ea:77:50: c4:a7:9d:09:2e:fd:7b:72:05:19:33:db:16:56:6b: 89:0f:da:d6:5a:18:ad:52:2d:f0:79:84:b7:b8:2c: a2:81:65:7e:a1:79:1d:3d:cf:08:05:71:c4:8b:a3: cc:e8:8c:6d:81:e3:9f:8d:ec:70:82:28:12:7e:47: 65:54:53:28:28:94:ea:25:42:f5:92:c7:12:1f:04: 5b:02:cb:c8:31:d4:40:5e:ab:25:a2:fa:2c:f8:b0: 35:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E4:99:19:D1:8E:83:D2:C6:50:A4:ED:2B:EA:31:61:16:08:1E:C1 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2232::/48 Signature Algorithm: sha256WithRSAEncryption 82:22:48:e4:77:18:5b:9f:a5:bd:61:04:d6:f1:70:65:a3:55: b7:61:16:f1:15:8c:95:3d:7b:4c:1d:36:13:1b:fd:ec:e3:b3: 93:06:58:25:a7:ad:8a:2f:a5:36:7c:2d:f9:e0:77:85:90:78: 6b:43:6c:bb:ba:a4:d1:8a:3d:a5:23:34:96:cd:dc:f8:dc:f5: da:e6:c2:8e:dd:60:e6:70:35:a9:34:68:a3:5f:e2:85:3e:90: 32:81:6f:e4:e5:b0:2e:42:8e:94:c1:70:f7:02:9d:31:4d:2b: 70:55:2b:9c:12:ca:81:e8:ec:58:34:5c:55:64:fd:9c:fa:e7: 02:12:71:06:4b:01:d2:d2:75:76:69:64:9f:07:82:ae:9b:0f: cd:5e:f0:46:ea:9c:1a:86:cc:bd:b8:ab:d3:4b:f0:63:d1:64: 39:44:1a:b7:11:b1:e2:7c:85:04:31:77:cd:11:68:c1:19:dd: 20:df:5d:13:65:e8:2c:4e:20:b0:ea:c0:d7:11:cf:90:a2:a3: 35:d5:f8:6e:f9:82:74:87:82:2a:bd:2f:aa:b2:e7:b5:34:88: 53:1a:65:55:7d:59:8b:c8:2b:37:e6:8d:db:10:a7:1e:5b:aa: 72:dd:af:17:5c:e6:b4:e8:ee:51:39:70:2c:c7:4b:0c:97:37: 93:42:8d:0e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUburFSLcDGjrJKmkTwETmYtibQpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQzNDNaFw0yNTA4MDExMjQ4NDNaMDMxMTAvBgNV BAMTKEFGRTQ5OTE5RDE4RTgzRDJDNjUwQTRFRDJCRUEzMTYxMTYwODFFQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+uOhO/I4jD/LT5O9ktji2jZbQ b8sbsLUgRlazIBSRAkn5Afq1qi3Iz2xfRQCzKNX7qikwuFxRo1cYjr8gome9l3X3 wQlgMxKPeaev44mdAhOEKUM02wxZKx8QV2iXKC/fhrUEta5+7b6aVswS5dgzhbX5 uxqN/KCBt2flnzqdjEShSjJcyIX7fYb0F0c9tFRs6dgC77UFJwnptTZ/Ufaf1+p3 UMSnnQku/XtyBRkz2xZWa4kP2tZaGK1SLfB5hLe4LKKBZX6heR09zwgFccSLo8zo jG2B45+N7HCCKBJ+R2VUUygolOolQvWSxxIfBFsCy8gx1EBeqyWi+iz4sDVjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUr+SZGdGOg9LGUKTtK+oxYRYIHsEwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjIwDQYJKoZIhvcNAQELBQADggEBAIIiSOR3GFufpb1hBNbxcGWjVbdhFvEV jJU9e0wdNhMb/ezjs5MGWCWnrYovpTZ8Lfngd4WQeGtDbLu6pNGKPaUjNJbN3Pjc 9drmwo7dYOZwNak0aKNf4oU+kDKBb+TlsC5CjpTBcPcCnTFNK3BVK5wSyoHo7Fg0 XFVk/Zz65wIScQZLAdLSdXZpZJ8Hgq6bD81e8EbqnBqGzL24q9NL8GPRZDlEGrcR seJ8hQQxd80RaMEZ3SDfXRNl6CxOILDqwNcRz5CiozXV+G75gnSHgiq9L6qy57U0 iFMaZVV9WYvIKzfmjdsQpx5bqnLdrxdc5rTo7lE5cCzHSwyXN5NCjQ4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org