$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: KIIj9+/F8zsHbnepStP+9F+1pvBVLcLVS4sZzHJ4BrQ= Subject key identifier: BE:55:2C:F7:A1:83:3B:32:9E:EF:C7:76:7E:2D:7B:F8:DC:41:CF:80 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 6B4A8DFC334D01EE68B002FE4BC4E0548B4121CD Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:48:59 +0000 ROA not before: Fri 02 Aug 2024 12:43:59 +0000 ROA not after: Fri 01 Aug 2025 12:48:59 +0000 asID: 153087 IP address blocks: 2404:97c0:2233::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4a:8d:fc:33:4d:01:ee:68:b0:02:fe:4b:c4:e0:54:8b:41:21:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:43:59 2024 GMT Not After : Aug 1 12:48:59 2025 GMT Subject: CN=BE552CF7A1833B329EEFC7767E2D7BF8DC41CF80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:9f:df:9a:d1:b9:d8:25:a7:8d:c8:09:68: ae:06:44:25:1e:b3:f3:be:3f:e6:ca:13:ef:5a:07: 9c:b9:48:65:18:50:56:82:55:a5:54:fc:83:c2:58: 58:ac:da:10:4c:0c:61:a4:03:b5:3b:7d:3c:44:6c: 5b:f4:7e:3c:34:48:88:f2:93:2e:16:29:e7:c0:05: 5f:69:42:d0:99:41:d5:5f:a1:84:e9:dd:bc:70:28: 0c:f8:b3:4b:5f:3c:11:a8:bb:4b:2a:ad:31:bd:b8: 3b:c6:28:08:e9:7b:02:5e:55:d8:89:0b:e3:7f:cc: 7c:7d:06:d9:13:4c:aa:24:c8:bd:45:6f:0a:88:da: 8f:a6:eb:35:0b:46:12:7a:52:ab:92:6d:85:7b:61: 4f:6e:a4:2d:be:c3:fe:78:76:57:57:57:be:bd:71: 0f:8b:5a:91:44:5c:82:61:93:5e:63:7d:3a:b1:cc: 7e:3e:ef:04:fa:da:5e:7c:6b:b3:1c:83:c7:db:45: 59:8d:c3:31:d4:cc:1d:bc:a4:02:a8:ed:ba:57:3f: 3f:56:40:0a:f0:89:55:c1:5a:57:f6:91:a3:0b:36: 71:4f:cd:cd:38:eb:0c:70:0a:8f:38:30:7c:cb:8d: 7a:89:a7:97:06:f1:85:d6:cc:fb:b9:94:fd:3d:5c: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:55:2C:F7:A1:83:3B:32:9E:EF:C7:76:7E:2D:7B:F8:DC:41:CF:80 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2233::/48 Signature Algorithm: sha256WithRSAEncryption 9c:b4:55:d8:39:f9:0e:97:fa:b5:9e:dd:3d:e5:68:11:98:fa: c3:c5:ef:d4:9d:5b:86:a3:8a:46:68:cd:1d:9f:0a:45:43:19: 93:ff:f9:0d:42:ad:fd:cf:b4:7a:39:4b:bf:7b:2f:04:1a:bf: 47:f0:8b:59:3c:70:46:c1:5c:46:a2:14:87:4d:ff:fc:9b:54: d3:2e:b3:54:f8:a6:4e:0b:c1:5c:11:d3:96:eb:cb:37:00:f7: df:d5:3d:45:bd:f2:cd:03:fc:01:d2:b3:3a:46:71:1a:65:d5: 26:25:3b:36:fd:87:e5:f9:1f:17:c2:26:48:81:6f:dd:f9:dd: fa:71:b0:62:67:d3:06:f4:fe:eb:ba:62:ae:75:e3:e1:84:5f: 83:9c:17:ed:d4:6b:d7:26:0f:ee:32:46:7c:8e:ec:44:e6:3b: 2b:d8:83:b1:db:ed:fe:28:c8:f5:48:9e:fe:99:38:cc:54:cd: 75:f3:ef:c0:b7:d5:49:94:09:79:f0:c7:6b:f2:59:8f:b8:22: ca:f4:72:62:a2:dd:5e:a9:3e:69:bd:0d:9c:99:c1:f5:38:01: ca:cd:7e:f9:43:f1:b4:c8:6e:92:9d:15:c1:7e:1c:8f:97:3d: ba:a5:a4:a1:dc:5e:d5:80:45:a8:47:0d:01:2c:b5:f6:5b:26: 4c:9c:c4:8f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUa0qN/DNNAe5osAL+S8TgVItBIc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQzNTlaFw0yNTA4MDExMjQ4NTlaMDMxMTAvBgNV BAMTKEJFNTUyQ0Y3QTE4MzNCMzI5RUVGQzc3NjdFMkQ3QkY4REM0MUNGODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHoJ/fmtG52CWnjcgJaK4GRCUe s/O+P+bKE+9aB5y5SGUYUFaCVaVU/IPCWFis2hBMDGGkA7U7fTxEbFv0fjw0SIjy ky4WKefABV9pQtCZQdVfoYTp3bxwKAz4s0tfPBGou0sqrTG9uDvGKAjpewJeVdiJ C+N/zHx9BtkTTKokyL1FbwqI2o+m6zULRhJ6UquSbYV7YU9upC2+w/54dldXV769 cQ+LWpFEXIJhk15jfTqxzH4+7wT62l58a7Mcg8fbRVmNwzHUzB28pAKo7bpXPz9W QArwiVXBWlf2kaMLNnFPzc046wxwCo84MHzLjXqJp5cG8YXWzPu5lP09XOWDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvlUs96GDOzKe78d2fi17+NxBz4AwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjMwDQYJKoZIhvcNAQELBQADggEBAJy0Vdg5+Q6X+rWe3T3laBGY+sPF79Sd W4ajikZozR2fCkVDGZP/+Q1Crf3PtHo5S797LwQav0fwi1k8cEbBXEaiFIdN//yb VNMus1T4pk4LwVwR05bryzcA99/VPUW98s0D/AHSszpGcRpl1SYlOzb9h+X5HxfC JkiBb9353fpxsGJn0wb0/uu6Yq514+GEX4OcF+3Ua9cmD+4yRnyO7ETmOyvYg7Hb 7f4oyPVInv6ZOMxUzXXz78C31UmUCXnwx2vyWY+4Isr0cmKi3V6pPmm9DZyZwfU4 AcrNfvlD8bTIbpKdFcF+HI+XPbqlpKHcXtWARahHDQEstfZbJkycxI8= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org