$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233353a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233353a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: ErK/vSD0a+3tDDYBf0NBxWmuxqPxLDaBCYmxHZRqBjI= Subject key identifier: C9:14:09:D1:A2:7C:A3:FE:CD:F5:81:5F:C8:2F:E3:C1:15:56:8C:F9 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 69829EDC28423902086ECC459482F5E20450A9FB Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233353a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:52:21 +0000 ROA not before: Fri 02 Aug 2024 12:47:21 +0000 ROA not after: Fri 01 Aug 2025 12:52:21 +0000 asID: 153087 IP address blocks: 2404:97c0:2235::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:82:9e:dc:28:42:39:02:08:6e:cc:45:94:82:f5:e2:04:50:a9:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:47:21 2024 GMT Not After : Aug 1 12:52:21 2025 GMT Subject: CN=C91409D1A27CA3FECDF5815FC82FE3C115568CF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:10:ac:7f:bf:ed:82:03:3d:d0:52:f8:23:7f: 0f:3e:65:82:05:44:fa:d1:60:b1:c8:00:19:65:7e: e7:03:19:c3:95:f3:d2:e1:c3:bf:ab:e6:46:b6:c9: f5:48:e7:19:9c:b8:69:81:88:6a:ab:b7:3b:51:89: 26:50:d5:3a:6e:98:62:0e:bc:66:22:8f:a4:a2:be: ab:72:7d:e8:94:d2:5a:73:b4:74:14:f6:93:bb:4e: 91:8e:d6:e3:8d:93:8b:95:9f:3b:6d:8b:0b:37:0a: e2:b0:4b:4f:77:b3:d4:1e:3b:3c:bb:96:80:94:01: 8b:5a:fe:a4:b2:b0:99:34:92:62:5f:3c:b9:dc:e9: 59:3f:72:19:ed:68:6d:55:58:56:73:7e:e4:5e:25: 91:27:d6:1b:ab:48:ff:b0:22:7e:8a:c0:87:25:26: f2:c2:c8:14:72:41:e9:69:0c:f2:8c:dd:94:f1:fe: 51:d8:b1:e2:3a:23:68:6e:24:f9:97:c0:f5:11:0d: e8:82:a7:c2:39:37:ae:a6:11:59:98:2d:ae:62:56: 1d:be:09:a0:d0:98:5b:8e:43:fe:fd:14:21:65:2a: 2f:84:ce:f0:2b:2e:a7:57:2f:b9:46:84:45:f1:5c: dd:0d:1b:cb:72:14:cc:9f:39:e7:8d:b6:23:11:3a: af:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:14:09:D1:A2:7C:A3:FE:CD:F5:81:5F:C8:2F:E3:C1:15:56:8C:F9 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233353a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2235::/48 Signature Algorithm: sha256WithRSAEncryption b4:38:5b:21:fd:49:85:2d:92:a8:5d:34:e9:29:de:aa:5c:30: 7c:c0:76:6f:00:4b:2f:fb:0d:15:52:12:ff:6c:c6:3d:75:da: a3:0b:af:06:9e:16:51:d3:be:b3:e7:c9:bb:c8:0b:e9:9e:cb: 12:bf:9f:12:38:08:ac:22:45:dc:ac:73:58:49:60:5d:bb:66: ae:56:2c:e0:0c:8d:6d:76:9c:ac:ca:f4:f7:d1:30:92:8a:d7: 23:11:65:b6:09:d9:0e:34:37:b1:16:b2:41:c7:df:1a:82:8c: 95:65:16:7e:4c:84:e6:a0:33:26:0e:cc:56:1e:a1:08:c8:db: be:56:5f:82:3e:d1:e9:fe:28:9c:0f:98:43:30:25:d1:1e:b2: 86:5e:55:e6:ff:78:e6:ac:19:7b:ef:7f:c4:05:5e:10:e7:3f: 15:9e:02:66:d5:99:97:4f:79:91:28:6d:5e:95:07:8f:88:35: 56:23:5f:80:da:c9:44:d0:f5:c3:e2:23:48:81:8a:8f:b3:5d: 3f:08:ca:47:49:16:d2:8c:0b:8e:95:04:f8:b2:e3:4d:12:0a: 1d:2f:f4:b2:39:4a:13:70:3b:0f:b1:7f:86:9b:74:20:45:f5: 20:dc:0f:62:f6:be:c0:56:1b:47:cc:cd:ce:1b:e5:a9:0c:20: 16:5d:c9:4f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUaYKe3ChCOQIIbsxFlIL14gRQqfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ3MjFaFw0yNTA4MDExMjUyMjFaMDMxMTAvBgNV BAMTKEM5MTQwOUQxQTI3Q0EzRkVDREY1ODE1RkM4MkZFM0MxMTU1NjhDRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbEKx/v+2CAz3QUvgjfw8+ZYIF RPrRYLHIABllfucDGcOV89Lhw7+r5ka2yfVI5xmcuGmBiGqrtztRiSZQ1TpumGIO vGYij6SivqtyfeiU0lpztHQU9pO7TpGO1uONk4uVnzttiws3CuKwS093s9QeOzy7 loCUAYta/qSysJk0kmJfPLnc6Vk/chntaG1VWFZzfuReJZEn1hurSP+wIn6KwIcl JvLCyBRyQelpDPKM3ZTx/lHYseI6I2huJPmXwPURDeiCp8I5N66mEVmYLa5iVh2+ CaDQmFuOQ/79FCFlKi+EzvArLqdXL7lGhEXxXN0NG8tyFMyfOeeNtiMROq83AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUyRQJ0aJ8o/7N9YFfyC/jwRVWjPkwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjUwDQYJKoZIhvcNAQELBQADggEBALQ4WyH9SYUtkqhdNOkp3qpcMHzAdm8A Sy/7DRVSEv9sxj112qMLrwaeFlHTvrPnybvIC+meyxK/nxI4CKwiRdysc1hJYF27 Zq5WLOAMjW12nKzK9PfRMJKK1yMRZbYJ2Q40N7EWskHH3xqCjJVlFn5MhOagMyYO zFYeoQjI275WX4I+0en+KJwPmEMwJdEesoZeVeb/eOasGXvvf8QFXhDnPxWeAmbV mZdPeZEobV6VB4+INVYjX4DayUTQ9cPiI0iBio+zXT8IykdJFtKMC46VBPiy400S Ch0v9LI5ShNwOw+xf4abdCBF9SDcD2L2vsBWG0fMzc4b5akMIBZdyU8= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org