$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: OsWCrVRCPI89xMlgxRhWqPQ85M5y2TkjQQcKXrRM10M= Subject key identifier: 72:4F:FA:8E:3E:A2:D4:48:10:D3:D9:75:87:BA:CC:18:BF:1F:E0:85 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 552CCEE6EF290701709E54A3BD1BA331E16A14C2 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:52:45 +0000 ROA not before: Fri 02 Aug 2024 12:47:45 +0000 ROA not after: Fri 01 Aug 2025 12:52:45 +0000 asID: 153087 IP address blocks: 2404:97c0:2239::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:2c:ce:e6:ef:29:07:01:70:9e:54:a3:bd:1b:a3:31:e1:6a:14:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:47:45 2024 GMT Not After : Aug 1 12:52:45 2025 GMT Subject: CN=724FFA8E3EA2D44810D3D97587BACC18BF1FE085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fe:4b:c8:3c:52:68:ad:28:db:e9:3b:9e:67: 81:43:8c:c4:d7:8b:cb:0a:18:d8:a5:e7:6e:16:59: 90:8b:98:71:f2:63:b6:dd:a4:06:05:10:07:16:80: b4:6e:f4:16:be:03:f9:16:74:44:7b:2c:fc:74:63: 50:51:ce:15:36:ea:af:14:cc:d7:0b:69:34:c5:34: 77:27:c7:ef:ff:e4:ea:6d:60:24:8a:75:65:8c:2c: a9:92:a9:4c:30:7e:c6:75:c9:1a:df:a0:a4:fd:a2: 14:dc:31:c5:b0:54:4a:7f:d8:d7:57:1e:73:86:43: 84:55:d9:0e:ef:a2:e7:11:f0:c2:bd:1d:63:3b:66: 41:e7:0e:ea:3a:62:a2:6e:89:2c:53:2d:a6:df:0e: 40:38:48:28:63:32:c5:a0:aa:40:55:80:7b:03:57: d3:18:17:1a:97:5a:63:18:37:1a:c8:54:e6:33:aa: a6:6e:9b:06:64:75:ac:be:2d:7b:0c:c5:bf:84:70: 7d:d2:05:fe:14:e0:24:6b:be:35:98:3e:32:fe:d1: f3:0a:64:37:b2:ee:6e:f1:e7:bf:26:73:63:dc:e7: 34:f7:70:17:62:1a:d5:1a:30:b1:d4:11:45:7e:2d: c0:46:8e:7f:c6:85:1c:91:8d:f5:09:e4:55:29:2c: f3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4F:FA:8E:3E:A2:D4:48:10:D3:D9:75:87:BA:CC:18:BF:1F:E0:85 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323233393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2239::/48 Signature Algorithm: sha256WithRSAEncryption 0f:f7:28:d2:d1:81:75:65:e4:08:07:b5:1f:16:c8:0e:0b:91: d0:e2:22:7e:c7:fa:14:fc:65:a3:20:52:89:a3:57:12:b2:5e: 9a:d8:50:98:96:ba:49:3d:43:59:fc:68:18:38:eb:3d:2c:64: b6:9f:d6:ab:cb:9b:36:db:52:df:34:1f:ef:93:97:a3:fc:8e: 57:39:d3:8c:2a:4f:6a:83:f8:4a:7d:02:bc:76:3c:d2:f8:1f: ae:40:65:3f:ae:c6:15:76:a1:7a:2b:c4:50:db:f5:ab:93:b1: d2:7d:89:34:a5:0e:6b:08:c7:97:7c:e7:24:a4:75:c7:25:e0: b3:f8:e9:65:c6:29:82:f3:5c:be:7e:df:be:58:ef:40:dc:f5: eb:42:98:af:73:2b:06:31:b8:69:f5:46:67:56:f8:39:66:65: 39:6c:2b:cc:6f:0e:e2:f5:a1:63:d2:ca:5f:7e:d6:60:f9:05: 24:22:08:53:8a:15:36:e1:47:cc:f3:6a:eb:fd:0a:8c:ab:eb: 71:68:1c:8d:da:12:25:9d:ac:4b:ed:72:6f:c4:11:72:18:30: 19:7b:1e:0f:a4:e5:6b:cc:05:5e:6c:54:81:d9:ee:12:ac:3b: 8b:a4:d9:e0:0b:2d:40:53:8c:da:94:9e:81:52:4a:aa:16:62: 4b:3f:fc:c7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVSzO5u8pBwFwnlSjvRujMeFqFMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ3NDVaFw0yNTA4MDExMjUyNDVaMDMxMTAvBgNV BAMTKDcyNEZGQThFM0VBMkQ0NDgxMEQzRDk3NTg3QkFDQzE4QkYxRkUwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4/kvIPFJorSjb6TueZ4FDjMTX i8sKGNil524WWZCLmHHyY7bdpAYFEAcWgLRu9Ba+A/kWdER7LPx0Y1BRzhU26q8U zNcLaTTFNHcnx+//5OptYCSKdWWMLKmSqUwwfsZ1yRrfoKT9ohTcMcWwVEp/2NdX HnOGQ4RV2Q7voucR8MK9HWM7ZkHnDuo6YqJuiSxTLabfDkA4SChjMsWgqkBVgHsD V9MYFxqXWmMYNxrIVOYzqqZumwZkday+LXsMxb+EcH3SBf4U4CRrvjWYPjL+0fMK ZDey7m7x578mc2Pc5zT3cBdiGtUaMLHUEUV+LcBGjn/GhRyRjfUJ5FUpLPN3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUck/6jj6i1EgQ09l1h7rMGL8f4IUwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIjkwDQYJKoZIhvcNAQELBQADggEBAA/3KNLRgXVl5AgHtR8WyA4LkdDiIn7H +hT8ZaMgUomjVxKyXprYUJiWukk9Q1n8aBg46z0sZLaf1qvLmzbbUt80H++Tl6P8 jlc504wqT2qD+Ep9Arx2PNL4H65AZT+uxhV2oXorxFDb9auTsdJ9iTSlDmsIx5d8 5ySkdccl4LP46WXGKYLzXL5+375Y70Dc9etCmK9zKwYxuGn1RmdW+DlmZTlsK8xv DuL1oWPSyl9+1mD5BSQiCFOKFTbhR8zzauv9Coyr63FoHI3aEiWdrEvtcm/EEXIY MBl7Hg+k5WvMBV5sVIHZ7hKsO4uk2eALLUBTjNqUnoFSSqoWYks//Mc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org