$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: A2lBhO0sajesZJvdL+AWAzmkyg3N/eaWq12wi20V+1I= Subject key identifier: 8E:DE:8E:46:3B:5E:59:75:AC:D1:9F:25:39:24:46:AE:AF:D3:A4:E6 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2A08F6C2836840D1A31467AA296F3E5B173EA0E5 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa Signing time: Sat 03 Aug 2024 08:42:12 +0000 ROA not before: Sat 03 Aug 2024 08:37:12 +0000 ROA not after: Sat 02 Aug 2025 08:42:12 +0000 asID: 153087 IP address blocks: 2404:97c0:223::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:08:f6:c2:83:68:40:d1:a3:14:67:aa:29:6f:3e:5b:17:3e:a0:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 3 08:37:12 2024 GMT Not After : Aug 2 08:42:12 2025 GMT Subject: CN=8EDE8E463B5E5975ACD19F25392446AEAFD3A4E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:53:14:28:71:95:09:b9:49:b1:06:36:a2:d2: 5a:49:fa:5b:13:85:90:3a:06:13:f5:62:0e:52:be: 90:ee:96:54:8c:fa:36:f6:04:4b:96:08:1b:9e:a2: 8f:ee:74:d3:b6:24:92:91:94:a6:bb:93:10:19:b0: 19:b0:d3:81:b9:ce:91:a1:c4:c7:d7:72:1f:70:a2: 32:9a:fe:e8:5f:9f:93:0a:9d:3b:5d:9b:9f:2d:21: 36:64:13:43:67:35:87:44:64:a5:1f:b6:e1:b0:e1: eb:4a:59:b3:f4:46:37:9d:29:1a:21:d6:9f:b2:86: 02:52:37:28:59:13:b6:81:c7:f1:a5:65:e5:de:a1: f9:0a:70:44:fd:d1:b9:1e:8a:56:51:c2:08:eb:02: a6:4c:5f:e2:b0:fa:98:1c:24:13:ef:a3:d0:87:cd: 69:5a:c9:22:81:03:97:9a:bb:b7:af:7d:96:05:20: eb:fe:08:aa:9c:6a:3f:9c:34:74:f3:65:18:e5:1d: a3:a3:5b:ee:2b:e6:69:19:40:a2:3c:a4:53:0e:a9: c1:03:7c:da:57:03:42:78:6d:72:c7:1d:56:76:25: db:f2:7c:47:9d:a0:0c:65:55:25:51:5d:56:18:90: 0a:16:d8:3a:b5:ab:00:2b:70:df:f6:e9:55:b4:a3: 6b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DE:8E:46:3B:5E:59:75:AC:D1:9F:25:39:24:46:AE:AF:D3:A4:E6 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3232333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:223::/48 Signature Algorithm: sha256WithRSAEncryption 3e:34:a2:51:6d:43:b5:fe:0c:98:2e:dc:30:d5:20:25:2e:c8: 2c:2e:dc:de:0d:6e:1d:5f:61:e9:b7:42:40:cb:4b:e2:4c:79: 97:37:c5:0e:89:9d:1c:d6:46:ce:8e:13:76:44:8f:08:b7:c3: cf:04:04:e2:b5:7a:2d:82:1a:96:e0:fd:21:59:91:09:83:39: 64:f2:ce:45:0a:9e:f6:1f:7b:50:00:62:16:34:d6:c6:2a:61: 07:d7:83:a8:20:b2:0a:69:5f:47:60:2d:a5:4a:cc:2a:e8:59: 46:d2:bc:16:c6:5d:ad:27:e8:07:f4:7b:c0:e4:44:db:94:32: 15:32:49:12:66:af:f2:53:ea:18:24:c1:51:0f:1c:a4:3f:21: a3:fc:52:6c:bd:9a:17:fc:e2:d0:eb:02:f8:00:66:04:a4:ab: db:a9:6d:2b:16:56:f9:4a:c4:50:7e:93:f4:22:dc:d9:f7:02: 03:3b:98:38:20:df:47:74:d7:73:e3:8c:e2:ee:8d:86:78:4d: 23:01:de:f9:9b:30:3b:17:7f:ca:bb:54:e1:a5:f7:bd:af:68: d0:ff:89:b7:94:22:cd:bb:f3:8c:d1:ce:52:eb:77:4b:ae:6d: 76:0d:63:2b:84:39:75:8a:47:a7:94:7d:6a:07:51:88:ba:d9: 26:77:e7:01 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKgj2woNoQNGjFGeqKW8+Wxc+oOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDMwODM3MTJaFw0yNTA4MDIwODQyMTJaMDMxMTAvBgNV BAMTKDhFREU4RTQ2M0I1RTU5NzVBQ0QxOUYyNTM5MjQ0NkFFQUZEM0E0RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTUxQocZUJuUmxBjai0lpJ+lsT hZA6BhP1Yg5SvpDullSM+jb2BEuWCBueoo/udNO2JJKRlKa7kxAZsBmw04G5zpGh xMfXch9wojKa/uhfn5MKnTtdm58tITZkE0NnNYdEZKUftuGw4etKWbP0RjedKRoh 1p+yhgJSNyhZE7aBx/GlZeXeofkKcET90bkeilZRwgjrAqZMX+Kw+pgcJBPvo9CH zWlaySKBA5eau7evfZYFIOv+CKqcaj+cNHTzZRjlHaOjW+4r5mkZQKI8pFMOqcED fNpXA0J4bXLHHVZ2JdvyfEedoAxlVSVRXVYYkAoW2Dq1qwArcN/26VW0o2vrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjt6ORjteWXWs0Z8lOSRGrq/TpOYwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMzM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAIjMA0GCSqGSIb3DQEBCwUAA4IBAQA+NKJRbUO1/gyYLtww1SAlLsgsLtzeDW4d X2Hpt0JAy0viTHmXN8UOiZ0c1kbOjhN2RI8It8PPBATitXotghqW4P0hWZEJgzlk 8s5FCp72H3tQAGIWNNbGKmEH14OoILIKaV9HYC2lSswq6FlG0rwWxl2tJ+gH9HvA 5ETblDIVMkkSZq/yU+oYJMFRDxykPyGj/FJsvZoX/OLQ6wL4AGYEpKvbqW0rFlb5 SsRQfpP0ItzZ9wIDO5g4IN9HdNdz44zi7o2GeE0jAd75mzA7F3/Ku1Thpfe9r2jQ /4m3lCLNu/OM0c5S63dLrm12DWMrhDl1ikenlH1qB1GIutkmd+cB -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org