$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: WdDjRH+SYEnUaR6vX1v8Eyzv9kVaEl2sqrwn+NodCbQ= Subject key identifier: EF:D3:31:4A:40:8E:24:92:0A:26:81:53:E5:5F:C7:F4:F8:80:D3:E9 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 6C2BC9901D5C487F2158842941A4DA34C0846522 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:53:12 +0000 ROA not before: Fri 02 Aug 2024 12:48:12 +0000 ROA not after: Fri 01 Aug 2025 12:53:12 +0000 asID: 153087 IP address blocks: 2404:97c0:2241::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:2b:c9:90:1d:5c:48:7f:21:58:84:29:41:a4:da:34:c0:84:65:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:48:12 2024 GMT Not After : Aug 1 12:53:12 2025 GMT Subject: CN=EFD3314A408E24920A268153E55FC7F4F880D3E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fb:0b:21:9d:93:0e:1a:fb:dd:81:b4:ee:8e: 2c:0c:70:eb:d3:75:99:0f:4e:12:41:ca:e3:93:10: 01:f8:73:94:ed:ff:fb:8a:f2:72:13:6a:6e:af:ed: 90:02:3c:7a:d1:30:df:2e:dd:fb:af:14:29:9e:95: 88:6e:c3:23:8f:a7:aa:24:aa:7c:0f:94:e6:3d:19: 3c:00:4a:94:75:e8:b4:5f:ed:04:33:40:27:c3:b2: 9e:99:a8:32:19:7e:44:29:dd:f6:18:3d:e9:4b:d3: f6:33:3a:3f:de:9d:09:71:35:b5:55:95:bb:49:ac: d8:6b:78:3a:9f:86:29:08:73:8c:81:e0:4a:42:f2: 19:6b:d6:dd:1d:f4:d6:4f:ed:76:5d:4c:37:75:6f: 9f:8a:25:b7:8e:34:3d:d6:53:06:de:4e:41:72:42: 88:a2:c7:fd:89:e8:33:75:5e:c7:5e:88:12:41:e8: ed:0a:34:b6:37:33:16:c7:76:02:f2:f6:01:e0:28: 7e:d1:35:c9:5c:f6:f8:c3:25:66:d0:ba:12:fd:8a: a5:42:6f:8f:71:85:b2:21:21:0f:bf:93:ff:95:3b: 89:f4:49:c0:9e:cd:4f:85:c0:b0:ff:c3:65:c5:31: 36:65:10:38:5c:70:d2:a7:08:df:7e:32:e5:a5:52: 74:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D3:31:4A:40:8E:24:92:0A:26:81:53:E5:5F:C7:F4:F8:80:D3:E9 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234313a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2241::/48 Signature Algorithm: sha256WithRSAEncryption 0f:f2:e6:58:2c:44:e8:3b:86:20:71:53:09:e2:89:ce:0c:e8: 34:41:78:07:09:6d:5c:82:6b:cf:08:35:c8:d5:46:eb:d5:e5: 85:4c:ee:46:76:9f:6a:1d:a2:88:12:1c:c5:ac:36:51:99:6d: ac:c7:92:98:92:fc:cb:01:cb:27:c8:1d:96:e6:6c:89:63:ab: 13:7c:f9:e9:6f:41:04:53:c5:b2:11:91:44:e0:7f:64:13:82: 2b:80:01:f2:4e:2f:bc:56:c2:a6:fd:c7:3a:5f:89:32:93:4a: e3:b4:da:48:91:e4:6d:ab:ce:4f:d3:22:5a:e6:ce:1f:02:61: 6e:4d:ef:b0:94:af:bc:48:17:f4:95:2f:b2:0e:37:e9:39:ae: ad:95:b9:7b:19:25:e9:68:a8:63:70:70:c4:e2:53:ab:02:6a: bc:0b:1d:18:b3:6e:9b:94:80:80:89:9b:25:30:9a:18:0a:11: 1d:83:69:f2:02:d2:fc:08:07:e3:12:cc:69:a5:28:23:33:7d: 4e:94:43:d6:6c:af:ab:86:ed:f5:4c:a0:cd:5e:d0:55:34:e3: e8:0a:ac:de:e3:a3:e5:ba:35:85:8d:12:9a:b7:b9:78:5e:4b: 10:0a:28:b0:8b:f7:59:91:2a:ea:92:a3:4a:89:2d:04:2a:4a: f1:14:34:51 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUbCvJkB1cSH8hWIQpQaTaNMCEZSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ4MTJaFw0yNTA4MDExMjUzMTJaMDMxMTAvBgNV BAMTKEVGRDMzMTRBNDA4RTI0OTIwQTI2ODE1M0U1NUZDN0Y0Rjg4MEQzRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh+wshnZMOGvvdgbTujiwMcOvT dZkPThJByuOTEAH4c5Tt//uK8nITam6v7ZACPHrRMN8u3fuvFCmelYhuwyOPp6ok qnwPlOY9GTwASpR16LRf7QQzQCfDsp6ZqDIZfkQp3fYYPelL0/YzOj/enQlxNbVV lbtJrNhreDqfhikIc4yB4EpC8hlr1t0d9NZP7XZdTDd1b5+KJbeOND3WUwbeTkFy Qoiix/2J6DN1XsdeiBJB6O0KNLY3MxbHdgLy9gHgKH7RNclc9vjDJWbQuhL9iqVC b49xhbIhIQ+/k/+VO4n0ScCezU+FwLD/w2XFMTZlEDhccNKnCN9+MuWlUnQDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU79MxSkCOJJIKJoFT5V/H9PiA0+kwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0MzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkEwDQYJKoZIhvcNAQELBQADggEBAA/y5lgsROg7hiBxUwniic4M6DRBeAcJ bVyCa88INcjVRuvV5YVM7kZ2n2odoogSHMWsNlGZbazHkpiS/MsByyfIHZbmbIlj qxN8+elvQQRTxbIRkUTgf2QTgiuAAfJOL7xWwqb9xzpfiTKTSuO02kiR5G2rzk/T Ilrmzh8CYW5N77CUr7xIF/SVL7ION+k5rq2VuXsZJeloqGNwcMTiU6sCarwLHRiz bpuUgICJmyUwmhgKER2DafIC0vwIB+MSzGmlKCMzfU6UQ9Zsr6uG7fVMoM1e0FU0 4+gKrN7jo+W6NYWNEpq3uXheSxAKKLCL91mRKuqSo0qJLQQqSvEUNFE= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org