$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: s1++096N+mXYMbC7IosiL6UIi1CJ8BfHkFQB1sMyXss= Subject key identifier: C3:40:1A:02:DD:DD:19:B3:1C:D3:E7:BD:38:76:47:D0:BC:D0:92:66 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 581C11D2E51725AFD21D65D08DC7F99A5FFA1DB2 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:53:26 +0000 ROA not before: Fri 02 Aug 2024 12:48:26 +0000 ROA not after: Fri 01 Aug 2025 12:53:26 +0000 asID: 153087 IP address blocks: 2404:97c0:2245::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1c:11:d2:e5:17:25:af:d2:1d:65:d0:8d:c7:f9:9a:5f:fa:1d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:48:26 2024 GMT Not After : Aug 1 12:53:26 2025 GMT Subject: CN=C3401A02DDDD19B31CD3E7BD387647D0BCD09266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:5c:ee:72:e4:d2:11:7e:96:b2:95:8c:ae: 0e:b7:15:16:ae:99:82:fe:ac:26:2d:f1:cb:9d:60: 7c:e7:bf:29:e0:cb:94:d3:a0:83:e9:25:7b:a2:52: bf:29:ad:3e:89:2c:77:5c:04:a1:d9:d3:60:55:fd: 20:30:98:e7:bd:c9:8a:ee:0b:15:97:67:09:a8:52: d5:13:92:76:a0:74:b4:4c:87:bd:2a:52:3e:5f:30: 2e:1d:ca:bb:1b:fe:07:19:0b:f7:f4:09:a5:75:50: 15:55:52:cf:89:44:cb:40:1d:29:9f:f6:a3:45:02: c5:94:6a:6d:aa:2d:aa:e8:78:9a:be:18:f0:fa:dc: 37:c4:b1:62:44:8a:33:00:0e:4c:b0:3a:47:9e:e5: 3a:43:03:d6:5a:8e:ad:e3:41:d7:eb:6f:4d:23:8b: 31:c1:d7:b6:41:47:77:17:36:e6:13:a0:83:72:05: f2:e6:b1:7e:f5:dd:b1:e2:85:eb:0d:a1:fe:ff:4d: 4a:ef:59:6c:87:4c:05:07:7f:e3:06:26:a3:91:b5: c8:37:06:fd:90:c4:19:98:ef:9e:d6:06:40:fa:a9: e4:a4:31:28:77:1c:a5:99:49:a8:15:43:43:0f:36: 70:4f:eb:9a:24:11:13:7b:76:3d:61:e7:5c:1c:81: e4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:40:1A:02:DD:DD:19:B3:1C:D3:E7:BD:38:76:47:D0:BC:D0:92:66 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234353a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2245::/48 Signature Algorithm: sha256WithRSAEncryption 1c:a3:7e:40:6b:b2:76:14:19:fe:84:df:5f:13:d3:d0:1d:d5: 54:c7:85:66:4a:0e:37:0c:46:09:a8:d0:44:cd:75:dd:1a:b0: 1c:42:32:e7:89:6b:f5:14:59:c8:63:d9:8d:33:dd:94:41:a5: d3:89:92:ba:a9:01:de:43:d1:4f:cd:5a:a8:19:f6:ef:e4:40: 94:89:9a:bf:70:2a:fa:69:cb:b5:35:8e:19:93:62:74:e2:78: e0:36:4c:7c:cd:ad:9f:06:c2:15:9b:8f:65:25:f9:84:e6:7f: e8:97:65:6c:6e:e2:0f:09:44:e5:5e:d8:c5:e5:06:e1:5e:f0: 3a:10:f8:ff:ad:fb:3c:df:e8:04:6e:fc:3f:98:13:0c:9a:64: 39:e7:f4:a2:0e:a4:2c:a5:b8:ee:56:e7:98:14:78:8f:d8:b4: d0:3d:bf:be:92:da:a8:4b:f0:40:58:e5:49:3b:fb:51:96:f4: c8:de:44:02:52:bc:52:4b:5c:0c:82:26:2e:4e:40:46:bf:b3: 72:02:78:6a:82:c5:a1:53:7e:0c:19:7e:bb:b3:d8:b1:63:ca: a4:68:7c:cc:f1:94:9d:44:7f:86:72:f9:22:6c:62:3b:d1:23: 0e:3f:d8:9f:e7:a5:ff:d6:37:c3:d2:7f:c5:9e:46:b5:ad:29: f3:16:cb:1c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWBwR0uUXJa/SHWXQjcf5ml/6HbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ4MjZaFw0yNTA4MDExMjUzMjZaMDMxMTAvBgNV BAMTKEMzNDAxQTAyRERERDE5QjMxQ0QzRTdCRDM4NzY0N0QwQkNEMDkyNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNFzucuTSEX6WspWMrg63FRau mYL+rCYt8cudYHznvyngy5TToIPpJXuiUr8prT6JLHdcBKHZ02BV/SAwmOe9yYru CxWXZwmoUtUTknagdLRMh70qUj5fMC4dyrsb/gcZC/f0CaV1UBVVUs+JRMtAHSmf 9qNFAsWUam2qLaroeJq+GPD63DfEsWJEijMADkywOkee5TpDA9Zajq3jQdfrb00j izHB17ZBR3cXNuYToINyBfLmsX713bHihesNof7/TUrvWWyHTAUHf+MGJqORtcg3 Bv2QxBmY757WBkD6qeSkMSh3HKWZSagVQ0MPNnBP65okERN7dj1h51wcgeTVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUw0AaAt3dGbMc0+e9OHZH0LzQkmYwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0MzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkUwDQYJKoZIhvcNAQELBQADggEBAByjfkBrsnYUGf6E318T09Ad1VTHhWZK DjcMRgmo0ETNdd0asBxCMueJa/UUWchj2Y0z3ZRBpdOJkrqpAd5D0U/NWqgZ9u/k QJSJmr9wKvppy7U1jhmTYnTieOA2THzNrZ8GwhWbj2Ul+YTmf+iXZWxu4g8JROVe 2MXlBuFe8DoQ+P+t+zzf6ARu/D+YEwyaZDnn9KIOpCyluO5W55gUeI/YtNA9v76S 2qhL8EBY5Uk7+1GW9MjeRAJSvFJLXAyCJi5OQEa/s3ICeGqCxaFTfgwZfruz2LFj yqRofMzxlJ1Ef4Zy+SJsYjvRIw4/2J/npf/WN8PSf8WeRrWtKfMWyxw= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org