$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: PGGJisxCMrt5t7+b6Ho4VAiHRE753JKA87E9bGTRONk= Subject key identifier: FB:0B:DE:85:E6:3F:CD:27:F0:9E:28:09:A6:0D:4D:5C:0C:43:34:98 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 2623CA29D128413C51031A4E7745BCD6D1D0132C Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:53:40 +0000 ROA not before: Fri 02 Aug 2024 12:48:40 +0000 ROA not after: Fri 01 Aug 2025 12:53:40 +0000 asID: 153087 IP address blocks: 2404:97c0:2248::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:23:ca:29:d1:28:41:3c:51:03:1a:4e:77:45:bc:d6:d1:d0:13:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:48:40 2024 GMT Not After : Aug 1 12:53:40 2025 GMT Subject: CN=FB0BDE85E63FCD27F09E2809A60D4D5C0C433498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:58:0f:57:9d:45:7e:4d:c6:0d:26:86:f4: ea:5f:42:7c:7a:2c:84:8e:b0:4b:46:3f:38:28:e5: de:d2:8b:42:63:c9:3e:f9:27:ec:43:60:a7:7e:57: 99:da:5a:cc:d8:06:ad:7d:e3:e8:fd:f9:a7:73:b0: a9:e9:ca:48:05:c6:60:c7:db:8d:1c:6e:3b:83:8f: 1b:ab:23:95:66:4f:5e:1a:0b:b7:91:62:08:bb:3d: c0:5a:ca:94:74:2e:0a:b6:56:a6:44:a5:9c:fc:4e: 45:17:d0:17:4e:09:76:d0:28:bb:a9:a8:35:0a:a1: df:6b:11:41:86:0c:43:b0:87:cb:7f:9e:4e:7c:ef: cf:4e:f9:f4:6f:a0:a5:b0:40:7e:0d:32:75:a8:e2: 12:07:7e:52:de:b4:f8:f5:ad:4b:30:41:93:76:41: 5e:98:b7:ad:f6:af:5a:5c:44:e4:24:ae:8c:c1:fe: 8e:dd:54:51:da:ae:dc:c4:89:c8:72:c6:83:62:2f: f1:20:6c:f0:25:eb:9f:25:d7:4b:60:c6:82:e0:18: f9:cc:ad:57:c5:56:53:66:f6:77:fc:45:b5:73:15: 3b:2f:2d:f7:d6:b6:59:7c:9d:4f:65:78:57:8a:84: 6b:fd:6c:74:01:d7:50:51:20:48:d7:cc:2a:8f:a4: 54:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0B:DE:85:E6:3F:CD:27:F0:9E:28:09:A6:0D:4D:5C:0C:43:34:98 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234383a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2248::/48 Signature Algorithm: sha256WithRSAEncryption b0:84:47:b6:00:12:38:99:c3:13:3d:4b:0c:de:96:3e:3f:98: 2f:16:ea:56:2f:c8:50:f8:2d:6b:a6:5c:69:8a:74:15:8b:37: 6e:c0:8b:ee:d9:a5:64:3c:28:32:df:6b:1b:b9:1f:d9:f3:fe: 16:94:f9:ec:bb:be:30:d2:7c:bb:2f:a6:84:80:cc:86:66:49: 80:41:ed:0d:7e:07:dd:aa:50:4c:1c:35:02:db:c4:ca:c7:8c: e5:95:83:5b:da:61:ef:e8:0d:05:0d:bf:37:80:35:96:3d:de: e7:4a:f0:4b:e0:e5:11:29:5c:8c:17:d4:13:53:2c:81:d4:71: 36:20:17:09:ee:94:24:b8:77:b7:04:51:ef:31:94:86:70:c7: 55:1b:09:6c:ae:9a:4c:9b:9a:62:d2:b4:61:ee:62:24:1b:cb: 7f:64:97:4e:13:76:d1:33:c4:14:1b:f8:37:2c:cd:03:24:31: b1:da:85:77:be:0a:75:9d:fa:9f:31:7a:cf:96:45:3d:06:48: b1:36:91:20:f8:0e:66:45:8a:f4:d9:79:a2:f9:e0:5b:8e:db: 17:82:e2:61:f3:a5:66:a6:14:e0:7d:9b:f1:87:43:65:67:ba: 6f:0f:f8:de:ce:6b:e0:f6:ba:e6:db:33:cc:63:7f:f2:c6:78: b6:37:7d:2d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJiPKKdEoQTxRAxpOd0W81tHQEywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ4NDBaFw0yNTA4MDExMjUzNDBaMDMxMTAvBgNV BAMTKEZCMEJERTg1RTYzRkNEMjdGMDlFMjgwOUE2MEQ0RDVDMEM0MzM0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJrlgPV51Ffk3GDSaG9OpfQnx6 LISOsEtGPzgo5d7Si0JjyT75J+xDYKd+V5naWszYBq194+j9+adzsKnpykgFxmDH 240cbjuDjxurI5VmT14aC7eRYgi7PcBaypR0Lgq2VqZEpZz8TkUX0BdOCXbQKLup qDUKod9rEUGGDEOwh8t/nk58789O+fRvoKWwQH4NMnWo4hIHflLetPj1rUswQZN2 QV6Yt632r1pcROQkrozB/o7dVFHartzEichyxoNiL/EgbPAl658l10tgxoLgGPnM rVfFVlNm9nf8RbVzFTsvLffWtll8nU9leFeKhGv9bHQB11BRIEjXzCqPpFSnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+wveheY/zSfwnigJpg1NXAxDNJgwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkgwDQYJKoZIhvcNAQELBQADggEBALCER7YAEjiZwxM9Swzelj4/mC8W6lYv yFD4LWumXGmKdBWLN27Ai+7ZpWQ8KDLfaxu5H9nz/haU+ey7vjDSfLsvpoSAzIZm SYBB7Q1+B92qUEwcNQLbxMrHjOWVg1vaYe/oDQUNvzeANZY93udK8Evg5REpXIwX 1BNTLIHUcTYgFwnulCS4d7cEUe8xlIZwx1UbCWyumkybmmLStGHuYiQby39kl04T dtEzxBQb+DcszQMkMbHahXe+CnWd+p8xes+WRT0GSLE2kSD4DmZFivTZeaL54FuO 2xeC4mHzpWamFOB9m/GHQ2Vnum8P+N7Oa+D2uubbM8xjf/LGeLY3fS0= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org