$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: Wmmuw7NEyLWcaJExFhC2c2pJGTYn+RHZFVN+FGQzc80= Subject key identifier: 4A:6C:8B:AB:DC:18:20:67:3E:1F:18:6D:A6:33:56:97:65:AB:D3:75 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 55700F5A8D92459789DD43A5FE38C6E265A5CA08 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:54:07 +0000 ROA not before: Fri 02 Aug 2024 12:49:07 +0000 ROA not after: Fri 01 Aug 2025 12:54:07 +0000 asID: 153087 IP address blocks: 2404:97c0:2249::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:70:0f:5a:8d:92:45:97:89:dd:43:a5:fe:38:c6:e2:65:a5:ca:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:49:07 2024 GMT Not After : Aug 1 12:54:07 2025 GMT Subject: CN=4A6C8BABDC1820673E1F186DA633569765ABD375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ea:53:af:a9:61:16:4b:8e:81:29:f4:39:ba: 0d:24:7c:43:fc:2f:87:70:c2:7c:e9:90:39:7a:92: a0:a0:3c:43:0a:02:51:6b:2e:13:4e:9f:93:50:cc: 9a:7e:b9:39:39:4c:1e:f2:5d:9c:cf:8c:4b:da:3a: 50:e6:92:dc:30:1b:9e:c2:54:49:27:2d:2e:91:99: ef:38:26:0b:f1:06:81:0f:fb:17:9d:77:7b:d6:a0: 5a:eb:cd:c5:24:e2:d5:21:0c:f9:69:24:fc:01:c5: 1c:ae:98:64:ff:c6:ee:9c:7a:f1:00:f7:a9:de:97: a8:34:a4:4d:fd:48:02:a5:5f:93:36:7f:a1:8d:31: 27:eb:28:27:66:ea:ca:38:66:53:ac:30:61:d4:14: a2:05:6c:e4:4b:d4:62:4d:14:32:ed:3a:a8:42:8e: fd:bc:0e:27:dd:4d:2d:45:64:ac:47:57:ef:88:43: 20:6e:c5:a9:e8:63:3d:2a:a1:fa:5c:68:5a:c2:fe: 59:37:1a:c8:4c:f9:56:55:e6:b1:d0:09:b3:35:6f: 5c:b4:94:dc:2f:c5:82:d2:55:bc:9c:c8:32:16:86: 1e:e0:b4:0c:62:0f:48:bd:f7:39:d8:dd:0e:49:99: d3:ef:d2:06:36:cb:ad:3f:a2:9c:8b:96:86:1d:4c: ec:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6C:8B:AB:DC:18:20:67:3E:1F:18:6D:A6:33:56:97:65:AB:D3:75 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a323234393a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2249::/48 Signature Algorithm: sha256WithRSAEncryption bb:b6:5c:d7:16:11:9b:75:df:6d:70:d3:35:6e:0e:cd:82:6d: ab:23:45:10:0a:0e:a5:e7:38:65:f0:04:35:2f:60:f2:fc:d4: 17:08:66:f5:7a:bf:16:20:70:0c:06:d6:b2:3f:83:37:ef:78: fb:1d:9e:9b:9f:cc:4b:52:d9:41:6f:09:49:17:37:97:f4:e5: 8a:18:4a:bd:c5:3d:49:31:b0:4b:31:13:72:92:4a:60:e1:44: 80:0c:67:2a:e7:fe:5d:9f:79:ca:74:83:70:f8:30:ed:56:f6: 86:e2:ab:37:92:bd:fc:24:e3:ea:1b:41:84:a0:47:a7:ab:01: a7:d9:02:04:89:5b:fc:5c:6f:22:36:6c:7a:e3:c3:04:fb:bc: 2b:14:af:60:c4:63:cd:3b:ec:ed:11:c7:5a:a6:3f:13:88:2e: e5:84:98:5a:df:43:e2:18:b9:a8:0d:99:aa:f3:e2:5e:69:4e: ea:30:4d:86:b9:23:62:0b:9e:bd:73:a7:cd:d9:2b:81:6b:1b: 5b:9c:36:87:f7:d2:56:34:b0:4c:bc:29:4e:73:a8:0b:2c:b8: 0c:cb:73:67:26:e0:16:e9:c5:4b:39:7c:f5:dc:c2:59:2a:59: 52:8e:2d:47:56:b5:81:b1:67:4d:73:51:01:a3:c5:a1:60:42: fe:52:8a:59 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVXAPWo2SRZeJ3UOl/jjG4mWlyggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ5MDdaFw0yNTA4MDExMjU0MDdaMDMxMTAvBgNV BAMTKDRBNkM4QkFCREMxODIwNjczRTFGMTg2REE2MzM1Njk3NjVBQkQzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr6lOvqWEWS46BKfQ5ug0kfEP8 L4dwwnzpkDl6kqCgPEMKAlFrLhNOn5NQzJp+uTk5TB7yXZzPjEvaOlDmktwwG57C VEknLS6Rme84JgvxBoEP+xedd3vWoFrrzcUk4tUhDPlpJPwBxRyumGT/xu6cevEA 96nel6g0pE39SAKlX5M2f6GNMSfrKCdm6so4ZlOsMGHUFKIFbORL1GJNFDLtOqhC jv28DifdTS1FZKxHV++IQyBuxanoYz0qofpcaFrC/lk3GshM+VZV5rHQCbM1b1y0 lNwvxYLSVbycyDIWhh7gtAxiD0i99znY3Q5JmdPv0gY2y60/opyLloYdTOx3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUSmyLq9wYIGc+HxhtpjNWl2Wr03UwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjM0Mzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAIkkwDQYJKoZIhvcNAQELBQADggEBALu2XNcWEZt1321w0zVuDs2CbasjRRAK DqXnOGXwBDUvYPL81BcIZvV6vxYgcAwG1rI/gzfvePsdnpufzEtS2UFvCUkXN5f0 5YoYSr3FPUkxsEsxE3KSSmDhRIAMZyrn/l2fecp0g3D4MO1W9obiqzeSvfwk4+ob QYSgR6erAafZAgSJW/xcbyI2bHrjwwT7vCsUr2DEY8077O0Rx1qmPxOILuWEmFrf Q+IYuagNmarz4l5pTuowTYa5I2ILnr1zp83ZK4FrG1ucNof30lY0sEy8KU5zqAss uAzLc2cm4BbpxUs5fPXcwlkqWVKOLUdWtYGxZ01zUQGjxaFgQv5Silk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org