$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: Nx3qQJMdNLWU3WsVT7wiF0FSDjf5gMJBP4h96zNXRt8= Subject key identifier: C4:21:26:19:76:53:77:AD:94:CE:60:F3:5A:0A:5A:25:44:1E:08:C6 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 247C68A1B8BC56EC31C2A4C4A4EB5D0E7742C30C Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:54:40 +0000 ROA not before: Fri 02 Aug 2024 12:49:40 +0000 ROA not after: Fri 01 Aug 2025 12:54:40 +0000 asID: 153087 IP address blocks: 2404:97c0:266::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7c:68:a1:b8:bc:56:ec:31:c2:a4:c4:a4:eb:5d:0e:77:42:c3:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:49:40 2024 GMT Not After : Aug 1 12:54:40 2025 GMT Subject: CN=C4212619765377AD94CE60F35A0A5A25441E08C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0b:03:54:ea:84:8d:9e:eb:ea:0a:94:c2:8a: 13:1f:9e:01:d8:13:b0:fe:cb:d2:71:1b:3d:60:eb: 8a:89:8e:28:7a:ad:23:8b:6d:f7:69:95:31:85:72: 69:08:40:cb:1f:45:5b:65:3c:9a:87:19:68:a1:8e: 69:68:ea:47:72:e5:cf:b6:ad:15:92:31:d3:a8:8e: 73:4a:2e:83:52:b3:10:16:ea:92:81:c0:d7:51:c9: 8a:34:bf:06:f6:df:b5:16:df:a9:da:07:28:27:1f: 9f:38:65:e0:d2:b3:86:4e:c1:61:3e:9b:06:20:b6: c2:8a:2c:3d:f1:88:83:80:db:41:8e:00:eb:12:1b: e0:c5:17:ef:8b:73:65:2e:cd:70:15:b3:46:07:ea: 81:6e:a9:82:ee:52:66:a5:34:cd:30:8d:4c:4f:fe: a0:65:1e:c6:03:e0:37:19:33:f3:06:78:33:dc:52: 76:d3:06:6b:06:e3:bc:de:84:56:06:4e:95:b2:ab: 36:66:23:38:5d:e0:10:79:09:4b:c5:43:4b:5e:07: a1:86:b3:c9:90:d7:9a:fb:08:31:15:79:a6:15:e7: 66:f8:85:d2:c8:55:d3:5d:79:70:07:f0:9b:e0:21: 0e:ee:78:b7:a2:4f:63:11:8c:b5:14:99:44:c0:ed: 12:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:21:26:19:76:53:77:AD:94:CE:60:F3:5A:0A:5A:25:44:1E:08:C6 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3236363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:266::/48 Signature Algorithm: sha256WithRSAEncryption 39:30:77:33:8e:5a:e3:4c:f1:15:7c:32:3f:97:56:a1:87:23: f7:37:ea:37:fb:cb:72:08:27:30:b3:9e:83:7d:94:f0:07:56: 27:4a:7b:9a:19:75:e3:28:f9:39:96:4f:21:66:96:c2:63:1e: 30:0e:47:44:f0:9c:77:01:82:a0:96:9c:d7:f3:05:e7:55:cc: bd:12:db:ce:ae:ee:32:f1:8b:76:30:94:cc:6b:c0:ec:bb:98: b2:bf:25:db:c8:1c:2f:67:10:1f:92:c6:9c:08:32:9b:97:03: fc:35:10:14:07:a2:a1:dc:86:c3:5f:dd:b2:af:b7:2e:4f:e9: 3b:fd:d8:6c:e5:94:22:e7:a4:bc:44:28:a0:c1:f7:07:1b:d1: 1c:08:86:d4:55:e8:76:78:a8:ca:24:31:dc:e1:11:5d:a9:66: af:fc:2a:4b:f9:c6:10:44:b8:95:9f:e1:a4:c3:88:8a:1d:a3: ee:0b:7d:2b:60:0b:10:09:ee:8c:11:4e:4d:b4:41:be:91:ab: de:a8:b4:f5:02:6f:04:82:80:0d:9c:bb:62:68:32:bd:d0:d8: 58:e9:75:b0:df:b0:7f:c2:9d:0d:75:25:0e:5d:74:dc:6b:4d: 52:0d:ac:67:fc:4b:05:e5:7f:e7:4b:54:c0:91:42:fb:bb:e5: 91:f3:e4:51 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJHxoobi8VuwxwqTEpOtdDndCwwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ5NDBaFw0yNTA4MDExMjU0NDBaMDMxMTAvBgNV BAMTKEM0MjEyNjE5NzY1Mzc3QUQ5NENFNjBGMzVBMEE1QTI1NDQxRTA4QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5CwNU6oSNnuvqCpTCihMfngHY E7D+y9JxGz1g64qJjih6rSOLbfdplTGFcmkIQMsfRVtlPJqHGWihjmlo6kdy5c+2 rRWSMdOojnNKLoNSsxAW6pKBwNdRyYo0vwb237UW36naBygnH584ZeDSs4ZOwWE+ mwYgtsKKLD3xiIOA20GOAOsSG+DFF++Lc2UuzXAVs0YH6oFuqYLuUmalNM0wjUxP /qBlHsYD4DcZM/MGeDPcUnbTBmsG47zehFYGTpWyqzZmIzhd4BB5CUvFQ0teB6GG s8mQ15r7CDEVeaYV52b4hdLIVdNdeXAH8JvgIQ7ueLeiT2MRjLUUmUTA7RKFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxCEmGXZTd62UzmDzWgpaJUQeCMYwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzNjM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAJmMA0GCSqGSIb3DQEBCwUAA4IBAQA5MHczjlrjTPEVfDI/l1ahhyP3N+o3+8ty CCcws56DfZTwB1YnSnuaGXXjKPk5lk8hZpbCYx4wDkdE8Jx3AYKglpzX8wXnVcy9 EtvOru4y8Yt2MJTMa8Dsu5iyvyXbyBwvZxAfksacCDKblwP8NRAUB6Kh3IbDX92y r7cuT+k7/dhs5ZQi56S8RCigwfcHG9EcCIbUVeh2eKjKJDHc4RFdqWav/CpL+cYQ RLiVn+Gkw4iKHaPuC30rYAsQCe6MEU5NtEG+kaveqLT1Am8EgoANnLtiaDK90NhY 6XWw37B/wp0NdSUOXXTca01SDaxn/EsF5X/nS1TAkUL7u+WR8+RR -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org