$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: NCXaO9ua4dkxE7nDCEstInIz0uLACtixKn6BxONPP70= Subject key identifier: 71:1B:33:0C:92:08:07:70:01:42:FC:46:9C:25:16:5B:C7:06:DF:BC Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 0B71D6B7A8CB7E25B7BC9BF7C9044544FDE83568 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:54:52 +0000 ROA not before: Fri 02 Aug 2024 12:49:52 +0000 ROA not after: Fri 01 Aug 2025 12:54:52 +0000 asID: 153087 IP address blocks: 2404:97c0:3126::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:71:d6:b7:a8:cb:7e:25:b7:bc:9b:f7:c9:04:45:44:fd:e8:35:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:49:52 2024 GMT Not After : Aug 1 12:54:52 2025 GMT Subject: CN=711B330C920807700142FC469C25165BC706DFBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:78:f3:46:a0:0d:5d:ba:96:5b:00:e1:7c:55: db:de:92:19:1b:a8:31:c4:7b:c6:97:ac:1c:df:b2: 58:75:9a:59:56:9b:bb:70:24:1e:ca:87:bb:06:06: da:e7:c5:7f:4c:36:e6:02:de:bc:6e:36:88:d9:30: 4e:05:9b:dc:2c:17:ff:49:61:e9:b4:87:ed:10:9d: 3c:20:1e:d0:78:21:3e:ca:c9:a6:e6:5c:1a:da:9e: a4:3b:0a:11:fb:d3:9f:e8:c9:8e:87:7d:c2:1b:80: c2:79:cb:a8:e0:b9:1b:39:34:55:f8:fd:7a:d8:be: 38:d0:2b:b0:01:9a:30:cf:bf:d2:50:3a:3b:0b:cf: a0:fe:bf:03:34:8b:ce:1c:1d:bd:80:4d:f5:7f:2a: 39:3f:47:bc:e4:5b:28:73:5c:80:67:e8:23:bb:6b: 9d:47:f3:78:c9:6a:ad:a9:09:a7:22:af:4d:6a:e2: 6e:01:b0:2d:ce:8f:f3:ae:69:fc:8a:f3:26:f8:cb: 16:77:fb:d8:4b:7a:6c:0a:78:05:53:de:a6:39:db: 8b:30:0c:bc:e9:80:0e:f7:31:cb:c2:8e:e0:1f:84: 75:a4:c4:b7:66:4e:c4:2d:ff:01:7d:59:ab:b6:d3: 11:ca:9a:68:fd:6f:dd:db:c8:60:ae:29:ec:26:3a: ba:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:1B:33:0C:92:08:07:70:01:42:FC:46:9C:25:16:5B:C7:06:DF:BC X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3126::/48 Signature Algorithm: sha256WithRSAEncryption a9:94:23:ff:92:21:a5:0c:97:a4:82:a9:10:fc:20:dd:34:2e: a0:3f:f6:43:eb:c8:1e:b7:9d:76:b5:ce:73:9f:be:78:29:00: 94:8b:c3:78:a3:72:9e:27:c7:5a:03:74:e3:f3:4d:06:31:6d: d8:97:68:7b:d2:ec:13:cd:72:05:2d:e5:8b:de:39:91:b9:72: 66:a8:0b:b8:b1:d6:85:16:41:d6:5d:45:38:e0:06:9f:fb:1c: 1a:c7:9a:7e:87:23:2c:ab:b6:47:d2:35:e2:fb:53:6c:a0:47: c2:f8:af:82:db:bf:f7:94:2f:84:c6:83:fd:0e:30:09:2c:a2: 9b:85:50:d3:e9:71:63:6b:52:ea:f3:e1:12:32:de:2e:6d:3f: 65:ae:a8:90:d5:5b:b8:61:9c:c6:8a:c9:c9:ac:84:62:02:98: c1:71:9c:9d:40:f6:d3:8b:c6:7d:bd:7e:1b:7c:8c:67:80:47: 6d:ef:48:08:bb:71:ce:b9:ef:9b:d0:a2:1d:ce:37:06:2b:ad: 7c:c4:83:e7:1c:3a:b5:42:80:f2:72:c8:6f:00:65:46:71:1d: 94:12:94:49:8a:7f:62:27:a3:d6:cb:e3:e4:77:b3:99:94:19: e6:d1:ae:56:18:43:49:cf:ca:36:51:42:88:d7:72:cd:45:51: 41:dc:dd:f9 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUC3HWt6jLfiW3vJv3yQRFRP3oNWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjQ5NTJaFw0yNTA4MDExMjU0NTJaMDMxMTAvBgNV BAMTKDcxMUIzMzBDOTIwODA3NzAwMTQyRkM0NjlDMjUxNjVCQzcwNkRGQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClePNGoA1dupZbAOF8Vdvekhkb qDHEe8aXrBzfslh1mllWm7twJB7Kh7sGBtrnxX9MNuYC3rxuNojZME4Fm9wsF/9J Yem0h+0QnTwgHtB4IT7KyabmXBranqQ7ChH705/oyY6HfcIbgMJ5y6jguRs5NFX4 /XrYvjjQK7ABmjDPv9JQOjsLz6D+vwM0i84cHb2ATfV/Kjk/R7zkWyhzXIBn6CO7 a51H83jJaq2pCacir01q4m4BsC3Oj/OuafyK8yb4yxZ3+9hLemwKeAVT3qY524sw DLzpgA73McvCjuAfhHWkxLdmTsQt/wF9Wau20xHKmmj9b93byGCuKewmOrpHAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUcRszDJIIB3ABQvxGnCUWW8cG37wwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMSYwDQYJKoZIhvcNAQELBQADggEBAKmUI/+SIaUMl6SCqRD8IN00LqA/9kPr yB63nXa1znOfvngpAJSLw3ijcp4nx1oDdOPzTQYxbdiXaHvS7BPNcgUt5YveOZG5 cmaoC7ix1oUWQdZdRTjgBp/7HBrHmn6HIyyrtkfSNeL7U2ygR8L4r4Lbv/eUL4TG g/0OMAksopuFUNPpcWNrUurz4RIy3i5tP2WuqJDVW7hhnMaKycmshGICmMFxnJ1A 9tOLxn29fht8jGeAR23vSAi7cc6575vQoh3ONwYrrXzEg+ccOrVCgPJyyG8AZUZx HZQSlEmKf2Ino9bL4+R3s5mUGebRrlYYQ0nPyjZRQojXcs1FUUHc3fk= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org