$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: OientE2JzIoeW6YBoPqoL9eo6M30m404IRoS8tB7bdc= Subject key identifier: 34:87:AD:D8:EC:AE:BD:40:B0:F9:94:A8:D3:E9:C4:75:DF:7C:17:1F Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 65307A18525F9FD3A23EEAC8E2A363C7A734D54B Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:56:04 +0000 ROA not before: Fri 02 Aug 2024 12:51:04 +0000 ROA not after: Fri 01 Aug 2025 12:56:04 +0000 asID: 153087 IP address blocks: 2404:97c0:3146::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:30:7a:18:52:5f:9f:d3:a2:3e:ea:c8:e2:a3:63:c7:a7:34:d5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:51:04 2024 GMT Not After : Aug 1 12:56:04 2025 GMT Subject: CN=3487ADD8ECAEBD40B0F994A8D3E9C475DF7C171F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:77:be:24:03:6a:c2:45:95:a8:a0:c4:12:c9: ec:0f:d2:cb:c4:1d:25:25:d0:05:58:0c:ea:b7:aa: 1c:85:1c:10:34:e6:53:2d:5a:12:ad:20:2c:e4:ac: 10:bb:b7:b6:18:7c:28:af:39:47:dc:78:f1:fc:11: d0:18:c7:e5:fb:eb:7b:f0:c2:3a:68:c4:a6:57:09: 50:27:42:d9:03:15:13:5f:52:13:ee:0c:de:14:34: 17:09:fa:39:5d:8a:ba:2e:49:93:c5:cb:8a:03:e5: 63:7d:37:06:51:02:2f:4a:22:f9:0b:19:af:3e:66: 94:7c:73:89:a9:e1:a8:0f:ae:59:9b:f9:6b:b6:e8: 15:36:bc:d8:8b:43:e7:2e:7e:77:a9:ce:7d:b7:4c: 59:bc:6d:c9:80:f6:ac:92:25:e5:47:ab:05:d1:cf: 95:41:15:fb:f9:e4:7b:8a:5c:20:27:4f:67:c9:10: 0c:41:01:b9:05:52:2c:15:98:68:38:57:8a:15:27: 31:e5:27:12:8d:b1:23:c6:01:31:ab:8a:a9:d4:4c: 51:8e:23:bb:85:d9:86:58:df:07:df:48:39:09:b1: 55:e3:70:e7:6b:be:66:a6:46:14:cd:3d:fc:2a:dd: 0d:fe:9d:0e:57:7d:de:be:f5:6f:92:87:60:64:05: 71:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:87:AD:D8:EC:AE:BD:40:B0:F9:94:A8:D3:E9:C4:75:DF:7C:17:1F X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333134363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3146::/48 Signature Algorithm: sha256WithRSAEncryption 28:aa:3b:71:12:ce:24:f7:1c:90:14:d0:02:91:4c:25:35:c2: 85:f7:2e:09:45:0c:1f:7a:f4:db:e8:09:5f:23:88:4d:9f:eb: 4a:7f:e8:7e:1f:58:bc:30:9f:28:5e:e9:5d:0f:de:15:6d:9f: 81:fe:18:c0:09:d1:80:43:83:8a:a2:a3:60:c6:57:4d:c6:e2: 76:c7:0a:b9:d2:33:f5:19:0f:43:d1:2f:6b:7c:4b:27:0b:83: 46:d8:66:16:65:90:a9:fe:27:c1:e0:f0:2d:9c:f5:ef:d4:31: 29:cc:67:a4:fa:da:af:b4:0c:67:7d:a3:a2:28:95:7b:4f:30: bf:bc:41:83:42:b2:57:d6:13:67:ea:b2:c3:83:50:ce:25:22: ea:dc:ab:de:b0:52:a9:13:a3:9d:e0:a1:92:ba:04:1d:7a:ce: 38:93:c3:af:30:8a:44:ff:92:f3:9d:18:a2:34:8d:34:e5:ad: 76:79:69:5f:e0:5f:bd:a9:8f:9f:ef:92:f0:4a:af:7c:31:2c: db:c6:91:c0:97:87:39:4a:61:84:55:2d:a2:24:da:a5:17:d7: 79:f1:35:2f:8a:0b:94:1d:04:82:ef:dd:28:60:1d:19:ad:87: 37:cf:1d:6c:be:86:b6:c8:39:b6:33:d4:92:2c:29:28:54:68: ef:52:f1:00 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUZTB6GFJfn9OiPurI4qNjx6c01UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjUxMDRaFw0yNTA4MDExMjU2MDRaMDMxMTAvBgNV BAMTKDM0ODdBREQ4RUNBRUJENDBCMEY5OTRBOEQzRTlDNDc1REY3QzE3MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVd74kA2rCRZWooMQSyewP0svE HSUl0AVYDOq3qhyFHBA05lMtWhKtICzkrBC7t7YYfCivOUfcePH8EdAYx+X763vw wjpoxKZXCVAnQtkDFRNfUhPuDN4UNBcJ+jldirouSZPFy4oD5WN9NwZRAi9KIvkL Ga8+ZpR8c4mp4agPrlmb+Wu26BU2vNiLQ+cufnepzn23TFm8bcmA9qySJeVHqwXR z5VBFfv55HuKXCAnT2fJEAxBAbkFUiwVmGg4V4oVJzHlJxKNsSPGATGriqnUTFGO I7uF2YZY3wffSDkJsVXjcOdrvmamRhTNPfwq3Q3+nQ5Xfd6+9W+Sh2BkBXF7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUNIet2OyuvUCw+ZSo0+nEdd98Fx8wHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM0MzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMUYwDQYJKoZIhvcNAQELBQADggEBACiqO3ESziT3HJAU0AKRTCU1woX3LglF DB969NvoCV8jiE2f60p/6H4fWLwwnyhe6V0P3hVtn4H+GMAJ0YBDg4qio2DGV03G 4nbHCrnSM/UZD0PRL2t8SycLg0bYZhZlkKn+J8Hg8C2c9e/UMSnMZ6T62q+0DGd9 o6IolXtPML+8QYNCslfWE2fqssODUM4lIurcq96wUqkTo53goZK6BB16zjiTw68w ikT/kvOdGKI0jTTlrXZ5aV/gX72pj5/vkvBKr3wxLNvGkcCXhzlKYYRVLaIk2qUX 13nxNS+KC5QdBILv3ShgHRmthzfPHWy+hrbIObYz1JIsKShUaO9S8QA= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org