$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: hB17PEtCJXHtTd0Y4OQpJHhxY+uDupt3k39LgXMyKnI= Subject key identifier: 98:7C:84:F3:9A:35:6E:D2:E8:27:84:71:90:D2:5D:D5:BE:AD:6D:03 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 05D805313DFF5F5670C02DD0C8EA1E9CB687E561 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:56:21 +0000 ROA not before: Fri 02 Aug 2024 12:51:21 +0000 ROA not after: Fri 01 Aug 2025 12:56:21 +0000 asID: 153087 IP address blocks: 2404:97c0:3150::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d8:05:31:3d:ff:5f:56:70:c0:2d:d0:c8:ea:1e:9c:b6:87:e5:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:51:21 2024 GMT Not After : Aug 1 12:56:21 2025 GMT Subject: CN=987C84F39A356ED2E827847190D25DD5BEAD6D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d1:13:ec:6b:58:4d:11:04:93:7a:24:22:b2: 2c:fd:cc:04:2a:49:89:45:d7:f4:d5:fc:08:76:df: 5e:bd:81:3b:3e:2f:71:a3:6a:9c:85:5b:c4:3d:09: 8f:0c:f6:20:39:9e:8f:57:5a:c8:ea:92:52:87:48: 4e:30:c7:fa:0d:93:a0:81:ad:20:0f:c3:93:0d:06: 95:b8:d6:c3:db:91:df:c5:7f:55:16:5f:3b:ec:94: 24:a0:71:ce:4c:3e:81:47:c3:cb:d3:42:7d:1d:14: b7:07:69:18:92:75:60:bb:fc:b1:05:fb:84:6b:fc: 81:bc:13:38:d3:30:b4:c6:a3:ab:98:e9:03:e7:9f: 9e:82:57:3f:2a:f8:68:b7:f0:05:12:b9:9a:b3:20: ea:3b:aa:ad:f9:ea:7c:0f:ac:40:76:f7:1f:9f:74: c8:9a:37:2a:94:83:e9:7b:bf:4c:c9:d0:17:cb:71: 5f:ed:ee:3f:ed:0c:38:17:8b:ba:f5:92:bf:e4:6f: 13:25:e1:49:11:00:30:57:8f:b0:21:08:16:c7:2e: 78:68:58:cf:af:9d:80:db:8b:41:46:83:27:ac:c3: 4b:56:3c:8a:56:9a:8d:b5:41:7c:b7:28:82:38:de: 76:ed:3b:b6:6d:c1:72:3f:06:b6:d1:d7:cf:43:21: 38:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7C:84:F3:9A:35:6E:D2:E8:27:84:71:90:D2:5D:D5:BE:AD:6D:03 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333135303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3150::/48 Signature Algorithm: sha256WithRSAEncryption b5:fc:b5:2d:d2:a2:71:d8:84:3d:a4:b2:0c:9f:6b:6b:0d:f1: ce:a1:e3:6b:39:fd:be:a3:0b:cf:dd:1d:1a:79:1e:c7:22:26: c0:d1:b4:8f:e8:49:f1:7a:09:4e:67:76:6b:cf:4c:c4:b1:c2: 90:51:68:0f:c8:1c:d9:f0:d1:7d:87:8b:3b:74:23:e4:58:c4: be:5c:3f:26:5a:30:e2:6e:60:bf:70:52:5d:27:a6:63:fb:91: 3f:9f:ef:1f:60:da:dc:8d:73:83:99:de:d8:3a:1e:e7:c1:49: cc:68:33:d1:fa:d8:7e:11:31:fc:c1:13:50:76:d6:fd:ac:5c: fc:cd:4c:5a:d8:6e:d2:f6:38:29:ec:84:ec:a8:e0:8b:11:b3: a8:6b:f2:81:d3:57:13:78:da:a1:e4:27:d1:d5:95:43:60:d1: ff:71:7e:84:fa:fe:54:6e:eb:45:f5:33:6e:61:cc:86:4b:7f: 74:be:c4:a0:c1:26:65:e3:c8:cd:67:12:0a:1d:70:cd:85:d2: 4f:27:28:b9:61:c5:09:71:c4:20:36:f5:ab:c5:89:e8:2b:2b: 14:41:58:7e:86:f1:a2:40:50:ce:c2:a1:ce:7d:f6:85:a4:8a: 94:b8:af:62:82:4f:fd:55:5d:b4:36:ec:6a:a3:60:fe:fb:34: 51:e9:60:19 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBdgFMT3/X1ZwwC3QyOoenLaH5WEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjUxMjFaFw0yNTA4MDExMjU2MjFaMDMxMTAvBgNV BAMTKDk4N0M4NEYzOUEzNTZFRDJFODI3ODQ3MTkwRDI1REQ1QkVBRDZEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC90RPsa1hNEQSTeiQisiz9zAQq SYlF1/TV/Ah23169gTs+L3GjapyFW8Q9CY8M9iA5no9XWsjqklKHSE4wx/oNk6CB rSAPw5MNBpW41sPbkd/Ff1UWXzvslCSgcc5MPoFHw8vTQn0dFLcHaRiSdWC7/LEF +4Rr/IG8EzjTMLTGo6uY6QPnn56CVz8q+Gi38AUSuZqzIOo7qq356nwPrEB29x+f dMiaNyqUg+l7v0zJ0BfLcV/t7j/tDDgXi7r1kr/kbxMl4UkRADBXj7AhCBbHLnho WM+vnYDbi0FGgyesw0tWPIpWmo21QXy3KII43nbtO7ZtwXI/BrbR189DITg3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUmHyE85o1btLoJ4RxkNJd1b6tbQMwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM1MzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMVAwDQYJKoZIhvcNAQELBQADggEBALX8tS3SonHYhD2ksgyfa2sN8c6h42s5 /b6jC8/dHRp5HsciJsDRtI/oSfF6CU5ndmvPTMSxwpBRaA/IHNnw0X2Hizt0I+RY xL5cPyZaMOJuYL9wUl0npmP7kT+f7x9g2tyNc4OZ3tg6HufBScxoM9H62H4RMfzB E1B21v2sXPzNTFrYbtL2OCnshOyo4IsRs6hr8oHTVxN42qHkJ9HVlUNg0f9xfoT6 /lRu60X1M25hzIZLf3S+xKDBJmXjyM1nEgodcM2F0k8nKLlhxQlxxCA29avFiegr KxRBWH6G8aJAUM7Coc599oWkipS4r2KCT/1VXbQ27GqjYP77NFHpYBk= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org