$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: f/8bGtLdYY9lsH40+Y5ggKep7CLKL3erOSyVsARtCVU= Subject key identifier: 7A:A9:BA:D4:84:F5:4B:77:70:39:6F:16:E3:86:AD:67:BD:62:5E:25 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7743D2E8E34776907C2EE1D2A8E6769519D798D8 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:56:34 +0000 ROA not before: Fri 02 Aug 2024 12:51:34 +0000 ROA not after: Fri 01 Aug 2025 12:56:34 +0000 asID: 153087 IP address blocks: 2404:97c0:3176::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:43:d2:e8:e3:47:76:90:7c:2e:e1:d2:a8:e6:76:95:19:d7:98:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:51:34 2024 GMT Not After : Aug 1 12:56:34 2025 GMT Subject: CN=7AA9BAD484F54B7770396F16E386AD67BD625E25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:7a:46:2e:c4:85:c6:11:ce:3e:a6:a1:c5: 8d:25:fa:3f:b8:a3:00:e0:3c:84:cf:98:b6:e8:63: 61:ad:a3:52:b7:67:52:29:40:1c:dc:96:50:e2:3c: af:5c:e2:a5:87:9d:12:b1:d3:e6:cd:9c:a7:38:92: 47:de:03:b2:9d:5c:87:e6:be:c3:64:7a:25:2b:57: d3:70:ac:55:5d:4b:07:84:13:94:35:14:0f:66:95: 42:b9:26:b5:19:9e:90:cb:6a:c4:5d:23:46:e4:97: 95:0e:bc:74:ba:2e:bf:8c:43:8d:30:3a:37:08:72: f9:1f:e3:5e:6a:fb:e1:a1:aa:63:98:6d:41:f5:ad: 98:13:35:38:04:ea:99:f8:b1:ff:80:ac:8e:b2:9c: e6:5d:51:cf:a9:25:d9:d9:f1:5d:73:08:84:a9:8d: 99:0f:be:89:7a:24:60:ed:56:f7:55:60:68:5b:53: f9:77:23:b2:45:e0:50:f5:7c:3c:a7:47:24:6f:6b: 7d:aa:a3:3d:a1:f4:2e:90:22:58:cb:6b:b3:9f:bc: 02:f3:b9:36:7b:b4:af:ca:10:a9:2d:71:7d:df:1b: f4:35:a2:27:aa:61:20:b9:09:17:7d:8b:a0:d2:9e: 5c:f8:e0:58:08:c7:49:8c:c3:cd:6e:1d:21:a4:f7: df:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A9:BA:D4:84:F5:4B:77:70:39:6F:16:E3:86:AD:67:BD:62:5E:25 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333137363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3176::/48 Signature Algorithm: sha256WithRSAEncryption 7a:0d:3c:c2:1a:73:4c:43:c5:5c:06:f3:5d:be:52:c9:50:62: ac:7a:e7:f6:8a:f1:51:a3:0a:be:cc:71:ae:07:50:69:02:2e: 38:24:d7:a3:10:e1:2b:50:bd:83:5a:5e:e1:c0:c6:eb:ad:5f: f4:99:95:ea:46:8f:da:c2:cb:15:be:97:48:ef:30:c7:e1:c0: 8f:cf:b5:5e:1a:f8:6d:72:53:22:ad:13:26:30:41:c3:73:32: 75:46:10:7b:1b:f8:a6:84:d1:60:e3:17:dc:9b:fd:1c:55:af: ae:1c:5c:10:09:69:d9:25:13:93:a8:e4:19:96:b1:c1:38:57: 92:a4:a5:06:f8:28:d0:3b:96:df:2b:0b:37:81:3c:2a:b0:38: 00:90:4b:4c:78:a8:b8:77:6c:e3:5a:b5:e0:27:2e:de:92:51: aa:8e:f2:69:e4:6e:6f:57:69:3e:8e:6d:ae:4d:f7:f7:a0:86: c2:77:c9:59:22:9b:6b:e3:b2:12:5e:61:32:d2:a3:17:43:d0: 80:33:58:5d:c2:ca:41:4b:f6:2c:fb:f7:80:5c:c3:dd:ef:23: eb:f7:6b:f1:28:59:63:96:ea:fc:c7:c8:f6:66:44:3f:12:57: 9d:ab:98:6e:e1:08:7e:4d:40:bb:e5:0f:99:3b:34:34:3e:14: f0:64:78:29 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUd0PS6ONHdpB8LuHSqOZ2lRnXmNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjUxMzRaFw0yNTA4MDExMjU2MzRaMDMxMTAvBgNV BAMTKDdBQTlCQUQ0ODRGNTRCNzc3MDM5NkYxNkUzODZBRDY3QkQ2MjVFMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxLnpGLsSFxhHOPqahxY0l+j+4 owDgPITPmLboY2Gto1K3Z1IpQBzcllDiPK9c4qWHnRKx0+bNnKc4kkfeA7KdXIfm vsNkeiUrV9NwrFVdSweEE5Q1FA9mlUK5JrUZnpDLasRdI0bkl5UOvHS6Lr+MQ40w OjcIcvkf415q++GhqmOYbUH1rZgTNTgE6pn4sf+ArI6ynOZdUc+pJdnZ8V1zCISp jZkPvol6JGDtVvdVYGhbU/l3I7JF4FD1fDynRyRva32qoz2h9C6QIljLa7OfvALz uTZ7tK/KEKktcX3fG/Q1oieqYSC5CRd9i6DSnlz44FgIx0mMw81uHSGk998bAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUeqm61IT1S3dwOW8W44atZ71iXiUwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTM3MzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMXYwDQYJKoZIhvcNAQELBQADggEBAHoNPMIac0xDxVwG812+UslQYqx65/aK 8VGjCr7Mca4HUGkCLjgk16MQ4StQvYNaXuHAxuutX/SZlepGj9rCyxW+l0jvMMfh wI/PtV4a+G1yUyKtEyYwQcNzMnVGEHsb+KaE0WDjF9yb/RxVr64cXBAJadklE5Oo 5BmWscE4V5KkpQb4KNA7lt8rCzeBPCqwOACQS0x4qLh3bONateAnLt6SUaqO8mnk bm9XaT6Oba5N9/eghsJ3yVkim2vjshJeYTLSoxdD0IAzWF3CykFL9iz794Bcw93v I+v3a/EoWWOW6vzHyPZmRD8SV52rmG7hCH5NQLvlD5k7NDQ+FPBkeCk= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org