$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: JTAOTuCYf8EYhAYUgfxK3x1wMWE664xYJMcj8ZYPpak= Subject key identifier: 40:A0:6E:0F:BE:9F:4D:B7:57:E8:75:E4:1F:9B:E2:B2:39:9A:F4:47 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 3472B95D4071D3EE4427ABB723B3703566D7019A Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:56:48 +0000 ROA not before: Fri 02 Aug 2024 12:51:48 +0000 ROA not after: Fri 01 Aug 2025 12:56:48 +0000 asID: 153087 IP address blocks: 2404:97c0:3253::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:72:b9:5d:40:71:d3:ee:44:27:ab:b7:23:b3:70:35:66:d7:01:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:51:48 2024 GMT Not After : Aug 1 12:56:48 2025 GMT Subject: CN=40A06E0FBE9F4DB757E875E41F9BE2B2399AF447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d9:a5:86:62:d1:c1:54:03:51:56:6d:c7:cd: b3:94:4c:e7:86:3e:1f:64:68:5f:80:4b:6c:19:95: 5a:02:06:a0:ff:2e:b6:40:40:66:ed:54:51:7e:b2: 95:52:04:d1:de:4e:d0:63:a4:d2:b8:66:62:c6:fb: 89:a7:4b:4d:19:4a:2e:34:bd:e6:bd:11:31:2b:08: c6:51:a1:9b:b8:da:75:7a:e0:e7:20:ca:0c:f9:9a: aa:cd:1c:ac:76:06:36:b7:fd:81:37:ec:e9:47:2a: f7:1d:30:51:1a:ef:9d:ba:97:eb:2d:ae:2d:18:f9: ff:48:22:d3:af:26:36:b2:e8:74:ab:e5:e5:61:3f: 3f:e0:9a:68:d1:bd:1e:bf:0a:1c:9c:b2:63:69:40: 91:6e:e2:1f:1b:2a:cb:b9:aa:87:08:2e:fa:2c:5f: 09:5c:b5:48:36:49:6e:4e:7d:53:d4:94:b6:e6:8f: 8c:f7:8f:5b:65:c3:75:7e:0b:7b:ec:60:2d:30:9d: 6d:3e:96:3e:4e:6c:d2:85:66:66:83:a8:7d:09:65: 35:8c:b3:4d:0e:d9:e3:8d:c2:2f:fc:82:5b:79:34: 4b:e8:67:40:95:2c:5a:c2:4a:9d:02:11:f5:8f:1e: 19:9f:e3:15:ba:ff:c9:3f:8c:b4:88:d0:eb:2a:80: 5d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A0:6E:0F:BE:9F:4D:B7:57:E8:75:E4:1F:9B:E2:B2:39:9A:F4:47 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3253::/48 Signature Algorithm: sha256WithRSAEncryption 0b:b7:5f:fd:96:b6:02:38:b5:10:05:e9:25:57:30:e7:6a:1d: 73:ce:04:25:84:fe:c0:41:a0:11:eb:6f:ac:96:e8:9c:34:60: e6:65:9c:54:dc:ef:09:a3:06:16:13:35:f5:c3:96:ed:5c:fe: 8c:fb:cb:ae:de:0b:4c:77:39:6e:a2:da:c3:32:75:94:43:c7: 63:02:dd:e9:0c:73:27:a9:d9:f4:d6:ce:1b:c1:ff:c3:37:60: d4:60:3b:42:52:02:e8:13:be:b5:df:69:64:62:f7:f4:cb:d4: 5a:97:a2:e7:a7:b9:ae:dd:bc:80:61:36:41:1c:46:9f:61:84: bd:f6:5c:da:9a:91:6b:f2:f3:6a:71:27:06:fc:ad:25:c6:dd: fc:49:79:cc:dc:be:67:40:e3:83:71:80:e3:e8:0f:41:c9:3d: cc:d9:9d:df:0b:c7:a3:17:24:01:be:71:30:fa:6e:7f:1f:77: ad:0c:54:b3:a8:35:b7:d2:cc:d2:41:f6:fc:2e:4a:9a:49:76: 4b:cd:b8:7a:07:27:27:db:e5:1c:ae:11:b2:8f:64:d4:51:ac: 39:e8:43:5d:c4:8d:ed:c1:6b:62:9b:11:b2:f2:18:6f:fa:4e: a4:da:0b:6d:08:27:65:0c:45:c4:47:69:aa:4a:1d:ab:d6:43: 1a:28:22:35 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNHK5XUBx0+5EJ6u3I7NwNWbXAZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjUxNDhaFw0yNTA4MDExMjU2NDhaMDMxMTAvBgNV BAMTKDQwQTA2RTBGQkU5RjREQjc1N0U4NzVFNDFGOUJFMkIyMzk5QUY0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2aWGYtHBVANRVm3HzbOUTOeG Ph9kaF+AS2wZlVoCBqD/LrZAQGbtVFF+spVSBNHeTtBjpNK4ZmLG+4mnS00ZSi40 vea9ETErCMZRoZu42nV64Ocgygz5mqrNHKx2Bja3/YE37OlHKvcdMFEa7526l+st ri0Y+f9IItOvJjay6HSr5eVhPz/gmmjRvR6/ChycsmNpQJFu4h8bKsu5qocILvos XwlctUg2SW5OfVPUlLbmj4z3j1tlw3V+C3vsYC0wnW0+lj5ObNKFZmaDqH0JZTWM s00O2eONwi/8glt5NEvoZ0CVLFrCSp0CEfWPHhmf4xW6/8k/jLSI0OsqgF3vAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQKBuD76fTbdX6HXkH5visjma9EcwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMlMwDQYJKoZIhvcNAQELBQADggEBAAu3X/2WtgI4tRAF6SVXMOdqHXPOBCWE /sBBoBHrb6yW6Jw0YOZlnFTc7wmjBhYTNfXDlu1c/oz7y67eC0x3OW6i2sMydZRD x2MC3ekMcyep2fTWzhvB/8M3YNRgO0JSAugTvrXfaWRi9/TL1FqXouenua7dvIBh NkEcRp9hhL32XNqakWvy82pxJwb8rSXG3fxJeczcvmdA44NxgOPoD0HJPczZnd8L x6MXJAG+cTD6bn8fd60MVLOoNbfSzNJB9vwuSppJdkvNuHoHJyfb5RyuEbKPZNRR rDnoQ13Eje3Ba2KbEbLyGG/6TqTaC20IJ2UMRcRHaapKHavWQxooIjU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org