$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: aJPDcZaBjiymxN5CDsxh20hme5UmvAP1fbIbaZ7Y7RA= Subject key identifier: 8A:75:34:08:8A:A5:8F:AB:4F:FF:92:C1:B9:36:75:A0:88:E4:E2:C9 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 036CDC26D89A8838370B86CA0474CFF741BD6B51 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:57:08 +0000 ROA not before: Fri 02 Aug 2024 12:52:08 +0000 ROA not after: Fri 01 Aug 2025 12:57:08 +0000 asID: 153087 IP address blocks: 2404:97c0:3254::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6c:dc:26:d8:9a:88:38:37:0b:86:ca:04:74:cf:f7:41:bd:6b:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:52:08 2024 GMT Not After : Aug 1 12:57:08 2025 GMT Subject: CN=8A7534088AA58FAB4FFF92C1B93675A088E4E2C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:99:e6:fe:06:57:9e:05:05:b4:b7:17:b7:1c: 0f:eb:75:c3:21:e7:eb:64:cc:d9:23:55:af:fb:ac: 64:73:5a:ff:ea:7e:be:36:c1:dd:e1:a1:ab:fb:40: 55:fe:41:04:7c:ea:57:0c:28:8e:d4:1e:62:dc:cb: 64:56:09:f4:42:25:21:32:1e:16:4d:5d:47:06:08: 81:f1:f0:10:b1:5c:ec:1f:f5:72:db:12:2d:90:66: 6b:bd:6a:63:67:74:72:99:ff:5d:a6:bd:33:60:38: 7f:b9:5e:fc:ee:33:c8:03:d5:60:3a:c3:47:b3:78: 48:02:ec:07:ee:2f:01:d4:f2:bd:3f:a1:0c:87:76: 0c:4e:6f:d3:e2:3c:88:17:17:4b:a0:77:af:99:fd: e7:ad:7a:a2:9a:f2:61:79:4a:da:05:77:41:fd:08: 24:e8:31:96:02:d6:e7:08:16:37:8f:d6:15:8c:11: 74:3c:35:4e:62:f3:1f:ef:bd:57:f2:a1:b6:a8:a1: e5:3b:88:6d:7e:f0:67:a2:15:0a:97:57:88:33:5f: 7f:21:a1:1c:cd:45:7d:41:fe:8b:0e:54:af:7b:d8: 24:d8:4f:6c:fe:6d:79:00:39:05:7e:1a:49:70:c1: 5c:3a:6b:bc:f7:fb:18:13:c8:61:72:71:73:78:d2: be:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:75:34:08:8A:A5:8F:AB:4F:FF:92:C1:B9:36:75:A0:88:E4:E2:C9 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a333235343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3254::/48 Signature Algorithm: sha256WithRSAEncryption 24:2a:73:60:46:ed:07:03:30:f4:23:e7:1c:1f:c1:fe:a3:1e: 04:ff:31:41:3f:e8:22:ba:3c:a8:59:21:ed:92:fa:6b:0d:8d: c9:75:7c:35:5b:91:9f:bb:ba:48:5e:6e:84:a0:e8:2d:d9:93: cd:13:a9:b1:5e:29:7f:48:b6:c7:44:5e:d1:1a:2f:94:18:e5: 22:28:3a:c4:25:26:cc:18:5b:f2:ca:f5:00:83:fc:12:aa:4b: 01:aa:34:51:e9:08:42:9c:4b:17:c1:28:d4:b3:38:2b:ee:db: 2f:d1:39:1f:21:f3:f1:b0:e0:56:5f:7f:65:a1:3b:94:56:ee: ef:36:0d:c4:ec:62:3f:54:70:fb:dd:fe:68:e7:be:32:31:78: df:a6:0b:ce:d8:9d:37:7f:4d:60:f5:61:e1:d8:36:51:21:5c: 07:53:f0:0a:3c:90:1c:75:15:8c:20:b5:f8:07:ff:dc:bd:53: 5e:34:5e:8c:86:a0:f4:8f:7d:96:ee:13:f3:00:ae:5f:db:eb: 63:0c:47:1e:a7:10:82:ce:d2:5c:55:80:95:3b:95:24:57:0c: d3:3e:93:6c:b3:87:cb:0d:17:41:80:16:63:03:2d:1c:44:91: 28:a5:84:3d:5f:f5:7b:9a:b1:3c:8d:79:ff:dc:7b:8b:70:f9: fc:b7:c4:7a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUA2zcJtiaiDg3C4bKBHTP90G9a1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjUyMDhaFw0yNTA4MDExMjU3MDhaMDMxMTAvBgNV BAMTKDhBNzUzNDA4OEFBNThGQUI0RkZGOTJDMUI5MzY3NUEwODhFNEUyQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfmeb+BleeBQW0txe3HA/rdcMh 5+tkzNkjVa/7rGRzWv/qfr42wd3hoav7QFX+QQR86lcMKI7UHmLcy2RWCfRCJSEy HhZNXUcGCIHx8BCxXOwf9XLbEi2QZmu9amNndHKZ/12mvTNgOH+5XvzuM8gD1WA6 w0ezeEgC7AfuLwHU8r0/oQyHdgxOb9PiPIgXF0ugd6+Z/eeteqKa8mF5StoFd0H9 CCToMZYC1ucIFjeP1hWMEXQ8NU5i8x/vvVfyobaooeU7iG1+8GeiFQqXV4gzX38h oRzNRX1B/osOVK972CTYT2z+bXkAOQV+GklwwVw6a7z3+xgTyGFycXN40r6BAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUinU0CIqlj6tP/5LBuTZ1oIjk4skwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMjM1MzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMlQwDQYJKoZIhvcNAQELBQADggEBACQqc2BG7QcDMPQj5xwfwf6jHgT/MUE/ 6CK6PKhZIe2S+msNjcl1fDVbkZ+7ukheboSg6C3Zk80TqbFeKX9ItsdEXtEaL5QY 5SIoOsQlJswYW/LK9QCD/BKqSwGqNFHpCEKcSxfBKNSzOCvu2y/ROR8h8/Gw4FZf f2WhO5RW7u82DcTsYj9UcPvd/mjnvjIxeN+mC87YnTd/TWD1YeHYNlEhXAdT8Ao8 kBx1FYwgtfgH/9y9U140XoyGoPSPfZbuE/MArl/b62MMRx6nEILO0lxVgJU7lSRX DNM+k2yzh8sNF0GAFmMDLRxEkSilhD1f9XuasTyNef/ce4tw+fy3xHo= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org