$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: 5FOODa+jw39iuMcoS36xDTFLBfsauVFBG/u0CcKkKWQ= Subject key identifier: 22:FB:25:CC:14:A7:39:99:B0:B2:50:AD:B5:85:D4:17:C1:A1:7D:90 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 64783A3526E34040CAE1CC4FBA6687B281018BDA Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:59:28 +0000 ROA not before: Fri 02 Aug 2024 12:54:28 +0000 ROA not after: Fri 01 Aug 2025 12:59:28 +0000 asID: 153087 IP address blocks: 2404:97c0:334::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:78:3a:35:26:e3:40:40:ca:e1:cc:4f:ba:66:87:b2:81:01:8b:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:54:28 2024 GMT Not After : Aug 1 12:59:28 2025 GMT Subject: CN=22FB25CC14A73999B0B250ADB585D417C1A17D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:21:0f:d2:b2:00:6a:ea:03:6e:b8:fb:2d: be:84:51:0c:b0:fd:a5:9d:ed:29:10:65:0c:6d:a4: ec:e3:4c:2b:b2:c0:bd:59:1a:d1:e4:76:26:36:b0: 2b:00:83:11:99:02:7c:97:42:4b:62:40:47:9d:6b: fa:62:55:c6:59:08:82:62:4e:35:60:78:00:c9:7b: 29:88:be:e3:8c:c3:02:a0:b2:57:1f:8a:6e:e9:27: 05:da:30:21:5c:a0:4e:b1:63:30:a5:f6:c6:1c:a4: 57:a6:38:51:17:43:b8:1e:8d:54:fb:5b:71:77:1f: 2a:25:92:b6:92:6f:be:a7:0b:be:85:00:d1:97:a1: 1f:b5:6e:64:eb:22:2f:6c:2e:4b:4b:39:87:7e:15: 44:8e:e6:95:7d:f0:28:80:32:23:64:c3:64:9a:2f: 26:30:ff:95:45:7b:15:44:30:3d:9b:ef:be:bc:33: d6:66:ce:b1:86:f6:52:d5:e8:cd:ae:b9:3b:ad:ee: 9d:c3:a3:b8:4a:f6:7b:d6:9e:3d:e2:4f:b8:25:8e: db:50:c0:f6:82:d2:9e:4a:04:71:99:65:b1:95:10: 12:33:2e:09:11:04:7e:bb:cb:6e:9f:bd:40:20:79: ef:d8:4a:08:a0:44:c1:6a:49:83:b0:7a:b1:bc:63: b6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FB:25:CC:14:A7:39:99:B0:B2:50:AD:B5:85:D4:17:C1:A1:7D:90 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a3333343a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:334::/48 Signature Algorithm: sha256WithRSAEncryption 50:6e:83:c3:7a:a9:1b:69:a4:3d:a3:82:ab:e9:b2:a9:e3:d4: ba:12:92:73:8b:cb:bc:ac:22:c6:58:60:17:77:20:0e:22:69: 02:a0:4e:20:e8:e0:66:2c:e7:7b:07:c7:09:85:8c:f6:f1:f8: a2:f0:3c:2d:85:5b:63:e8:e2:c2:a5:1b:ad:11:b4:4d:51:ed: ad:3a:67:a8:7f:b3:7a:c0:8c:7b:28:a1:d1:d7:2a:d0:8c:a6: 36:2e:d7:0e:13:80:8a:b8:71:78:24:5a:04:b8:5c:8a:72:b8: 40:bb:06:94:5b:d3:1a:fb:12:4d:fd:48:5c:76:e6:0d:d1:b9: 70:37:20:8a:ed:b7:db:63:71:7b:ab:c9:28:6d:1a:1e:c9:ae: 39:d4:50:b3:4d:1e:76:32:b5:35:38:f9:b1:1e:cb:ab:79:5a: 31:07:f8:bb:15:6c:23:b3:cf:27:65:e6:93:f3:ab:35:83:0d: c8:30:7b:6d:03:cc:07:1c:95:a9:9d:4c:97:e2:10:c7:b9:72: f6:7c:b7:0c:a3:43:9a:7b:72:b7:10:3e:4a:93:06:1a:e0:13: 53:71:5e:91:eb:bf:a7:f9:ed:df:b8:87:53:53:01:cd:bd:ef: b2:e5:d7:2d:64:7d:60:68:00:52:db:fb:75:29:3e:8d:26:d9: d0:e1:99:be -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZHg6NSbjQEDK4cxPumaHsoEBi9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjU0MjhaFw0yNTA4MDExMjU5MjhaMDMxMTAvBgNV BAMTKDIyRkIyNUNDMTRBNzM5OTlCMEIyNTBBREI1ODVENDE3QzFBMTdEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsJyEP0rIAauoDbrj7Lb6EUQyw /aWd7SkQZQxtpOzjTCuywL1ZGtHkdiY2sCsAgxGZAnyXQktiQEeda/piVcZZCIJi TjVgeADJeymIvuOMwwKgslcfim7pJwXaMCFcoE6xYzCl9sYcpFemOFEXQ7gejVT7 W3F3HyolkraSb76nC76FANGXoR+1bmTrIi9sLktLOYd+FUSO5pV98CiAMiNkw2Sa LyYw/5VFexVEMD2b7768M9ZmzrGG9lLV6M2uuTut7p3Do7hK9nvWnj3iT7gljttQ wPaC0p5KBHGZZbGVEBIzLgkRBH67y26fvUAgee/YSgigRMFqSYOwerG8Y7YjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIvslzBSnOZmwslCttYXUF8GhfZAwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzM0M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAM0MA0GCSqGSIb3DQEBCwUAA4IBAQBQboPDeqkbaaQ9o4Kr6bKp49S6EpJzi8u8 rCLGWGAXdyAOImkCoE4g6OBmLOd7B8cJhYz28fii8DwthVtj6OLCpRutEbRNUe2t Omeof7N6wIx7KKHR1yrQjKY2LtcOE4CKuHF4JFoEuFyKcrhAuwaUW9Ma+xJN/Uhc duYN0blwNyCK7bfbY3F7q8kobRoeya451FCzTR52MrU1OPmxHsureVoxB/i7FWwj s88nZeaT86s1gw3IMHttA8wHHJWpnUyX4hDHuXL2fLcMo0Oae3K3ED5KkwYa4BNT cV6R67+n+e3fuIdTUwHNve+y5dctZH1gaABS2/t1KT6NJtnQ4Zm+ -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org