$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: nOZl4ivkEVQN+G3Q9p0HwPZCW8oXQaPJIOUeDAeVzvM= Subject key identifier: 83:47:C9:11:10:17:9A:FB:63:35:54:55:27:65:DB:41:6D:91:EE:E1 Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 7C6B46A9E026A6D4122B9DBF302A25065EC80332 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:59:43 +0000 ROA not before: Fri 02 Aug 2024 12:54:43 +0000 ROA not after: Fri 01 Aug 2025 12:59:43 +0000 asID: 153087 IP address blocks: 2404:97c0:33::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:6b:46:a9:e0:26:a6:d4:12:2b:9d:bf:30:2a:25:06:5e:c8:03:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:54:43 2024 GMT Not After : Aug 1 12:59:43 2025 GMT Subject: CN=8347C91110179AFB633554552765DB416D91EEE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:1c:1f:d4:eb:26:63:44:95:07:97:03:33: d2:35:2c:2a:6a:4f:25:be:9b:38:6a:f6:52:19:57: b3:0b:d8:c9:1f:28:eb:28:ca:81:31:d2:af:2d:96: da:22:ce:94:52:4c:fb:0d:c8:17:5d:44:6c:05:39: d5:96:51:1e:92:96:93:e2:06:b4:6a:b3:c1:0a:4b: d5:76:23:e0:a9:c4:db:6e:7d:41:f5:9e:36:e0:89: 01:bb:6a:41:1d:5b:92:38:3b:3a:60:86:e0:c5:d3: 1d:30:23:a7:2a:49:0f:17:e2:cf:4b:ff:c1:a9:20: c1:94:8b:ef:23:63:90:c0:97:b3:43:11:fa:10:7d: 0b:1d:55:be:3d:7d:bb:b2:b7:1c:ac:c1:46:d0:0d: af:36:ee:f5:ff:fc:7f:2e:f9:1e:81:bd:d2:bb:d2: 67:f0:3a:47:4d:4c:90:ee:62:0d:3f:c3:6d:a1:db: 18:54:7f:ea:c3:56:c9:50:47:7f:49:92:67:11:79: 43:08:c2:7f:bc:39:b0:70:06:94:03:b8:cd:8d:2e: 1f:2c:4d:54:2a:6b:d5:32:d9:67:b9:64:e7:89:7c: aa:ac:ea:1c:27:3d:07:b2:c8:33:a3:fd:9f:40:d8: d6:3a:62:66:0e:9f:ed:b8:2c:6b:ac:c1:36:f6:15: 9c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:47:C9:11:10:17:9A:FB:63:35:54:55:27:65:DB:41:6D:91:EE:E1 X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a33333a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:33::/48 Signature Algorithm: sha256WithRSAEncryption b3:30:27:c6:28:d6:83:e5:03:06:c6:c8:6c:c7:4a:2a:3a:4f: 9e:7d:d4:a1:41:7f:85:e5:02:b7:ec:82:62:88:e6:12:47:47: 2d:c3:4f:76:70:4c:84:ac:53:77:f5:eb:3a:85:1a:31:e3:25: 29:fb:22:cf:48:d8:8a:10:58:fc:0c:02:eb:ac:ea:53:68:13: 1a:21:47:e5:5f:5d:93:b4:12:de:c9:af:9a:62:c6:45:56:68: 7a:16:e9:98:ca:11:77:4c:f8:09:e1:f5:72:c6:23:0d:d7:95: f9:dd:ce:a3:8f:fd:63:61:30:c2:c9:52:48:6d:37:5e:3f:bb: 28:4e:48:a4:06:11:93:75:28:85:87:17:b1:48:90:74:e6:d2: d3:26:d9:bf:92:5b:5a:82:83:17:d7:a6:b4:28:d9:d4:18:9c: 89:93:ad:92:6f:f8:2b:dc:50:26:17:ca:69:01:45:1e:68:72: a1:cd:a9:20:7c:e0:23:9a:60:f9:f9:17:00:93:e4:e4:43:66: 5b:3c:da:10:07:68:98:d0:a5:a8:9e:f4:5d:d8:4c:d1:6e:53: 1c:39:8d:62:3e:87:5f:97:3e:f0:fe:96:83:03:6f:21:af:a3: 3d:7f:78:8e:2e:8e:91:81:bb:ed:8f:c4:1c:3a:72:1f:7a:05: bb:e4:40:f1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfGtGqeAmptQSK52/MColBl7IAzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjU0NDNaFw0yNTA4MDExMjU5NDNaMDMxMTAvBgNV BAMTKDgzNDdDOTExMTAxNzlBRkI2MzM1NTQ1NTI3NjVEQjQxNkQ5MUVFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjKxwf1OsmY0SVB5cDM9I1LCpq TyW+mzhq9lIZV7ML2MkfKOsoyoEx0q8tltoizpRSTPsNyBddRGwFOdWWUR6SlpPi BrRqs8EKS9V2I+CpxNtufUH1njbgiQG7akEdW5I4OzpghuDF0x0wI6cqSQ8X4s9L /8GpIMGUi+8jY5DAl7NDEfoQfQsdVb49fbuytxyswUbQDa827vX//H8u+R6BvdK7 0mfwOkdNTJDuYg0/w22h2xhUf+rDVslQR39JkmcReUMIwn+8ObBwBpQDuM2NLh8s TVQqa9Uy2We5ZOeJfKqs6hwnPQeyyDOj/Z9A2NY6YmYOn+24LGuswTb2FZzZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUg0fJERAXmvtjNVRVJ2XbQW2R7uEwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEl8AA MzANBgkqhkiG9w0BAQsFAAOCAQEAszAnxijWg+UDBsbIbMdKKjpPnn3UoUF/heUC t+yCYojmEkdHLcNPdnBMhKxTd/XrOoUaMeMlKfsiz0jYihBY/AwC66zqU2gTGiFH 5V9dk7QS3smvmmLGRVZoehbpmMoRd0z4CeH1csYjDdeV+d3Oo4/9Y2EwwslSSG03 Xj+7KE5IpAYRk3UohYcXsUiQdObS0ybZv5JbWoKDF9emtCjZ1BiciZOtkm/4K9xQ JhfKaQFFHmhyoc2pIHzgI5pg+fkXAJPk5ENmWzzaEAdomNClqJ70XdhM0W5THDmN Yj6HX5c+8P6WgwNvIa+jPX94ji6OkYG77Y/EHDpyH3oFu+RA8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org