$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: NMSdo9Tkj832XZxdC+WlawEa8XuGebHzTL3yLRBBzDY= Subject key identifier: 5C:FE:DC:D5:14:A8:CD:5B:F8:DF:5A:3E:0E:B3:DE:6F:99:51:A5:EC Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 223FAB3AF47DE862BE48982DFF0656DC7AAED81B Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:59:59 +0000 ROA not before: Fri 02 Aug 2024 12:54:59 +0000 ROA not after: Fri 01 Aug 2025 12:59:59 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:3f:ab:3a:f4:7d:e8:62:be:48:98:2d:ff:06:56:dc:7a:ae:d8:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:54:59 2024 GMT Not After : Aug 1 12:59:59 2025 GMT Subject: CN=5CFEDCD514A8CD5BF8DF5A3E0EB3DE6F9951A5EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a6:32:45:ed:bb:fa:77:21:c7:69:83:0f:85: 88:70:8a:dc:ec:44:a0:fd:9e:82:d7:33:73:62:f5: d5:7c:41:25:2c:1a:9d:4a:62:fb:6a:bf:3b:27:a8: 17:42:fe:e4:33:f7:39:1c:1d:6b:eb:57:b7:e2:68: 8f:27:86:e2:df:03:2a:dd:bd:97:26:95:2f:dd:84: 99:bd:1a:60:a3:58:d3:c6:b5:cd:35:19:8e:e6:0f: 85:af:d8:bf:76:44:07:d5:dd:25:73:15:ab:6a:43: db:86:20:3f:ab:dc:fd:79:2e:f4:1f:ac:14:e9:41: ed:90:d0:a9:7c:ef:e6:6b:cb:c3:c5:60:a7:c0:0c: a6:d7:7f:10:bf:4d:31:d9:4c:5f:98:32:65:b4:38: 50:2b:71:11:f9:23:ed:82:e6:8e:f5:ce:fa:a6:bf: 10:8f:0e:2d:b6:b7:e0:05:8c:0e:39:7f:26:17:db: 95:e5:21:33:f5:74:12:e2:76:04:8f:25:c6:f4:f5: 52:98:97:2b:2c:a8:90:02:08:7d:28:38:d7:65:14: 23:8d:1f:e7:96:ac:bd:db:8c:65:8e:08:44:1c:fe: 05:4f:db:0b:d7:c8:ae:7e:dd:09:e4:96:c1:14:ea: d7:91:46:6c:60:9b:34:7e:f6:d7:25:cd:0d:b1:89: 67:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FE:DC:D5:14:A8:CD:5B:F8:DF:5A:3E:0E:B3:DE:6F:99:51:A5:EC X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/323430343a393763303a393763303a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/48 Signature Algorithm: sha256WithRSAEncryption b1:d8:8b:76:6e:44:aa:69:1b:2d:fa:c7:24:d1:12:51:1c:b7: be:e3:cf:9d:d0:ac:a2:ca:ed:48:e6:80:ed:ea:85:3a:00:bf: fb:bb:f3:77:5a:ac:f2:cb:87:8a:00:10:27:cd:88:96:18:7b: 8a:64:d7:5c:59:2a:9f:ce:25:bc:6b:69:ec:15:fd:38:73:03: 6d:db:16:a8:2a:c6:57:46:71:95:6f:cc:b2:4c:55:3f:95:8b: 24:d0:52:55:17:3f:1a:9d:fa:f2:cc:39:b2:c9:56:c4:b5:e3: af:97:a8:1b:08:ca:d8:b9:19:11:73:7a:32:c0:7d:6d:9a:aa: fe:e9:b3:97:e7:9f:ec:8f:06:90:8d:ea:5c:b1:19:54:1c:64: 46:e4:d0:01:33:2d:2b:24:a1:ba:eb:d5:c2:b5:be:2e:6f:b0: 2c:85:63:bb:7c:ea:ac:49:a9:a7:6c:fe:86:c9:ec:03:fa:87: 96:21:59:a1:2d:34:45:7c:7f:70:01:15:34:3e:33:f3:fa:20: a1:a8:e2:d1:51:c2:d2:ac:39:a1:73:4f:e0:e3:a1:8b:dd:4d: 9a:f0:f3:ea:f6:0b:34:5c:e1:61:8b:6e:6a:96:64:e8:2f:a8: 56:8a:d5:9d:e0:c4:dd:e1:2c:9d:89:cb:b5:bb:78:bb:dd:51: fa:af:cf:9d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUIj+rOvR96GK+SJgt/wZW3Hqu2BswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjU0NTlaFw0yNTA4MDExMjU5NTlaMDMxMTAvBgNV BAMTKDVDRkVEQ0Q1MTRBOENENUJGOERGNUEzRTBFQjNERTZGOTk1MUE1RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDupjJF7bv6dyHHaYMPhYhwitzs RKD9noLXM3Ni9dV8QSUsGp1KYvtqvzsnqBdC/uQz9zkcHWvrV7fiaI8nhuLfAyrd vZcmlS/dhJm9GmCjWNPGtc01GY7mD4Wv2L92RAfV3SVzFatqQ9uGID+r3P15LvQf rBTpQe2Q0Kl87+Zry8PFYKfADKbXfxC/TTHZTF+YMmW0OFArcRH5I+2C5o71zvqm vxCPDi22t+AFjA45fyYX25XlITP1dBLidgSPJcb09VKYlyssqJACCH0oONdlFCON H+eWrL3bjGWOCEQc/gVP2wvXyK5+3QnklsEU6teRRmxgmzR+9tclzQ2xiWehAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUXP7c1RSozVv431o+DrPeb5lRpewwHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBALHYi3ZuRKppGy36xyTRElEct77jz53Q rKLK7UjmgO3qhToAv/u783darPLLh4oAECfNiJYYe4pk11xZKp/OJbxraewV/Thz A23bFqgqxldGcZVvzLJMVT+ViyTQUlUXPxqd+vLMObLJVsS146+XqBsIyti5GRFz ejLAfW2aqv7ps5fnn+yPBpCN6lyxGVQcZEbk0AEzLSskobrr1cK1vi5vsCyFY7t8 6qxJqads/obJ7AP6h5YhWaEtNEV8f3ABFTQ+M/P6IKGo4tFRwtKsOaFzT+DjoYvd TZrw8+r2CzRc4WGLbmqWZOgvqFaK1Z3gxN3hLJ2Jy7W7eLvdUfqvz50= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org