$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: MXEutTJCQxw0frNVmuYRGeiep6S6kmkEZGe7mbSQhgI= Subject key identifier: 97:06:54:58:C4:74:7D:BB:06:E5:97:C6:F9:C5:3D:3B:AF:3D:8F:A5 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 59AEE0FB7FC6495DDA3CE116EA2F810C61A9BB12 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 31 Jul 2023 00:05:08 +0000 ROA not before: Mon 31 Jul 2023 00:00:08 +0000 ROA not after: Mon 29 Jul 2024 00:05:08 +0000 asID: 38150 IP address blocks: 2402:f080:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 12:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ae:e0:fb:7f:c6:49:5d:da:3c:e1:16:ea:2f:81:0c:61:a9:bb:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jul 31 00:00:08 2023 GMT Not After : Jul 29 00:05:08 2024 GMT Subject: CN=97065458C4747DBB06E597C6F9C53D3BAF3D8FA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d0:9e:f7:f8:24:1f:a9:54:b6:46:9c:50:5a: 28:24:bf:77:08:09:74:f9:e0:39:9f:a3:7d:ef:79: a5:d9:ae:93:c4:ac:87:91:c0:60:9d:aa:15:a8:8f: 0f:83:50:79:23:d8:ba:df:3d:10:47:06:a6:82:f5: fa:d7:31:a1:73:33:bb:21:98:b5:62:3b:cf:32:70: 49:86:4b:c8:3c:95:de:fc:db:f2:e8:73:c5:2b:56: 20:4a:b0:cc:f7:93:ba:99:e3:b1:3e:bb:4a:3a:a4: ae:07:34:a1:33:22:e0:e0:05:bf:ae:c2:cf:50:33: 18:ff:eb:3c:ae:c4:dd:a8:45:6c:5d:db:14:d2:1a: 35:89:b8:b3:7c:22:c9:8c:b0:d1:4d:6b:21:7b:e3: 6d:f6:93:c7:a5:99:48:99:c1:28:5e:3b:9e:44:02: da:72:c7:85:02:c7:18:9c:ea:db:1d:46:63:f1:7c: 87:b2:97:86:63:40:23:a3:3b:72:fc:c5:7d:b1:ff: e4:eb:90:94:3a:f9:14:af:f8:07:c7:c1:bb:3a:61: 4c:2f:0c:0c:e5:ea:97:10:79:81:5a:e9:1f:b1:5c: 98:54:15:5e:19:ed:d1:e1:74:30:9c:55:56:1d:e9: f8:ca:2c:8b:22:15:49:d9:a2:37:f6:7a:b2:4a:21: 0f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:06:54:58:C4:74:7D:BB:06:E5:97:C6:F9:C5:3D:3B:AF:3D:8F:A5 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:a::/48 Signature Algorithm: sha256WithRSAEncryption 11:0b:b9:5c:cb:48:58:7a:a9:63:af:ab:38:02:bf:f5:ed:41: fc:5d:5f:ed:29:64:ea:91:e8:81:a1:5d:c4:12:ba:c8:40:87: a2:9c:44:ac:c4:2b:88:14:6c:d8:44:59:f9:10:c4:aa:5f:9a: f8:ec:5e:e7:6a:eb:18:4d:71:8b:ab:24:fb:14:b6:44:fd:ca: 68:7c:ee:69:e7:31:b4:a5:c1:08:d8:6b:66:4f:e9:07:62:3c: ca:3f:62:d2:63:b9:5e:81:54:a7:72:25:b8:d9:0f:1e:36:3f: 00:5d:6a:b8:85:e0:38:30:7d:b6:a8:e3:79:76:67:b3:95:be: c8:73:13:48:01:0a:d6:20:e6:85:a9:db:cf:82:a3:a4:66:04: c1:d9:39:e3:ab:bc:08:ef:7b:e6:ae:5b:93:d1:62:b4:93:42: 9d:c9:40:85:c4:14:b6:1d:55:e0:fa:e9:32:6f:7a:bc:be:25: 56:89:58:1a:f9:63:61:8b:71:0a:b1:d2:25:3b:bb:4c:02:8d: 12:ae:c6:fe:2c:01:2a:77:44:7f:73:ec:8c:f5:99:ca:25:00: ae:b5:1d:3f:f8:f4:67:d8:1e:54:fd:16:79:1d:a6:d6:96:26: 43:e0:82:35:bb:30:80:74:78:7b:84:c6:54:f7:6c:17:d1:d4: c8:bb:e2:b4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWa7g+3/GSV3aPOEW6i+BDGGpuxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yMzA3MzEwMDAwMDhaFw0yNDA3MjkwMDA1MDhaMDMxMTAvBgNV BAMTKDk3MDY1NDU4QzQ3NDdEQkIwNkU1OTdDNkY5QzUzRDNCQUYzRDhGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX0J73+CQfqVS2RpxQWigkv3cI CXT54Dmfo33veaXZrpPErIeRwGCdqhWojw+DUHkj2LrfPRBHBqaC9frXMaFzM7sh mLViO88ycEmGS8g8ld782/Loc8UrViBKsMz3k7qZ47E+u0o6pK4HNKEzIuDgBb+u ws9QMxj/6zyuxN2oRWxd2xTSGjWJuLN8IsmMsNFNayF74232k8elmUiZwSheO55E Atpyx4UCxxic6tsdRmPxfIeyl4ZjQCOjO3L8xX2x/+TrkJQ6+RSv+AfHwbs6YUwv DAzl6pcQeYFa6R+xXJhUFV4Z7dHhdDCcVVYd6fjKLIsiFUnZojf2erJKIQ+pAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUlwZUWMR0fbsG5ZfG+cU9O689j6UwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAAKMA0G CSqGSIb3DQEBCwUAA4IBAQARC7lcy0hYeqljr6s4Ar/17UH8XV/tKWTqkeiBoV3E ErrIQIeinESsxCuIFGzYRFn5EMSqX5r47F7nausYTXGLqyT7FLZE/cpofO5p5zG0 pcEI2GtmT+kHYjzKP2LSY7legVSnciW42Q8eNj8AXWq4heA4MH22qON5dmezlb7I cxNIAQrWIOaFqdvPgqOkZgTB2Tnjq7wI73vmrluT0WK0k0KdyUCFxBS2HVXg+uky b3q8viVWiVga+WNhi3EKsdIlO7tMAo0Srsb+LAEqd0R/c+yM9ZnKJQCutR0/+PRn 2B5U/RZ5HabWliZD4II1uzCAdHh7hMZU92wX0dTIu+K0 -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:50 2024 by rpki-client on console-ams.rpki-client.org