$ rpki-client -vvf repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/323430363a343634303a3a2f33322d3332203d3e20313430343637.roa File: 323430363a343634303a3a2f33322d3332203d3e20313430343637.roa (raw, json) Hash identifier: TXS9Uz2RUpQ/fA9lJPJPbxmno3+jJUlLNGOG/HO15PU= Subject key identifier: E5:E0:A1:08:2C:C2:5F:57:0E:97:C8:F1:82:A0:64:3E:55:6A:43:A6 Certificate issuer: /CN=47CBAD1A648715C5E867F1A2ED3558688608EE19 Certificate serial: 730366407B8BC745FD3841EDA10E0E0A675F08C7 Authority key identifier: 47:CB:AD:1A:64:87:15:C5:E8:67:F1:A2:ED:35:58:68:86:08:EE:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/323430363a343634303a3a2f33322d3332203d3e20313430343637.roa Signing time: Mon 03 Jun 2024 09:00:00 +0000 ROA not before: Mon 03 Jun 2024 08:55:00 +0000 ROA not after: Mon 02 Jun 2025 09:00:00 +0000 asID: 140467 IP address blocks: 2406:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.crl rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:03:66:40:7b:8b:c7:45:fd:38:41:ed:a1:0e:0e:0a:67:5f:08:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47CBAD1A648715C5E867F1A2ED3558688608EE19 Validity Not Before: Jun 3 08:55:00 2024 GMT Not After : Jun 2 09:00:00 2025 GMT Subject: CN=E5E0A1082CC25F570E97C8F182A0643E556A43A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8b:22:df:06:89:7c:31:5d:a1:04:5c:43:40: 5d:7f:1b:18:c1:8b:78:a3:93:d7:f6:88:a2:07:71: 57:88:2c:37:19:92:d2:98:40:92:5e:48:ca:82:ed: c7:28:6b:48:24:06:03:80:80:17:7e:7b:b8:47:59: 0b:ac:77:39:6b:a4:4f:c2:62:60:77:6f:82:a9:9f: 26:09:05:04:49:0b:38:34:f2:f4:11:83:0d:6b:af: 43:09:ff:e5:ff:29:8a:0b:8a:93:01:d0:ba:3f:0d: 65:90:47:27:24:ff:b5:86:5b:0a:91:e7:b6:c9:6c: b7:57:77:62:ab:66:b3:c0:79:99:08:b0:80:c6:ca: 0d:fd:c6:b1:26:86:34:4a:5a:74:89:c8:d3:7a:34: 86:16:85:63:c2:e5:8b:43:77:05:7b:d5:77:e8:86: 34:e4:4b:c2:6e:d8:81:be:d2:6d:a3:c0:02:df:40: f2:a8:6c:95:9b:f7:f8:6e:5e:75:af:76:66:a3:01: 00:23:9f:5e:23:b6:d8:ad:bf:df:6d:9e:91:81:38: 93:7c:36:ed:ec:33:9d:ff:a7:60:9c:8d:64:21:b0: 36:bb:37:96:72:b1:36:cc:3b:d1:c7:38:6d:27:42: bf:f4:95:d6:c5:73:a8:5a:04:65:1d:a7:f0:25:52: 47:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E0:A1:08:2C:C2:5F:57:0E:97:C8:F1:82:A0:64:3E:55:6A:43:A6 X509v3 Authority Key Identifier: keyid:47:CB:AD:1A:64:87:15:C5:E8:67:F1:A2:ED:35:58:68:86:08:EE:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/47CBAD1A648715C5E867F1A2ED3558688608EE19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47CBAD1A648715C5E867F1A2ED3558688608EE19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4956505-d6b3-43dc-9070-d4dbdb7cf963/0/323430363a343634303a3a2f33322d3332203d3e20313430343637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4640::/32 Signature Algorithm: sha256WithRSAEncryption 7e:ce:eb:26:35:61:96:28:07:ee:35:2c:29:2b:f5:1a:cf:e1: ec:8d:0c:18:8f:6d:84:a2:58:75:e9:f9:17:ac:c1:de:b4:ed: 1c:f2:e9:48:66:80:1f:02:1a:0e:ef:66:4e:f0:58:11:d9:ac: 73:c0:a5:7d:0b:f9:4b:b8:6a:f4:a9:b3:16:64:e2:ee:68:6d: 40:79:41:11:0d:b2:68:28:49:fa:5e:3c:a7:08:07:65:5f:38: c7:05:75:9a:25:cf:20:b5:ca:26:7c:d9:97:db:fd:f1:13:42: a9:a2:ce:fa:3b:1e:c7:83:cd:6a:94:4c:89:07:03:25:a6:6b: 2a:2b:76:51:cd:53:5b:d7:6d:db:22:df:59:4d:33:f5:33:5d: d2:5d:29:8a:e0:e0:69:eb:96:5e:af:8b:6b:bd:7d:9c:76:bd: 04:a3:71:69:90:03:34:71:57:81:b7:6b:ca:10:75:c8:29:88: fa:0b:a7:29:5c:02:71:e8:d2:49:36:ef:e3:f9:a5:64:9e:63: dd:f3:7e:c1:4a:d5:cb:14:79:86:5d:2d:94:dd:f9:28:08:c4: 09:53:74:9f:33:2c:e7:31:2a:df:b7:93:5e:2d:b3:ef:9a:52: ee:ff:3b:2e:f8:8e:ba:70:08:8d:cb:36:5c:64:63:52:28:09: 2a:4a:24:41 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUcwNmQHuLx0X9OEHtoQ4OCmdfCMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDQkFEMUE2NDg3MTVDNUU4NjdGMUEyRUQzNTU4Njg4 NjA4RUUxOTAeFw0yNDA2MDMwODU1MDBaFw0yNTA2MDIwOTAwMDBaMDMxMTAvBgNV BAMTKEU1RTBBMTA4MkNDMjVGNTcwRTk3QzhGMTgyQTA2NDNFNTU2QTQzQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNiyLfBol8MV2hBFxDQF1/GxjB i3ijk9f2iKIHcVeILDcZktKYQJJeSMqC7ccoa0gkBgOAgBd+e7hHWQusdzlrpE/C YmB3b4KpnyYJBQRJCzg08vQRgw1rr0MJ/+X/KYoLipMB0Lo/DWWQRyck/7WGWwqR 57bJbLdXd2KrZrPAeZkIsIDGyg39xrEmhjRKWnSJyNN6NIYWhWPC5YtDdwV71Xfo hjTkS8Ju2IG+0m2jwALfQPKobJWb9/huXnWvdmajAQAjn14jttitv99tnpGBOJN8 Nu3sM53/p2CcjWQhsDa7N5ZysTbMO9HHOG0nQr/0ldbFc6haBGUdp/AlUkfTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU5eChCCzCX1cOl8jxgqBkPlVqQ6YwHwYDVR0j BBgwFoAUR8utGmSHFcXoZ/Gi7TVYaIYI7hkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDk1NjUwNS1kNmIzLTQzZGMtOTA3MC1kNGRiZGI3Y2Y5NjMvMC80N0NCQUQxQTY0 ODcxNUM1RTg2N0YxQTJFRDM1NTg2ODg2MDhFRTE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDQkFEMUE2NDg3MTVDNUU4NjdGMUEyRUQzNTU4Njg4NjA4 RUUxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0OTU2NTA1LWQ2YjMtNDNkYy05 MDcwLWQ0ZGJkYjdjZjk2My8wLzMyMzQzMDM2M2EzNDM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGRkAwDQYJKoZI hvcNAQELBQADggEBAH7O6yY1YZYoB+41LCkr9RrP4eyNDBiPbYSiWHXp+Reswd60 7Rzy6UhmgB8CGg7vZk7wWBHZrHPApX0L+Uu4avSpsxZk4u5obUB5QRENsmgoSfpe PKcIB2VfOMcFdZolzyC1yiZ82Zfb/fETQqmizvo7HseDzWqUTIkHAyWmayordlHN U1vXbdsi31lNM/UzXdJdKYrg4Gnrll6vi2u9fZx2vQSjcWmQAzRxV4G3a8oQdcgp iPoLpylcAnHo0kk27+P5pWSeY93zfsFK1csUeYZdLZTd+SgIxAlTdJ8zLOcxKt+3 k14ts++aUu7/Oy74jrpwCI3LNlxkY1IoCSpKJEE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org