$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: f/hAAPU7/j5S9ufLOVlWE5JF5z/bLIKvkZGdNEl6RhY= Subject key identifier: 02:7D:41:30:DB:D0:98:7C:F5:46:59:89:DC:FA:29:86:89:31:33:2D Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 297588BB05DA281428544BDBE728F197E8E29A1E Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa Signing time: Fri 10 Nov 2023 03:00:00 +0000 ROA not before: Fri 10 Nov 2023 02:55:00 +0000 ROA not after: Fri 08 Nov 2024 03:00:00 +0000 asID: 23671 IP address blocks: 2403:b200:1fe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:75:88:bb:05:da:28:14:28:54:4b:db:e7:28:f1:97:e8:e2:9a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Nov 10 02:55:00 2023 GMT Not After : Nov 8 03:00:00 2024 GMT Subject: CN=027D4130DBD0987CF5465989DCFA29868931332D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:fa:aa:94:70:e0:d2:8a:23:02:b8:cd:fb:82: 0b:fe:8b:41:20:94:b7:95:4f:d1:3e:ec:e8:ce:63: a6:05:cf:07:f7:9e:d8:e5:dc:a2:f1:07:98:d3:88: d0:81:09:34:27:7d:37:24:2c:89:8e:45:6a:ad:92: ff:e3:d4:c7:f9:54:2a:aa:e2:4c:5b:dc:ca:e3:2d: 1a:d4:bb:44:55:01:5b:f0:9f:5e:20:d0:7d:d6:b0: 1c:b6:18:9b:b1:95:09:c9:c6:53:03:e8:0e:c2:6b: cc:5a:11:7c:8d:e3:f7:c4:03:51:39:1c:e6:61:03: 95:33:08:98:cd:23:a3:ce:24:64:eb:9d:8c:19:9b: b3:4e:74:2e:a2:24:86:be:4c:0f:3a:2d:11:d3:e0: f2:92:b2:65:c7:26:fe:68:d2:75:47:a9:4f:b9:29: f2:de:72:30:49:3e:ad:7e:a8:a5:49:a5:f9:57:a6: a2:5d:67:4a:98:42:6f:6e:05:97:15:0b:78:4c:65: 35:07:e5:59:1f:96:63:34:86:91:12:b2:d6:c7:14: 92:5a:2c:2b:c7:08:64:82:15:ac:7e:5f:7c:18:f5: 2c:d0:87:a6:75:b1:56:6d:71:92:c9:9e:b1:14:6e: 00:a8:93:89:7f:cb:59:b8:48:c4:8f:95:d1:44:ad: 91:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7D:41:30:DB:D0:98:7C:F5:46:59:89:DC:FA:29:86:89:31:33:2D X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:1fe::/48 Signature Algorithm: sha256WithRSAEncryption 34:d7:a9:1e:22:33:f8:06:e0:a5:d5:0b:7e:9e:fd:c0:1c:75: d0:63:1f:3e:87:d9:45:4e:b1:3b:16:00:07:bb:b2:c0:6e:90: 99:15:d3:15:d3:00:49:e9:7c:99:6b:fa:01:99:4d:05:b8:a7: a9:34:e0:9b:54:48:1a:82:e6:1f:8a:84:56:2d:6b:1b:72:8b: 42:f8:03:87:e1:59:65:90:0d:61:e3:36:b9:02:fe:dd:36:11: f2:9e:e9:7b:20:36:7c:b3:c7:9e:fe:33:1f:d8:c9:f3:14:37: 0f:5b:f7:e3:69:09:31:b0:f5:ac:47:09:fd:ee:77:fe:c1:ab: d0:ec:a5:21:98:97:8f:90:ee:6b:8f:33:d1:db:7f:8a:db:69: 6a:5c:0a:23:94:5d:4c:d3:11:58:de:bc:d8:98:17:ac:96:90: de:0f:c4:d6:0a:a2:be:70:f1:55:b9:2b:16:e6:76:5b:db:66: 77:e8:65:d7:f1:96:76:49:23:5f:b0:a3:6f:ab:20:98:26:e2: 22:ec:95:bd:38:52:3f:ac:4f:b7:88:f9:a0:3e:cc:70:6c:6f: bc:b3:c5:0c:97:d7:b5:cb:51:f9:18:2d:65:d6:ce:3f:49:21: e7:0d:24:a3:b5:37:4f:87:53:1f:8c:40:64:98:32:aa:10:fc: ee:20:9b:7c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKXWIuwXaKBQoVEvb5yjxl+jimh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yMzExMTAwMjU1MDBaFw0yNDExMDgwMzAwMDBaMDMxMTAvBgNV BAMTKDAyN0Q0MTMwREJEMDk4N0NGNTQ2NTk4OURDRkEyOTg2ODkzMTMzMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1+qqUcODSiiMCuM37ggv+i0Eg lLeVT9E+7OjOY6YFzwf3ntjl3KLxB5jTiNCBCTQnfTckLImORWqtkv/j1Mf5VCqq 4kxb3MrjLRrUu0RVAVvwn14g0H3WsBy2GJuxlQnJxlMD6A7Ca8xaEXyN4/fEA1E5 HOZhA5UzCJjNI6POJGTrnYwZm7NOdC6iJIa+TA86LRHT4PKSsmXHJv5o0nVHqU+5 KfLecjBJPq1+qKVJpflXpqJdZ0qYQm9uBZcVC3hMZTUH5VkflmM0hpESstbHFJJa LCvHCGSCFax+X3wY9SzQh6Z1sVZtcZLJnrEUbgCok4l/y1m4SMSPldFErZGrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUAn1BMNvQmHz1RlmJ3PophokxMy0wHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzE2NjY1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAB /jANBgkqhkiG9w0BAQsFAAOCAQEANNepHiIz+AbgpdULfp79wBx10GMfPofZRU6x OxYAB7uywG6QmRXTFdMASel8mWv6AZlNBbinqTTgm1RIGoLmH4qEVi1rG3KLQvgD h+FZZZANYeM2uQL+3TYR8p7peyA2fLPHnv4zH9jJ8xQ3D1v342kJMbD1rEcJ/e53 /sGr0OylIZiXj5Dua48z0dt/ittpalwKI5RdTNMRWN682JgXrJaQ3g/E1gqivnDx VbkrFuZ2W9tmd+hl1/GWdkkjX7Cjb6sgmCbiIuyVvThSP6xPt4j5oD7McGxvvLPF DJfXtctR+RgtZdbOP0kh5w0ko7U3T4dTH4xAZJgyqhD87iCbfA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:44 2024 by rpki-client on console-fra.rpki-client.org