$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: aWJcTT0Qb0T3MuEV2Lh1eipJPo/Rue5sJCWxOILuE7E= Subject key identifier: FF:F9:AD:3C:F4:97:94:12:AC:11:E8:A4:85:5C:FA:A7:82:37:C2:EA Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 161155E17F605DF2AD0666D79465A05B131B1860 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa Signing time: Fri 11 Oct 2024 03:00:01 +0000 ROA not before: Fri 11 Oct 2024 02:55:01 +0000 ROA not after: Fri 10 Oct 2025 03:00:01 +0000 asID: 23671 IP address blocks: 2403:b200:1fe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:11:55:e1:7f:60:5d:f2:ad:06:66:d7:94:65:a0:5b:13:1b:18:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Oct 11 02:55:01 2024 GMT Not After : Oct 10 03:00:01 2025 GMT Subject: CN=FFF9AD3CF4979412AC11E8A4855CFAA78237C2EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:46:8d:58:c1:38:0a:4a:3e:df:33:73:50:9f: e7:9c:c5:b5:34:fa:60:b8:51:78:2a:ea:76:2d:2c: 11:59:fa:9c:47:66:25:6e:98:82:31:4d:4c:b5:d6: 81:62:1f:ea:21:dd:13:4b:60:a9:a4:5a:af:b5:55: 65:c6:09:39:2d:31:0e:6a:76:a4:67:95:0d:a5:11: 51:e8:ff:85:32:f6:89:af:8a:10:49:fa:7b:d0:eb: d1:94:14:ea:27:96:e4:22:27:80:6d:fa:09:1f:b7: b9:d4:af:d3:d9:83:70:27:82:b6:ed:ec:aa:ec:94: b5:70:c0:ad:fa:aa:76:2f:22:6f:85:73:25:33:5e: 1d:ee:45:5c:42:fd:11:88:c8:68:8b:41:db:ca:9d: d2:9e:4e:cd:28:44:cb:df:b4:50:ba:09:3e:81:52: 67:0c:24:b1:24:5a:8d:86:8b:e5:4e:f0:93:c0:6c: 87:42:8f:d6:e7:62:89:65:2e:7e:9a:1a:5b:b2:9f: 2c:31:03:6b:cc:ee:45:27:ae:7b:ad:29:29:5b:a5: 18:ac:55:b9:fe:45:5b:f2:ef:99:2e:11:02:2e:0f: 6b:8c:b3:21:03:ef:87:3f:03:42:4a:cb:fd:3a:4b: e0:1e:c7:91:0b:4e:4d:10:e0:44:eb:7f:87:8d:a3: 4c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F9:AD:3C:F4:97:94:12:AC:11:E8:A4:85:5C:FA:A7:82:37:C2:EA X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3166653a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:1fe::/48 Signature Algorithm: sha256WithRSAEncryption 57:1a:c5:dd:17:5e:64:21:6c:a1:45:3f:80:c9:ec:a2:af:9c: b1:2b:e9:3d:83:2f:49:20:3f:71:3a:1b:d8:f8:69:22:c6:d1: 64:86:9a:08:b0:fd:e1:8d:9a:99:44:7c:ee:de:13:48:05:80: e5:6b:5d:a3:e0:70:ac:8c:53:6b:26:4d:a6:d3:b2:fe:fa:f9: 7c:dd:17:e1:73:fb:d9:fa:9f:82:e9:cc:ef:d1:fd:f2:b5:af: 80:3b:c7:eb:2b:45:49:d9:f1:5f:e2:1f:5b:75:b3:3f:74:d6: 50:e2:3c:27:f8:79:3a:0c:54:2e:1d:8e:70:0a:5f:92:80:6e: a7:ca:86:53:9b:da:17:4f:07:dc:5c:5a:db:21:08:e5:b3:b7: c2:11:ca:99:b6:d3:e5:75:90:29:bc:93:44:96:09:72:a6:c4: f9:a6:19:45:88:fe:80:11:16:05:14:5f:c1:c8:71:06:64:71: ad:5c:ef:d2:7b:76:5b:1f:85:a4:ee:99:48:4d:7c:08:83:49: 8b:8b:ab:89:26:02:41:b8:6f:47:a8:72:e0:7c:a7:42:13:c8: 85:ea:c0:e1:9b:65:ac:83:8a:83:0f:3f:91:72:52:fa:eb:d8: 2f:4a:65:10:86:29:1e:b0:b3:b2:14:1b:9e:56:c5:04:f5:4d: 6a:34:84:26 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFhFV4X9gXfKtBmbXlGWgWxMbGGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDEwMTEwMjU1MDFaFw0yNTEwMTAwMzAwMDFaMDMxMTAvBgNV BAMTKEZGRjlBRDNDRjQ5Nzk0MTJBQzExRThBNDg1NUNGQUE3ODIzN0MyRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDERo1YwTgKSj7fM3NQn+ecxbU0 +mC4UXgq6nYtLBFZ+pxHZiVumIIxTUy11oFiH+oh3RNLYKmkWq+1VWXGCTktMQ5q dqRnlQ2lEVHo/4Uy9omvihBJ+nvQ69GUFOonluQiJ4Bt+gkft7nUr9PZg3Angrbt 7KrslLVwwK36qnYvIm+FcyUzXh3uRVxC/RGIyGiLQdvKndKeTs0oRMvftFC6CT6B UmcMJLEkWo2Gi+VO8JPAbIdCj9bnYollLn6aGluynywxA2vM7kUnrnutKSlbpRis Vbn+RVvy75kuEQIuD2uMsyED74c/A0JKy/06S+Aex5ELTk0Q4ETrf4eNo0yrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU//mtPPSXlBKsEeikhVz6p4I3wuowHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzE2NjY1M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAB /jANBgkqhkiG9w0BAQsFAAOCAQEAVxrF3RdeZCFsoUU/gMnsoq+csSvpPYMvSSA/ cTob2PhpIsbRZIaaCLD94Y2amUR87t4TSAWA5Wtdo+BwrIxTayZNptOy/vr5fN0X 4XP72fqfgunM79H98rWvgDvH6ytFSdnxX+IfW3WzP3TWUOI8J/h5OgxULh2OcApf koBup8qGU5vaF08H3Fxa2yEI5bO3whHKmbbT5XWQKbyTRJYJcqbE+aYZRYj+gBEW BRRfwchxBmRxrVzv0nt2Wx+FpO6ZSE18CINJi4uriSYCQbhvR6hy4HynQhPIherA 4ZtlrIOKgw8/kXJS+uvYL0plEIYpHrCzshQbnlbFBPVNajSEJg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org