$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: P4lIboI9O01mUEwWaHhNs0sV91CNLIxyCsdwbWImoEI= Subject key identifier: B0:19:61:D5:92:53:D6:6F:15:B7:51:77:26:94:EC:AA:EB:11:AC:43 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 7B24D0265EFF7445360BA5249B6B25881794D9F0 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa Signing time: Tue 21 May 2024 04:02:36 +0000 ROA not before: Tue 21 May 2024 03:57:36 +0000 ROA not after: Tue 20 May 2025 04:02:36 +0000 asID: 23671 IP address blocks: 2403:b200:230::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:24:d0:26:5e:ff:74:45:36:0b:a5:24:9b:6b:25:88:17:94:d9:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: May 21 03:57:36 2024 GMT Not After : May 20 04:02:36 2025 GMT Subject: CN=B01961D59253D66F15B751772694ECAAEB11AC43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:22:40:d5:74:fe:9c:a5:c4:60:26:41:8c: 9d:07:74:46:de:ef:2e:2e:a8:7d:f6:4e:d2:bf:fd: c9:fb:62:72:0d:e9:31:7b:25:b3:76:f1:d2:15:90: 66:c4:cd:59:dd:ab:c0:f8:93:e7:99:b6:67:75:83: da:d7:81:4a:36:af:60:44:e3:04:18:2f:56:0e:7e: 75:df:a4:7a:6d:e0:b9:8b:aa:7e:39:6c:2f:26:90: ba:59:4f:a7:75:de:e9:a4:b8:d6:dd:ff:1b:e6:6f: e9:81:cb:84:2f:b8:ae:b9:ad:91:df:ec:39:ab:91: 16:ae:d9:37:f0:87:d0:6c:57:6c:a3:8e:63:43:19: 48:35:3c:46:dd:bb:92:d6:b9:9f:9e:f2:27:fc:a3: 7c:ba:9e:50:cc:96:3b:46:eb:39:4e:dd:e3:23:8e: ce:5f:d2:c2:3e:96:af:23:b6:21:c2:61:48:52:59: 41:e1:42:99:84:93:ed:79:47:b9:a5:b1:3e:0e:1b: a8:8a:7d:41:6f:53:f2:a0:cf:a4:64:f5:1d:c9:3a: 36:70:0e:da:cf:ad:21:b8:93:f6:8c:57:fc:1b:9b: 24:27:22:2a:11:c5:e1:01:f8:5e:f2:d9:cf:21:f1: 29:83:81:4e:50:22:9e:03:05:dd:74:19:f8:da:42: 4d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:19:61:D5:92:53:D6:6F:15:B7:51:77:26:94:EC:AA:EB:11:AC:43 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233303a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:230::/48 Signature Algorithm: sha256WithRSAEncryption 0a:d0:7c:51:af:61:f6:1d:d7:09:38:f0:7b:cf:12:46:db:f3: 05:2f:6f:08:60:f4:6b:e1:b9:42:22:45:e0:2a:81:70:83:39: 47:1b:a4:2e:a8:dc:58:cd:bc:e0:33:98:6d:23:e8:d8:9d:e2: 99:96:48:61:32:eb:63:56:9e:c5:45:dd:22:2b:d4:aa:d2:20: 91:a5:ac:13:70:c8:ab:25:fd:07:ee:9d:92:e8:c4:e4:4a:23: 80:0f:45:cd:46:ba:21:58:4a:a3:ca:27:ef:05:e5:58:4f:ae: d9:68:12:61:a6:fa:d4:a6:ea:b6:c7:9e:60:5f:66:d5:73:96: 49:24:8d:b8:b6:83:71:b5:71:25:20:f8:d2:a5:90:ce:b3:ba: 41:69:14:06:d2:d7:37:28:02:2f:e0:28:3b:e6:8e:cd:87:4f: 39:cf:bf:1a:5c:70:78:d0:82:ae:5d:8a:4e:0c:d7:d6:d2:51: 59:5d:51:a5:e7:b6:60:37:f4:33:da:fa:a2:c3:39:09:e4:96: fe:4d:5c:9a:02:66:38:5b:86:f6:43:02:52:c8:73:e9:0c:da: cb:ea:30:7e:74:9a:ab:2b:6e:25:a4:d9:cb:c5:04:6d:27:2d: a5:af:8e:4b:f1:28:04:77:47:46:54:b9:41:3d:e5:b0:5f:bf: 21:13:14:e0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUeyTQJl7/dEU2C6Ukm2sliBeU2fAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA1MjEwMzU3MzZaFw0yNTA1MjAwNDAyMzZaMDMxMTAvBgNV BAMTKEIwMTk2MUQ1OTI1M0Q2NkYxNUI3NTE3NzI2OTRFQ0FBRUIxMUFDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvgyJA1XT+nKXEYCZBjJ0HdEbe 7y4uqH32TtK//cn7YnIN6TF7JbN28dIVkGbEzVndq8D4k+eZtmd1g9rXgUo2r2BE 4wQYL1YOfnXfpHpt4LmLqn45bC8mkLpZT6d13umkuNbd/xvmb+mBy4QvuK65rZHf 7DmrkRau2Tfwh9BsV2yjjmNDGUg1PEbdu5LWuZ+e8if8o3y6nlDMljtG6zlO3eMj js5f0sI+lq8jtiHCYUhSWUHhQpmEk+15R7mlsT4OG6iKfUFvU/Kgz6Rk9R3JOjZw DtrPrSG4k/aMV/wbmyQnIioRxeEB+F7y2c8h8SmDgU5QIp4DBd10GfjaQk3nAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUsBlh1ZJT1m8Vt1F3JpTsqusRrEMwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzIzMzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAC MDANBgkqhkiG9w0BAQsFAAOCAQEACtB8Ua9h9h3XCTjwe88SRtvzBS9vCGD0a+G5 QiJF4CqBcIM5RxukLqjcWM284DOYbSPo2J3imZZIYTLrY1aexUXdIivUqtIgkaWs E3DIqyX9B+6dkujE5EojgA9FzUa6IVhKo8on7wXlWE+u2WgSYab61KbqtseeYF9m 1XOWSSSNuLaDcbVxJSD40qWQzrO6QWkUBtLXNygCL+AoO+aOzYdPOc+/GlxweNCC rl2KTgzX1tJRWV1Rpee2YDf0M9r6osM5CeSW/k1cmgJmOFuG9kMCUshz6Qzay+ow fnSaqytuJaTZy8UEbSctpa+OS/EoBHdHRlS5QT3lsF+/IRMU4A== -----END CERTIFICATE-----Generated at Sat Jun 1 09:09:44 2024 by rpki-client on console-fra.rpki-client.org