$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa File: 323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa (raw, json) Hash identifier: lCgvjFrtWqwMRKgXULbbieB/JCNDhZNczlqUJ3QomGI= Subject key identifier: B8:FF:D5:EE:70:E9:05:E6:D8:0D:36:0B:16:AC:C3:2A:B5:3F:B4:A1 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 7CF014C119A29EB67965BE08242C18411FB8F212 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa Signing time: Tue 21 May 2024 08:02:39 +0000 ROA not before: Tue 21 May 2024 07:57:39 +0000 ROA not after: Tue 20 May 2025 08:02:39 +0000 asID: 23671 IP address blocks: 2403:b200:237::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:f0:14:c1:19:a2:9e:b6:79:65:be:08:24:2c:18:41:1f:b8:f2:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: May 21 07:57:39 2024 GMT Not After : May 20 08:02:39 2025 GMT Subject: CN=B8FFD5EE70E905E6D80D360B16ACC32AB53FB4A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:1e:9a:87:5f:ba:aa:d8:2f:4e:b8:73:56: 67:f4:5a:ba:03:c7:7d:a8:64:b1:1f:9d:8a:8e:7d: 3e:6b:60:fd:88:af:84:0d:1d:84:ad:e9:7a:27:3f: c1:75:77:14:a7:e2:f3:e1:29:66:37:73:9b:31:c1: ea:5a:4d:85:63:81:ff:65:95:04:1f:16:6b:4a:bc: 52:11:87:de:23:43:ce:da:5e:83:2b:c4:16:2c:df: 02:1d:a8:6b:29:b1:42:b3:d2:d0:00:e4:22:d2:9a: a3:99:4c:93:3f:ea:07:ed:00:4e:7b:0f:28:c0:a7: d8:42:a5:d1:70:a3:23:90:e3:5f:c3:37:63:44:60: 6b:b8:da:a2:e9:8d:1d:4f:c5:b1:e7:fa:43:24:1c: a2:ac:65:b8:5d:23:bf:f5:33:d7:8b:82:5d:53:ff: 11:8b:c4:de:13:18:7e:3a:35:06:5b:e5:47:3f:d0: 6a:a9:9d:47:04:61:93:0b:90:e4:8b:66:60:5f:05: f6:bb:16:d1:4a:5c:6e:1d:f2:4d:d4:43:86:2d:b1: 67:0d:fb:e9:e1:96:88:27:d4:ae:ea:e0:5b:95:ed: de:9b:e1:c6:cf:bc:f4:54:9c:8a:13:5a:23:6a:b9: 38:03:3e:d9:58:15:d3:1b:9d:ea:06:1b:10:92:84: 30:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FF:D5:EE:70:E9:05:E6:D8:0D:36:0B:16:AC:C3:2A:B5:3F:B4:A1 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3233373a3a2f34382d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:237::/48 Signature Algorithm: sha256WithRSAEncryption af:e2:13:bf:e9:b9:1b:5e:38:a8:0e:d1:ab:d3:d6:d0:5b:cb: cd:21:bc:9e:48:07:01:25:e0:17:3e:df:09:2d:a9:d8:e5:e5: 59:69:a4:c3:c2:3d:90:2b:4a:cf:f6:c5:16:1e:12:0f:1b:3a: cd:92:f4:a3:3d:13:99:51:35:f5:cc:65:83:5a:b7:c2:33:03: 60:60:9a:68:58:9e:f1:16:aa:5a:0d:5f:82:68:f9:40:19:cd: 59:b3:9e:3d:3f:6d:6d:da:86:dd:53:fb:a7:1a:3c:c9:df:db: 5b:79:3e:33:54:ce:e4:e3:cd:fe:f9:e2:e1:51:49:e5:62:ef: 30:88:a7:0a:ab:87:3d:37:03:e0:44:51:bc:da:1e:65:87:49: 54:05:33:9d:e4:fd:fd:c6:56:94:bc:97:d1:08:6f:39:c0:ee: 35:53:45:e3:6d:4a:43:ff:0a:5b:b1:77:50:93:1c:fc:2a:e4: 42:ee:dd:bf:a7:84:77:1f:ad:4b:b0:93:97:f8:69:5e:c7:81: 63:e7:1c:11:59:78:c7:61:f2:bc:99:4b:97:cf:94:b5:a5:1e: 0f:59:d9:37:fe:5f:67:d9:a5:66:5e:c8:00:82:7b:ae:99:d4: 2c:10:ab:d1:3f:ac:10:98:42:2d:d2:90:58:40:a0:64:9c:7a: f7:43:28:0e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUfPAUwRminrZ5Zb4IJCwYQR+48hIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA1MjEwNzU3MzlaFw0yNTA1MjAwODAyMzlaMDMxMTAvBgNV BAMTKEI4RkZENUVFNzBFOTA1RTZEODBEMzYwQjE2QUNDMzJBQjUzRkI0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJWx6ah1+6qtgvTrhzVmf0WroD x32oZLEfnYqOfT5rYP2Ir4QNHYSt6XonP8F1dxSn4vPhKWY3c5sxwepaTYVjgf9l lQQfFmtKvFIRh94jQ87aXoMrxBYs3wIdqGspsUKz0tAA5CLSmqOZTJM/6gftAE57 DyjAp9hCpdFwoyOQ41/DN2NEYGu42qLpjR1PxbHn+kMkHKKsZbhdI7/1M9eLgl1T /xGLxN4TGH46NQZb5Uc/0GqpnUcEYZMLkOSLZmBfBfa7FtFKXG4d8k3UQ4YtsWcN ++nhlogn1K7q4FuV7d6b4cbPvPRUnIoTWiNquTgDPtlYFdMbneoGGxCShDC7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUuP/V7nDpBebYDTYLFqzDKrU/tKEwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhMzIzMzM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQDsgAC NzANBgkqhkiG9w0BAQsFAAOCAQEAr+ITv+m5G144qA7Rq9PW0FvLzSG8nkgHASXg Fz7fCS2p2OXlWWmkw8I9kCtKz/bFFh4SDxs6zZL0oz0TmVE19cxlg1q3wjMDYGCa aFie8RaqWg1fgmj5QBnNWbOePT9tbdqG3VP7pxo8yd/bW3k+M1TO5OPN/vni4VFJ 5WLvMIinCquHPTcD4ERRvNoeZYdJVAUzneT9/cZWlLyX0QhvOcDuNVNF421KQ/8K W7F3UJMc/CrkQu7dv6eEdx+tS7CTl/hpXseBY+ccEVl4x2HyvJlLl8+UtaUeD1nZ N/5fZ9mlZl7IAIJ7rpnULBCr0T+sEJhCLdKQWECgZJx690MoDg== -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org