$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa File: 323430333a623230303a3a2f33322d3438203d3e203233363731.roa (raw, json) Hash identifier: TtEbphvNHPemITwP2+gHt060SM3bIp9mBneg7zPSDnA= Subject key identifier: 65:BA:06:68:6B:79:BD:4A:5C:93:C5:C1:5B:4F:24:7E:AB:D8:CA:41 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 2CD851F4D662752E758758767DD83FCA21FFBD8C Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa Signing time: Mon 01 Jul 2024 01:03:23 +0000 ROA not before: Mon 01 Jul 2024 00:58:23 +0000 ROA not after: Mon 30 Jun 2025 01:03:23 +0000 asID: 23671 IP address blocks: 2403:b200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d8:51:f4:d6:62:75:2e:75:87:58:76:7d:d8:3f:ca:21:ff:bd:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jul 1 00:58:23 2024 GMT Not After : Jun 30 01:03:23 2025 GMT Subject: CN=65BA06686B79BD4A5C93C5C15B4F247EABD8CA41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:76:c9:21:18:30:63:10:4a:5c:3d:9c:36:4e: 88:f0:2e:aa:32:de:0a:00:f0:ae:b2:e8:31:f9:11: e4:6e:e3:29:13:19:df:72:10:ec:96:49:a7:3f:83: 81:1d:6a:8a:0c:4f:5e:b8:62:37:4f:5a:a2:eb:f9: 4c:6c:13:4d:69:12:39:6a:93:3d:e7:a4:cb:cd:2f: d8:28:2a:d5:8a:80:e4:a9:39:8e:e3:09:d7:51:1f: d0:61:bb:65:8c:41:f4:a3:1f:27:aa:ea:eb:4a:4c: bf:e6:1c:8b:8e:58:46:46:fd:90:20:e9:cb:3e:ef: 03:4e:f4:8b:49:0d:c6:08:ca:17:f0:96:48:6b:b0: 44:86:fc:de:4a:d0:73:25:05:e4:8a:f2:8b:02:b0: 35:29:9a:7c:79:59:74:e5:1a:4d:23:a2:7e:d8:f3: 9b:f7:ee:5d:58:2d:ee:4a:41:97:6d:6d:cc:0d:1a: de:9a:d2:ef:26:7d:c5:6a:78:ee:b0:0e:b1:2f:14: 4b:3c:3d:d4:c5:07:cc:47:5a:43:d0:c9:e8:55:05: d8:71:5b:82:f8:d3:df:ee:2b:0e:f5:13:f0:ee:b2: 49:2b:17:65:fa:1d:9f:cd:d0:16:44:71:72:46:87: c7:8a:f4:06:6a:a2:4d:f0:e5:34:a6:35:a1:bf:3d: 38:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BA:06:68:6B:79:BD:4A:5C:93:C5:C1:5B:4F:24:7E:AB:D8:CA:41 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200::/32 Signature Algorithm: sha256WithRSAEncryption ae:78:63:5d:9f:e3:c1:14:d4:a5:7c:0b:1b:a9:1f:a3:67:06: bd:eb:59:de:dd:70:39:1a:0d:44:c8:dc:0d:59:6f:0c:69:86: 6f:1c:4e:14:48:d3:70:62:a2:13:2b:b0:53:4e:31:a7:ec:c6: 91:39:bd:5d:5f:fd:c6:75:53:54:3c:d8:04:01:69:b4:0d:54: 84:b0:39:0a:c4:e8:21:41:8b:35:82:79:ce:0d:30:ce:9c:b1: b4:2e:00:73:ec:e4:7f:4a:f4:8c:5d:bb:ea:8a:57:5f:63:c5: d8:09:0e:5d:e1:78:56:99:ae:94:8f:0f:56:85:0d:23:fb:20: cf:be:00:8d:79:4b:38:bb:ad:a1:17:8b:b2:54:5f:b2:cd:e7: 59:15:f8:52:07:4f:a0:46:30:1b:0e:61:6f:81:cd:a9:ed:98: ca:6a:c5:9b:38:e8:85:cd:1a:36:7c:90:ef:28:a5:32:0a:04: 42:29:d8:e7:52:94:5c:e9:3c:35:f7:f9:f0:6f:c1:dc:e4:cd: 05:35:e0:df:86:88:59:b9:ae:3a:63:94:dd:08:28:c7:fa:17: af:ad:58:bd:1f:2a:aa:a0:11:e1:10:97:9a:e0:6c:ca:c8:53: 3a:09:43:a1:73:73:c1:e5:7e:b7:77:a4:6e:2c:48:b6:42:f6: 77:7d:70:1d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULNhR9NZidS51h1h2fdg/yiH/vYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA3MDEwMDU4MjNaFw0yNTA2MzAwMTAzMjNaMDMxMTAvBgNV BAMTKDY1QkEwNjY4NkI3OUJENEE1QzkzQzVDMTVCNEYyNDdFQUJEOENBNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9dskhGDBjEEpcPZw2TojwLqoy 3goA8K6y6DH5EeRu4ykTGd9yEOyWSac/g4EdaooMT164YjdPWqLr+UxsE01pEjlq kz3npMvNL9goKtWKgOSpOY7jCddRH9Bhu2WMQfSjHyeq6utKTL/mHIuOWEZG/ZAg 6cs+7wNO9ItJDcYIyhfwlkhrsESG/N5K0HMlBeSK8osCsDUpmnx5WXTlGk0jon7Y 85v37l1YLe5KQZdtbcwNGt6a0u8mfcVqeO6wDrEvFEs8PdTFB8xHWkPQyehVBdhx W4L409/uKw71E/DuskkrF2X6HZ/N0BZEcXJGh8eK9AZqok3w5TSmNaG/PTiLAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUZboGaGt5vUpck8XBW08kfqvYykEwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7IAMA0GCSqGSIb3 DQEBCwUAA4IBAQCueGNdn+PBFNSlfAsbqR+jZwa961ne3XA5Gg1EyNwNWW8MaYZv HE4USNNwYqITK7BTTjGn7MaROb1dX/3GdVNUPNgEAWm0DVSEsDkKxOghQYs1gnnO DTDOnLG0LgBz7OR/SvSMXbvqildfY8XYCQ5d4XhWma6Ujw9WhQ0j+yDPvgCNeUs4 u62hF4uyVF+yzedZFfhSB0+gRjAbDmFvgc2p7ZjKasWbOOiFzRo2fJDvKKUyCgRC KdjnUpRc6Tw19/nwb8Hc5M0FNeDfhohZua46Y5TdCCjH+hevrVi9HyqqoBHhEJea 4GzKyFM6CUOhc3PB5X63d6RuLEi2QvZ3fXAd -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org