$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa File: 323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa (raw, json) Hash identifier: j6WxF7ns1yeiorJ+4nHIDRZ/eP2yeNeUURYQDSdLEh0= Subject key identifier: 15:E6:CC:BF:38:AD:C4:2C:74:AF:5F:A7:F3:E7:F5:62:0F:D6:23:17 Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 4EA719E99A23B92A7540D3A267E900C2874C86FD Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa Signing time: Mon 01 Jul 2024 01:03:23 +0000 ROA not before: Mon 01 Jul 2024 00:58:23 +0000 ROA not after: Mon 30 Jun 2025 01:03:23 +0000 asID: 38506 IP address blocks: 2403:b200:a99c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a7:19:e9:9a:23:b9:2a:75:40:d3:a2:67:e9:00:c2:87:4c:86:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jul 1 00:58:23 2024 GMT Not After : Jun 30 01:03:23 2025 GMT Subject: CN=15E6CCBF38ADC42C74AF5FA7F3E7F5620FD62317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:17:2b:6c:51:91:6a:43:42:23:67:c3:8a: 34:39:42:0a:e3:37:2a:2d:cb:4f:01:49:23:39:07: d5:49:aa:18:03:26:39:83:cd:d2:18:94:1d:f7:41: be:6f:67:ad:95:fd:ef:42:ef:4e:e9:21:68:7a:22: d6:78:45:68:10:26:62:c4:97:e0:54:e4:4e:65:02: 94:bb:6a:29:32:9a:f0:c1:a3:b9:a0:61:2d:4f:d6: d4:3b:e1:5c:99:f1:bd:01:e8:e3:fd:90:c4:5d:c4: cd:b1:df:8f:95:eb:f0:34:b9:ac:d4:6b:9e:25:2c: fb:65:97:0e:8d:84:36:5a:99:82:5b:ed:1b:8c:18: 52:e8:f7:da:bd:da:ac:b8:76:7b:f5:0b:12:66:a0: fe:76:a1:8a:b3:a3:a5:03:e5:6a:92:1c:62:23:40: c7:f0:8c:65:4b:32:88:0e:95:e2:78:78:7d:c6:09: e3:41:b4:55:0d:6d:9c:32:af:34:cc:c8:e0:ec:24: 4b:ef:d3:8f:56:85:16:1f:0e:16:9b:1a:d2:77:3e: ea:b2:28:3d:17:c7:7d:e8:9f:62:ba:6c:e8:d9:a3: ca:40:b6:27:bd:12:02:08:d0:29:9e:ec:06:33:eb: b6:77:4c:8a:09:37:2a:7d:b8:df:43:34:cf:9d:1b: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E6:CC:BF:38:AD:C4:2C:74:AF:5F:A7:F3:E7:F5:62:0F:D6:23:17 X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:a99c::/48 Signature Algorithm: sha256WithRSAEncryption 45:f8:09:0b:63:62:b9:37:0c:7f:02:08:06:f8:58:b1:68:03: 22:37:00:0d:53:22:d3:3c:63:04:c5:af:5c:0a:1f:40:9c:43: 53:f3:1d:93:ef:1f:82:6b:46:3a:2a:e1:f2:3b:68:7f:dc:bc: 74:3a:86:cb:9f:2c:2d:da:26:8f:ea:25:74:ef:d9:02:40:68: 66:0f:14:10:e0:94:48:60:3b:e1:46:2a:20:06:9f:11:66:d1: 31:d4:4b:a8:94:88:1f:ca:d8:c0:da:91:5e:f6:76:48:47:f3: f1:e4:18:01:9c:0a:89:c3:a5:20:36:26:d7:f1:9d:c4:fd:a2: 91:e0:56:05:33:d1:76:5a:e6:eb:4c:f8:26:b8:9c:4e:38:ff: 3d:f7:4d:47:81:1f:b3:0c:7d:e1:20:23:7b:bd:79:41:a0:90: bf:86:ce:73:0a:0e:e4:e8:bd:74:0c:3f:04:33:63:05:c3:0d: 19:3d:e4:12:4a:42:22:cb:4e:b8:f4:44:cf:46:ff:70:27:51: bd:19:e9:5b:9a:de:db:a2:8f:64:0e:e4:e9:64:10:d5:67:57: 9b:85:61:0a:a1:3f:13:5c:a8:c0:31:d1:40:22:99:63:63:c4: aa:09:96:40:1c:68:65:8c:e1:20:bd:77:62:74:4e:2a:d7:08: 8c:fc:d6:b2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTqcZ6ZojuSp1QNOiZ+kAwodMhv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNDA3MDEwMDU4MjNaFw0yNTA2MzAwMTAzMjNaMDMxMTAvBgNV BAMTKDE1RTZDQ0JGMzhBREM0MkM3NEFGNUZBN0YzRTdGNTYyMEZENjIzMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgShcrbFGRakNCI2fDijQ5Qgrj Nyoty08BSSM5B9VJqhgDJjmDzdIYlB33Qb5vZ62V/e9C707pIWh6ItZ4RWgQJmLE l+BU5E5lApS7aikymvDBo7mgYS1P1tQ74VyZ8b0B6OP9kMRdxM2x34+V6/A0uazU a54lLPtllw6NhDZamYJb7RuMGFLo99q92qy4dnv1CxJmoP52oYqzo6UD5WqSHGIj QMfwjGVLMogOleJ4eH3GCeNBtFUNbZwyrzTMyODsJEvv049WhRYfDhabGtJ3Puqy KD0Xx33on2K6bOjZo8pAtie9EgII0Cme7AYz67Z3TIoJNyp9uN9DNM+dGxylAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFebMvzitxCx0r1+n8+f1Yg/WIxcwHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhNjEzOTM5NjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAOy AKmcMA0GCSqGSIb3DQEBCwUAA4IBAQBF+AkLY2K5Nwx/AggG+FixaAMiNwANUyLT PGMExa9cCh9AnENT8x2T7x+Ca0Y6KuHyO2h/3Lx0OobLnywt2iaP6iV079kCQGhm DxQQ4JRIYDvhRiogBp8RZtEx1EuolIgfytjA2pFe9nZIR/Px5BgBnAqJw6UgNibX 8Z3E/aKR4FYFM9F2WubrTPgmuJxOOP89901HgR+zDH3hICN7vXlBoJC/hs5zCg7k 6L10DD8EM2MFww0ZPeQSSkIiy0649ETPRv9wJ1G9Gelbmt7boo9kDuTpZBDVZ1eb hWEKoT8TXKjAMdFAIpljY8SqCZZAHGhljOEgvXdidE4q1wiM/Nay -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org