$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: aiceJB1WB5RVKjHRmpa0nElsS7ZO5ogWN3gQpHJRKQ8= Subject key identifier: 91:5E:BD:6D:44:2B:DE:0F:05:B3:D4:7C:FD:58:A7:D5:3E:A4:6E:D2 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 21352E5302B56A99EA6FF5A91716D96E0291220C Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:31 +0000 ROA not before: Mon 31 Jul 2023 00:03:31 +0000 ROA not after: Mon 29 Jul 2024 00:08:31 +0000 asID: 38156 IP address blocks: 2405:a540:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 14:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:35:2e:53:02:b5:6a:99:ea:6f:f5:a9:17:16:d9:6e:02:91:22:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:31 2023 GMT Not After : Jul 29 00:08:31 2024 GMT Subject: CN=915EBD6D442BDE0F05B3D47CFD58A7D53EA46ED2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6d:9a:5b:08:e6:64:1e:2b:78:21:ff:0d:9f: 37:c4:71:81:dc:41:cb:36:00:2d:d7:8f:3e:7e:19: 1d:92:52:5a:87:be:05:4d:6d:b7:79:78:d9:bd:65: 29:a6:c5:67:fb:e1:7c:de:9b:e9:38:33:49:85:0b: 90:16:dc:cb:06:22:af:ae:b5:46:dd:68:6d:0c:51: ba:d7:0d:80:5e:fa:1b:f8:91:a4:2a:af:11:fe:88: a9:86:07:a1:a0:a4:d2:b9:36:46:c2:d4:0c:d3:60: b2:e5:8b:a0:d4:f7:28:ea:d7:53:e9:44:37:58:2b: 9e:1a:a4:c7:9a:c6:75:92:86:3f:63:49:96:41:bd: ae:43:72:84:49:11:94:ec:4e:2b:ed:ff:40:c1:6b: ed:84:b8:55:0d:c7:a2:48:00:a1:a3:1a:14:fb:5b: 0a:a5:f2:cb:0f:4c:a0:4e:71:91:e1:09:63:36:04: e7:b0:92:04:e0:98:18:4b:b4:74:44:90:eb:e8:f6: 31:db:a9:d0:b4:d1:bd:a2:23:b8:f2:6e:fa:37:e4: 39:f7:65:bf:18:8a:54:48:34:a8:88:df:3b:9e:03: f7:92:a4:bf:ce:d1:21:83:b8:da:6d:4f:60:f0:a4: a9:1f:1b:48:89:91:0b:fd:4c:70:d8:e2:09:81:b3: 38:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5E:BD:6D:44:2B:DE:0F:05:B3:D4:7C:FD:58:A7:D5:3E:A4:6E:D2 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030323a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1002::/48 Signature Algorithm: sha256WithRSAEncryption 2a:f4:67:95:4f:82:bd:53:bb:08:76:97:96:57:b2:53:e7:e3: 74:eb:64:df:54:05:d7:a7:a2:ef:03:6f:28:79:2a:98:8d:df: d5:55:35:a0:b2:23:db:38:ca:29:98:d6:9a:bc:88:24:58:fe: ea:86:49:d1:0d:73:d9:31:67:66:e0:73:82:c2:7e:b9:fd:fa: a5:74:c7:c6:8e:a8:47:f1:55:85:43:94:4e:86:9d:ae:be:a2: 2e:d3:32:b6:08:4a:c5:53:db:39:77:50:d4:fc:61:8e:56:38: b6:e5:47:33:b7:37:db:71:94:e2:c3:d5:b6:de:80:d6:a5:e6: 0b:5b:ec:ff:cd:d7:c4:eb:66:0c:4f:58:34:b6:d9:84:b3:de: 67:b0:d3:88:3a:1d:a0:ab:f2:fe:72:44:d6:a7:fd:92:56:85: d5:ed:b5:ce:ec:36:30:de:cc:41:69:46:4f:86:b8:f4:24:a7: 91:8b:dc:c1:75:6a:cf:82:11:c2:75:a5:f1:d5:96:02:dc:0a: 7e:50:6b:cf:9c:d7:89:c2:79:9a:c6:9f:24:1c:ac:e8:bb:6e: 7c:e7:01:02:8f:0e:91:9b:5e:13:ef:dd:a9:13:3c:d3:6c:55: c7:ed:45:9d:36:bb:41:e8:a7:59:1d:fc:5a:2b:da:b1:80:34: f7:d2:96:6a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUITUuUwK1apnqb/WpFxbZbgKRIgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzFaFw0yNDA3MjkwMDA4MzFaMDMxMTAvBgNV BAMTKDkxNUVCRDZENDQyQkRFMEYwNUIzRDQ3Q0ZENThBN0Q1M0VBNDZFRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcbZpbCOZkHit4If8NnzfEcYHc Qcs2AC3Xjz5+GR2SUlqHvgVNbbd5eNm9ZSmmxWf74Xzem+k4M0mFC5AW3MsGIq+u tUbdaG0MUbrXDYBe+hv4kaQqrxH+iKmGB6GgpNK5NkbC1AzTYLLli6DU9yjq11Pp RDdYK54apMeaxnWShj9jSZZBva5DcoRJEZTsTivt/0DBa+2EuFUNx6JIAKGjGhT7 Wwql8ssPTKBOcZHhCWM2BOewkgTgmBhLtHREkOvo9jHbqdC00b2iI7jybvo35Dn3 Zb8YilRINKiI3zueA/eSpL/O0SGDuNptT2DwpKkfG0iJkQv9THDY4gmBszi3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkV69bUQr3g8Fs9R8/Vin1T6kbtIwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBACMA0GCSqGSIb3DQEBCwUAA4IBAQAq9GeVT4K9U7sIdpeWV7JT5+N062TfVAXX p6LvA28oeSqYjd/VVTWgsiPbOMopmNaavIgkWP7qhknRDXPZMWdm4HOCwn65/fql dMfGjqhH8VWFQ5ROhp2uvqIu0zK2CErFU9s5d1DU/GGOVji25UcztzfbcZTiw9W2 3oDWpeYLW+z/zdfE62YMT1g0ttmEs95nsNOIOh2gq/L+ckTWp/2SVoXV7bXO7DYw 3sxBaUZPhrj0JKeRi9zBdWrPghHCdaXx1ZYC3Ap+UGvPnNeJwnmaxp8kHKzou258 5wECjw6Rm14T792pEzzTbFXH7UWdNrtB6KdZHfxaK9qxgDT30pZq -----END CERTIFICATE-----Generated at Wed Apr 17 10:35:27 2024 by rpki-client on console-ams.rpki-client.org