$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: OV85xfXqflF8SATwwiqxxgaL8PZ5wASYiHNH0G31V+s= Subject key identifier: 92:25:66:38:F7:90:DA:C4:17:4C:6A:C0:EA:C7:64:0A:45:45:D6:23 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 6701216EDEC6E0CE7ABC10FAEBC4FB16907A788F Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:30 +0000 ROA not before: Mon 31 Jul 2023 00:03:30 +0000 ROA not after: Mon 29 Jul 2024 00:08:30 +0000 asID: 38156 IP address blocks: 2405:a540:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:01:21:6e:de:c6:e0:ce:7a:bc:10:fa:eb:c4:fb:16:90:7a:78:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:30 2023 GMT Not After : Jul 29 00:08:30 2024 GMT Subject: CN=92256638F790DAC4174C6AC0EAC7640A4545D623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:a2:cf:1a:f5:b5:ca:fb:52:2a:03:88:d8: c5:4b:cf:19:1d:38:bc:ec:e9:53:67:3e:18:df:47: bf:8b:91:83:56:96:83:c6:5e:f2:b5:60:33:75:cb: 08:e5:ee:53:84:ef:7b:38:8a:5a:b9:9b:a9:8c:5d: 31:e3:8a:91:9a:35:de:ed:1e:65:17:48:f8:58:af: a1:4e:77:9d:f4:1f:b8:9d:f3:dd:59:9f:c2:48:f5: b3:2e:2e:2e:ea:67:ae:41:d5:35:7b:37:82:42:7c: 0c:47:75:c1:91:6b:a7:10:bf:06:b7:b8:1e:82:37: f0:a4:86:47:a6:a1:a2:25:bd:13:a5:d0:5b:8e:df: 80:05:ab:13:62:77:6e:8c:c0:43:64:3d:cf:d6:c2: 22:09:ca:7c:54:bc:fc:9f:61:73:7c:dd:cc:b4:a7: d1:8f:e0:4a:bd:dd:8b:25:9a:af:f5:e4:34:d5:73: 54:dc:63:3a:4a:b7:16:b5:4d:17:f8:5f:ba:11:45: 8e:0f:3f:37:31:5a:9d:ea:f5:24:bd:8e:24:1a:3d: 8e:46:40:d0:6a:0a:a9:78:03:a7:cf:36:03:2e:8b: 6f:9f:2f:b5:0a:2d:88:c7:fd:0a:9a:b8:03:a4:10: 2b:86:6a:57:7f:c0:58:bc:50:a3:89:53:90:42:e6: f5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:25:66:38:F7:90:DA:C4:17:4C:6A:C0:EA:C7:64:0A:45:45:D6:23 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1003::/48 Signature Algorithm: sha256WithRSAEncryption 7a:b7:39:5b:bc:a5:12:ed:42:1d:cc:d3:e7:f1:1e:ef:cf:a3: 19:2a:b1:38:4c:04:2c:82:f6:d1:b3:f6:c9:22:4a:1e:0d:e2: ff:d2:6e:a4:2f:22:45:5c:1d:34:a3:19:b0:fc:ac:84:0c:89: 6f:9e:64:b6:39:ae:7e:0f:57:8c:3e:da:d9:6f:aa:21:68:78: c2:10:13:e6:6f:44:1b:d8:f3:d0:c8:5b:9e:5d:73:a8:0a:73: 81:71:97:32:27:b1:c7:14:8a:b7:d7:12:20:28:4b:17:38:58: c5:50:e7:69:c0:34:32:e3:f1:b3:99:ff:c3:0a:7d:35:c5:26: 12:f5:80:17:33:cd:a3:ab:1b:2d:b1:d4:26:ae:1a:cc:59:e4: cf:f5:f7:11:a3:bc:e5:0a:13:c3:2f:ca:7d:52:e1:38:f7:2e: 03:78:bf:73:6b:d3:ed:3d:a2:68:6e:2f:7b:04:75:f6:74:f9: f7:ca:4b:86:f2:ae:21:88:1d:01:7c:60:a4:4f:38:f5:f0:6d: 3f:96:15:50:38:50:8d:f8:e3:02:bd:67:fc:2e:be:eb:39:e5: 70:ca:bf:90:7d:75:b6:d3:77:30:be:30:31:d0:e1:f8:75:03: e4:9f:00:3f:4b:bc:54:f6:83:63:a6:15:97:3a:d3:58:33:a5: 38:2f:ec:cd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZwEhbt7G4M56vBD668T7FpB6eI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzBaFw0yNDA3MjkwMDA4MzBaMDMxMTAvBgNV BAMTKDkyMjU2NjM4Rjc5MERBQzQxNzRDNkFDMEVBQzc2NDBBNDU0NUQ2MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC81aLPGvW1yvtSKgOI2MVLzxkd OLzs6VNnPhjfR7+LkYNWloPGXvK1YDN1ywjl7lOE73s4ilq5m6mMXTHjipGaNd7t HmUXSPhYr6FOd530H7id891Zn8JI9bMuLi7qZ65B1TV7N4JCfAxHdcGRa6cQvwa3 uB6CN/CkhkemoaIlvROl0FuO34AFqxNid26MwENkPc/WwiIJynxUvPyfYXN83cy0 p9GP4Eq93Yslmq/15DTVc1TcYzpKtxa1TRf4X7oRRY4PPzcxWp3q9SS9jiQaPY5G QNBqCql4A6fPNgMui2+fL7UKLYjH/QqauAOkECuGald/wFi8UKOJU5BC5vUrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkiVmOPeQ2sQXTGrA6sdkCkVF1iMwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBADMA0GCSqGSIb3DQEBCwUAA4IBAQB6tzlbvKUS7UIdzNPn8R7vz6MZKrE4TAQs gvbRs/bJIkoeDeL/0m6kLyJFXB00oxmw/KyEDIlvnmS2Oa5+D1eMPtrZb6ohaHjC EBPmb0Qb2PPQyFueXXOoCnOBcZcyJ7HHFIq31xIgKEsXOFjFUOdpwDQy4/Gzmf/D Cn01xSYS9YAXM82jqxstsdQmrhrMWeTP9fcRo7zlChPDL8p9UuE49y4DeL9za9Pt PaJobi97BHX2dPn3ykuG8q4hiB0BfGCkTzj18G0/lhVQOFCN+OMCvWf8Lr7rOeVw yr+QfXW203cwvjAx0OH4dQPknwA/S7xU9oNjphWXOtNYM6U4L+zN -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org