$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: gX8YzMj/sGpJD/oGTQN2kCdUhIh5selse2JPEMElx/Y= Subject key identifier: DE:EC:4A:59:7F:12:67:FE:1A:F0:05:48:6E:56:63:85:6D:88:AE:48 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 14D9EC16982BE844B3C1F72B00C9A4D0B0C641CC Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 27 Nov 2023 05:00:01 +0000 ROA not before: Mon 27 Nov 2023 04:55:01 +0000 ROA not after: Mon 25 Nov 2024 05:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d9:ec:16:98:2b:e8:44:b3:c1:f7:2b:00:c9:a4:d0:b0:c6:41:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Nov 27 04:55:01 2023 GMT Not After : Nov 25 05:00:01 2024 GMT Subject: CN=DEEC4A597F1267FE1AF005486E5663856D88AE48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:06:12:bc:2c:22:20:5d:ff:58:37:43:27:cc: eb:ac:95:56:2e:29:32:92:3a:36:79:84:88:7a:a2: 83:13:42:07:00:d5:21:a7:36:2d:85:e8:96:0e:76: ce:15:86:3f:73:5d:91:5f:f8:5d:5f:0d:70:20:ca: 94:48:96:96:f2:ac:c4:79:dd:3c:7b:36:b6:8d:33: e8:16:a9:ff:0b:26:aa:e9:0a:67:97:65:a1:12:00: 68:7a:52:87:b4:05:e8:ed:1c:bc:c3:4b:ae:22:24: 18:6d:ce:80:c2:19:e9:6a:b9:6d:00:76:e3:75:0b: ae:9d:e3:69:ec:72:9a:fd:e0:78:da:95:67:70:f5: d1:0b:f6:5f:1d:70:14:5d:42:17:04:73:1e:19:76: 17:6a:26:e4:d9:89:30:50:7c:d0:8a:9f:40:a3:8e: dc:51:c8:ca:77:be:28:49:28:95:53:d3:5b:89:7e: b7:a8:50:81:d5:d1:16:c8:9d:30:eb:b0:49:d4:9f: 30:4f:83:69:bc:2a:99:c9:69:1b:af:0f:89:84:52: e0:61:cb:73:18:9d:5a:93:6b:de:66:5e:9a:e1:87: 4a:a1:9b:21:fe:20:9d:af:94:c2:ae:20:f7:6e:88: 6e:70:70:44:22:c1:73:e7:39:1a:51:e8:7e:95:dd: 49:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EC:4A:59:7F:12:67:FE:1A:F0:05:48:6E:56:63:85:6D:88:AE:48 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030373a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1007::/48 Signature Algorithm: sha256WithRSAEncryption 2f:5c:c4:49:b5:1b:e5:18:0e:fd:ad:1a:3a:37:45:e2:1f:9e: 29:c0:5b:b1:07:b4:c1:17:d9:b9:26:78:75:0c:0c:21:2e:7e: c9:50:94:c3:79:41:57:10:92:c0:b8:fe:e2:dd:7b:57:8f:62: 41:2d:31:38:72:e4:cd:a6:1e:a1:bd:35:a7:19:3e:6b:5c:1e: 3c:b8:9a:68:29:81:81:d9:73:c9:b0:85:00:96:b7:29:b5:ae: c0:21:2b:a4:ae:3c:82:5b:ac:48:33:88:71:45:02:c3:f8:4b: d5:79:00:47:ff:d9:3d:27:ed:c2:fd:04:cb:58:75:13:40:7c: 3b:b6:35:86:22:d8:8b:fc:fd:da:36:3b:d0:74:94:65:ea:c0: de:be:e0:a3:f4:63:08:c8:5f:75:1f:e3:5a:2e:ff:d0:ed:84: f6:01:b9:9e:0a:30:13:ea:1c:ff:a2:ea:ad:63:a7:68:11:36: 55:79:1a:95:d5:68:f7:2d:2f:01:2d:48:89:17:a6:65:42:59: 4c:bd:bb:19:d1:a8:e2:61:e3:3c:ab:c9:0f:e7:91:30:9e:56: 40:2f:98:51:3c:ae:67:ac:9d:e5:ec:f9:ce:10:0f:bd:61:46: 53:fa:d9:24:8a:56:16:5c:2e:bf:44:6f:be:96:32:65:e7:fc: 8a:f9:f9:6a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFNnsFpgr6ESzwfcrAMmk0LDGQcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzExMjcwNDU1MDFaFw0yNDExMjUwNTAwMDFaMDMxMTAvBgNV BAMTKERFRUM0QTU5N0YxMjY3RkUxQUYwMDU0ODZFNTY2Mzg1NkQ4OEFFNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyBhK8LCIgXf9YN0MnzOuslVYu KTKSOjZ5hIh6ooMTQgcA1SGnNi2F6JYOds4Vhj9zXZFf+F1fDXAgypRIlpbyrMR5 3Tx7NraNM+gWqf8LJqrpCmeXZaESAGh6Uoe0BejtHLzDS64iJBhtzoDCGelquW0A duN1C66d42nscpr94HjalWdw9dEL9l8dcBRdQhcEcx4ZdhdqJuTZiTBQfNCKn0Cj jtxRyMp3vihJKJVT01uJfreoUIHV0RbInTDrsEnUnzBPg2m8KpnJaRuvD4mEUuBh y3MYnVqTa95mXprhh0qhmyH+IJ2vlMKuIPduiG5wcEQiwXPnORpR6H6V3UklAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3uxKWX8SZ/4a8AVIblZjhW2IrkgwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAHMA0GCSqGSIb3DQEBCwUAA4IBAQAvXMRJtRvlGA79rRo6N0XiH54pwFuxB7TB F9m5Jnh1DAwhLn7JUJTDeUFXEJLAuP7i3XtXj2JBLTE4cuTNph6hvTWnGT5rXB48 uJpoKYGB2XPJsIUAlrcpta7AISukrjyCW6xIM4hxRQLD+EvVeQBH/9k9J+3C/QTL WHUTQHw7tjWGItiL/P3aNjvQdJRl6sDevuCj9GMIyF91H+NaLv/Q7YT2AbmeCjAT 6hz/ouqtY6doETZVeRqV1Wj3LS8BLUiJF6ZlQllMvbsZ0ajiYeM8q8kP55EwnlZA L5hRPK5nrJ3l7PnOEA+9YUZT+tkkilYWXC6/RG++ljJl5/yK+flq -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org