$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030393a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030393a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: N43WANawlNrGpVKfvvhafRDmrwR6+czBkW9YBbod+Pc= Subject key identifier: 39:88:1B:D0:FD:66:98:51:CC:CD:56:4F:F3:F0:8C:42:8B:7C:13:8D Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7A208A67BB872DCEEA1BBBEF4F39403BE03D699C Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030393a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 10:00:56 +0000 ROA not before: Wed 20 Dec 2023 09:55:56 +0000 ROA not after: Wed 18 Dec 2024 10:00:56 +0000 asID: 38156 IP address blocks: 2405:a540:1009::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:20:8a:67:bb:87:2d:ce:ea:1b:bb:ef:4f:39:40:3b:e0:3d:69:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 09:55:56 2023 GMT Not After : Dec 18 10:00:56 2024 GMT Subject: CN=39881BD0FD669851CCCD564FF3F08C428B7C138D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4d:59:2e:63:c6:e8:d7:0c:a0:1a:be:bf:da: 70:03:4a:df:e3:88:81:f2:9c:3e:2a:e6:12:62:ed: 67:9d:c7:6a:ac:8b:8d:3a:90:88:65:85:f0:3d:25: da:8d:09:51:42:05:73:2f:32:fa:2a:0d:4e:52:81: 22:7f:d4:ae:dd:00:fd:ee:42:c4:0c:27:52:bd:3e: 1c:bd:1e:70:37:fa:33:03:65:67:44:a7:d4:d8:1f: 11:f7:3b:81:2b:ce:8b:94:9c:8b:59:3f:a9:37:49: 9f:f7:14:bc:56:b7:fa:d7:a5:59:9b:ae:1a:d3:dc: 60:5a:ee:a8:58:82:4b:ca:12:e7:a1:ff:75:90:b1: 68:77:95:9c:d0:5a:04:f6:3b:d1:d4:d7:66:98:ae: 8c:b8:7b:ab:2a:b0:3a:fe:6c:74:d4:f0:51:01:3d: 9e:29:7b:b9:34:38:34:43:eb:58:28:9b:ea:32:49: b1:92:c6:d7:65:08:7a:32:f2:f6:f3:84:a5:11:48: cb:f9:65:c5:bf:0f:da:e0:3a:e3:5d:8a:25:a3:51: 4b:8e:5a:a5:8e:f1:37:55:59:3f:43:0e:b8:20:a0: 1e:ee:52:fa:54:78:57:54:e9:b5:fb:45:e3:1c:b4: 6e:85:6b:ca:0a:bf:73:43:cd:14:aa:13:78:32:3d: 55:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:88:1B:D0:FD:66:98:51:CC:CD:56:4F:F3:F0:8C:42:8B:7C:13:8D X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030393a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1009::/48 Signature Algorithm: sha256WithRSAEncryption 16:a9:8a:a1:ff:dc:65:a1:41:a4:17:54:e1:dd:4c:f7:da:db: cb:39:6d:d9:6d:70:8c:42:37:6b:40:84:f3:50:04:41:93:dc: d8:b3:32:67:b2:14:c3:e4:ab:56:ca:b0:77:da:2b:80:e3:e4: 74:19:05:55:0c:88:ce:86:81:d2:72:d0:0c:09:20:fd:28:77: 8a:78:69:e4:6b:28:8d:df:05:1d:60:bb:95:d9:3a:2e:0b:70: 44:50:bf:dd:d2:00:ee:fa:cd:f8:75:ad:9d:1c:47:b1:a7:13: 23:89:a3:3e:8e:ee:75:8e:d1:fb:b5:bb:de:d2:f4:d1:16:27: 2f:67:0f:45:8a:bc:20:fb:04:11:79:99:71:f0:e6:a2:cc:4b: 5f:b6:27:e0:25:12:9d:57:8c:af:ac:f2:ad:5c:3c:2b:9f:10: 5b:5b:36:10:95:a2:6a:6f:77:53:07:e5:9a:64:48:3b:f4:72: b2:32:67:93:0d:fc:f4:e6:06:24:a2:ce:32:4a:d1:75:1f:2b: 64:38:f9:45:0a:28:11:f2:94:7e:a8:ff:58:df:8c:ad:cb:70: b3:1b:54:ef:21:b5:3a:c3:20:21:06:55:c1:83:80:00:22:72: be:ab:87:02:3c:6e:75:cc:60:40:a9:7f:d7:a7:9a:43:77:59: 4b:eb:ee:5e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeiCKZ7uHLc7qG7vvTzlAO+A9aZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAwOTU1NTZaFw0yNDEyMTgxMDAwNTZaMDMxMTAvBgNV BAMTKDM5ODgxQkQwRkQ2Njk4NTFDQ0NENTY0RkYzRjA4QzQyOEI3QzEzOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNTVkuY8bo1wygGr6/2nADSt/j iIHynD4q5hJi7Wedx2qsi406kIhlhfA9JdqNCVFCBXMvMvoqDU5SgSJ/1K7dAP3u QsQMJ1K9Phy9HnA3+jMDZWdEp9TYHxH3O4ErzouUnItZP6k3SZ/3FLxWt/rXpVmb rhrT3GBa7qhYgkvKEueh/3WQsWh3lZzQWgT2O9HU12aYroy4e6sqsDr+bHTU8FEB PZ4pe7k0ODRD61gom+oySbGSxtdlCHoy8vbzhKURSMv5ZcW/D9rgOuNdiiWjUUuO WqWO8TdVWT9DDrggoB7uUvpUeFdU6bX7ReMctG6Fa8oKv3NDzRSqE3gyPVUhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOYgb0P1mmFHMzVZP8/CMQot8E40wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAJMA0GCSqGSIb3DQEBCwUAA4IBAQAWqYqh/9xloUGkF1Th3Uz32tvLOW3ZbXCM QjdrQITzUARBk9zYszJnshTD5KtWyrB32iuA4+R0GQVVDIjOhoHSctAMCSD9KHeK eGnkayiN3wUdYLuV2TouC3BEUL/d0gDu+s34da2dHEexpxMjiaM+ju51jtH7tbve 0vTRFicvZw9Firwg+wQReZlx8OaizEtftifgJRKdV4yvrPKtXDwrnxBbWzYQlaJq b3dTB+WaZEg79HKyMmeTDfz05gYkos4yStF1HytkOPlFCigR8pR+qP9Y34yty3Cz G1TvIbU6wyAhBlXBg4AAInK+q4cCPG51zGBAqX/Xp5pDd1lL6+5e -----END CERTIFICATE-----Generated at Sun May 5 17:20:20 2024 by rpki-client on console-fra.rpki-client.org