$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: ZXM4Kxj/LFbnKKJLKaI8yvTAWHOoWplqmNqo1+WCIQg= Subject key identifier: 24:CA:23:E9:3E:B5:57:C5:29:63:77:60:AE:BB:86:F3:87:E7:B1:5F Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 34B745639181BFEA60AB956A8664196134C60448 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 16:00:01 +0000 ROA not before: Wed 20 Dec 2023 15:55:01 +0000 ROA not after: Wed 18 Dec 2024 16:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:100c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b7:45:63:91:81:bf:ea:60:ab:95:6a:86:64:19:61:34:c6:04:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 15:55:01 2023 GMT Not After : Dec 18 16:00:01 2024 GMT Subject: CN=24CA23E93EB557C529637760AEBB86F387E7B15F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c7:ea:bc:6c:9a:bc:0f:42:01:14:57:ff:54: 4b:ec:e1:cd:9b:e5:f6:48:22:7a:27:fb:8a:9b:20: 21:ea:db:b2:7a:ab:1d:0a:fc:c5:8a:7f:db:69:f0: c2:81:55:75:d1:99:e1:3c:63:10:0c:b0:70:9b:9d: 3f:e0:78:f6:7d:7d:94:66:5c:4a:c6:87:3e:24:be: dc:13:44:f7:92:bb:a0:8c:39:f5:c0:67:e4:68:51: 51:48:0a:b9:61:3e:33:60:58:9e:6e:1d:15:e3:8f: ca:de:be:c6:0e:c9:2c:9b:5c:d4:58:01:34:94:36: e6:75:9f:f9:bb:eb:91:6e:b7:79:f7:17:fe:e6:45: e8:a7:c7:41:54:43:46:1d:95:3b:75:df:d6:08:ac: 5e:f5:d9:df:46:3a:99:05:a2:46:d0:94:e2:bd:7a: 9a:1b:90:5f:e1:e9:71:56:c3:3d:e7:69:2f:34:6d: 7d:b7:2f:f8:4a:3a:3f:f2:3a:cf:fd:d5:50:5f:12: c2:86:66:db:18:d8:bc:b6:fa:7a:52:0e:28:32:f6: 41:f3:c7:09:30:3e:79:30:7c:44:1c:75:5b:3c:95: 18:ef:0f:69:39:b0:4f:e8:73:da:60:5e:5d:f4:bd: d3:fe:2d:74:c4:5b:0c:fb:0e:d4:3a:5d:ac:66:6b: 36:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CA:23:E9:3E:B5:57:C5:29:63:77:60:AE:BB:86:F3:87:E7:B1:5F X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030633a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100c::/48 Signature Algorithm: sha256WithRSAEncryption bd:4b:ff:cc:01:52:a0:1e:9b:01:7f:82:a6:47:e9:4c:c8:62: c3:0d:db:b6:fc:08:d2:d0:d3:6f:86:81:5e:bb:5a:d1:3e:e2: fc:11:1f:4d:65:7e:e6:67:48:38:21:f6:1f:a9:89:42:70:3c: 4b:24:5d:f7:1d:8d:05:e0:df:36:1b:20:e3:7e:f2:a1:ee:c2: ac:f0:ec:59:40:1d:82:3b:da:eb:68:86:9f:ab:dc:f1:d2:25: a9:4e:94:bf:85:e1:13:65:20:b2:58:fc:95:2f:83:21:13:c8: b0:bb:20:ba:27:f4:d3:d7:a6:12:c6:e7:71:44:9d:25:e3:1f: 2f:ca:07:a5:eb:1f:b5:ae:3a:c5:b7:1c:9e:6a:ec:c4:f6:ce: 7a:75:63:98:27:00:e7:4c:86:a2:36:0e:80:04:33:b2:3f:66: f0:20:38:a3:35:5f:dd:38:cd:09:11:f0:ef:06:36:3e:75:62: b0:51:41:a1:03:9a:52:ba:75:d3:42:2c:97:3b:d3:5d:46:a9: 71:6a:4e:65:36:2a:b6:06:c9:fa:06:e8:cd:05:98:1b:52:8f: 8c:cb:55:46:0c:b7:d4:41:93:98:a1:6a:74:bd:62:fc:ce:a5: b1:c5:ba:57:9b:0c:4e:97:8d:a2:f1:18:c4:67:3d:d3:ee:6b: d5:68:3d:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNLdFY5GBv+pgq5VqhmQZYTTGBEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNTU1MDFaFw0yNDEyMTgxNjAwMDFaMDMxMTAvBgNV BAMTKDI0Q0EyM0U5M0VCNTU3QzUyOTYzNzc2MEFFQkI4NkYzODdFN0IxNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/x+q8bJq8D0IBFFf/VEvs4c2b 5fZIInon+4qbICHq27J6qx0K/MWKf9tp8MKBVXXRmeE8YxAMsHCbnT/gePZ9fZRm XErGhz4kvtwTRPeSu6CMOfXAZ+RoUVFICrlhPjNgWJ5uHRXjj8revsYOySybXNRY ATSUNuZ1n/m765Fut3n3F/7mReinx0FUQ0YdlTt139YIrF712d9GOpkFokbQlOK9 epobkF/h6XFWwz3naS80bX23L/hKOj/yOs/91VBfEsKGZtsY2Ly2+npSDigy9kHz xwkwPnkwfEQcdVs8lRjvD2k5sE/oc9pgXl30vdP+LXTEWwz7DtQ6XaxmazabAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJMoj6T61V8UpY3dgrruG84fnsV8wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAMMA0GCSqGSIb3DQEBCwUAA4IBAQC9S//MAVKgHpsBf4KmR+lMyGLDDdu2/AjS 0NNvhoFeu1rRPuL8ER9NZX7mZ0g4IfYfqYlCcDxLJF33HY0F4N82GyDjfvKh7sKs 8OxZQB2CO9rraIafq9zx0iWpTpS/heETZSCyWPyVL4MhE8iwuyC6J/TT16YSxudx RJ0l4x8vygel6x+1rjrFtxyeauzE9s56dWOYJwDnTIaiNg6ABDOyP2bwIDijNV/d OM0JEfDvBjY+dWKwUUGhA5pSunXTQiyXO9NdRqlxak5lNiq2Bsn6BujNBZgbUo+M y1VGDLfUQZOYoWp0vWL8zqWxxbpXmwxOl42i8RjEZz3T7mvVaD0Y -----END CERTIFICATE-----Generated at Sun May 5 18:01:02 2024 by rpki-client on console-ams.rpki-client.org