$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: JE1z/eUUV4xhVmHcFADz7uf5FUBPP9uutCDmX0yNk4M= Subject key identifier: 82:40:72:0A:6C:D4:C7:59:CC:69:09:28:FD:63:7B:F3:9D:92:6F:53 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 75189A119B7AA80A58B7DB25A1A2063B787AF678 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 15:00:02 +0000 ROA not before: Wed 20 Dec 2023 14:55:02 +0000 ROA not after: Wed 18 Dec 2024 15:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:18:9a:11:9b:7a:a8:0a:58:b7:db:25:a1:a2:06:3b:78:7a:f6:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 14:55:02 2023 GMT Not After : Dec 18 15:00:02 2024 GMT Subject: CN=8240720A6CD4C759CC690928FD637BF39D926F53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ab:f0:16:5a:88:b4:da:ad:d2:d8:b9:92:ca: 14:a2:9c:82:53:b0:0a:38:45:10:ed:77:54:bf:aa: 77:06:67:7c:aa:e1:49:7d:06:3d:e4:f3:79:80:e5: 71:6b:45:4c:88:ea:75:ba:00:a1:e2:20:54:64:49: 7f:ec:1b:7f:0d:1f:7d:47:f3:dc:1b:22:d0:20:e9: e3:e3:d7:ce:d1:46:6b:ff:85:2a:8d:cf:ee:2a:bc: 36:23:3e:74:1c:6e:70:40:b1:cb:18:07:5e:09:56: ac:27:61:8e:a2:b8:d2:ce:fe:2c:ac:47:07:c1:f3: f4:6a:d1:05:ee:fa:30:3b:10:70:87:44:ee:6b:99: 2b:03:c6:1b:f1:58:4f:d8:bf:7e:27:bd:33:e1:80: 40:68:2e:96:3d:c4:8c:51:1d:45:3f:0b:31:38:69: 22:00:2e:c9:de:8e:31:81:aa:12:d0:8e:d3:a6:8f: f5:3f:0e:13:c9:c1:55:3d:f4:a2:8a:ea:35:60:dc: fb:09:60:b3:75:7b:5c:46:43:2f:fd:eb:6b:36:ee: c3:ea:12:a4:9a:9b:77:d1:53:bd:9e:1b:48:be:a2: 01:d0:50:b2:91:9b:78:58:47:e1:a9:4d:c1:0e:72: a7:9f:60:61:0b:e5:ab:98:d1:84:35:d4:bf:e5:a7: 17:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:40:72:0A:6C:D4:C7:59:CC:69:09:28:FD:63:7B:F3:9D:92:6F:53 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100d::/48 Signature Algorithm: sha256WithRSAEncryption bb:94:47:06:61:f5:ab:a5:f6:4d:da:86:3b:27:92:c2:a4:72: 12:db:9c:53:33:d2:b3:f1:64:53:47:f8:1b:8f:9d:6c:4b:c5: a3:a7:b7:a7:a8:e2:d5:37:1b:4d:ec:59:e2:18:a4:e0:40:13: f3:10:b8:54:2b:2b:11:6c:56:e6:8b:85:87:07:c4:ab:e3:87: ed:55:b8:10:04:e5:18:b2:ae:35:c7:90:40:7c:4c:1e:8e:16: d4:6e:9d:05:af:73:6d:83:7e:98:a7:99:af:b8:00:f7:b4:5f: cd:84:65:70:22:06:46:4b:e0:e9:61:54:d6:fd:70:2e:6d:22: bb:e2:39:8a:8e:77:06:fb:4d:9f:2a:f6:21:c3:8a:f7:27:54: 3e:bd:b1:82:28:a7:08:5a:d2:fa:10:db:38:06:6e:63:cb:c3: 9a:3b:d5:73:8f:83:17:52:00:1a:b7:29:26:0d:47:35:85:60: 12:36:c9:69:b0:51:20:e3:f5:3c:61:a7:9e:52:b9:19:15:7b: 00:f9:b7:72:38:58:5d:ba:cc:14:24:0b:8b:66:dc:49:60:03: 3e:3f:b7:a1:cd:a0:97:ff:1b:07:50:3b:d5:ef:13:7d:4e:82: 49:8f:bd:ec:6d:4e:5e:c1:22:00:5c:29:fe:a5:c4:21:9b:76: a0:f6:5e:c9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdRiaEZt6qApYt9sloaIGO3h69ngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNDU1MDJaFw0yNDEyMTgxNTAwMDJaMDMxMTAvBgNV BAMTKDgyNDA3MjBBNkNENEM3NTlDQzY5MDkyOEZENjM3QkYzOUQ5MjZGNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYq/AWWoi02q3S2LmSyhSinIJT sAo4RRDtd1S/qncGZ3yq4Ul9Bj3k83mA5XFrRUyI6nW6AKHiIFRkSX/sG38NH31H 89wbItAg6ePj187RRmv/hSqNz+4qvDYjPnQcbnBAscsYB14JVqwnYY6iuNLO/iys RwfB8/Rq0QXu+jA7EHCHRO5rmSsDxhvxWE/Yv34nvTPhgEBoLpY9xIxRHUU/CzE4 aSIALsnejjGBqhLQjtOmj/U/DhPJwVU99KKK6jVg3PsJYLN1e1xGQy/962s27sPq EqSam3fRU72eG0i+ogHQULKRm3hYR+GpTcEOcqefYGEL5auY0YQ11L/lpxdnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgkByCmzUx1nMaQko/WN7852Sb1MwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBANMA0GCSqGSIb3DQEBCwUAA4IBAQC7lEcGYfWrpfZN2oY7J5LCpHIS25xTM9Kz 8WRTR/gbj51sS8Wjp7enqOLVNxtN7FniGKTgQBPzELhUKysRbFbmi4WHB8Sr44ft VbgQBOUYsq41x5BAfEwejhbUbp0Fr3Ntg36Yp5mvuAD3tF/NhGVwIgZGS+DpYVTW /XAubSK74jmKjncG+02fKvYhw4r3J1Q+vbGCKKcIWtL6ENs4Bm5jy8OaO9Vzj4MX UgAatykmDUc1hWASNslpsFEg4/U8YaeeUrkZFXsA+bdyOFhduswUJAuLZtxJYAM+ P7ehzaCX/xsHUDvV7xN9ToJJj73sbU5ewSIAXCn+pcQhm3ag9l7J -----END CERTIFICATE-----Generated at Sun May 5 18:01:02 2024 by rpki-client on console-ams.rpki-client.org