$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: tn+mp4JxSB9aBTtC5x6yVAWoXefDB6jCzciz60k8jCA= Subject key identifier: 7B:BD:93:3A:37:AF:AD:72:25:9F:BF:6F:F1:0C:4C:4E:CD:02:93:43 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 0D35C1ED6750DAD806E6935DD2172B810A06C6BB Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 15:00:01 +0000 ROA not before: Wed 20 Dec 2023 14:55:01 +0000 ROA not after: Wed 18 Dec 2024 15:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:35:c1:ed:67:50:da:d8:06:e6:93:5d:d2:17:2b:81:0a:06:c6:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 14:55:01 2023 GMT Not After : Dec 18 15:00:01 2024 GMT Subject: CN=7BBD933A37AFAD72259FBF6FF10C4C4ECD029343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:ee:23:49:b4:95:6d:cf:cc:7f:5d:e7:50: f4:27:54:07:bb:cb:c8:b1:33:27:db:b4:82:62:48: 23:e6:c1:b1:1c:48:18:4b:2a:2a:7e:df:94:d5:db: 50:7d:4b:62:2b:eb:e7:bb:a5:02:1a:58:68:5a:36: 2b:8b:da:40:6e:19:74:fc:0e:27:bb:4c:e5:64:eb: 9b:e1:3e:f7:40:6f:3e:24:4f:aa:db:0e:2e:07:67: 3f:37:6a:1b:e0:c2:c1:00:8e:29:d5:85:2d:fc:5e: ac:76:94:cc:97:69:ad:36:eb:32:75:f6:9a:d5:cb: cf:65:76:1c:e4:3f:b9:15:09:5f:ac:7a:b7:2a:47: 9e:d2:29:09:9c:72:90:c5:36:06:0b:29:84:c3:c9: 8b:b2:a3:aa:8b:9f:bc:ba:60:89:33:61:ed:fd:cf: f6:d9:59:92:e2:33:0e:26:43:74:05:28:dc:a1:50: f1:ac:5b:2b:ca:8f:0c:1c:28:4f:45:46:81:6d:75: 03:5f:3f:1d:3e:f0:f9:52:2e:4c:64:24:d4:5d:62: c8:91:17:cc:91:00:f8:ad:5b:be:1f:cb:2e:4e:42: 79:1a:c9:32:a3:48:30:9c:4c:22:bc:16:6c:dd:0b: 8f:b1:a4:d5:6f:9a:bd:b1:37:fa:35:5d:16:c5:9b: 4f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BD:93:3A:37:AF:AD:72:25:9F:BF:6F:F1:0C:4C:4E:CD:02:93:43 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030663a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100f::/48 Signature Algorithm: sha256WithRSAEncryption a2:75:48:b0:d5:26:1a:55:37:20:c9:2e:8a:cb:41:e2:02:42: 97:0c:74:4a:31:60:d7:e9:38:2f:5c:29:21:93:b6:0c:f9:79: fc:f2:9d:b5:8a:3f:ca:b2:a1:59:6a:19:52:48:3c:31:6c:6b: 19:dc:8d:63:78:e7:74:fd:70:b5:bd:4e:d7:e9:24:a2:b9:b0: c8:cf:f5:04:00:24:e8:6e:5c:7d:ae:0b:fc:86:f7:76:7a:e7: 7d:f0:74:af:1d:ce:a3:b0:27:de:4e:db:26:f7:13:58:0a:be: 3b:a7:75:50:13:32:3a:ed:e2:55:df:5c:94:6b:50:bc:44:e5: db:92:90:53:57:81:22:c4:0c:cb:13:26:cc:66:7b:55:9e:ec: e2:fd:e0:31:e6:b1:ba:47:3a:96:cb:de:f1:47:b5:46:e1:ba: 60:e8:eb:b7:da:26:42:d2:b0:ba:43:ed:06:f4:ac:64:5e:34: 7e:22:22:41:0a:90:f5:f2:f4:99:ae:06:c0:67:02:ae:75:19: c7:80:4d:ec:ee:be:df:ed:af:c4:5f:9c:8c:f4:56:4e:05:9a: 5f:07:b7:b2:1c:c7:84:69:b6:23:20:35:77:a1:9b:1f:4b:f5: 3b:6c:12:7d:95:c7:77:9d:5d:97:b2:ec:79:74:78:22:58:2e: e8:86:9a:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDTXB7WdQ2tgG5pNd0hcrgQoGxrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNDU1MDFaFw0yNDEyMTgxNTAwMDFaMDMxMTAvBgNV BAMTKDdCQkQ5MzNBMzdBRkFENzIyNTlGQkY2RkYxMEM0QzRFQ0QwMjkzNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxjO4jSbSVbc/Mf13nUPQnVAe7 y8ixMyfbtIJiSCPmwbEcSBhLKip+35TV21B9S2Ir6+e7pQIaWGhaNiuL2kBuGXT8 Die7TOVk65vhPvdAbz4kT6rbDi4HZz83ahvgwsEAjinVhS38Xqx2lMyXaa026zJ1 9prVy89ldhzkP7kVCV+sercqR57SKQmccpDFNgYLKYTDyYuyo6qLn7y6YIkzYe39 z/bZWZLiMw4mQ3QFKNyhUPGsWyvKjwwcKE9FRoFtdQNfPx0+8PlSLkxkJNRdYsiR F8yRAPitW74fyy5OQnkayTKjSDCcTCK8FmzdC4+xpNVvmr2xN/o1XRbFm095AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUe72TOjevrXIln79v8QxMTs0Ck0MwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAPMA0GCSqGSIb3DQEBCwUAA4IBAQCidUiw1SYaVTcgyS6Ky0HiAkKXDHRKMWDX 6TgvXCkhk7YM+Xn88p21ij/KsqFZahlSSDwxbGsZ3I1jeOd0/XC1vU7X6SSiubDI z/UEACToblx9rgv8hvd2eud98HSvHc6jsCfeTtsm9xNYCr47p3VQEzI67eJV31yU a1C8ROXbkpBTV4EixAzLEybMZntVnuzi/eAx5rG6RzqWy97xR7VG4bpg6Ou32iZC 0rC6Q+0G9KxkXjR+IiJBCpD18vSZrgbAZwKudRnHgE3s7r7f7a/EX5yM9FZOBZpf B7eyHMeEabYjIDV3oZsfS/U7bBJ9lcd3nV2Xsux5dHgiWC7ohprv -----END CERTIFICATE-----Generated at Sun May 5 17:20:20 2024 by rpki-client on console-fra.rpki-client.org