$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa File: 323430353a613534303a3a2f33322d3332203d3e203338313536.roa (raw, json) Hash identifier: 9KPDApfq8DzTU7LASePBa/K9ZwJwfr0LjO/1X3g53m4= Subject key identifier: 66:15:33:CD:06:4B:56:92:9D:68:65:83:6D:9F:17:3B:D5:EA:1B:D5 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 1891E58C3F24213F2B19DD623E69E8CB34D11AE6 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa Signing time: Thu 31 Aug 2023 09:00:01 +0000 ROA not before: Thu 31 Aug 2023 08:55:01 +0000 ROA not after: Thu 29 Aug 2024 09:00:01 +0000 asID: 38156 IP address blocks: 2405:a540::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 10:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:91:e5:8c:3f:24:21:3f:2b:19:dd:62:3e:69:e8:cb:34:d1:1a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Aug 31 08:55:01 2023 GMT Not After : Aug 29 09:00:01 2024 GMT Subject: CN=661533CD064B56929D6865836D9F173BD5EA1BD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:45:ad:59:ba:47:bb:09:2b:5b:4b:ed:d7:50: 46:4f:86:84:e7:66:30:50:1e:e1:4d:6e:52:6d:b8: 14:2b:e8:84:4d:c5:f2:86:cc:71:73:80:3f:b2:23: ce:25:ac:e1:fb:63:fc:ac:fa:14:40:3f:fe:60:ac: 87:f6:71:d3:d6:08:5c:b0:02:50:5f:f3:52:39:57: fa:75:62:79:73:33:c5:4b:f0:11:f4:a5:bf:a9:8d: 6c:66:64:47:9c:cb:80:a3:8c:51:37:be:08:d2:8e: 78:8c:c9:38:0c:45:5d:25:dd:db:3d:51:d3:9a:29: 21:b6:b0:0d:7d:58:f1:61:06:ab:3b:e7:45:1d:79: e5:71:f4:a7:32:b9:b9:99:51:fa:b2:e4:73:f8:87: 76:a1:1f:0a:7e:1d:86:1f:48:2f:ff:fd:df:5b:1c: 86:66:8e:73:da:f2:81:b1:de:0c:9e:bd:d4:0c:6c: a4:1f:bf:84:4e:8b:5f:1d:50:15:90:ac:c1:18:99: ab:2a:7e:bf:92:a5:25:8d:24:32:6e:f5:4d:f2:21: 8d:59:7e:b6:5f:aa:23:a7:a8:d1:89:37:c0:08:0e: d0:11:f3:af:d0:a8:ed:11:37:a4:ca:10:ff:e0:87: df:dc:fb:5c:21:23:af:da:79:f8:f3:67:0e:4d:e5: 6f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:15:33:CD:06:4B:56:92:9D:68:65:83:6D:9F:17:3B:D5:EA:1B:D5 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a3a2f33322d3332203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540::/32 Signature Algorithm: sha256WithRSAEncryption a2:48:fd:c9:be:2e:b8:bb:32:a0:e9:45:63:72:75:bc:f3:f4: c8:ea:a0:b3:46:eb:13:ec:7f:69:b1:65:ca:ec:d9:1f:f8:80: c4:68:72:ec:77:a8:18:cf:3c:eb:da:3e:ba:7d:dd:37:78:f0: 6f:08:fc:22:ca:ac:fc:b0:ba:9a:42:a4:d1:b6:0d:ba:4d:98: e8:f9:35:92:34:d9:9b:e2:be:0b:c3:6a:49:19:f6:5a:e1:3a: ec:1c:46:43:69:00:c8:e0:39:c4:81:2d:6f:c3:4a:77:9c:ae: 5b:51:c4:1e:12:87:00:fc:e3:9b:aa:fd:a4:d0:ce:35:ce:58: 52:78:62:45:0f:57:99:e6:72:87:f1:a6:7b:a8:33:12:29:cd: 6c:df:4a:5f:38:93:22:90:d1:4f:57:3d:e2:b9:33:bc:0c:96: 85:4d:ca:a9:36:63:54:b8:39:87:fb:62:9f:2f:47:84:2d:e7: 3f:7e:04:ec:8d:17:80:c8:09:71:88:68:d7:24:17:db:4c:d5: 56:57:ae:17:0a:ac:e3:d5:3f:cb:b5:eb:48:ca:c7:5b:69:48: 50:28:fb:d5:18:b2:85:08:f7:bd:1c:49:9c:a5:8f:71:e3:27: 4b:4f:6a:99:4e:65:13:c9:e8:84:0b:b4:c3:06:b2:d4:9e:72: 2f:b5:2b:12 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUGJHljD8kIT8rGd1iPmnoyzTRGuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA4MzEwODU1MDFaFw0yNDA4MjkwOTAwMDFaMDMxMTAvBgNV BAMTKDY2MTUzM0NEMDY0QjU2OTI5RDY4NjU4MzZEOUYxNzNCRDVFQTFCRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Ra1Zuke7CStbS+3XUEZPhoTn ZjBQHuFNblJtuBQr6IRNxfKGzHFzgD+yI84lrOH7Y/ys+hRAP/5grIf2cdPWCFyw AlBf81I5V/p1YnlzM8VL8BH0pb+pjWxmZEecy4CjjFE3vgjSjniMyTgMRV0l3ds9 UdOaKSG2sA19WPFhBqs750UdeeVx9KcyubmZUfqy5HP4h3ahHwp+HYYfSC///d9b HIZmjnPa8oGx3gyevdQMbKQfv4ROi18dUBWQrMEYmasqfr+SpSWNJDJu9U3yIY1Z frZfqiOnqNGJN8AIDtAR86/QqO0RN6TKEP/gh9/c+1whI6/aefjzZw5N5W97AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUZhUzzQZLVpKdaGWDbZ8XO9XqG9UwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzMTM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBaVAMA0GCSqGSIb3 DQEBCwUAA4IBAQCiSP3Jvi64uzKg6UVjcnW88/TI6qCzRusT7H9psWXK7Nkf+IDE aHLsd6gYzzzr2j66fd03ePBvCPwiyqz8sLqaQqTRtg26TZjo+TWSNNmb4r4Lw2pJ GfZa4TrsHEZDaQDI4DnEgS1vw0p3nK5bUcQeEocA/OObqv2k0M41zlhSeGJFD1eZ 5nKH8aZ7qDMSKc1s30pfOJMikNFPVz3iuTO8DJaFTcqpNmNUuDmH+2KfL0eELec/ fgTsjReAyAlxiGjXJBfbTNVWV64XCqzj1T/LtetIysdbaUhQKPvVGLKFCPe9HEmc pY9x4ydLT2qZTmUTyeiEC7TDBrLUnnIvtSsS -----END CERTIFICATE-----Generated at Wed Apr 24 10:29:46 2024 by rpki-client on console-fra.rpki-client.org