$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: CXucrN5J7L9eRQuhZiSoi1E7AMiDKoIniEjzjR/w/VQ= Subject key identifier: 0E:91:94:F8:73:81:56:42:C4:89:64:87:B3:A2:E4:2F:3E:28:4C:B4 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 27BEE00118B4AA418842B3C1FF2A2688E2F43179 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:01 +0000 ROA not before: Fri 29 Nov 2024 04:55:01 +0000 ROA not after: Fri 28 Nov 2025 05:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:be:e0:01:18:b4:aa:41:88:42:b3:c1:ff:2a:26:88:e2:f4:31:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:01 2024 GMT Not After : Nov 28 05:00:01 2025 GMT Subject: CN=0E9194F873815642C4896487B3A2E42F3E284CB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b7:68:49:c9:dd:f2:ee:f4:90:45:bf:d4:78: 37:11:79:b2:80:d3:1e:40:e8:4b:24:02:41:cf:8a: 08:fd:d0:c3:0e:cb:d1:ea:5e:d1:e7:60:3e:c4:a9: fd:0f:82:42:57:b5:3e:b2:32:31:91:34:14:1c:ae: c4:8d:73:f5:7d:68:7f:f1:cd:92:50:e7:8e:8d:16: 77:69:f0:6b:e7:32:d4:cd:4a:1e:de:db:53:41:86: 0b:ab:29:b8:aa:12:6f:a4:09:96:20:d6:63:63:85: 11:cf:82:39:42:67:f4:41:ba:ec:8b:54:43:93:09: 48:66:f0:e1:14:71:0b:58:0c:67:86:35:84:d8:29: 2d:a8:c1:86:82:84:83:43:56:aa:b4:b4:63:c1:af: c5:4e:5e:6c:32:5d:aa:03:e5:59:93:57:82:25:5f: 24:ad:f0:7e:d7:59:c7:62:55:33:ee:8c:13:32:9a: ed:69:c7:3b:9a:0c:79:32:cb:41:55:05:7c:c3:87: da:48:a4:ca:76:37:b7:10:62:9c:ce:e5:a2:c0:ef: 26:7d:58:df:23:72:34:d7:a0:f2:36:75:cb:52:91: 46:f6:f3:c7:71:50:67:a9:07:b9:f8:b6:ee:02:8f: 82:cc:68:49:93:36:a8:9e:5f:31:7f:e6:65:29:cd: 99:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:91:94:F8:73:81:56:42:C4:89:64:87:B3:A2:E4:2F:3E:28:4C:B4 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:10::/48 Signature Algorithm: sha256WithRSAEncryption 95:52:71:c5:fe:0d:26:15:43:2c:74:13:00:66:e4:aa:e7:28: 66:78:96:a8:ef:27:26:40:55:41:f2:46:7f:e2:a5:03:9d:93: 49:b1:b2:11:b9:2b:b2:0c:68:68:9b:bc:34:62:ed:2b:0c:e7: 05:86:5a:ce:5c:98:ac:db:8f:2c:c6:a6:10:75:be:bc:54:ff: 24:a6:78:d6:30:7e:24:88:6a:f0:12:56:e1:cf:1b:2d:d1:5f: ef:a5:71:f8:98:7c:0a:e5:52:9b:12:a5:16:68:9f:90:f8:ed: 6f:9a:cf:d8:52:6c:d6:bd:88:e9:9f:1a:dc:56:85:07:2e:e2: 20:e4:79:44:fe:84:e0:09:60:5e:b6:c9:83:ef:53:81:49:32: 47:41:27:c4:7a:33:0a:79:9a:5c:b5:8b:33:ba:fd:de:f1:54: b6:1a:41:b9:0b:7e:80:12:45:d3:2f:04:42:12:79:aa:76:c5: 2d:cd:92:99:01:b8:46:12:8f:6b:8c:55:a7:c3:7d:59:87:35: f7:ca:c5:c6:17:1f:a7:15:5e:f7:79:44:36:12:cf:b0:9a:c8: 31:5a:23:96:ec:e5:33:49:5c:36:f2:c7:84:0b:91:fd:10:4a: 98:e0:fe:25:40:d3:bd:e6:9c:2f:7b:bd:4b:d2:ef:0d:b5:46: 31:3b:c9:53 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJ77gARi0qkGIQrPB/yomiOL0MXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDFaFw0yNTExMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDBFOTE5NEY4NzM4MTU2NDJDNDg5NjQ4N0IzQTJFNDJGM0UyODRDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyt2hJyd3y7vSQRb/UeDcRebKA 0x5A6EskAkHPigj90MMOy9HqXtHnYD7Eqf0PgkJXtT6yMjGRNBQcrsSNc/V9aH/x zZJQ546NFndp8GvnMtTNSh7e21NBhgurKbiqEm+kCZYg1mNjhRHPgjlCZ/RBuuyL VEOTCUhm8OEUcQtYDGeGNYTYKS2owYaChINDVqq0tGPBr8VOXmwyXaoD5VmTV4Il XySt8H7XWcdiVTPujBMymu1pxzuaDHkyy0FVBXzDh9pIpMp2N7cQYpzO5aLA7yZ9 WN8jcjTXoPI2dctSkUb288dxUGepB7n4tu4Cj4LMaEmTNqieXzF/5mUpzZk1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDpGU+HOBVkLEiWSHs6LkLz4oTLQwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABAw DQYJKoZIhvcNAQELBQADggEBAJVSccX+DSYVQyx0EwBm5KrnKGZ4lqjvJyZAVUHy Rn/ipQOdk0mxshG5K7IMaGibvDRi7SsM5wWGWs5cmKzbjyzGphB1vrxU/ySmeNYw fiSIavASVuHPGy3RX++lcfiYfArlUpsSpRZon5D47W+az9hSbNa9iOmfGtxWhQcu 4iDkeUT+hOAJYF62yYPvU4FJMkdBJ8R6Mwp5mly1izO6/d7xVLYaQbkLfoASRdMv BEISeap2xS3NkpkBuEYSj2uMVafDfVmHNffKxcYXH6cVXvd5RDYSz7CayDFaI5bs 5TNJXDbyx4QLkf0QSpjg/iVA073mnC97vUvS7w21RjE7yVM= -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:09 2025 by rpki-client