$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: vx4iuLx5GletLge/cPnW7fQasrpQ4elaZWSby48VxsM= Subject key identifier: 13:C3:FA:9E:4E:0E:81:E6:0B:39:92:2A:9A:88:5C:CE:51:FF:AF:C6 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 16F9541E41941215D9FDD136264389690C8A6125 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:f9:54:1e:41:94:12:15:d9:fd:d1:36:26:43:89:69:0c:8a:61:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=13C3FA9E4E0E81E60B39922A9A885CCE51FFAFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:71:31:88:5c:57:52:70:b1:f2:26:78:0c: 01:6b:d1:65:95:7e:b2:0f:52:9a:b6:04:a5:1a:2d: fc:d5:f7:24:bf:86:cf:40:8f:2e:e6:01:94:94:aa: 86:4d:ac:8c:41:ef:ad:5d:cf:69:a7:6d:ce:1a:bb: 84:84:f4:37:ae:93:6b:4c:ed:cd:36:a9:16:29:56: 56:d4:cf:f6:91:70:a1:e9:17:41:20:d7:fc:3d:d7: dd:78:0f:e1:9e:40:f7:f9:1e:6c:7e:24:45:55:22: 0c:c3:33:fe:e4:7c:cf:8a:4b:fb:bf:f3:e8:ce:ce: d8:89:3b:85:d5:03:cf:7c:7c:de:3c:27:f1:48:3c: f3:0f:b8:3e:16:8a:1c:38:fb:5d:28:7c:51:bb:c0: 50:03:7f:11:25:f4:ef:66:c4:95:ed:27:91:b6:09: fa:47:ee:ed:8f:d7:a1:32:17:ab:5a:4f:80:54:9c: f5:50:68:88:de:2f:33:3d:5e:34:35:49:d8:f8:a3: 06:3b:52:0c:74:96:c5:42:c0:fa:b6:e2:bf:92:ea: 6b:44:eb:ee:c0:f1:06:f7:98:49:17:e4:64:e7:2b: e5:d5:af:c2:7e:36:3a:7a:fd:da:eb:e8:dc:d1:5b: f5:6f:f9:83:e9:dc:59:a6:41:ba:79:96:d6:4d:8d: 8a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C3:FA:9E:4E:0E:81:E6:0B:39:92:2A:9A:88:5C:CE:51:FF:AF:C6 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31303a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:10::/48 Signature Algorithm: sha256WithRSAEncryption 73:c0:5d:a9:b2:02:26:c3:80:7c:c2:4b:b6:de:68:a9:ae:41: c9:5b:bb:86:ec:09:59:6b:7a:48:c4:d5:c0:c7:4d:be:e2:19: cb:ad:94:a9:79:8e:2c:e4:ab:9a:35:e0:39:2c:d8:35:84:e8: e3:3d:cd:44:41:b5:ec:0a:54:d2:0f:f4:5d:73:33:55:a0:f4: 09:76:0d:9a:22:21:71:ae:8a:5f:1e:62:54:19:6e:68:aa:b8: eb:7c:46:dc:89:d8:0e:01:94:5f:27:dc:1d:38:72:d9:56:7d: 90:9e:b7:03:c3:95:a8:8a:c3:3b:7a:7b:6e:95:8e:55:67:17: 87:8e:b2:08:6c:2b:00:99:b7:06:a3:e7:e3:47:36:9b:f0:88: f3:fd:d0:a2:9c:13:f3:13:e9:da:25:ef:2e:c8:5d:83:ca:5f: 85:65:ce:96:8d:62:c4:18:c0:4f:72:32:10:8a:9a:e3:dc:18: ef:6e:fa:06:a4:71:6f:17:44:5f:6d:6d:c4:30:b6:b6:6c:55: 68:42:81:8d:e7:b4:d6:69:c3:14:80:c3:72:b6:55:e4:52:e3: 36:c4:ae:b4:a5:1b:e7:07:d7:15:2a:6c:43:d9:40:bc:79:69: 2e:6f:48:e2:c3:6c:a8:63:9f:3f:b4:07:ae:60:59:6b:5b:dc: e3:ae:1d:c1 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFvlUHkGUEhXZ/dE2JkOJaQyKYSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKDEzQzNGQTlFNEUwRTgxRTYwQjM5OTIyQTlBODg1Q0NFNTFGRkFGQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPHExiFxXUnCx8iZ4DAFr0WWV frIPUpq2BKUaLfzV9yS/hs9Ajy7mAZSUqoZNrIxB761dz2mnbc4au4SE9Deuk2tM 7c02qRYpVlbUz/aRcKHpF0Eg1/w91914D+GeQPf5Hmx+JEVVIgzDM/7kfM+KS/u/ 8+jOztiJO4XVA898fN48J/FIPPMPuD4Wihw4+10ofFG7wFADfxEl9O9mxJXtJ5G2 CfpH7u2P16EyF6taT4BUnPVQaIjeLzM9XjQ1Sdj4owY7Ugx0lsVCwPq24r+S6mtE 6+7A8Qb3mEkX5GTnK+XVr8J+Njp6/drr6NzRW/Vv+YPp3FmmQbp5ltZNjYpZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUE8P6nk4OgeYLOZIqmohczlH/r8YwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABAw DQYJKoZIhvcNAQELBQADggEBAHPAXamyAibDgHzCS7beaKmuQclbu4bsCVlrekjE 1cDHTb7iGcutlKl5jizkq5o14Dks2DWE6OM9zURBtewKVNIP9F1zM1Wg9Al2DZoi IXGuil8eYlQZbmiquOt8RtyJ2A4BlF8n3B04ctlWfZCetwPDlaiKwzt6e26VjlVn F4eOsghsKwCZtwaj5+NHNpvwiPP90KKcE/MT6dol7y7IXYPKX4VlzpaNYsQYwE9y MhCKmuPcGO9u+gakcW8XRF9tbcQwtrZsVWhCgY3ntNZpwxSAw3K2VeRS4zbErrSl G+cH1xUqbEPZQLx5aS5vSOLDbKhjnz+0B65gWWtb3OOuHcE= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org