$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: xLpDErIVLOUuBtxiC3FfNUtlZPkioE20SN7tMLSPyd4= Subject key identifier: BC:40:E5:BE:48:0E:35:E3:1D:8D:CE:12:21:CB:93:A2:DA:36:07:55 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 54C9B9D2073763964FE48C7B6F60A3C5E15AEC00 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c9:b9:d2:07:37:63:96:4f:e4:8c:7b:6f:60:a3:c5:e1:5a:ec:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=BC40E5BE480E35E31D8DCE1221CB93A2DA360755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a2:19:ec:a5:4b:d6:0f:8c:35:f9:fa:89:ca: 92:3e:1f:ee:80:38:97:0c:a9:78:dc:18:b8:36:a6: 84:60:a1:aa:c8:43:e7:35:a3:99:28:0c:fa:c6:87: 99:2b:f6:55:1e:42:b5:ba:73:90:40:34:70:c3:79: 39:c3:49:bf:9f:0e:2e:9e:06:b6:65:ef:98:45:8f: 6f:a1:b7:8f:80:17:04:24:03:f1:72:49:27:a1:5f: 26:be:52:1b:d1:14:3a:a0:ce:fa:0c:d8:b2:b3:3e: 0e:bd:25:d8:d0:b3:d3:4f:f1:d4:e6:87:03:d9:4a: 44:cf:95:bc:4d:53:51:63:42:0d:50:99:4b:20:4f: 98:75:47:d2:6e:19:8e:a8:c0:af:ff:13:11:15:94: fa:3b:cf:a9:6f:33:5c:f2:df:b7:57:02:0a:c9:4b: b9:d0:62:1a:84:b1:f1:38:18:f2:1f:10:1a:a6:11: e9:7f:6b:ab:2c:64:68:e4:61:8b:22:34:b3:36:9b: fd:60:4b:b1:78:1b:a5:94:aa:c2:eb:dd:24:f6:e7: 62:dd:76:4c:bc:ca:8c:0e:e7:5f:8e:6d:56:5e:87: 81:a8:1e:a2:d3:5f:e6:4f:2e:e1:b1:61:ea:0f:f1: 4f:8c:2c:be:bb:72:b4:b7:49:f6:30:94:92:2f:4f: 36:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:40:E5:BE:48:0E:35:E3:1D:8D:CE:12:21:CB:93:A2:DA:36:07:55 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:12::/48 Signature Algorithm: sha256WithRSAEncryption a8:c7:78:8d:2d:ad:56:c1:ab:66:49:06:0b:cd:3d:e9:f7:7a: 48:4f:da:c4:15:f1:9d:98:da:ca:40:17:a3:03:8d:b7:0f:38: 78:0e:b2:23:cd:54:28:04:a2:85:6f:59:06:05:d4:3a:58:76: 38:1d:e0:82:4f:88:5c:23:5a:5e:e7:7e:d5:43:ba:e6:ff:2a: 8c:35:51:f5:a4:c7:65:63:91:e0:0a:e8:06:d6:74:77:98:48: fe:21:5c:3c:bb:b8:99:ce:d8:53:aa:11:05:c2:87:df:cc:6b: 5a:d6:21:67:c9:56:db:db:13:0b:95:38:9d:9e:16:26:12:84: 5e:93:bc:01:4f:51:39:a7:c2:4f:fb:1c:f9:98:e9:06:1e:4e: e2:0e:07:90:2a:f8:16:0e:71:8c:c2:4f:9b:c2:36:00:12:3b: ed:ec:57:ea:f6:fc:d7:98:0c:d6:bb:ff:c3:21:7e:9a:7a:4e: 99:e0:cc:56:a6:e4:9e:21:ce:9a:2b:3a:21:f6:bf:a4:ef:e9: d6:10:f5:46:4f:f8:6d:b6:aa:41:0a:da:ac:96:35:c4:a5:62: ab:47:fc:59:b3:e3:ec:09:33:33:c6:04:ab:76:60:ab:c0:04: c8:86:ae:86:16:36:08:9f:a4:e4:7f:81:e3:4e:73:74:bf:b3: ce:73:42:da -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVMm50gc3Y5ZP5Ix7b2CjxeFa7AAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKEJDNDBFNUJFNDgwRTM1RTMxRDhEQ0UxMjIxQ0I5M0EyREEzNjA3NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnohnspUvWD4w1+fqJypI+H+6A OJcMqXjcGLg2poRgoarIQ+c1o5koDPrGh5kr9lUeQrW6c5BANHDDeTnDSb+fDi6e BrZl75hFj2+ht4+AFwQkA/FySSehXya+UhvRFDqgzvoM2LKzPg69JdjQs9NP8dTm hwPZSkTPlbxNU1FjQg1QmUsgT5h1R9JuGY6owK//ExEVlPo7z6lvM1zy37dXAgrJ S7nQYhqEsfE4GPIfEBqmEel/a6ssZGjkYYsiNLM2m/1gS7F4G6WUqsLr3ST252Ld dky8yowO51+ObVZeh4GoHqLTX+ZPLuGxYeoP8U+MLL67crS3SfYwlJIvTzbVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvEDlvkgONeMdjc4SIcuToto2B1UwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABIw DQYJKoZIhvcNAQELBQADggEBAKjHeI0trVbBq2ZJBgvNPen3ekhP2sQV8Z2Y2spA F6MDjbcPOHgOsiPNVCgEooVvWQYF1DpYdjgd4IJPiFwjWl7nftVDuub/Kow1UfWk x2VjkeAK6AbWdHeYSP4hXDy7uJnO2FOqEQXCh9/Ma1rWIWfJVtvbEwuVOJ2eFiYS hF6TvAFPUTmnwk/7HPmY6QYeTuIOB5Aq+BYOcYzCT5vCNgASO+3sV+r2/NeYDNa7 /8Mhfpp6TpngzFam5J4hzporOiH2v6Tv6dYQ9UZP+G22qkEK2qyWNcSlYqtH/Fmz 4+wJMzPGBKt2YKvABMiGroYWNgifpOR/geNOc3S/s85zQto= -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org