$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: RlS9GoVwCbETqnd6uup/Z2o6xSYLc3tKaJ5VJTCSQtQ= Subject key identifier: CA:77:7F:B4:71:77:20:87:8A:29:46:85:95:DC:0B:93:83:0F:F6:C1 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 61B601265BAE71E72402ACABA2F53A7CD0018166 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:00 +0000 ROA not before: Fri 29 Nov 2024 04:55:00 +0000 ROA not after: Fri 28 Nov 2025 05:00:00 +0000 asID: 58552 IP address blocks: 2404:fd00:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b6:01:26:5b:ae:71:e7:24:02:ac:ab:a2:f5:3a:7c:d0:01:81:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:00 2024 GMT Not After : Nov 28 05:00:00 2025 GMT Subject: CN=CA777FB4717720878A29468595DC0B93830FF6C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2d:02:e4:31:1f:1f:cf:56:af:a0:8d:77:3a: 9f:ab:ab:b6:f9:e1:32:c0:aa:00:11:97:98:c8:e6: 95:c1:8c:26:8f:e0:25:80:49:07:2b:1f:c8:67:2e: ee:7f:bd:87:53:bf:e5:59:67:25:e5:90:33:98:e0: 96:79:b0:14:66:b8:6d:6d:5d:3f:89:af:69:46:a0: fe:fc:d7:6b:90:21:3d:1f:b8:0e:21:e2:0c:66:40: 4b:b6:26:2c:6a:1d:15:ff:a2:52:c4:63:a8:e9:f1: 94:52:c7:2b:b8:ea:8a:26:e8:f3:84:eb:37:f8:0a: 3b:a8:bc:25:e7:b3:7f:cb:c4:1d:cf:9d:e3:eb:ad: ed:a6:24:62:15:86:bc:62:8d:af:7c:56:eb:a0:9e: 24:1b:44:fb:ee:22:bc:0e:79:0b:33:17:7e:f0:6d: 2f:11:71:4d:37:46:d0:05:62:27:c3:40:8c:9a:58: e0:cb:1a:a3:ae:5d:4e:87:c7:a1:cd:5f:3f:37:38: bb:4e:d2:a1:de:89:b3:63:5e:4b:8b:f7:c5:5b:ba: 61:a1:ab:da:d9:f6:95:2f:17:26:5a:5b:6c:e7:53: 90:90:9d:c7:01:c6:37:1e:f2:b3:99:e3:5c:97:8e: a4:4c:9c:07:92:fa:2f:21:54:df:5d:77:b3:3a:0d: 0d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:77:7F:B4:71:77:20:87:8A:29:46:85:95:DC:0B:93:83:0F:F6:C1 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31323a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:12::/48 Signature Algorithm: sha256WithRSAEncryption 1e:53:11:65:61:2c:41:2d:a0:03:d9:2d:66:9e:e4:c1:15:c0: 94:eb:bc:21:cf:fb:22:de:c0:9a:3b:99:0f:e5:93:6e:59:37: 3c:d1:f6:9b:3e:0b:49:4d:18:87:c5:2f:c0:e1:e9:f0:c0:5a: b7:cc:18:9a:08:95:77:a0:67:d6:0b:07:45:00:84:64:28:27: 29:89:a1:bf:36:fc:ec:2a:aa:51:63:69:d4:d0:f6:15:ba:fe: 95:af:a2:3d:91:91:e6:b2:1e:1c:f4:62:1a:e3:00:3d:70:ba: cb:57:58:b3:c2:b9:40:e5:cd:dc:f8:e4:11:78:69:c9:d4:93: 1e:62:89:ed:fc:0f:3d:f5:00:15:4f:a5:20:91:87:8b:2f:e7: b9:45:ce:76:ae:25:21:51:21:5b:28:fe:be:97:49:69:02:5f: 79:d4:d7:f9:42:99:0c:7c:2d:be:7c:43:40:4a:12:11:ed:a9: 11:e0:fc:bf:74:84:73:74:a9:ea:cc:0e:49:f2:02:ca:11:9c: 2a:48:00:d8:5b:f6:f0:d5:38:4a:5e:b3:2c:2d:54:43:f1:ce: d4:1f:cb:bc:c6:5d:da:63:93:7a:a2:4c:60:5b:f3:31:8e:3f: aa:41:7a:b5:45:77:43:05:2c:30:89:63:d6:61:17:44:4b:58: ff:52:62:f5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYbYBJluuceckAqyrovU6fNABgWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDBaFw0yNTExMjgwNTAwMDBaMDMxMTAvBgNV BAMTKENBNzc3RkI0NzE3NzIwODc4QTI5NDY4NTk1REMwQjkzODMwRkY2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQLQLkMR8fz1avoI13Op+rq7b5 4TLAqgARl5jI5pXBjCaP4CWASQcrH8hnLu5/vYdTv+VZZyXlkDOY4JZ5sBRmuG1t XT+Jr2lGoP7812uQIT0fuA4h4gxmQEu2JixqHRX/olLEY6jp8ZRSxyu46oom6POE 6zf4CjuovCXns3/LxB3PnePrre2mJGIVhrxija98VuugniQbRPvuIrwOeQszF37w bS8RcU03RtAFYifDQIyaWODLGqOuXU6Hx6HNXz83OLtO0qHeibNjXkuL98VbumGh q9rZ9pUvFyZaW2znU5CQnccBxjce8rOZ41yXjqRMnAeS+i8hVN9dd7M6DQ11AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUynd/tHF3IIeKKUaFldwLk4MP9sEwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABIw DQYJKoZIhvcNAQELBQADggEBAB5TEWVhLEEtoAPZLWae5MEVwJTrvCHP+yLewJo7 mQ/lk25ZNzzR9ps+C0lNGIfFL8Dh6fDAWrfMGJoIlXegZ9YLB0UAhGQoJymJob82 /OwqqlFjadTQ9hW6/pWvoj2RkeayHhz0YhrjAD1wustXWLPCuUDlzdz45BF4acnU kx5iie38Dz31ABVPpSCRh4sv57lFznauJSFRIVso/r6XSWkCX3nU1/lCmQx8Lb58 Q0BKEhHtqRHg/L90hHN0qerMDknyAsoRnCpIANhb9vDVOEpesywtVEPxztQfy7zG Xdpjk3qiTGBb8zGOP6pBerVFd0MFLDCJY9ZhF0RLWP9SYvU= -----END CERTIFICATE-----Generated at Sun Apr 6 10:45:47 2025 by rpki-client