$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: DoVFIpi6iv+o8hdMFvWLShVkYEqbYVTpkRMQ7f2p81c= Subject key identifier: 97:49:26:2E:80:30:2D:36:4D:89:86:0F:91:B9:06:A7:EB:77:58:CF Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0F8D0D92D173440B3C73BD73509389735FE50C9B Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8d:0d:92:d1:73:44:0b:3c:73:bd:73:50:93:89:73:5f:e5:0c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=9749262E80302D364D89860F91B906A7EB7758CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:65:68:1b:27:87:30:4d:f7:80:80:f5:9b: 28:8e:18:3e:19:50:23:54:79:fa:36:19:5c:4d:c4: d1:60:3f:ba:82:4b:c0:7f:4b:78:51:18:19:d5:77: 0f:1d:f3:87:e1:89:5a:3d:7d:71:6f:ca:61:20:24: ee:86:1d:3e:4d:f6:cd:bd:94:f6:65:ed:fb:86:f9: 1c:cf:b8:26:51:10:3f:5b:c8:0a:d4:6b:7f:4f:1e: dd:f4:0d:7c:cf:75:07:02:5d:7c:0d:f7:b8:62:a6: a7:62:9e:96:a5:7a:df:2c:53:d6:95:6e:8c:f0:47: 69:11:2d:22:cc:3d:7e:44:11:c2:ac:86:44:4e:9f: 96:c7:20:d7:85:67:a9:73:bf:fb:91:88:9d:de:be: ac:97:f9:e5:12:4b:16:3c:d7:1b:98:d8:a9:b9:c1: d8:8b:78:80:39:47:12:af:ec:11:89:d0:31:6a:d9: ec:c2:66:3f:71:2f:f9:95:19:2e:8c:52:4e:a0:9f: 67:dc:0c:f2:61:8b:6f:95:98:36:49:6c:20:f0:2d: 9f:95:67:35:2e:72:c8:ae:5b:4f:72:5e:3e:52:76: ca:7a:e1:97:51:7e:82:b2:50:3a:4a:6b:c9:a7:b5: 4a:52:b6:14:5c:e2:ff:4a:4c:29:3f:6b:4b:17:15: fd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:49:26:2E:80:30:2D:36:4D:89:86:0F:91:B9:06:A7:EB:77:58:CF X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:13::/48 Signature Algorithm: sha256WithRSAEncryption 92:c0:59:a9:c8:3d:f5:53:ab:bf:02:9b:e5:b8:92:e1:2d:18: 23:b8:ac:2e:f8:9f:af:2f:25:4e:78:9b:17:89:60:da:5c:6d: fe:0f:31:8f:80:d4:cb:de:80:a5:e8:c1:52:4a:e9:40:9a:b7: 11:9a:32:d6:98:07:21:0e:15:6e:fa:a3:a2:ee:1e:02:1f:ff: c5:fa:f9:90:5d:7c:5b:8d:97:9c:c9:11:94:5b:78:a4:70:5c: 30:de:44:db:ba:e9:7f:26:92:c0:27:43:c7:ef:fd:84:84:2d: 0d:e4:7a:ce:26:f4:85:b1:35:b9:33:7e:b3:02:f8:b1:39:11: 8b:02:fe:ab:3b:05:ef:a1:62:1b:93:83:2f:e8:df:2a:a3:c0: 65:75:20:11:5f:1e:cc:90:c2:eb:81:95:86:bd:03:3c:dc:ec: 4e:b7:9b:25:e2:6c:2c:35:d9:6f:73:f7:7e:e8:84:f9:f1:ec: fd:a9:c5:34:5c:3a:59:59:6f:2b:28:3a:90:ef:17:86:6d:9a: 55:3e:1c:96:6b:44:64:6a:b4:62:cd:18:b1:49:f6:9d:3e:4e: d6:0d:4f:6a:09:66:a3:9d:cd:7c:4f:c5:78:da:02:79:01:1b: 7e:53:16:15:f5:c4:85:f7:a4:42:73:30:db:8f:ec:51:dc:c9: 2d:e4:fc:05 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUD40NktFzRAs8c71zUJOJc1/lDJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDk3NDkyNjJFODAzMDJEMzY0RDg5ODYwRjkxQjkwNkE3RUI3NzU4Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7k2VoGyeHME33gID1myiOGD4Z UCNUefo2GVxNxNFgP7qCS8B/S3hRGBnVdw8d84fhiVo9fXFvymEgJO6GHT5N9s29 lPZl7fuG+RzPuCZRED9byArUa39PHt30DXzPdQcCXXwN97hipqdinpalet8sU9aV bozwR2kRLSLMPX5EEcKshkROn5bHINeFZ6lzv/uRiJ3evqyX+eUSSxY81xuY2Km5 wdiLeIA5RxKv7BGJ0DFq2ezCZj9xL/mVGS6MUk6gn2fcDPJhi2+VmDZJbCDwLZ+V ZzUucsiuW09yXj5Sdsp64ZdRfoKyUDpKa8mntUpSthRc4v9KTCk/a0sXFf17AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUl0kmLoAwLTZNiYYPkbkGp+t3WM8wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABMw DQYJKoZIhvcNAQELBQADggEBAJLAWanIPfVTq78Cm+W4kuEtGCO4rC74n68vJU54 mxeJYNpcbf4PMY+A1MvegKXowVJK6UCatxGaMtaYByEOFW76o6LuHgIf/8X6+ZBd fFuNl5zJEZRbeKRwXDDeRNu66X8mksAnQ8fv/YSELQ3kes4m9IWxNbkzfrMC+LE5 EYsC/qs7Be+hYhuTgy/o3yqjwGV1IBFfHsyQwuuBlYa9Azzc7E63myXibCw12W9z 937ohPnx7P2pxTRcOllZbysoOpDvF4ZtmlU+HJZrRGRqtGLNGLFJ9p0+TtYNT2oJ ZqOdzXxPxXjaAnkBG35TFhX1xIX3pEJzMNuP7FHcyS3k/AU= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org