$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: xvvzE8kL5GTIXB+QAFhItsc4ZdMBKptLADwg1glaWKE= Subject key identifier: 6A:B1:42:63:A2:77:2B:21:5A:71:F3:73:44:71:BD:7B:97:21:09:18 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 7DA9A30EA53DC6B3B954824945C6E855BD63997A Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:01 +0000 ROA not before: Fri 29 Nov 2024 04:55:01 +0000 ROA not after: Fri 28 Nov 2025 05:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:a9:a3:0e:a5:3d:c6:b3:b9:54:82:49:45:c6:e8:55:bd:63:99:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:01 2024 GMT Not After : Nov 28 05:00:01 2025 GMT Subject: CN=6AB14263A2772B215A71F3734471BD7B97210918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:81:38:2b:6f:16:90:c6:0f:02:c0:8d:b3:2a: 5d:4c:fd:59:76:75:ac:5e:b9:30:15:20:be:a5:43: 28:48:26:73:5b:6d:e5:db:f1:73:3d:82:20:04:a2: bc:d8:a0:ff:26:90:54:1d:d5:8a:5f:a5:ea:96:4f: 5e:0e:e4:63:01:93:da:2f:d9:44:e3:b6:64:c3:19: 17:0f:1e:ff:10:ee:a9:5c:d1:99:8f:4e:18:7f:3c: 95:9a:c7:75:66:30:0f:c0:76:4c:90:4a:ea:fa:e7: 49:ec:f9:74:17:34:27:90:c0:15:89:9c:9d:9c:76: 3d:50:b4:53:4e:ea:e0:d2:98:0d:54:5d:6a:d8:cc: 0c:f1:db:60:ad:03:e7:c1:e3:d4:d6:0b:94:dc:28: ae:10:ab:35:1c:d0:dc:f9:41:57:97:7a:ff:0f:9e: 59:e8:a6:26:18:59:52:00:7a:ab:12:6d:5f:73:99: 3c:0c:a0:83:c0:af:41:df:1c:20:b1:9f:cb:e8:8d: dc:d7:1e:de:60:c7:17:7e:05:76:f7:5e:fa:a4:55: d4:69:f0:34:95:0e:04:8d:53:36:8a:4f:91:64:56: 44:c7:de:9a:a8:60:f2:41:1c:d3:d5:e5:d2:ce:bf: 0d:3e:57:28:c2:44:b7:aa:ff:3a:1e:c8:e3:82:5a: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B1:42:63:A2:77:2B:21:5A:71:F3:73:44:71:BD:7B:97:21:09:18 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31333a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:13::/48 Signature Algorithm: sha256WithRSAEncryption 7c:39:e0:94:6b:7a:ce:ea:8e:fa:36:a2:f6:0a:0e:b1:87:6b: 5d:03:e8:5e:32:fb:9d:63:b8:c8:f4:9d:1c:5f:37:1f:03:32: 77:00:b6:50:dd:f0:2f:6d:c4:36:35:b5:5d:c3:b4:8d:df:bc: b1:ed:c2:70:b1:ea:38:fb:07:6c:54:a8:1a:02:c1:0d:5c:01: 3a:9a:2f:a3:24:4d:1a:4d:24:87:92:f3:0a:d2:fc:2d:97:41: ec:3e:e2:5c:4a:68:89:9c:8c:0c:20:55:9e:9b:4b:f6:e2:6e: 91:26:f0:56:6f:ac:c2:36:7b:11:a1:f9:ac:bb:6e:88:8a:ba: f6:b8:61:64:e7:b2:9f:2d:cd:b3:0c:91:c4:50:e7:88:65:87: 5c:25:56:2c:d7:b8:e4:98:d5:31:3e:f3:8f:01:10:32:63:8f: 62:2e:d7:67:35:ba:09:31:19:64:a6:d6:03:4c:05:95:99:d5: 9f:4a:0c:96:26:b2:d5:d4:47:a7:77:2f:15:e2:10:4f:f2:62: 4e:8b:20:1e:46:30:0e:7a:4a:18:ba:ec:2a:7d:10:1c:25:7c: 47:29:8d:66:c9:57:a3:60:cc:21:04:f4:a5:69:32:3f:93:06: 5c:81:ad:63:23:28:fa:1b:52:11:77:07:94:16:2d:2d:4f:9f: 11:a7:63:78 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfamjDqU9xrO5VIJJRcboVb1jmXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDFaFw0yNTExMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDZBQjE0MjYzQTI3NzJCMjE1QTcxRjM3MzQ0NzFCRDdCOTcyMTA5MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgTgrbxaQxg8CwI2zKl1M/Vl2 daxeuTAVIL6lQyhIJnNbbeXb8XM9giAEorzYoP8mkFQd1YpfpeqWT14O5GMBk9ov 2UTjtmTDGRcPHv8Q7qlc0ZmPThh/PJWax3VmMA/AdkyQSur650ns+XQXNCeQwBWJ nJ2cdj1QtFNO6uDSmA1UXWrYzAzx22CtA+fB49TWC5TcKK4QqzUc0Nz5QVeXev8P nlnopiYYWVIAeqsSbV9zmTwMoIPAr0HfHCCxn8vojdzXHt5gxxd+BXb3XvqkVdRp 8DSVDgSNUzaKT5FkVkTH3pqoYPJBHNPV5dLOvw0+VyjCRLeq/zoeyOOCWn5bAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUarFCY6J3KyFacfNzRHG9e5chCRgwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABMw DQYJKoZIhvcNAQELBQADggEBAHw54JRres7qjvo2ovYKDrGHa10D6F4y+51juMj0 nRxfNx8DMncAtlDd8C9txDY1tV3DtI3fvLHtwnCx6jj7B2xUqBoCwQ1cATqaL6Mk TRpNJIeS8wrS/C2XQew+4lxKaImcjAwgVZ6bS/bibpEm8FZvrMI2exGh+ay7boiK uva4YWTnsp8tzbMMkcRQ54hlh1wlVizXuOSY1TE+848BEDJjj2Iu12c1ugkxGWSm 1gNMBZWZ1Z9KDJYmstXUR6d3LxXiEE/yYk6LIB5GMA56Shi67Cp9EBwlfEcpjWbJ V6NgzCEE9KVpMj+TBlyBrWMjKPobUhF3B5QWLS1PnxGnY3g= -----END CERTIFICATE-----Generated at Sun Apr 6 08:24:06 2025 by rpki-client