$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: UUalFYzXeyBMBtu1YHdtu+5Nz3hAarTvjWL7qDrw890= Subject key identifier: 4A:DD:AB:FA:B0:DB:4B:1D:6B:7E:E8:6C:F7:6A:55:97:B0:3E:BD:16 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 345C6AC3DDD0DC1D7242F6DEB1B6D64012BBB110 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:03 +0000 ROA not before: Fri 29 Dec 2023 03:55:03 +0000 ROA not after: Fri 27 Dec 2024 04:00:03 +0000 asID: 58552 IP address blocks: 2404:fd00:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:5c:6a:c3:dd:d0:dc:1d:72:42:f6:de:b1:b6:d6:40:12:bb:b1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:03 2023 GMT Not After : Dec 27 04:00:03 2024 GMT Subject: CN=4ADDABFAB0DB4B1D6B7EE86CF76A5597B03EBD16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:24:78:74:21:12:29:08:7d:61:00:73:d0: aa:e0:44:18:1d:f4:28:a2:52:fb:11:43:96:0b:62: 3e:0a:26:4a:3d:b3:92:a7:6f:ba:5b:5f:10:83:9a: 10:6e:3f:3a:4f:e9:55:d7:e0:56:a7:ba:a1:60:f7: 0e:1a:dc:11:8e:6d:1f:43:4b:74:c5:b6:33:0b:33: 1b:0f:84:4a:55:06:1b:7d:84:fd:7f:28:b5:18:9b: 07:16:70:6a:13:6b:02:49:07:2b:0a:73:b9:7c:e1: b8:99:7a:12:08:01:82:c5:a4:47:b3:1c:08:4c:38: 16:d8:45:17:53:8c:6d:a2:94:ae:4d:28:ee:2f:a5: a7:56:42:56:15:48:47:91:ba:69:41:7c:1a:37:32: 0d:b2:7a:a2:11:f5:ae:d3:d7:cb:0d:7b:74:1d:34: af:f9:ee:99:3f:a0:6b:4d:9c:8c:0d:74:e8:c8:01: 6d:1f:8f:06:8b:f0:9f:5e:62:c6:1b:1e:e5:dd:92: df:2e:fa:c3:de:58:84:61:52:2a:55:4c:2c:cd:ed: f1:b0:fd:4a:a0:7b:78:16:fa:0b:a9:46:de:72:9a: c1:23:c2:b8:74:a2:5e:50:e2:1d:df:00:e2:c3:f6: 66:ef:28:28:f9:35:56:f8:00:2c:0b:50:42:05:ac: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:DD:AB:FA:B0:DB:4B:1D:6B:7E:E8:6C:F7:6A:55:97:B0:3E:BD:16 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31343a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:14::/48 Signature Algorithm: sha256WithRSAEncryption a5:8e:0c:62:fd:f2:58:5c:0c:85:c7:64:8a:3d:b0:88:35:0e: 93:d4:b0:9f:46:59:8e:7c:09:c2:04:76:6e:a8:1a:fa:bc:19: 9a:43:eb:28:95:3b:b0:bf:9f:cc:fb:82:0a:2f:25:21:ad:a5: 1e:7f:27:8a:4b:72:5c:77:92:77:fb:1d:ae:11:bb:a2:d6:04: 90:03:fc:92:cd:8b:09:1d:ca:23:c3:e1:63:2c:ec:7a:c5:31: 89:6e:b8:88:30:db:42:d0:15:46:f2:b9:e9:03:7d:37:a9:95: 1d:9b:1c:70:4d:37:1a:79:e6:23:a4:38:39:9b:3d:ca:be:e8: e9:d4:84:32:ef:9e:67:c9:cb:63:23:a4:9a:25:c6:a9:ee:bb: 36:23:de:15:ba:c1:19:78:0f:73:85:56:60:4e:91:a6:25:86: 88:b0:0c:46:cc:40:3c:03:d8:80:a8:c8:57:dd:f8:f8:eb:9f: 90:ab:d5:26:0e:77:28:56:5d:31:bf:20:f8:0b:ab:6a:be:d3: 5a:b0:21:1c:1e:2f:d7:1f:de:31:08:04:31:86:60:07:3c:ed: 99:40:b8:63:32:ad:0c:96:ac:97:b1:5d:e8:c5:b3:b5:34:b1: 01:d0:87:6f:d9:e6:27:34:48:8d:58:c2:2c:d7:f3:ee:29:68: e8:2a:01:56 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNFxqw93Q3B1yQvbesbbWQBK7sRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDNaFw0yNDEyMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDRBRERBQkZBQjBEQjRCMUQ2QjdFRTg2Q0Y3NkE1NTk3QjAzRUJEMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8oCR4dCESKQh9YQBz0KrgRBgd 9CiiUvsRQ5YLYj4KJko9s5Knb7pbXxCDmhBuPzpP6VXX4FanuqFg9w4a3BGObR9D S3TFtjMLMxsPhEpVBht9hP1/KLUYmwcWcGoTawJJBysKc7l84biZehIIAYLFpEez HAhMOBbYRRdTjG2ilK5NKO4vpadWQlYVSEeRumlBfBo3Mg2yeqIR9a7T18sNe3Qd NK/57pk/oGtNnIwNdOjIAW0fjwaL8J9eYsYbHuXdkt8u+sPeWIRhUipVTCzN7fGw /Uqge3gW+gupRt5ymsEjwrh0ol5Q4h3fAOLD9mbvKCj5NVb4ACwLUEIFrFHfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSt2r+rDbSx1rfuhs92pVl7A+vRYwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABQw DQYJKoZIhvcNAQELBQADggEBAKWODGL98lhcDIXHZIo9sIg1DpPUsJ9GWY58CcIE dm6oGvq8GZpD6yiVO7C/n8z7ggovJSGtpR5/J4pLclx3knf7Ha4Ru6LWBJAD/JLN iwkdyiPD4WMs7HrFMYluuIgw20LQFUbyuekDfTeplR2bHHBNNxp55iOkODmbPcq+ 6OnUhDLvnmfJy2MjpJolxqnuuzYj3hW6wRl4D3OFVmBOkaYlhoiwDEbMQDwD2ICo yFfd+Pjrn5Cr1SYOdyhWXTG/IPgLq2q+01qwIRweL9cf3jEIBDGGYAc87ZlAuGMy rQyWrJexXejFs7U0sQHQh2/Z5ic0SI1YwizX8+4paOgqAVY= -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org