$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: mbv+skbxm8xZU1NA7Ww7xlEz05o9qyNX/8VWlf1jMMc= Subject key identifier: 2A:B5:3E:2E:E0:4E:E4:E7:AB:83:E3:52:10:F9:54:5D:1A:67:6F:66 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 06538BC37D187542974219472E051B51A1CFBC5E Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:53:8b:c3:7d:18:75:42:97:42:19:47:2e:05:1b:51:a1:cf:bc:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=2AB53E2EE04EE4E7AB83E35210F9545D1A676F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d7:e3:d2:95:31:86:6a:0b:7f:83:2b:73:18: d7:3f:6f:91:51:72:1a:41:c7:60:74:25:94:d4:82: bd:e4:72:f3:a6:6c:6d:c9:1c:ab:92:d8:b2:a6:b9: 34:91:6e:d1:45:f8:35:2b:b3:7e:1d:d5:49:85:c6: 37:f6:56:17:e0:5c:82:84:1c:bb:d6:49:8b:75:17: cb:c4:42:82:fd:e3:d8:f2:cb:4f:b4:6a:18:30:a0: 54:5c:ee:0e:cb:8e:83:b4:5a:d3:8b:aa:13:e0:72: 09:67:11:d7:2f:93:71:91:35:86:64:7e:a3:2d:c7: 86:53:b6:4b:e1:0e:5b:29:ce:a0:78:66:bc:e6:11: c5:31:c4:38:1f:83:f4:55:a3:fd:01:e7:87:6f:5f: c2:d0:7f:a5:54:1d:5b:f3:90:06:cf:c9:10:0b:fb: 5a:95:b9:25:c5:68:21:97:32:12:f2:09:52:48:84: c7:fd:6d:b4:3d:05:17:45:aa:a0:a8:c7:f3:b0:52: 58:e9:02:e6:3e:ef:0e:9d:c8:d7:34:e9:98:23:b6: a9:c5:f3:16:53:bf:e9:94:b5:22:30:d6:4e:9c:13: dd:2c:20:fc:08:00:5e:d1:ec:4e:5e:01:5b:82:6f: 8e:e2:11:25:3a:1a:4a:32:76:9d:de:83:f0:60:ab: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B5:3E:2E:E0:4E:E4:E7:AB:83:E3:52:10:F9:54:5D:1A:67:6F:66 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31353a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:15::/48 Signature Algorithm: sha256WithRSAEncryption 7a:d6:71:d0:d3:66:53:2d:35:e6:9e:91:12:fa:12:e5:e9:03: 9f:d2:43:05:51:9d:31:b1:53:af:bf:18:47:70:1d:20:bb:c1: d7:b3:5b:40:46:e7:2c:ac:bb:4e:6f:7d:3c:43:31:af:4d:22: 56:07:76:3c:3c:df:17:11:cc:28:35:bb:bb:00:db:bf:d8:e7: 94:e9:8b:de:c1:bd:24:1f:f1:5e:af:95:4f:88:52:4f:5d:6e: b8:bf:07:17:ec:08:74:75:13:13:9b:14:41:f9:95:9e:89:06: d6:f0:95:69:3a:9e:36:73:c4:70:aa:41:3b:a6:92:87:37:55: 2e:f5:ed:a3:8e:d9:a1:65:57:ff:5c:22:f7:c4:ac:29:df:fa: c2:21:59:29:36:7f:8b:59:57:5d:a9:af:3d:70:65:cc:4d:14: 67:85:7f:3a:23:de:69:5e:a1:29:90:d1:5c:67:a1:2e:2f:87: d1:19:db:9d:53:63:30:c2:0f:bb:2c:b5:f7:c4:d6:3a:15:a9: b8:26:b4:48:c7:9f:80:c8:ff:20:b8:07:2f:37:89:ba:28:d0: 93:56:ce:55:10:1d:bd:8d:2a:7c:fb:e4:e6:70:90:bd:39:9a: 6e:93:5b:ca:eb:aa:c9:39:00:e3:0d:59:93:07:f7:e6:ca:73: 65:d6:c6:b0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBlOLw30YdUKXQhlHLgUbUaHPvF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKDJBQjUzRTJFRTA0RUU0RTdBQjgzRTM1MjEwRjk1NDVEMUE2NzZGNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm1+PSlTGGagt/gytzGNc/b5FR chpBx2B0JZTUgr3kcvOmbG3JHKuS2LKmuTSRbtFF+DUrs34d1UmFxjf2VhfgXIKE HLvWSYt1F8vEQoL949jyy0+0ahgwoFRc7g7LjoO0WtOLqhPgcglnEdcvk3GRNYZk fqMtx4ZTtkvhDlspzqB4ZrzmEcUxxDgfg/RVo/0B54dvX8LQf6VUHVvzkAbPyRAL +1qVuSXFaCGXMhLyCVJIhMf9bbQ9BRdFqqCox/OwUljpAuY+7w6dyNc06ZgjtqnF 8xZTv+mUtSIw1k6cE90sIPwIAF7R7E5eAVuCb47iESU6Gkoydp3eg/BgqzGtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKrU+LuBO5Oerg+NSEPlUXRpnb2YwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABUw DQYJKoZIhvcNAQELBQADggEBAHrWcdDTZlMtNeaekRL6EuXpA5/SQwVRnTGxU6+/ GEdwHSC7wdezW0BG5yysu05vfTxDMa9NIlYHdjw83xcRzCg1u7sA27/Y55Tpi97B vSQf8V6vlU+IUk9dbri/BxfsCHR1ExObFEH5lZ6JBtbwlWk6njZzxHCqQTumkoc3 VS717aOO2aFlV/9cIvfErCnf+sIhWSk2f4tZV12prz1wZcxNFGeFfzoj3mleoSmQ 0VxnoS4vh9EZ251TYzDCD7sstffE1joVqbgmtEjHn4DI/yC4By83iboo0JNWzlUQ Hb2NKnz75OZwkL05mm6TW8rrqsk5AOMNWZMH9+bKc2XWxrA= -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org