$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: c4RT0ZhGqb2DmYqw7PTyMdX8aN6JjJpO9z0X/tSN4XE= Subject key identifier: EB:C3:37:A4:46:6B:C2:8D:EC:C2:38:B8:E6:64:9B:25:7C:2C:F6:E0 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 1FF059759C147A8ABE24E294B2BB8C9C10F050FC Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:16::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f0:59:75:9c:14:7a:8a:be:24:e2:94:b2:bb:8c:9c:10:f0:50:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=EBC337A4466BC28DECC238B8E6649B257C2CF6E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:11:3b:dd:79:b6:0a:78:b5:00:8c:f4:c7: 46:7e:d1:9a:4b:48:b4:0f:bc:e2:a6:25:b3:e3:ab: 19:df:f0:70:0b:8c:ee:b0:1a:5a:db:b0:92:00:63: 5d:3d:c6:47:db:1b:a3:8b:24:96:3f:c5:e8:a1:59: 60:46:95:89:d3:7c:1c:ed:1b:ca:5c:51:14:52:7d: 37:30:ba:b1:b8:cf:13:2a:c1:b6:3f:a5:ed:08:e3: f3:82:b1:66:ef:46:a2:a0:d4:d1:33:79:c0:8e:aa: b4:ef:60:0e:f6:fb:6b:26:4e:09:ee:aa:9e:7c:75: dd:7a:2a:68:62:0b:08:e8:9f:b1:ce:59:2f:78:33: d0:28:50:92:be:43:31:7f:6a:cd:0d:a2:1b:a8:06: 5f:fb:fc:50:91:e7:c7:ce:a8:40:b6:17:59:58:ed: 7f:24:90:ec:35:ba:2c:c5:cb:46:04:54:fb:89:fe: 5f:96:06:37:a1:a1:e6:6e:5a:d6:ea:eb:0f:b3:68: ab:73:ac:00:f2:57:b8:1b:e1:3e:6e:a9:6a:8c:e4: 19:d9:31:3a:f2:72:1d:23:f4:46:97:0a:07:7c:b4: 9a:17:fa:77:2f:0b:1e:41:d1:50:15:d4:50:ca:09: 35:71:f5:2a:f8:12:cd:0a:d5:2d:14:2c:02:3b:27: 24:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C3:37:A4:46:6B:C2:8D:EC:C2:38:B8:E6:64:9B:25:7C:2C:F6:E0 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31363a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:16::/48 Signature Algorithm: sha256WithRSAEncryption 07:fe:ea:16:d3:81:1f:76:54:08:08:0e:a3:69:ca:ee:b4:2e: 2d:32:36:b1:34:ea:cc:d3:c3:b2:44:83:3c:87:59:f0:bb:c6: 86:47:ab:c6:06:de:33:9b:0c:fb:07:6c:93:66:51:13:69:df: 26:5b:7d:62:61:4e:9b:40:c3:d2:71:6d:cf:0f:f6:7c:5e:e5: f4:79:69:fe:60:8f:6b:02:4d:d4:3c:14:1e:e7:85:f5:9c:e1: 69:d1:f4:b2:c5:89:9c:71:eb:ea:91:51:63:56:8f:12:b7:f8: 67:4e:e9:bd:6f:50:81:22:69:18:df:f0:a0:89:84:22:5e:b6: 2a:e8:38:9a:4c:5e:ad:9a:33:9e:0f:e1:16:03:23:cb:5e:54: a5:bb:99:02:00:46:48:3f:ea:88:ff:1c:75:a1:7e:23:86:92: f5:5a:a3:22:33:97:09:4d:fd:ac:d3:0f:46:48:b9:b4:3d:d1: 45:9d:63:9c:ed:07:f2:ef:e0:46:af:a2:d6:b8:a2:a4:4c:10: 95:f3:86:15:cb:22:c6:12:10:fa:2f:b0:9d:52:c2:27:46:35: d1:4b:1e:d3:cf:88:2d:fb:c6:d7:5a:c6:8d:c0:25:2d:58:63: 95:be:a4:69:af:ac:67:ab:bf:65:ba:a2:a4:6c:f6:9a:37:fb: 0d:64:cc:06 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH/BZdZwUeoq+JOKUsruMnBDwUPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKEVCQzMzN0E0NDY2QkMyOERFQ0MyMzhCOEU2NjQ5QjI1N0MyQ0Y2RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsJxE73Xm2Cni1AIz0x0Z+0ZpL SLQPvOKmJbPjqxnf8HALjO6wGlrbsJIAY109xkfbG6OLJJY/xeihWWBGlYnTfBzt G8pcURRSfTcwurG4zxMqwbY/pe0I4/OCsWbvRqKg1NEzecCOqrTvYA72+2smTgnu qp58dd16KmhiCwjon7HOWS94M9AoUJK+QzF/as0NohuoBl/7/FCR58fOqEC2F1lY 7X8kkOw1uizFy0YEVPuJ/l+WBjehoeZuWtbq6w+zaKtzrADyV7gb4T5uqWqM5BnZ MTrych0j9EaXCgd8tJoX+ncvCx5B0VAV1FDKCTVx9Sr4Es0K1S0ULAI7JySzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU68M3pEZrwo3swji45mSbJXws9uAwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABYw DQYJKoZIhvcNAQELBQADggEBAAf+6hbTgR92VAgIDqNpyu60Li0yNrE06szTw7JE gzyHWfC7xoZHq8YG3jObDPsHbJNmURNp3yZbfWJhTptAw9Jxbc8P9nxe5fR5af5g j2sCTdQ8FB7nhfWc4WnR9LLFiZxx6+qRUWNWjxK3+GdO6b1vUIEiaRjf8KCJhCJe tiroOJpMXq2aM54P4RYDI8teVKW7mQIARkg/6oj/HHWhfiOGkvVaoyIzlwlN/azT D0ZIubQ90UWdY5ztB/Lv4Eavota4oqRMEJXzhhXLIsYSEPovsJ1SwidGNdFLHtPP iC37xtdaxo3AJS1YY5W+pGmvrGerv2W6oqRs9po3+w1kzAY= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org