$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: IS3WLAD7yye1T7LwVLX12C7oYecKKvkLnarmuAhr5J4= Subject key identifier: 72:F2:D8:B4:57:EE:75:D6:FD:7F:C9:59:01:1E:6D:BE:FC:C5:7B:72 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 30C3C6EA1A2A1AE6C607847616419F0562441AF8 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:17::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c3:c6:ea:1a:2a:1a:e6:c6:07:84:76:16:41:9f:05:62:44:1a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=72F2D8B457EE75D6FD7FC959011E6DBEFCC57B72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7c:64:c0:9e:e3:6c:6a:54:bc:2e:8b:20:67: 7e:42:71:49:b8:2f:d1:a1:49:40:d7:cf:41:b2:8b: ae:43:6f:7e:0a:90:eb:96:dd:55:e8:f5:2e:12:e7: 25:0e:bf:68:64:ac:1c:7d:89:83:0f:1d:3e:d2:92: a5:b9:18:f0:1d:0a:65:3a:90:47:46:82:cf:7c:1c: 81:04:7a:bb:bf:6c:27:d4:cf:c6:4e:f4:43:98:0d: b8:c0:52:34:81:67:98:05:19:97:c0:44:b0:c1:33: a5:05:05:27:7d:c8:7f:0e:0c:b9:3d:9d:9c:54:29: 0e:41:34:43:b3:15:5f:b9:60:d2:83:60:be:7e:4b: 12:d1:f0:d6:f0:5f:04:d9:70:ee:87:58:b5:9d:a0: c7:1b:03:74:28:75:b9:e9:b2:92:ba:7a:df:75:4f: 97:6b:20:e8:c3:c1:92:ee:b7:55:70:e3:85:d7:85: f5:81:58:9c:c7:9b:a8:d3:5a:29:55:15:fd:0e:66: de:bc:e3:3d:95:65:eb:36:b5:32:4f:6f:23:44:c9: db:e7:bb:c6:0c:b4:74:28:02:01:7d:0e:a5:c9:c3: 63:91:dc:e2:fb:4d:18:4f:32:4a:c7:c4:82:d3:41: 47:9a:d2:ab:de:ea:35:5e:c8:b4:8a:fd:47:13:9a: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F2:D8:B4:57:EE:75:D6:FD:7F:C9:59:01:1E:6D:BE:FC:C5:7B:72 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31373a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:17::/48 Signature Algorithm: sha256WithRSAEncryption 04:a6:0c:ff:b9:b1:ec:64:b8:5e:e3:6e:89:aa:42:7d:db:c4: 7e:d3:2d:f3:60:6f:4f:fb:6c:98:3b:32:94:a9:5d:60:58:e5: 60:71:e5:7d:8c:e3:fa:b1:62:67:f5:59:a7:a3:c5:36:2b:35: d0:97:66:ec:2a:35:28:6c:3c:8e:dc:cc:23:4d:d3:78:11:6e: a8:e8:47:0d:aa:55:4c:0e:8d:3d:04:4d:60:a8:c4:bd:cf:d7: 10:3f:d7:11:e4:6e:40:32:d5:36:db:ce:ae:30:93:95:01:f8: fc:a0:be:41:e1:53:57:56:a9:69:3c:55:65:99:f7:60:59:84: 00:b5:cb:8e:ff:43:10:f6:f6:95:d8:ba:a5:42:a3:46:88:ef: 39:61:8e:f2:46:ba:0c:0f:84:7e:0a:95:c8:11:c9:b5:bc:ce: 2e:a6:1b:8d:05:f8:c6:4a:26:bd:1b:a0:4b:85:9f:76:8a:d0: 34:ce:7f:b8:57:e1:25:e5:94:f9:0a:0f:72:fc:e9:56:2c:98: 08:3a:c9:b5:58:8d:1a:1f:11:30:5d:b5:29:9a:e8:68:73:8a: e2:55:91:d7:9e:71:df:dc:c1:dc:d2:c3:fa:c3:71:f3:92:dd: cf:23:77:ee:dc:fe:a0:c2:2e:94:58:b5:84:42:8a:75:96:d4: b1:cb:7d:87 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMMPG6hoqGubGB4R2FkGfBWJEGvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDcyRjJEOEI0NTdFRTc1RDZGRDdGQzk1OTAxMUU2REJFRkNDNTdCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtfGTAnuNsalS8LosgZ35CcUm4 L9GhSUDXz0Gyi65Db34KkOuW3VXo9S4S5yUOv2hkrBx9iYMPHT7SkqW5GPAdCmU6 kEdGgs98HIEEeru/bCfUz8ZO9EOYDbjAUjSBZ5gFGZfARLDBM6UFBSd9yH8ODLk9 nZxUKQ5BNEOzFV+5YNKDYL5+SxLR8NbwXwTZcO6HWLWdoMcbA3QodbnpspK6et91 T5drIOjDwZLut1Vw44XXhfWBWJzHm6jTWilVFf0OZt684z2VZes2tTJPbyNEydvn u8YMtHQoAgF9DqXJw2OR3OL7TRhPMkrHxILTQUea0qve6jVeyLSK/UcTmn/TAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcvLYtFfuddb9f8lZAR5tvvzFe3IwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABcw DQYJKoZIhvcNAQELBQADggEBAASmDP+5sexkuF7jbomqQn3bxH7TLfNgb0/7bJg7 MpSpXWBY5WBx5X2M4/qxYmf1WaejxTYrNdCXZuwqNShsPI7czCNN03gRbqjoRw2q VUwOjT0ETWCoxL3P1xA/1xHkbkAy1Tbbzq4wk5UB+PygvkHhU1dWqWk8VWWZ92BZ hAC1y47/QxD29pXYuqVCo0aI7zlhjvJGugwPhH4KlcgRybW8zi6mG40F+MZKJr0b oEuFn3aK0DTOf7hX4SXllPkKD3L86VYsmAg6ybVYjRofETBdtSma6GhziuJVkdee cd/cwdzSw/rDcfOS3c8jd+7c/qDCLpRYtYRCinWW1LHLfYc= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org