$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: TSWh4U6dlZbQVNbAuFqYliStT90k6y6Wv/1oqlF2CEw= Subject key identifier: 72:F9:10:31:13:BD:2D:E3:95:DE:07:24:0A:78:39:AD:E6:8B:C9:8F Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 3AFBC77A978908684ED43262D1551EA9E0A15006 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:03 +0000 ROA not before: Fri 29 Dec 2023 03:55:03 +0000 ROA not after: Fri 27 Dec 2024 04:00:03 +0000 asID: 58552 IP address blocks: 2404:fd00:18::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fb:c7:7a:97:89:08:68:4e:d4:32:62:d1:55:1e:a9:e0:a1:50:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:03 2023 GMT Not After : Dec 27 04:00:03 2024 GMT Subject: CN=72F9103113BD2DE395DE07240A7839ADE68BC98F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:d1:b7:b9:bc:58:01:3f:d8:63:60:86:01: dd:27:aa:c7:99:8f:6c:ca:19:e6:8d:80:07:f1:f2: bd:49:07:38:c0:82:d6:e1:02:24:b9:e1:3e:3d:20: 22:4c:48:85:2a:2e:8e:5f:91:6c:93:8a:65:08:cb: 71:5f:71:16:47:ed:c8:b1:a0:01:61:27:a5:f7:eb: 57:7c:71:c1:e2:85:1f:a5:ef:6d:8b:af:91:d1:b4: d9:bc:eb:6a:3a:0a:68:ee:87:81:29:0b:26:7a:df: 50:dc:7c:6d:43:96:eb:b7:06:50:c8:dd:ae:1f:e7: c5:6b:d7:41:9e:8d:f5:44:8c:c3:d5:5d:ed:fd:d6: 46:78:c6:fd:e4:90:f6:12:b9:0c:bf:e4:c0:e1:c7: 4d:77:d0:da:45:f7:4c:46:17:a9:e9:73:97:d4:5f: e9:e8:d2:aa:cf:e6:9c:0c:84:c8:3a:24:b9:10:b8: 1b:d0:4d:2e:0e:3e:2c:b9:2c:8c:96:4c:d3:af:8f: 88:9a:60:70:69:5a:86:8a:38:bc:1e:83:0f:9d:a5: d3:b9:b3:53:08:4b:bf:65:ce:66:c5:74:9d:19:89: 76:3c:ef:2a:19:69:fd:4b:2f:b3:b5:7f:30:79:55: e9:00:98:de:05:aa:9e:af:0d:a3:cc:c1:8a:61:4a: 67:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F9:10:31:13:BD:2D:E3:95:DE:07:24:0A:78:39:AD:E6:8B:C9:8F X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31383a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:18::/48 Signature Algorithm: sha256WithRSAEncryption 56:35:bf:f3:d6:15:49:76:55:95:13:52:69:eb:2e:5a:6e:14: 5a:68:8e:41:f2:5c:d3:06:fa:ad:f9:8c:3f:ea:b0:5c:be:9c: 86:f6:18:cf:06:55:0d:7e:8a:e3:ed:ec:a9:71:16:af:38:b9: ff:36:fd:ac:20:09:da:ba:ef:1f:0d:69:9c:f2:1f:e9:8d:04: 31:be:55:c1:ca:59:a7:07:c6:dd:e6:d0:11:d7:07:22:64:8f: 8f:3e:72:4b:29:ee:89:8e:4e:9c:e4:c2:36:b0:06:3a:fb:74: fa:1b:c7:60:c3:9e:55:2f:20:62:a0:e9:60:91:4a:f6:c8:cf: 8c:0f:24:a2:87:eb:14:16:8e:fc:0e:cf:92:52:38:fd:d8:cd: 14:d7:8e:81:b2:d4:50:18:54:bc:13:c8:be:59:44:09:c6:c4: 19:dd:d8:d5:32:93:d7:7e:50:90:da:85:a6:d6:05:52:21:2e: bd:77:9f:bf:ea:6f:f2:8e:1c:8a:f1:6a:d3:6e:06:cc:fc:18: ac:5a:0a:54:16:e7:a1:f7:5f:bb:cd:7d:9e:55:62:d8:73:e6: 60:b3:c5:bf:83:21:8a:63:10:cf:3a:ea:fc:7a:f0:43:03:fa: 00:3f:19:4b:d1:4b:52:1f:c8:4a:ce:fe:b4:3a:92:a5:6f:05: 28:28:14:29 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOvvHepeJCGhO1DJi0VUeqeChUAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDNaFw0yNDEyMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDcyRjkxMDMxMTNCRDJERTM5NURFMDcyNDBBNzgzOUFERTY4QkM5OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDa9G3ubxYAT/YY2CGAd0nqseZ j2zKGeaNgAfx8r1JBzjAgtbhAiS54T49ICJMSIUqLo5fkWyTimUIy3FfcRZH7cix oAFhJ6X361d8ccHihR+l722Lr5HRtNm862o6Cmjuh4EpCyZ631DcfG1Dluu3BlDI 3a4f58Vr10GejfVEjMPVXe391kZ4xv3kkPYSuQy/5MDhx0130NpF90xGF6npc5fU X+no0qrP5pwMhMg6JLkQuBvQTS4OPiy5LIyWTNOvj4iaYHBpWoaKOLwegw+dpdO5 s1MIS79lzmbFdJ0ZiXY87yoZaf1LL7O1fzB5VekAmN4Fqp6vDaPMwYphSmcxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcvkQMRO9LeOV3gckCng5reaLyY8wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABgw DQYJKoZIhvcNAQELBQADggEBAFY1v/PWFUl2VZUTUmnrLlpuFFpojkHyXNMG+q35 jD/qsFy+nIb2GM8GVQ1+iuPt7KlxFq84uf82/awgCdq67x8NaZzyH+mNBDG+VcHK WacHxt3m0BHXByJkj48+cksp7omOTpzkwjawBjr7dPobx2DDnlUvIGKg6WCRSvbI z4wPJKKH6xQWjvwOz5JSOP3YzRTXjoGy1FAYVLwTyL5ZRAnGxBnd2NUyk9d+UJDa habWBVIhLr13n7/qb/KOHIrxatNuBsz8GKxaClQW56H3X7vNfZ5VYthz5mCzxb+D IYpjEM866vx68EMD+gA/GUvRS1IfyErO/rQ6kqVvBSgoFCk= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org