$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: ckVpycXSaYDf1OXMz+XFbZhRpRxfpFyuCffhzJLXvTs= Subject key identifier: 83:BE:72:D9:DF:48:D8:B0:50:3A:E8:7A:0F:D6:97:FA:5E:DD:D7:FA Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 35C958128DDFDA06763FBC64DDFF83D0058E469D Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:03 +0000 ROA not before: Fri 29 Dec 2023 03:55:03 +0000 ROA not after: Fri 27 Dec 2024 04:00:03 +0000 asID: 58552 IP address blocks: 2404:fd00:19::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c9:58:12:8d:df:da:06:76:3f:bc:64:dd:ff:83:d0:05:8e:46:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:03 2023 GMT Not After : Dec 27 04:00:03 2024 GMT Subject: CN=83BE72D9DF48D8B0503AE87A0FD697FA5EDDD7FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fc:ed:af:cf:c0:1c:0a:4a:a3:cc:ef:8a:16: 42:21:6b:d4:49:12:3d:a6:2d:8f:4b:cb:99:97:e0: 3d:46:21:e2:de:50:89:fd:f9:84:00:37:04:43:9c: 09:01:cd:65:dd:c5:21:67:bf:d8:75:da:51:e4:d8: ad:18:88:4d:39:87:1f:21:71:65:ba:60:06:9f:82: 87:b6:9c:6a:b5:3c:bc:ad:b4:52:50:75:69:51:03: 12:3b:8d:13:58:b0:4f:28:8b:56:0a:dd:b8:1a:a2: f8:e6:ea:0a:13:96:fd:4c:4a:d4:9a:70:7a:1e:f5: b6:31:92:42:fe:a5:52:0f:37:af:a7:bb:bb:30:62: 96:b3:f8:2a:83:b0:5e:ee:5a:bd:44:ec:94:98:2e: 21:96:90:65:ce:42:d5:d9:f4:ea:22:10:dc:41:36: fb:61:06:e1:e2:af:dd:79:8a:a7:79:13:47:8c:ac: b6:18:57:aa:ba:d9:a6:ad:9b:ce:60:a3:6d:53:9f: d8:6e:8d:cd:f8:db:d0:a5:40:d2:55:cb:b8:fc:73: 81:66:04:d7:a9:5e:51:02:f8:31:42:ef:1e:d3:3d: 62:62:27:14:27:8e:cf:bd:e6:a0:fb:1e:32:17:0e: 97:f6:60:21:95:ad:c5:29:26:db:dc:64:23:0f:0c: 4f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BE:72:D9:DF:48:D8:B0:50:3A:E8:7A:0F:D6:97:FA:5E:DD:D7:FA X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31393a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:19::/48 Signature Algorithm: sha256WithRSAEncryption 02:16:c6:80:cd:80:96:fe:27:1b:8b:44:a9:dd:b0:f5:6f:40: 74:66:89:16:2e:7d:09:43:3d:21:b4:f9:9e:c6:df:b4:b9:83: 09:d3:16:66:dc:4c:60:0b:b5:58:67:00:af:51:d2:ff:47:d2: 0c:4c:23:f0:e7:8b:d4:d6:74:9f:4d:a4:35:56:fe:77:39:9a: 03:1a:3f:1c:7c:6b:ec:43:62:21:fc:e3:cc:13:22:da:5b:4d: 75:e7:cb:59:4b:b3:68:5d:41:af:1a:09:4d:84:b7:39:ad:0a: 21:c3:5a:d6:04:b4:6d:fe:0d:f2:cb:4e:dc:4e:8a:03:f6:b0: 7e:d6:b3:f0:99:41:48:3e:e9:36:80:0e:a2:46:28:88:4e:4a: 0c:aa:1b:33:28:d2:78:69:a5:d8:25:53:29:dd:d4:93:87:6a: a0:2c:77:ed:52:89:a1:57:2d:68:12:0c:85:85:29:e6:b7:a4: bb:ce:b5:7c:4f:aa:02:56:8d:b2:aa:76:39:46:36:f4:05:d0: ab:39:e3:cf:1e:8d:37:d8:3f:f7:46:01:3b:db:31:bb:7c:96: bb:b8:ab:37:1d:8a:39:f4:4e:75:fb:ac:7d:ec:97:32:aa:42: 08:16:37:81:f8:94:97:f7:f9:90:a8:4c:11:91:e8:4d:1e:6f: 64:c3:05:75 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNclYEo3f2gZ2P7xk3f+D0AWORp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDNaFw0yNDEyMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDgzQkU3MkQ5REY0OEQ4QjA1MDNBRTg3QTBGRDY5N0ZBNUVEREQ3RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp/O2vz8AcCkqjzO+KFkIha9RJ Ej2mLY9Ly5mX4D1GIeLeUIn9+YQANwRDnAkBzWXdxSFnv9h12lHk2K0YiE05hx8h cWW6YAafgoe2nGq1PLyttFJQdWlRAxI7jRNYsE8oi1YK3bgaovjm6goTlv1MStSa cHoe9bYxkkL+pVIPN6+nu7swYpaz+CqDsF7uWr1E7JSYLiGWkGXOQtXZ9OoiENxB NvthBuHir915iqd5E0eMrLYYV6q62aatm85go21Tn9hujc3429ClQNJVy7j8c4Fm BNepXlEC+DFC7x7TPWJiJxQnjs+95qD7HjIXDpf2YCGVrcUpJtvcZCMPDE+3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUg75y2d9I2LBQOuh6D9aX+l7d1/owHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzEzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABkw DQYJKoZIhvcNAQELBQADggEBAAIWxoDNgJb+JxuLRKndsPVvQHRmiRYufQlDPSG0 +Z7G37S5gwnTFmbcTGALtVhnAK9R0v9H0gxMI/Dni9TWdJ9NpDVW/nc5mgMaPxx8 a+xDYiH848wTItpbTXXny1lLs2hdQa8aCU2EtzmtCiHDWtYEtG3+DfLLTtxOigP2 sH7Ws/CZQUg+6TaADqJGKIhOSgyqGzMo0nhppdglUynd1JOHaqAsd+1SiaFXLWgS DIWFKea3pLvOtXxPqgJWjbKqdjlGNvQF0Ks5488ejTfYP/dGATvbMbt8lru4qzcd ijn0TnX7rH3slzKqQggWN4H4lJf3+ZCoTBGR6E0eb2TDBXU= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org