$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: IDo3hIg8cUqnzlRj32PqyHqb1lWg8nMOMTLB3dOzhlE= Subject key identifier: 63:70:F2:04:97:89:98:A4:B7:87:CD:D3:CA:04:15:8D:7A:A8:E0:E4 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 35BB84E3156C016D6D7C92C80FAD8610997AE452 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Nov 2024 05:00:00 +0000 ROA not before: Fri 29 Nov 2024 04:55:00 +0000 ROA not after: Fri 28 Nov 2025 05:00:00 +0000 asID: 56246 IP address blocks: 2404:fd00:1a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:bb:84:e3:15:6c:01:6d:6d:7c:92:c8:0f:ad:86:10:99:7a:e4:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:00 2024 GMT Not After : Nov 28 05:00:00 2025 GMT Subject: CN=6370F204978998A4B787CDD3CA04158D7AA8E0E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:4e:7e:af:64:97:74:cf:99:59:8a:70:2e: ba:a7:3d:4a:e4:00:9f:06:49:a0:12:8a:15:5b:7c: 2c:6b:04:11:0b:a6:05:04:95:b2:30:dc:e7:c3:86: 86:31:0a:9b:60:71:d1:32:18:57:01:f6:09:c7:54: d8:05:89:bc:4d:cf:4c:4b:04:e1:5f:37:22:9e:83: cf:b9:58:a7:be:d4:be:21:ff:44:e7:99:bb:dc:0c: 54:06:76:79:ee:22:5f:fa:db:4a:0e:6c:51:b2:4d: e9:be:87:92:a1:28:e3:50:ae:e1:28:dd:b5:b7:ae: 73:2e:66:cf:9d:7b:ec:ca:94:6f:26:0d:2f:8f:cd: 7a:34:76:89:d6:4d:a7:f5:1b:ea:57:90:12:79:cd: b8:61:ee:2b:56:32:7b:7e:d3:db:e3:98:f8:b8:f7: 14:26:56:e8:0f:0e:83:e3:54:90:78:bc:fa:bb:89: f5:cf:eb:7a:8b:81:fe:8a:2e:bf:77:78:eb:db:38: 73:96:3e:d7:6d:05:b2:be:4a:48:42:ac:a2:cd:63: 99:64:9b:ea:6c:05:47:a4:72:be:67:a1:bf:64:a8: 86:f8:f2:b0:22:31:c5:86:72:b2:1b:f3:ab:7b:50: 63:62:c5:cd:7d:44:9f:f5:f9:cd:b0:f1:cb:44:d3: 4d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:70:F2:04:97:89:98:A4:B7:87:CD:D3:CA:04:15:8D:7A:A8:E0:E4 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1a::/48 Signature Algorithm: sha256WithRSAEncryption a8:44:5a:64:a3:48:f0:43:7f:01:5d:0a:9d:90:f4:19:0c:4d: 28:c3:9d:1d:40:73:3a:45:af:2a:d4:4d:b3:f1:2c:c6:db:25: a8:80:25:ba:86:dd:d9:64:61:ba:cf:d8:16:52:a3:9a:d4:05: 9e:81:28:17:59:7a:58:99:a5:d9:dc:c3:92:20:f8:e0:33:74: 5c:ed:4a:8f:24:73:f2:d5:6e:3f:02:70:de:5b:bf:23:eb:5c: a6:9e:15:a0:e0:71:5e:b9:f6:56:75:95:aa:ad:de:c0:29:36: 31:f3:e1:2d:3f:1c:e6:fc:ae:ff:1b:e6:45:20:34:43:de:bf: 5a:ae:67:30:94:5e:05:23:f9:eb:91:67:29:27:b8:db:c3:fa: 12:12:65:e3:a0:2d:f7:95:f5:2b:2d:19:61:9a:92:9f:2e:18: b2:3a:96:7b:be:c5:c8:2f:41:31:24:22:ec:a5:b7:f5:20:a3: b2:e3:3e:37:25:72:64:43:60:07:3a:e4:11:f5:c6:b7:cf:26: c1:2f:f9:e9:dd:ad:95:e4:e7:77:88:d6:09:46:76:26:c7:16: a5:ed:51:9a:c4:f0:7e:17:67:92:54:7d:67:95:22:f1:80:c3: 58:7a:6f:1d:02:4e:09:e4:aa:c0:82:8f:d0:b2:a7:84:99:0b: b9:b0:75:1d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNbuE4xVsAW1tfJLID62GEJl65FIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDBaFw0yNTExMjgwNTAwMDBaMDMxMTAvBgNV BAMTKDYzNzBGMjA0OTc4OTk4QTRCNzg3Q0REM0NBMDQxNThEN0FBOEUwRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2TU5+r2SXdM+ZWYpwLrqnPUrk AJ8GSaASihVbfCxrBBELpgUElbIw3OfDhoYxCptgcdEyGFcB9gnHVNgFibxNz0xL BOFfNyKeg8+5WKe+1L4h/0TnmbvcDFQGdnnuIl/620oObFGyTem+h5KhKONQruEo 3bW3rnMuZs+de+zKlG8mDS+PzXo0donWTaf1G+pXkBJ5zbhh7itWMnt+09vjmPi4 9xQmVugPDoPjVJB4vPq7ifXP63qLgf6KLr93eOvbOHOWPtdtBbK+SkhCrKLNY5lk m+psBUekcr5nob9kqIb48rAiMcWGcrIb86t7UGNixc19RJ/1+c2w8ctE002vAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUY3DyBJeJmKS3h83TygQVjXqo4OQwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABow DQYJKoZIhvcNAQELBQADggEBAKhEWmSjSPBDfwFdCp2Q9BkMTSjDnR1AczpFryrU TbPxLMbbJaiAJbqG3dlkYbrP2BZSo5rUBZ6BKBdZeliZpdncw5Ig+OAzdFztSo8k c/LVbj8CcN5bvyPrXKaeFaDgcV659lZ1laqt3sApNjHz4S0/HOb8rv8b5kUgNEPe v1quZzCUXgUj+euRZyknuNvD+hISZeOgLfeV9SstGWGakp8uGLI6lnu+xcgvQTEk Iuylt/Ugo7LjPjclcmRDYAc65BH1xrfPJsEv+endrZXk53eI1glGdibHFqXtUZrE 8H4XZ5JUfWeVIvGAw1h6bx0CTgnkqsCCj9Cyp4SZC7mwdR0= -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:24 2025 by rpki-client