$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: j410yC9sA1Eb/JIqyN8lrbVfYR4J2GUwzwMN8MLUKKE= Subject key identifier: 77:B5:3E:B8:88:A5:DC:BA:62:3A:DB:8F:E7:F7:9B:7B:31:07:C0:D7 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 425EC046DC47892B52764E8D8E8998D929432FCA Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:00 +0000 ROA not before: Fri 29 Dec 2023 03:55:00 +0000 ROA not after: Fri 27 Dec 2024 04:00:00 +0000 asID: 56246 IP address blocks: 2404:fd00:1a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 09:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5e:c0:46:dc:47:89:2b:52:76:4e:8d:8e:89:98:d9:29:43:2f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:00 2023 GMT Not After : Dec 27 04:00:00 2024 GMT Subject: CN=77B53EB888A5DCBA623ADB8FE7F79B7B3107C0D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b1:a2:78:02:b9:50:6c:36:5a:71:62:04:89: bc:60:62:25:79:11:69:3f:89:fe:e9:32:fb:63:58: f8:19:08:4a:b7:6e:29:70:4a:59:fc:fd:be:94:4d: 40:5b:da:23:07:95:a9:d9:ae:97:3e:5c:2a:1c:c0: 0b:2d:7d:b3:4a:5d:3b:11:8a:ef:5f:95:4e:1f:7f: 80:b6:c4:18:bb:d6:37:bc:98:74:58:57:f5:cb:cb: dc:2d:5c:96:03:f2:4b:b1:06:b1:cc:9c:c0:58:43: 9b:3b:e0:4f:b4:65:ca:ea:fd:2a:95:ab:df:17:97: d0:66:90:e8:a8:62:ac:c5:a4:05:13:a2:a2:1c:10: 9b:ef:fc:17:32:ff:e7:9b:85:4e:26:76:15:da:e7: ca:d9:69:22:32:0e:c4:8b:31:da:bb:15:59:14:8c: 87:61:f4:64:44:a5:93:68:df:b5:fb:c7:76:7f:55: ac:9e:b6:1e:67:fe:4e:da:ad:97:bd:84:d4:d0:fd: de:5d:b0:d3:ea:bb:75:51:f3:64:fe:04:c8:28:1c: 69:65:c0:72:37:3c:c5:7d:ac:32:32:1a:27:07:a3: 0e:bd:3c:17:2b:a4:bb:b7:b8:ff:31:7a:3a:00:c7: 31:fb:12:a8:1c:8a:23:d4:16:e6:5e:69:c6:ea:b4: a0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B5:3E:B8:88:A5:DC:BA:62:3A:DB:8F:E7:F7:9B:7B:31:07:C0:D7 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31613a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1a::/48 Signature Algorithm: sha256WithRSAEncryption 49:13:bd:1b:4a:f8:85:f6:8d:db:78:80:bb:8f:26:66:c6:86: 3c:5e:57:55:e1:5d:3d:f9:61:2d:47:2b:7b:2a:5e:5c:b7:05: bb:b7:d0:38:31:5a:3d:0f:f0:c1:61:42:a4:dd:be:08:db:f4: 44:af:20:56:d4:b2:28:63:bb:10:e4:e3:62:90:13:b2:df:e6: 88:0b:a3:3e:71:80:97:bc:78:15:1c:c0:3e:ae:5a:4e:26:9a: 03:06:8e:ee:43:95:85:ca:74:06:fd:54:c2:f4:69:c4:11:28: 5a:65:90:11:db:e1:6c:13:fb:80:35:33:15:3c:dd:c0:dd:53: 41:41:ab:82:ce:33:5e:b4:42:af:08:a0:a7:54:62:73:ef:70: 9f:07:fd:99:43:42:3b:15:ea:c3:0c:34:67:55:e8:37:35:14: 5f:89:5b:91:e4:e2:6f:5d:86:a2:73:51:23:b9:8c:36:06:0c: d1:1d:8c:84:ab:ed:5f:b0:c7:4d:99:82:8d:36:b7:bc:17:e2: f1:25:a8:18:46:5d:1b:08:87:10:ff:83:1c:fb:47:91:2d:df: 5d:d1:67:63:09:f3:11:92:fd:1e:ff:49:84:6c:f8:7d:c5:65: d0:81:11:13:51:c0:ba:dc:a2:4f:db:05:86:c3:76:ae:ce:4c: 24:50:3f:9f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQl7ARtxHiStSdk6NjomY2SlDL8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDBaFw0yNDEyMjcwNDAwMDBaMDMxMTAvBgNV BAMTKDc3QjUzRUI4ODhBNURDQkE2MjNBREI4RkU3Rjc5QjdCMzEwN0MwRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTsaJ4ArlQbDZacWIEibxgYiV5 EWk/if7pMvtjWPgZCEq3bilwSln8/b6UTUBb2iMHlanZrpc+XCocwAstfbNKXTsR iu9flU4ff4C2xBi71je8mHRYV/XLy9wtXJYD8kuxBrHMnMBYQ5s74E+0Zcrq/SqV q98Xl9BmkOioYqzFpAUToqIcEJvv/Bcy/+ebhU4mdhXa58rZaSIyDsSLMdq7FVkU jIdh9GREpZNo37X7x3Z/Vayeth5n/k7arZe9hNTQ/d5dsNPqu3VR82T+BMgoHGll wHI3PMV9rDIyGicHow69PBcrpLu3uP8xejoAxzH7EqgciiPUFuZeacbqtKALAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUd7U+uIil3LpiOtuP5/ebezEHwNcwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABow DQYJKoZIhvcNAQELBQADggEBAEkTvRtK+IX2jdt4gLuPJmbGhjxeV1XhXT35YS1H K3sqXly3Bbu30DgxWj0P8MFhQqTdvgjb9ESvIFbUsihjuxDk42KQE7Lf5ogLoz5x gJe8eBUcwD6uWk4mmgMGju5DlYXKdAb9VML0acQRKFplkBHb4WwT+4A1MxU83cDd U0FBq4LOM160Qq8IoKdUYnPvcJ8H/ZlDQjsV6sMMNGdV6Dc1FF+JW5Hk4m9dhqJz USO5jDYGDNEdjISr7V+wx02Zgo02t7wX4vElqBhGXRsIhxD/gxz7R5Et313RZ2MJ 8xGS/R7/SYRs+H3FZdCBERNRwLrcok/bBYbDdq7OTCRQP58= -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:38 2024 by rpki-client on console-ams.rpki-client.org