$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: pvdYUmXUj0EkL8bRlmuiWuzuaAHtA1yBgGgpy5iXU2Q= Subject key identifier: C8:03:6A:5D:59:64:F9:A3:54:57:08:5F:12:9A:0F:66:85:31:F2:0A Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 3B0400BF14443C123E72A087BC8158C6EC10ED39 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:03 +0000 ROA not before: Fri 29 Dec 2023 03:55:03 +0000 ROA not after: Fri 27 Dec 2024 04:00:03 +0000 asID: 58552 IP address blocks: 2404:fd00:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:04:00:bf:14:44:3c:12:3e:72:a0:87:bc:81:58:c6:ec:10:ed:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:03 2023 GMT Not After : Dec 27 04:00:03 2024 GMT Subject: CN=C8036A5D5964F9A35457085F129A0F668531F20A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ea:2b:d4:45:ec:d8:14:e9:2b:35:c6:75:54: 29:be:e7:6e:4d:0f:b6:ba:26:8c:dd:4b:48:a7:e4: 1e:be:87:67:d5:dc:39:a0:c5:cd:09:a0:ee:50:30: 1c:a6:29:bf:86:51:3e:c5:9f:d2:aa:2a:3a:78:1a: 84:1f:b1:f5:fa:82:44:cd:16:54:d3:24:87:8e:63: 6a:41:e0:c1:01:f0:86:20:75:7a:49:71:15:8f:21: 0d:65:08:55:dd:4a:09:06:5c:96:53:7e:a3:da:51: 82:b9:80:1f:39:71:ef:94:4a:0d:ed:84:61:a1:ef: db:4c:8e:95:47:43:35:0c:8c:51:79:12:f1:b2:7b: 4c:f1:39:d7:65:ef:a5:aa:bb:42:c9:cd:cf:75:16: bf:88:5c:be:d3:2e:f7:ae:52:12:95:e8:ce:06:08: f9:a2:4c:55:46:f8:d5:f9:3a:2e:a3:dc:ac:ab:bd: 70:82:d2:36:a4:d0:23:86:18:d3:93:0b:3d:32:52: a9:76:68:83:b8:0c:1a:5c:90:22:b1:e1:7b:92:f2: ba:c8:68:c4:bb:b6:8b:7e:25:f9:45:2b:57:d6:18: 97:2b:79:49:29:8d:c4:be:a6:d0:5a:01:79:e6:26: 2e:75:20:35:fc:6f:2a:1e:f1:7d:59:5d:ff:36:4b: eb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:03:6A:5D:59:64:F9:A3:54:57:08:5F:12:9A:0F:66:85:31:F2:0A X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31623a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1b::/48 Signature Algorithm: sha256WithRSAEncryption 09:16:2a:b6:26:2c:b0:e4:74:24:4f:9b:4d:54:5a:b1:ff:97: c8:9b:8f:01:12:8e:a6:47:d2:17:96:7b:2a:0b:2e:21:6f:14: 94:34:8f:67:18:7a:84:c1:84:6d:ce:7a:f1:66:4d:e4:d3:6e: fd:99:a0:fb:3c:a5:ca:7a:45:8b:ae:ae:ae:f8:8b:23:33:e8: 8c:c9:25:82:47:f5:4a:17:37:f0:2d:ac:04:55:f9:64:08:06: 0e:52:43:2c:ac:6f:27:28:41:e9:fb:45:8e:2d:6e:a0:d1:57: 34:12:39:f4:23:66:c9:05:8c:7b:dd:36:65:80:62:76:8d:55: 68:9f:c8:08:83:5f:6a:46:4e:dc:a4:a2:d6:dd:8a:cd:34:0a: 34:b4:74:5a:bc:d7:9b:a1:6d:ec:a0:4f:a2:fe:2e:10:9a:77: 94:fd:5b:44:6d:e0:56:2c:aa:19:15:7e:5a:fb:2d:24:2a:7c: 16:2b:4c:52:4d:e4:cb:5b:83:6f:de:59:e9:b9:01:df:82:b2: c0:30:4c:29:e6:57:ff:ed:74:48:24:4b:75:5b:b8:eb:0f:28: 58:bc:03:68:59:22:11:28:11:99:e8:79:4c:8d:3c:38:76:d4: 7e:b4:ec:4f:86:0b:da:7e:df:55:68:80:35:25:5c:5d:f2:a6: 51:d5:f2:f0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOwQAvxREPBI+cqCHvIFYxuwQ7TkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDNaFw0yNDEyMjcwNDAwMDNaMDMxMTAvBgNV BAMTKEM4MDM2QTVENTk2NEY5QTM1NDU3MDg1RjEyOUEwRjY2ODUzMUYyMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS6ivURezYFOkrNcZ1VCm+525N D7a6JozdS0in5B6+h2fV3Dmgxc0JoO5QMBymKb+GUT7Fn9KqKjp4GoQfsfX6gkTN FlTTJIeOY2pB4MEB8IYgdXpJcRWPIQ1lCFXdSgkGXJZTfqPaUYK5gB85ce+USg3t hGGh79tMjpVHQzUMjFF5EvGye0zxOddl76Wqu0LJzc91Fr+IXL7TLveuUhKV6M4G CPmiTFVG+NX5Oi6j3KyrvXCC0jak0COGGNOTCz0yUql2aIO4DBpckCKx4XuS8rrI aMS7tot+JflFK1fWGJcreUkpjcS+ptBaAXnmJi51IDX8byoe8X1ZXf82S+ttAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUyANqXVlk+aNUVwhfEpoPZoUx8gowHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABsw DQYJKoZIhvcNAQELBQADggEBAAkWKrYmLLDkdCRPm01UWrH/l8ibjwESjqZH0heW eyoLLiFvFJQ0j2cYeoTBhG3OevFmTeTTbv2ZoPs8pcp6RYuurq74iyMz6IzJJYJH 9UoXN/AtrARV+WQIBg5SQyysbycoQen7RY4tbqDRVzQSOfQjZskFjHvdNmWAYnaN VWifyAiDX2pGTtykotbdis00CjS0dFq815uhbeygT6L+LhCad5T9W0Rt4FYsqhkV flr7LSQqfBYrTFJN5Mtbg2/eWem5Ad+CssAwTCnmV//tdEgkS3VbuOsPKFi8A2hZ IhEoEZnoeUyNPDh21H607E+GC9p+31VogDUlXF3yplHV8vA= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org