$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: 8e3r3PxDILpzNaKNQgxCqK6H36C54hGndE66NUcdINc= Subject key identifier: B2:FB:BB:1B:29:A6:93:C8:06:32:06:F5:D4:E2:06:ED:FE:3B:CD:74 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0E711E0196EF6CA9003778E1172FF56CE1442C1E Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:1c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:71:1e:01:96:ef:6c:a9:00:37:78:e1:17:2f:f5:6c:e1:44:2c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=B2FBBB1B29A693C8063206F5D4E206EDFE3BCD74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:e0:c8:3f:ec:40:a6:63:30:44:f1:7d:12: 33:97:b0:70:39:d9:73:29:a9:82:2f:da:56:98:2c: 42:18:5d:b0:18:33:14:ca:39:7f:3d:64:77:9a:cd: 3a:ba:95:c7:9c:df:2e:f3:11:4e:c3:4c:58:88:bc: 39:22:91:76:17:1c:34:ec:fd:fc:c4:be:9b:06:0c: 72:fe:4c:d9:8a:01:ef:9e:ca:36:6f:1f:74:2c:11: 09:d2:23:c1:38:57:6e:0a:4d:50:7e:14:86:7d:08: e9:02:01:4e:5a:33:0f:6e:cd:90:a7:49:81:83:f4: e2:44:26:4c:3c:8d:d4:01:af:1e:d3:83:33:6d:f3: 7f:35:25:4b:63:7d:fb:bd:cd:93:9a:fa:69:01:49: fd:49:6c:7d:dd:36:ba:90:50:2d:39:3d:9c:ef:33: 9d:71:1f:3a:fe:16:ef:43:0a:8b:e0:ca:50:e0:e5: 93:8b:ce:27:54:f6:24:b3:ae:f5:1b:bd:94:9d:bd: 17:ba:a0:73:b9:3f:88:56:25:07:1d:ba:5c:6f:a2: 0c:45:8d:74:ed:d7:30:36:49:a0:fb:1c:26:1f:dd: 04:b0:d8:26:54:59:18:97:d1:f7:e9:c4:c1:f6:63: b1:c5:32:82:87:3d:27:04:5c:87:15:16:49:4b:0f: 9e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FB:BB:1B:29:A6:93:C8:06:32:06:F5:D4:E2:06:ED:FE:3B:CD:74 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1c::/48 Signature Algorithm: sha256WithRSAEncryption b1:2e:7a:5c:41:e9:6a:a9:cc:fc:34:34:75:ca:1e:ea:aa:3a: d1:f4:0f:6a:3a:fe:71:93:93:8a:98:8f:f2:a8:9a:3a:a8:6e: b6:5d:d2:12:13:d1:4f:5e:e5:ab:0e:b8:8f:02:fa:9a:ff:a3: 1a:e5:43:95:c8:8b:c7:b1:75:d8:74:3f:53:9b:d1:13:3c:d5: 96:f7:1e:64:cd:72:75:99:32:3d:05:76:7a:ae:f2:7b:26:62: 83:00:5a:c4:66:96:56:0c:97:eb:eb:d0:bd:05:9d:91:5b:66: 1d:b3:f4:5a:16:6d:91:d8:94:62:61:6e:35:3a:1c:3a:e3:eb: 51:a7:9a:0a:41:ca:f4:b9:5a:5a:4a:bb:bc:0e:3e:38:50:3c: a9:74:78:2a:2a:b7:48:ba:a3:4c:64:e9:b7:1e:80:e7:5f:e6: 04:0e:4a:e3:21:48:93:28:6e:5b:b5:5b:e7:65:30:6b:e5:db: 29:cd:65:2b:3a:7c:2b:84:89:4a:f1:28:4c:e9:93:b1:62:f3: ac:ed:73:d6:d8:68:fe:4e:54:46:2a:df:91:d2:4a:a1:f6:f8: 9f:ac:cc:c4:6f:36:58:e1:89:aa:9f:42:08:62:4b:d1:ba:50: bf:ad:d6:e6:05:e4:d3:da:57:c4:36:09:02:90:a0:fe:fa:8a: 51:51:d9:a7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDnEeAZbvbKkAN3jhFy/1bOFELB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKEIyRkJCQjFCMjlBNjkzQzgwNjMyMDZGNUQ0RTIwNkVERkUzQkNENzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLq+DIP+xApmMwRPF9EjOXsHA5 2XMpqYIv2laYLEIYXbAYMxTKOX89ZHeazTq6lcec3y7zEU7DTFiIvDkikXYXHDTs /fzEvpsGDHL+TNmKAe+eyjZvH3QsEQnSI8E4V24KTVB+FIZ9COkCAU5aMw9uzZCn SYGD9OJEJkw8jdQBrx7TgzNt8381JUtjffu9zZOa+mkBSf1JbH3dNrqQUC05PZzv M51xHzr+Fu9DCovgylDg5ZOLzidU9iSzrvUbvZSdvRe6oHO5P4hWJQcdulxvogxF jXTt1zA2SaD7HCYf3QSw2CZUWRiX0ffpxMH2Y7HFMoKHPScEXIcVFklLD57DAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsvu7Gymmk8gGMgb11OIG7f47zXQwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABww DQYJKoZIhvcNAQELBQADggEBALEuelxB6WqpzPw0NHXKHuqqOtH0D2o6/nGTk4qY j/KomjqobrZd0hIT0U9e5asOuI8C+pr/oxrlQ5XIi8exddh0P1Ob0RM81Zb3HmTN cnWZMj0Fdnqu8nsmYoMAWsRmllYMl+vr0L0FnZFbZh2z9FoWbZHYlGJhbjU6HDrj 61GnmgpByvS5WlpKu7wOPjhQPKl0eCoqt0i6o0xk6bcegOdf5gQOSuMhSJMoblu1 W+dlMGvl2ynNZSs6fCuEiUrxKEzpk7Fi86ztc9bYaP5OVEYq35HSSqH2+J+szMRv NljhiaqfQghiS9G6UL+t1uYF5NPaV8Q2CQKQoP76ilFR2ac= -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org