$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: ECyreMf/7YXyLGrQ1f6W29a1iLDkItWaPgRj0JfcdZk= Subject key identifier: 46:BF:17:87:9C:B3:0F:98:09:F0:84:A0:00:22:3F:75:76:D8:C2:5E Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 4A27E8380384AE1B412C6F26D5F10B39AA1E2722 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:00 +0000 ROA not before: Fri 29 Nov 2024 04:55:00 +0000 ROA not after: Fri 28 Nov 2025 05:00:00 +0000 asID: 58552 IP address blocks: 2404:fd00:1c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:27:e8:38:03:84:ae:1b:41:2c:6f:26:d5:f1:0b:39:aa:1e:27:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:00 2024 GMT Not After : Nov 28 05:00:00 2025 GMT Subject: CN=46BF17879CB30F9809F084A000223F7576D8C25E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:4f:7f:0e:ab:bd:16:5b:98:39:36:28:d9: 15:49:c2:92:53:ae:b5:54:02:c6:bc:2d:79:67:42: a1:ec:d4:a2:df:05:5f:b2:25:04:6f:b6:d9:62:cb: 8e:99:5d:58:e7:e9:0a:b2:ae:99:5e:e2:03:9f:78: 2d:41:97:1d:da:ea:d6:d2:8b:33:04:79:5d:68:3d: 3d:c3:98:bb:ad:6c:b8:10:ea:f2:71:54:fb:d0:79: aa:86:4b:48:11:e2:8b:6a:e4:45:8b:10:63:f3:02: 48:d7:93:7e:94:2b:49:55:03:f1:3f:cf:65:3d:b3: 74:13:37:48:de:b0:ac:90:66:53:be:b0:da:cb:51: ff:a2:d0:60:2a:bf:c8:e7:ac:77:ec:d4:b1:66:53: 23:6a:d3:5d:43:71:61:ce:5a:4e:3f:a9:df:98:a6: 3a:d4:54:04:3d:47:2a:11:94:1e:e2:d1:f6:aa:dc: dc:8f:3f:3c:8d:85:93:39:c4:15:e5:ee:8b:13:e0: b0:11:84:bb:c4:0b:d0:d4:5a:01:3d:d1:4f:cb:19: 64:c1:da:50:dd:9a:ba:5f:47:e1:7f:c1:38:03:14: 41:8a:49:ef:03:64:8a:87:9f:28:65:1f:d1:31:a5: 57:cb:72:96:2c:80:69:08:bb:c2:c2:d5:ea:dd:70: f1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:BF:17:87:9C:B3:0F:98:09:F0:84:A0:00:22:3F:75:76:D8:C2:5E X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31633a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1c::/48 Signature Algorithm: sha256WithRSAEncryption af:74:32:c8:ba:2f:26:85:58:24:f4:cf:c1:71:ec:f7:cf:32: 6c:1f:d3:49:72:d1:e1:51:f1:59:59:23:50:0b:e7:98:5b:f0: 10:b2:c9:1e:cd:b1:85:07:48:fb:60:9f:fc:b9:5e:b5:48:85: 5a:a5:fb:71:41:c3:a6:db:8c:62:a1:92:97:03:79:62:e4:b9: bd:7f:f2:7a:34:2f:64:55:d1:57:3e:4b:1d:82:6b:1d:cb:ac: 3a:3b:90:49:e5:cc:16:c4:df:69:6c:3e:d9:e8:4e:5f:66:b2: 65:4e:8c:72:0e:6e:86:af:f0:fa:b2:c3:54:2c:4e:6e:44:b9: 54:73:9e:ca:a7:bd:fd:dc:38:60:2c:27:21:34:2b:8e:bf:4f: 1e:34:c2:cc:e4:53:30:92:8e:2b:d1:8d:53:a3:09:36:3b:b4: 6c:93:1a:3f:66:22:3b:1c:2e:22:b3:a4:f2:d4:9d:ee:3e:4d: be:75:be:5c:b3:89:3d:98:4f:f6:3a:1b:ba:59:be:13:8f:fe: 23:7f:24:a6:a1:bb:ec:80:23:c4:ba:eb:03:f2:ef:20:db:7d: 6b:f9:9c:e4:71:22:c3:da:e5:65:1d:c9:f1:4c:e4:95:6d:c0: 47:2b:a8:92:de:5c:c8:94:24:0c:c7:65:4b:77:71:24:9c:fc: 61:6d:b7:d5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSifoOAOErhtBLG8m1fELOaoeJyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDBaFw0yNTExMjgwNTAwMDBaMDMxMTAvBgNV BAMTKDQ2QkYxNzg3OUNCMzBGOTgwOUYwODRBMDAwMjIzRjc1NzZEOEMyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFfE9/Dqu9FluYOTYo2RVJwpJT rrVUAsa8LXlnQqHs1KLfBV+yJQRvttliy46ZXVjn6Qqyrple4gOfeC1Blx3a6tbS izMEeV1oPT3DmLutbLgQ6vJxVPvQeaqGS0gR4otq5EWLEGPzAkjXk36UK0lVA/E/ z2U9s3QTN0jesKyQZlO+sNrLUf+i0GAqv8jnrHfs1LFmUyNq011DcWHOWk4/qd+Y pjrUVAQ9RyoRlB7i0faq3NyPPzyNhZM5xBXl7osT4LARhLvEC9DUWgE90U/LGWTB 2lDdmrpfR+F/wTgDFEGKSe8DZIqHnyhlH9ExpVfLcpYsgGkIu8LC1erdcPGhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURr8Xh5yzD5gJ8ISgACI/dXbYwl4wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AABww DQYJKoZIhvcNAQELBQADggEBAK90Msi6LyaFWCT0z8Fx7PfPMmwf00ly0eFR8VlZ I1AL55hb8BCyyR7NsYUHSPtgn/y5XrVIhVql+3FBw6bbjGKhkpcDeWLkub1/8no0 L2RV0Vc+Sx2Cax3LrDo7kEnlzBbE32lsPtnoTl9msmVOjHIOboav8Pqyw1QsTm5E uVRznsqnvf3cOGAsJyE0K46/Tx40wszkUzCSjivRjVOjCTY7tGyTGj9mIjscLiKz pPLUne4+Tb51vlyziT2YT/Y6G7pZvhOP/iN/JKahu+yAI8S66wPy7yDbfWv5nORx IsPa5WUdyfFM5JVtwEcrqJLeXMiUJAzHZUt3cSSc/GFtt9U= -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:30 2025 by rpki-client