$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: MT27HxuGPeSpVF6u41j4DZvHOs3H+bNXWx1/au/Srbg= Subject key identifier: 47:F6:ED:BB:B7:F6:32:C6:EC:34:F0:3B:82:C8:6B:1A:78:5E:83:F0 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 38B58210C7CAF781B1B40A88C3ECF760972CF993 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 56246 IP address blocks: 2404:fd00:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b5:82:10:c7:ca:f7:81:b1:b4:0a:88:c3:ec:f7:60:97:2c:f9:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=47F6EDBBB7F632C6EC34F03B82C86B1A785E83F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a6:c7:9b:0e:63:08:c2:05:c5:c4:0d:37:57: 75:e2:ce:a4:a8:f7:22:96:b2:5f:54:96:f3:f8:9a: 9a:e3:88:cd:1a:c8:91:55:6d:2d:93:a7:5c:ce:3b: 49:8d:f3:b9:17:84:01:70:8c:0f:6e:8e:9d:f5:4d: 76:1b:fe:9d:30:73:f7:a6:64:fc:47:eb:81:b1:ca: 5d:35:72:b8:e1:52:eb:d3:82:d2:5f:c9:67:ff:cc: 3f:75:e8:7f:93:95:a3:b9:79:dc:d3:81:03:7b:d0: 3e:a6:d3:24:a2:66:96:b7:9a:5f:f4:57:c1:85:b0: 0b:31:96:e5:48:78:42:9a:ed:71:7e:42:a2:aa:63: c9:12:61:d1:86:68:53:c8:ab:5b:2f:86:ab:51:cc: 1b:a8:ad:8b:d5:53:65:1d:90:47:4f:af:95:9f:37: f9:c0:7b:0e:c2:e6:b9:60:46:a3:d0:a6:75:ad:28: fc:6f:ba:f4:dc:7b:10:8e:8d:a3:b9:2c:41:79:39: 98:b2:bb:07:b0:58:1e:0c:d9:c7:9d:b0:e7:78:a4: 09:90:a9:7f:9b:3a:31:92:1a:66:53:a2:22:0e:8e: a5:0a:6e:9f:9d:d1:7e:6f:ef:85:f9:4c:1e:cb:4c: c3:64:0c:06:a6:47:01:4b:f8:d9:d1:3f:02:3b:b5: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F6:ED:BB:B7:F6:32:C6:EC:34:F0:3B:82:C8:6B:1A:78:5E:83:F0 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1d::/48 Signature Algorithm: sha256WithRSAEncryption 7c:09:cb:f4:ab:d5:7e:e0:fe:89:4d:3e:e6:f3:5f:a1:5c:6e: 19:99:be:73:5b:0d:92:f9:91:ec:0a:d1:68:56:b7:da:ab:1b: df:4c:1a:6e:38:e3:53:84:d9:b5:2a:2a:37:52:9a:4d:e2:2f: 45:b7:5b:17:fb:0e:9b:2b:c1:0f:95:49:d3:97:4e:1a:f7:20: 17:6a:1d:f3:a4:6b:60:5c:89:62:3a:65:a1:7b:1f:98:2b:9e: f5:28:32:be:6d:47:fc:16:d8:b4:b5:f2:93:aa:d7:d4:63:99: 71:e9:32:e3:89:a4:24:c5:42:da:f8:ba:b2:d4:2b:6a:5e:76: 4f:13:ec:00:51:d6:d8:0e:53:0f:af:1b:58:ca:4c:9c:76:84: a2:11:47:19:bd:74:1c:00:83:54:e0:a4:53:3e:3a:e9:75:1b: 8e:ec:8b:92:66:15:72:80:59:32:59:da:d1:59:91:3f:31:4e: b1:6f:ab:16:14:db:22:22:16:f9:8b:06:a6:65:a6:37:14:6f: b7:43:79:3c:c1:ed:85:82:bf:60:20:f0:21:8e:a8:aa:8c:d0: de:c5:20:15:f3:32:19:c4:e4:5a:05:95:8e:f2:9e:27:be:16: 0a:fb:34:f5:7a:41:9c:44:4b:ce:b5:b6:93:35:c0:ee:0b:99: d5:a3:73:aa -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUOLWCEMfK94GxtAqIw+z3YJcs+ZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKDQ3RjZFREJCQjdGNjMyQzZFQzM0RjAzQjgyQzg2QjFBNzg1RTgzRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZpsebDmMIwgXFxA03V3XizqSo 9yKWsl9UlvP4mprjiM0ayJFVbS2Tp1zOO0mN87kXhAFwjA9ujp31TXYb/p0wc/em ZPxH64Gxyl01crjhUuvTgtJfyWf/zD916H+TlaO5edzTgQN70D6m0ySiZpa3ml/0 V8GFsAsxluVIeEKa7XF+QqKqY8kSYdGGaFPIq1svhqtRzBuorYvVU2UdkEdPr5Wf N/nAew7C5rlgRqPQpnWtKPxvuvTcexCOjaO5LEF5OZiyuwewWB4M2cedsOd4pAmQ qX+bOjGSGmZToiIOjqUKbp+d0X5v74X5TB7LTMNkDAamRwFL+NnRPwI7tf1XAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUR/btu7f2MsbsNPA7gshrGnheg/AwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB0w DQYJKoZIhvcNAQELBQADggEBAHwJy/Sr1X7g/olNPubzX6FcbhmZvnNbDZL5kewK 0WhWt9qrG99MGm4441OE2bUqKjdSmk3iL0W3Wxf7DpsrwQ+VSdOXThr3IBdqHfOk a2BciWI6ZaF7H5grnvUoMr5tR/wW2LS18pOq19RjmXHpMuOJpCTFQtr4urLUK2pe dk8T7ABR1tgOUw+vG1jKTJx2hKIRRxm9dBwAg1TgpFM+Oul1G47si5JmFXKAWTJZ 2tFZkT8xTrFvqxYU2yIiFvmLBqZlpjcUb7dDeTzB7YWCv2Ag8CGOqKqM0N7FIBXz MhnE5FoFlY7ynie+Fgr7NPV6QZxES861tpM1wO4LmdWjc6o= -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org