$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: aSveE3IKLfGcSFulsAn+blCewMkEDDClhiNrv0faEEE= Subject key identifier: C5:24:3C:B1:86:93:A9:BB:3E:0D:D2:08:8C:19:F7:28:D4:0C:B9:DD Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 66962C7CA8231FCB43B5811CC1395F0A2B0AF98B Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Nov 2024 05:00:01 +0000 ROA not before: Fri 29 Nov 2024 04:55:01 +0000 ROA not after: Fri 28 Nov 2025 05:00:01 +0000 asID: 56246 IP address blocks: 2404:fd00:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:96:2c:7c:a8:23:1f:cb:43:b5:81:1c:c1:39:5f:0a:2b:0a:f9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:01 2024 GMT Not After : Nov 28 05:00:01 2025 GMT Subject: CN=C5243CB18693A9BB3E0DD2088C19F728D40CB9DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fc:6c:95:61:d3:c1:7b:8b:a3:39:95:19:69: cb:9a:5a:f0:b8:3f:04:a4:6e:9e:9a:00:3a:ae:b7: 72:a4:ba:3a:ab:14:77:a3:90:50:63:48:fb:fe:a6: b0:8c:4f:b1:77:7c:74:a7:14:86:1e:a0:94:b0:d4: 5a:1e:35:aa:2a:59:04:da:12:bc:d9:5b:41:04:d9: 93:ab:56:ac:3d:d1:9f:1e:13:02:5e:e3:54:fe:e1: ba:94:0e:bd:fb:6b:d0:da:60:52:f8:6f:39:fe:74: 87:9f:c2:ba:f4:20:6c:c7:f8:f8:86:65:81:f6:8c: b1:96:a2:6e:fc:1d:f6:41:03:e7:ca:eb:0f:ec:37: 16:20:3a:d9:93:a6:dd:8b:13:72:11:dc:b9:3b:62: 6e:05:96:5b:d6:4a:4d:b3:89:7d:5b:09:4e:b4:71: a2:c0:f6:bf:75:3d:b7:ac:16:76:33:d6:d1:51:82: 6a:64:da:be:c3:d0:96:61:51:be:f1:30:c0:d2:73: 02:04:c7:0a:d8:c7:79:51:0e:66:36:9d:56:ff:6c: 45:58:ce:ec:50:f3:b5:39:b3:a4:93:99:44:cd:7d: be:40:3f:c5:47:69:b8:77:9a:36:89:a0:47:ff:48: d9:73:8f:2f:be:13:cd:cc:d9:8e:3e:4b:b3:83:c6: 1a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:24:3C:B1:86:93:A9:BB:3E:0D:D2:08:8C:19:F7:28:D4:0C:B9:DD X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31643a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1d::/48 Signature Algorithm: sha256WithRSAEncryption 17:cf:a6:e7:56:69:72:f8:d3:61:3f:d8:53:d2:a4:83:da:53: ba:52:9b:fd:0b:36:d7:50:d9:3f:4c:4c:69:ef:79:5f:a4:12: 40:5e:ef:73:e4:ee:b1:ce:f7:a2:2d:0f:10:80:b8:b8:4f:3d: 7b:17:15:ab:51:3c:08:ba:94:b1:7c:ca:48:b3:56:01:aa:1d: 7b:41:fe:db:00:c1:8e:b0:de:b4:3d:a9:26:e1:26:f9:22:4f: cd:ef:fe:8f:05:1c:7f:1f:4d:21:13:21:54:d0:c9:1d:7d:76: c2:50:7d:3d:b1:e6:27:b7:b8:ab:5a:0f:0b:5c:8a:10:fb:3e: 25:3c:cb:42:ef:98:57:2e:1c:67:89:b8:4c:11:70:72:16:96: fe:0c:50:a3:1b:2f:25:12:19:6e:f8:ab:bd:9b:55:f2:eb:80: 84:41:0f:b5:f6:72:b3:c3:c5:17:6f:6a:7f:66:fb:48:c5:cf: 5b:60:85:4d:8b:75:5b:69:16:4e:d9:37:0b:2c:d9:7c:fc:75: 3f:f0:93:a8:b9:ee:05:3f:14:3f:cc:3a:cc:2b:f2:84:c9:63: 3d:c5:c9:8d:25:e4:70:6b:58:29:cf:cd:2e:3b:43:90:ee:8c: 66:95:06:4f:9d:a0:65:e7:d7:e5:43:50:27:c8:56:6d:f3:97: fd:42:07:50 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZpYsfKgjH8tDtYEcwTlfCisK+YswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDFaFw0yNTExMjgwNTAwMDFaMDMxMTAvBgNV BAMTKEM1MjQzQ0IxODY5M0E5QkIzRTBERDIwODhDMTlGNzI4RDQwQ0I5REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/GyVYdPBe4ujOZUZacuaWvC4 PwSkbp6aADqut3KkujqrFHejkFBjSPv+prCMT7F3fHSnFIYeoJSw1FoeNaoqWQTa ErzZW0EE2ZOrVqw90Z8eEwJe41T+4bqUDr37a9DaYFL4bzn+dIefwrr0IGzH+PiG ZYH2jLGWom78HfZBA+fK6w/sNxYgOtmTpt2LE3IR3Lk7Ym4FllvWSk2ziX1bCU60 caLA9r91PbesFnYz1tFRgmpk2r7D0JZhUb7xMMDScwIExwrYx3lRDmY2nVb/bEVY zuxQ87U5s6STmUTNfb5AP8VHabh3mjaJoEf/SNlzjy++E83M2Y4+S7ODxhpnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUxSQ8sYaTqbs+DdIIjBn3KNQMud0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB0w DQYJKoZIhvcNAQELBQADggEBABfPpudWaXL402E/2FPSpIPaU7pSm/0LNtdQ2T9M TGnveV+kEkBe73Pk7rHO96ItDxCAuLhPPXsXFatRPAi6lLF8ykizVgGqHXtB/tsA wY6w3rQ9qSbhJvkiT83v/o8FHH8fTSETIVTQyR19dsJQfT2x5ie3uKtaDwtcihD7 PiU8y0LvmFcuHGeJuEwRcHIWlv4MUKMbLyUSGW74q72bVfLrgIRBD7X2crPDxRdv an9m+0jFz1tghU2LdVtpFk7ZNwss2Xz8dT/wk6i57gU/FD/MOswr8oTJYz3FyY0l 5HBrWCnPzS47Q5DujGaVBk+doGXn1+VDUCfIVm3zl/1CB1A= -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:05 2025 by rpki-client