$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: iWweCFsseAwWlFl3TKyzN8mT7rByo1hbW/gwEP06R8I= Subject key identifier: 9E:FF:22:0A:03:AE:5E:8C:65:5D:90:B4:D9:11:04:2A:C8:0F:27:41 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 2D5489E6C9050AE4F29EA73C9A2705D8DBF4246A Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:03 +0000 ROA not before: Fri 29 Dec 2023 03:55:03 +0000 ROA not after: Fri 27 Dec 2024 04:00:03 +0000 asID: 56246 IP address blocks: 2404:fd00:1e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:54:89:e6:c9:05:0a:e4:f2:9e:a7:3c:9a:27:05:d8:db:f4:24:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:03 2023 GMT Not After : Dec 27 04:00:03 2024 GMT Subject: CN=9EFF220A03AE5E8C655D90B4D911042AC80F2741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:98:20:d3:cb:ed:3f:25:b8:52:51:d7:16: 8c:14:42:ef:7d:0e:01:1c:c7:ac:32:22:f6:f6:41: 46:01:3b:6d:79:bf:24:23:d8:1d:79:78:2d:1c:cd: b0:75:fd:3b:e7:be:b5:d2:47:e2:a8:3e:db:26:b7: 9c:0d:3e:de:33:25:24:93:7f:b9:04:c0:ef:1a:99: 1f:52:b6:ed:53:fc:75:a0:63:12:f9:41:87:8d:ef: 6f:d6:5a:12:b9:80:c8:b4:59:a5:34:b7:f7:ad:55: 40:a3:af:a3:f5:4e:f3:7b:b4:6f:d3:52:be:37:96: 96:4a:2b:4f:c5:6e:50:45:ad:e5:ca:32:81:65:c8: 87:60:b3:2d:f0:9f:fb:e4:27:1a:1b:1c:c9:e4:01: 4b:c1:a6:ae:54:ea:24:2e:16:c4:6b:de:bf:98:0d: 54:49:0b:ad:b3:de:f7:95:48:c2:19:34:51:15:97: 7c:fa:35:f1:e3:ac:dd:9f:ca:ec:0f:c1:91:90:ee: 3b:d9:26:28:09:dc:82:6a:cc:69:d5:a8:70:c0:2f: b5:f8:cd:cd:11:ea:5f:f1:8f:4c:35:4e:db:6b:b7: f0:bf:ce:e1:ad:08:34:e8:24:2b:50:98:37:fd:bf: 3b:7c:b1:45:c0:22:c9:dd:f7:ef:e1:c7:b9:08:95: 48:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:FF:22:0A:03:AE:5E:8C:65:5D:90:B4:D9:11:04:2A:C8:0F:27:41 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31653a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1e::/48 Signature Algorithm: sha256WithRSAEncryption 18:4b:82:20:b7:41:16:58:64:58:24:ba:82:f8:41:03:c8:24: 5e:08:1e:aa:0d:ef:e4:35:50:f6:a3:61:b2:1d:cc:40:10:c2: 01:4a:87:0a:33:22:c4:fd:e7:1f:21:e0:f7:f9:f6:98:68:73: a1:5c:20:7c:42:74:2b:84:c4:6b:e9:0b:39:d6:ab:77:4c:30: 1b:e8:f4:48:d1:75:38:dc:8b:bf:cd:80:f0:e2:19:1f:b2:94: 08:2e:05:4a:64:5f:d2:02:1c:38:27:4d:6e:3e:1e:dd:d7:fb: 10:05:a9:1b:1d:ee:30:a3:5c:63:8f:13:a3:9b:15:97:05:60: 14:5b:18:62:a2:fe:74:4a:5a:ae:c7:d1:d2:10:94:66:5b:38: d2:bd:99:c2:49:3a:8c:b8:72:6f:47:da:ec:5a:9c:91:db:53: c6:3b:0e:60:a7:c3:c3:50:2f:6c:0d:19:06:cc:05:40:82:1c: b3:bd:b9:97:a2:b2:a1:92:20:c7:cb:5b:3a:3e:d6:4d:3e:53: 60:d8:2a:ca:c7:5c:ad:e4:68:c8:3a:93:87:68:da:4a:42:84: 5c:83:f8:68:ff:26:5b:c1:51:fe:6f:56:05:9c:9d:da:92:dc: f3:d5:3d:ef:35:c5:ee:6d:5c:f8:17:e8:4f:a8:9e:6f:75:39: ca:b1:b8:25 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULVSJ5skFCuTynqc8micF2Nv0JGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDNaFw0yNDEyMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDlFRkYyMjBBMDNBRTVFOEM2NTVEOTBCNEQ5MTEwNDJBQzgwRjI3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxApgg08vtPyW4UlHXFowUQu99 DgEcx6wyIvb2QUYBO215vyQj2B15eC0czbB1/TvnvrXSR+KoPtsmt5wNPt4zJSST f7kEwO8amR9Stu1T/HWgYxL5QYeN72/WWhK5gMi0WaU0t/etVUCjr6P1TvN7tG/T Ur43lpZKK0/FblBFreXKMoFlyIdgsy3wn/vkJxobHMnkAUvBpq5U6iQuFsRr3r+Y DVRJC62z3veVSMIZNFEVl3z6NfHjrN2fyuwPwZGQ7jvZJigJ3IJqzGnVqHDAL7X4 zc0R6l/xj0w1Tttrt/C/zuGtCDToJCtQmDf9vzt8sUXAIsnd9+/hx7kIlUitAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnv8iCgOuXoxlXZC02REEKsgPJ0EwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB4w DQYJKoZIhvcNAQELBQADggEBABhLgiC3QRZYZFgkuoL4QQPIJF4IHqoN7+Q1UPaj YbIdzEAQwgFKhwozIsT95x8h4Pf59phoc6FcIHxCdCuExGvpCznWq3dMMBvo9EjR dTjci7/NgPDiGR+ylAguBUpkX9ICHDgnTW4+Ht3X+xAFqRsd7jCjXGOPE6ObFZcF YBRbGGKi/nRKWq7H0dIQlGZbONK9mcJJOoy4cm9H2uxanJHbU8Y7DmCnw8NQL2wN GQbMBUCCHLO9uZeisqGSIMfLWzo+1k0+U2DYKsrHXK3kaMg6k4do2kpChFyD+Gj/ JlvBUf5vVgWcndqS3PPVPe81xe5tXPgX6E+onm91OcqxuCU= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org