$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: b96hxBddMFwPA9vQWIAJ9QQl9gWSJYe5ETR4e7K0fC0= Subject key identifier: 3A:FC:40:7B:87:F4:61:81:2C:18:EE:B3:3E:22:E1:BF:60:71:A6:CC Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5111341FB377110D68B8C6E960AAEAB537974581 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:1f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:11:34:1f:b3:77:11:0d:68:b8:c6:e9:60:aa:ea:b5:37:97:45:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=3AFC407B87F461812C18EEB33E22E1BF6071A6CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:71:72:fb:8f:fa:85:4e:f3:5a:15:3e:15:82: 6c:21:f7:68:fc:05:07:32:66:f6:4f:8b:7d:30:75: 3f:d4:6d:f3:63:56:7d:f8:94:66:39:19:8a:8f:b0: 44:16:e5:d0:31:a5:b1:d8:46:34:a0:d5:9b:43:84: d0:2e:6f:05:c9:c5:e0:3e:53:3b:28:60:05:2d:f3: 0e:ef:81:9e:ce:17:ed:22:b0:ca:7c:27:77:0b:92: fe:47:a1:8f:12:cb:31:e2:bb:74:ba:d1:96:cd:74: 1d:f5:8b:de:58:41:78:b9:42:83:69:c4:2e:2f:33: 64:ab:38:45:e5:43:47:26:e4:a8:bf:01:be:dc:e8: 6b:9e:8e:17:7c:b1:d0:fd:cf:9b:c9:27:c7:aa:70: e2:cb:87:45:71:0f:aa:ee:bf:a8:b5:7f:5b:db:f6: 6c:ac:47:69:c2:e6:49:c5:39:89:e2:cf:8e:a1:7e: 24:83:37:04:58:2a:5b:39:d0:b8:a0:f6:46:a7:bf: 23:82:26:78:f5:43:72:6c:bc:87:08:a9:37:a1:c0: 59:a7:b4:be:03:4a:3b:88:41:79:7c:26:ea:b9:3c: d2:02:97:3d:60:9b:b1:9c:58:6b:e3:98:a0:d1:b9: 78:f3:cf:f1:93:c6:9a:03:98:9f:73:8b:45:25:80: 83:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FC:40:7B:87:F4:61:81:2C:18:EE:B3:3E:22:E1:BF:60:71:A6:CC X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a31663a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:1f::/48 Signature Algorithm: sha256WithRSAEncryption ad:dd:48:e3:9f:5f:c1:a7:4b:e8:b5:b2:f9:b1:83:22:a4:d8: 5b:46:e6:32:1e:86:dc:af:68:71:48:75:40:de:c9:ec:14:10: da:9d:39:f9:c8:19:e0:d5:9c:cb:4f:eb:ac:ca:cc:b7:a2:85: 7b:20:e4:83:c1:be:6d:28:72:f8:a3:75:89:53:84:3e:23:6b: 10:4c:f2:46:38:e1:42:86:dc:d4:2e:52:85:c3:f3:61:84:22: 43:f7:3a:12:96:39:61:a5:9c:5f:3c:f8:63:e6:28:21:f4:6d: 8e:4a:fa:13:e4:91:bd:d0:9a:16:88:42:88:d1:e3:fb:3d:bb: d4:b3:5b:4d:e7:0c:48:11:21:a1:8e:2e:3d:3f:d7:92:9a:71: 9e:d7:66:5a:aa:91:26:68:09:83:f8:df:5d:78:61:54:f7:89: 05:5f:5c:48:9a:9a:b4:1a:09:3f:1c:95:93:8f:b1:80:5b:91: 09:ca:c4:96:c5:d6:ba:ea:a5:16:fa:32:a3:6f:c2:30:21:d8: 34:ee:63:61:8f:cb:dc:07:20:37:e4:19:13:08:d8:e0:97:3f: 7d:1f:ab:b7:8d:05:b7:4e:ff:e3:dc:97:fa:00:44:24:a7:37: f9:c7:b9:23:3e:9d:99:11:cb:7f:bd:51:ca:ec:03:4d:74:85: 3e:29:cd:60 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUURE0H7N3EQ1ouMbpYKrqtTeXRYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKDNBRkM0MDdCODdGNDYxODEyQzE4RUVCMzNFMjJFMUJGNjA3MUE2Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYcXL7j/qFTvNaFT4Vgmwh92j8 BQcyZvZPi30wdT/UbfNjVn34lGY5GYqPsEQW5dAxpbHYRjSg1ZtDhNAubwXJxeA+ UzsoYAUt8w7vgZ7OF+0isMp8J3cLkv5HoY8SyzHiu3S60ZbNdB31i95YQXi5QoNp xC4vM2SrOEXlQ0cm5Ki/Ab7c6Guejhd8sdD9z5vJJ8eqcOLLh0VxD6ruv6i1f1vb 9mysR2nC5knFOYniz46hfiSDNwRYKls50Lig9kanvyOCJnj1Q3JsvIcIqTehwFmn tL4DSjuIQXl8Juq5PNIClz1gm7GcWGvjmKDRuXjzz/GTxpoDmJ9zi0UlgIP9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUOvxAe4f0YYEsGO6zPiLhv2BxpswwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzE2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AAB8w DQYJKoZIhvcNAQELBQADggEBAK3dSOOfX8GnS+i1svmxgyKk2FtG5jIehtyvaHFI dUDeyewUENqdOfnIGeDVnMtP66zKzLeihXsg5IPBvm0ocvijdYlThD4jaxBM8kY4 4UKG3NQuUoXD82GEIkP3OhKWOWGlnF88+GPmKCH0bY5K+hPkkb3QmhaIQojR4/s9 u9SzW03nDEgRIaGOLj0/15KacZ7XZlqqkSZoCYP43114YVT3iQVfXEiamrQaCT8c lZOPsYBbkQnKxJbF1rrqpRb6MqNvwjAh2DTuY2GPy9wHIDfkGRMI2OCXP30fq7eN BbdO/+Pcl/oARCSnN/nHuSM+nZkRy3+9UcrsA010hT4pzWA= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org