$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: uorIfga37LHSTNZKOUg+4BlxLP8i9yNZqy57RP3TMMI= Subject key identifier: A1:0A:63:84:C9:9F:E2:5F:18:03:A8:7D:01:4E:5D:C5:FF:AE:3E:AC Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0234A61E7F7A1C6B5057F58976994B345139D37E Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:34:a6:1e:7f:7a:1c:6b:50:57:f5:89:76:99:4b:34:51:39:d3:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=A10A6384C99FE25F1803A87D014E5DC5FFAE3EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:2a:6d:95:bf:06:b9:bf:2d:8d:e7:9d:3b: 8c:27:c8:d3:52:b1:d3:2e:fe:bd:4e:c9:ec:5a:e1: 77:b6:d2:a2:2d:d9:06:a7:c3:29:17:69:ba:a9:98: 09:7d:bb:63:3e:07:fe:82:63:17:e2:eb:86:ab:57: 6d:23:2a:ef:e6:05:3d:ec:d5:0d:8b:9d:93:e0:3e: 37:34:51:7b:9d:93:ba:27:e7:b3:3b:0c:96:56:1c: 17:a9:cc:f6:68:a5:b5:58:7d:99:4b:5d:57:e7:02: 4a:f9:84:46:fc:71:82:f7:82:9c:38:5b:b0:1a:17: 93:c2:9c:e4:16:a5:4a:13:ad:d6:90:db:b2:0f:f0: f1:3a:54:8f:0a:fa:64:7c:14:0a:7f:a2:e4:60:ea: d8:55:af:e9:6b:cc:0d:5b:09:fc:15:05:df:14:36: 2a:9c:9a:07:81:b9:44:9b:a2:43:7c:3c:f7:b1:67: ba:77:00:a5:ed:a9:81:70:9e:61:32:1c:b3:c8:6a: cb:de:dc:f4:03:7c:c6:6b:a3:f7:3d:3b:f4:e5:fe: 3a:94:ce:90:ae:24:7b:8f:3d:3d:46:0b:d3:ea:8d: d8:5e:00:04:ab:58:3e:0e:43:ca:f1:b6:29:35:a0: 7c:6f:74:17:5b:ab:85:23:09:a4:1b:1e:f5:92:31: df:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0A:63:84:C9:9F:E2:5F:18:03:A8:7D:01:4E:5D:C5:FF:AE:3E:AC X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:20::/48 Signature Algorithm: sha256WithRSAEncryption 8f:7e:c6:07:8f:86:6f:75:0a:c2:57:0d:71:24:df:c9:7a:8d: fc:0e:53:89:d7:97:c0:86:fb:ee:53:ba:63:c2:3d:94:7a:56: 9f:e8:c3:05:83:66:75:eb:e0:65:2a:f5:9b:4b:44:b1:b2:21: 2a:88:1f:d7:76:4e:f8:d2:15:53:63:b5:d1:3c:f5:60:e0:88: 1e:66:bf:22:bb:2f:4c:16:72:cf:2f:1a:84:19:07:2a:c3:6e: 74:76:82:46:90:54:51:f7:e6:7d:82:8c:6f:6b:ee:f7:f8:e1: ba:27:da:b2:dc:59:78:fc:ee:20:37:14:9b:22:84:de:58:50: 75:f4:fb:75:bc:33:1d:99:2a:37:1a:e0:63:b8:42:c3:09:4b: 53:b6:c4:c8:31:25:60:57:5d:2d:dd:1d:c5:04:ba:30:a0:ff: 1a:01:4e:c6:76:97:ef:d4:80:aa:fb:36:ab:76:77:65:0c:51: 12:19:60:90:ef:ae:ae:67:4a:18:3e:38:ab:85:a9:3e:b0:3f: 28:8b:9a:f2:92:65:6b:b5:d5:ee:36:1d:b3:85:6a:ce:2b:94: 75:47:1e:88:02:3e:23:01:bb:8f:6c:7c:06:e3:e8:c3:b2:de: fc:2c:88:14:a2:42:d1:a9:fa:43:24:18:1d:c4:2f:7e:3c:5f: c7:a7:ab:29 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAjSmHn96HGtQV/WJdplLNFE5034wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKEExMEE2Mzg0Qzk5RkUyNUYxODAzQTg3RDAxNEU1REM1RkZBRTNFQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLFSptlb8Gub8tjeedO4wnyNNS sdMu/r1Oyexa4Xe20qIt2QanwykXabqpmAl9u2M+B/6CYxfi64arV20jKu/mBT3s 1Q2LnZPgPjc0UXudk7on57M7DJZWHBepzPZopbVYfZlLXVfnAkr5hEb8cYL3gpw4 W7AaF5PCnOQWpUoTrdaQ27IP8PE6VI8K+mR8FAp/ouRg6thVr+lrzA1bCfwVBd8U NiqcmgeBuUSbokN8PPexZ7p3AKXtqYFwnmEyHLPIasve3PQDfMZro/c9O/Tl/jqU zpCuJHuPPT1GC9PqjdheAASrWD4OQ8rxtik1oHxvdBdbq4UjCaQbHvWSMd9rAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUoQpjhMmf4l8YA6h9AU5dxf+uPqwwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACAw DQYJKoZIhvcNAQELBQADggEBAI9+xgePhm91CsJXDXEk38l6jfwOU4nXl8CG++5T umPCPZR6Vp/owwWDZnXr4GUq9ZtLRLGyISqIH9d2TvjSFVNjtdE89WDgiB5mvyK7 L0wWcs8vGoQZByrDbnR2gkaQVFH35n2CjG9r7vf44bon2rLcWXj87iA3FJsihN5Y UHX0+3W8Mx2ZKjca4GO4QsMJS1O2xMgxJWBXXS3dHcUEujCg/xoBTsZ2l+/UgKr7 Nqt2d2UMURIZYJDvrq5nShg+OKuFqT6wPyiLmvKSZWu11e42HbOFas4rlHVHHogC PiMBu49sfAbj6MOy3vwsiBSiQtGp+kMkGB3EL348X8enqyk= -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org