$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: hWF13z5feVDm7PXGEaezqLTR+DDN+Wj8/hVRN62Q0wQ= Subject key identifier: DF:36:17:D5:22:8B:3F:A4:24:9F:78:30:8D:49:DC:E0:B9:D3:11:78 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 21E5FE168DCAF37669F275B3F273CA131994BD0C Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Nov 2024 05:00:02 +0000 ROA not before: Fri 29 Nov 2024 04:55:02 +0000 ROA not after: Fri 28 Nov 2025 05:00:02 +0000 asID: 58552 IP address blocks: 2404:fd00:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e5:fe:16:8d:ca:f3:76:69:f2:75:b3:f2:73:ca:13:19:94:bd:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 04:55:02 2024 GMT Not After : Nov 28 05:00:02 2025 GMT Subject: CN=DF3617D5228B3FA4249F78308D49DCE0B9D31178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a5:26:a1:2a:2f:f7:5f:23:1c:25:6e:6d:56: 89:01:1d:10:58:96:de:cb:1f:2a:b4:6d:7d:17:3e: 54:c6:8e:3f:b7:bb:a3:e8:e6:a6:3a:3e:90:8a:cd: 55:26:50:af:25:d1:f6:e3:88:13:78:7c:8f:66:ce: 84:48:0f:74:71:77:21:d9:9e:c0:47:3a:e0:d4:bd: 01:01:f8:6a:04:d2:3c:c5:f9:8a:3c:32:3d:22:8c: 35:bf:e2:53:96:15:bb:a7:17:9a:42:bc:aa:ac:c7: 18:d6:03:37:55:e4:9b:83:a5:45:94:b7:e0:cb:88: 26:42:16:e3:e2:df:8e:30:c8:df:9a:da:e2:95:09: db:62:54:30:8c:6a:8d:3b:5b:f2:df:73:18:44:d7: 80:5d:63:3b:2f:8d:34:7e:bc:4a:ba:1e:b2:d2:98: 13:34:67:47:f2:4d:3a:8c:f4:97:63:46:22:a3:96: 1f:9b:9e:1b:49:37:7e:85:31:14:9a:6a:6b:ff:06: 40:a5:36:2c:ce:cd:c7:0f:c5:33:e3:87:c8:72:7e: 56:23:1d:de:36:58:7c:19:6a:9a:7d:fb:23:b8:d2: 3b:a7:2a:91:0e:e2:11:ff:43:15:35:df:20:fc:97: ea:ba:b4:27:84:29:c1:a8:1d:54:5b:84:47:35:a3: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:36:17:D5:22:8B:3F:A4:24:9F:78:30:8D:49:DC:E0:B9:D3:11:78 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32303a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:20::/48 Signature Algorithm: sha256WithRSAEncryption 51:32:1b:d3:68:b2:b0:bb:d5:99:49:1c:ff:6a:11:72:5d:a7: 44:1f:a6:5f:39:0f:3a:f1:bd:e8:a1:9f:f0:a7:10:ac:b5:f6: 91:d6:5c:54:50:0e:f9:18:e6:2d:c7:a7:e3:06:56:25:33:c9: d0:94:ec:af:ed:ca:98:04:35:fa:eb:57:4e:e6:6c:e1:06:c1: 61:60:0a:8e:a8:99:28:8a:54:da:ea:9a:f9:a7:94:8c:bc:c3: e0:d6:63:b2:d2:fa:4c:26:1a:52:fb:b5:d6:c3:d5:35:32:32: f1:a9:7f:f9:d0:55:db:07:65:0e:55:2d:9c:cc:b8:6d:be:7c: ab:fd:28:6d:8c:34:6b:21:78:75:f0:27:55:36:23:a3:7a:45: 6a:da:cc:40:04:8a:6b:71:62:92:87:ea:1f:0c:02:93:9b:70: 13:68:52:9a:81:ba:93:e0:b7:2e:38:24:22:03:36:70:74:83: aa:30:4f:be:78:f7:c6:32:d1:e3:f5:07:50:0e:55:66:10:d7: d6:f3:f1:ac:35:6b:63:8d:ff:bb:1e:56:43:cd:d2:79:cf:8b: 88:5a:09:c9:ea:72:95:2c:c6:54:58:1d:a0:6f:41:88:ab:6f: 8c:00:53:94:60:ef:cd:31:3b:38:c0:17:37:9c:e4:78:5b:50: 94:2f:9d:09 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIeX+Fo3K83Zp8nWz8nPKExmUvQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwNDU1MDJaFw0yNTExMjgwNTAwMDJaMDMxMTAvBgNV BAMTKERGMzYxN0Q1MjI4QjNGQTQyNDlGNzgzMDhENDlEQ0UwQjlEMzExNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLpSahKi/3XyMcJW5tVokBHRBY lt7LHyq0bX0XPlTGjj+3u6Po5qY6PpCKzVUmUK8l0fbjiBN4fI9mzoRID3RxdyHZ nsBHOuDUvQEB+GoE0jzF+Yo8Mj0ijDW/4lOWFbunF5pCvKqsxxjWAzdV5JuDpUWU t+DLiCZCFuPi344wyN+a2uKVCdtiVDCMao07W/LfcxhE14BdYzsvjTR+vEq6HrLS mBM0Z0fyTTqM9JdjRiKjlh+bnhtJN36FMRSaamv/BkClNizOzccPxTPjh8hyflYj Hd42WHwZapp9+yO40junKpEO4hH/QxU13yD8l+q6tCeEKcGoHVRbhEc1o0avAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU3zYX1SKLP6Qkn3gwjUnc4LnTEXgwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACAw DQYJKoZIhvcNAQELBQADggEBAFEyG9NosrC71ZlJHP9qEXJdp0Qfpl85Dzrxveih n/CnEKy19pHWXFRQDvkY5i3Hp+MGViUzydCU7K/typgENfrrV07mbOEGwWFgCo6o mSiKVNrqmvmnlIy8w+DWY7LS+kwmGlL7tdbD1TUyMvGpf/nQVdsHZQ5VLZzMuG2+ fKv9KG2MNGsheHXwJ1U2I6N6RWrazEAEimtxYpKH6h8MApObcBNoUpqBupPgty44 JCIDNnB0g6owT75498Yy0eP1B1AOVWYQ19bz8aw1a2ON/7seVkPN0nnPi4haCcnq cpUsxlRYHaBvQYirb4wAU5Rg780xOzjAFzec5HhbUJQvnQk= -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:53 2025 by rpki-client