$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: s0U5wqOLqE7fYUh8KLLQItiHCtiPVmLaQdmwGhcVPag= Subject key identifier: A3:D9:6C:01:1D:50:07:93:E2:8D:4A:B3:60:66:75:B8:71:94:72:A9 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 504BD0A59B1904109807EEBA105976F90709A576 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 29 Dec 2023 04:00:01 +0000 ROA not before: Fri 29 Dec 2023 03:55:01 +0000 ROA not after: Fri 27 Dec 2024 04:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:21::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:4b:d0:a5:9b:19:04:10:98:07:ee:ba:10:59:76:f9:07:09:a5:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:01 2023 GMT Not After : Dec 27 04:00:01 2024 GMT Subject: CN=A3D96C011D500793E28D4AB3606675B8719472A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a3:d7:d1:f1:b1:96:72:1e:57:c6:c9:ad:51: 9d:ff:dc:bd:87:65:7a:d6:86:fe:d8:90:d6:dd:8e: 1d:84:ef:d1:58:4f:f1:c0:00:84:00:4b:e6:bc:49: 63:45:df:8a:03:14:4e:63:a5:ee:0c:0a:6b:b2:c5: 7d:77:42:7d:18:ff:19:fd:2b:07:ff:d3:52:43:8c: 3b:ce:a5:be:cb:33:3f:c8:8f:cd:88:8d:a6:63:0b: de:33:8a:fa:35:4b:33:27:6f:72:f7:72:12:e1:d2: 8c:39:57:cc:07:7a:44:66:11:cf:90:9c:26:a9:59: b2:1b:6f:c8:b5:2e:36:2c:97:f3:3d:1d:a9:f3:08: 3e:ad:43:3d:72:0a:0b:d9:0c:60:57:0e:fe:b6:94: d0:4a:6f:8f:59:d4:09:bc:8c:24:8b:c9:a9:18:38: 77:f0:44:b7:d9:b4:cf:49:02:21:37:1e:fa:32:4b: 21:98:a9:01:d2:23:b3:5c:c0:b4:09:ca:4f:fe:99: 10:b7:70:63:62:0e:c1:7d:4f:22:c3:e6:bd:22:6d: 6f:6a:58:a7:bd:41:bf:70:6d:9b:33:e3:c8:dd:79: 24:e6:03:42:60:7a:2b:d0:53:76:77:c0:ec:5c:fa: 28:cd:ee:53:d8:e0:81:cc:0f:e9:ff:82:bf:17:45: 46:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D9:6C:01:1D:50:07:93:E2:8D:4A:B3:60:66:75:B8:71:94:72:A9 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32313a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:21::/48 Signature Algorithm: sha256WithRSAEncryption 19:13:eb:db:40:63:15:74:c3:84:5f:05:06:84:1e:33:28:04: 19:b4:d0:ea:c7:d6:f6:45:50:eb:63:9d:3e:cc:83:c0:bf:1b: c1:0e:7b:cb:52:3c:00:37:db:5a:01:a4:bf:cf:f5:3a:90:d1: ba:3f:f1:14:44:0b:63:04:6d:75:4b:92:c1:46:21:d6:5d:d6: e5:d5:17:67:98:54:3c:25:65:9e:da:bf:5c:cc:c1:22:68:b9: a0:fc:c1:4d:5d:90:f2:4f:60:31:48:79:65:69:01:5d:65:95: b1:09:da:cd:e6:e9:08:04:96:91:48:72:32:f2:e9:8d:62:36: b8:8e:26:72:99:9d:0c:e9:cf:ea:d5:7c:fd:fe:b0:9a:15:08: 29:82:be:db:d2:2d:d5:a7:e6:a7:32:48:ba:03:60:6b:56:fe: 40:1b:71:0d:72:3c:92:cd:8f:7c:36:c2:91:45:e2:cb:73:08: da:19:99:ed:b0:b0:41:d8:ef:5f:f7:e9:e0:7d:13:21:ef:9a: 64:38:66:e4:79:c2:2c:b3:b1:a6:d4:a4:24:94:31:1d:b6:6d: 0b:db:6c:82:96:37:c4:ca:35:bf:f5:a7:4d:e6:1b:c7:ed:e0: 88:36:0d:65:c8:30:d5:51:c3:ca:be:c5:b9:fb:1a:77:d0:34: 73:44:a6:e7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUUEvQpZsZBBCYB+66EFl2+QcJpXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDFaFw0yNDEyMjcwNDAwMDFaMDMxMTAvBgNV BAMTKEEzRDk2QzAxMUQ1MDA3OTNFMjhENEFCMzYwNjY3NUI4NzE5NDcyQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDco9fR8bGWch5XxsmtUZ3/3L2H ZXrWhv7YkNbdjh2E79FYT/HAAIQAS+a8SWNF34oDFE5jpe4MCmuyxX13Qn0Y/xn9 Kwf/01JDjDvOpb7LMz/Ij82IjaZjC94zivo1SzMnb3L3chLh0ow5V8wHekRmEc+Q nCapWbIbb8i1LjYsl/M9HanzCD6tQz1yCgvZDGBXDv62lNBKb49Z1Am8jCSLyakY OHfwRLfZtM9JAiE3HvoySyGYqQHSI7NcwLQJyk/+mRC3cGNiDsF9TyLD5r0ibW9q WKe9Qb9wbZsz48jdeSTmA0JgeivQU3Z3wOxc+ijN7lPY4IHMD+n/gr8XRUZxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUo9lsAR1QB5PijUqzYGZ1uHGUcqkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACEw DQYJKoZIhvcNAQELBQADggEBABkT69tAYxV0w4RfBQaEHjMoBBm00OrH1vZFUOtj nT7Mg8C/G8EOe8tSPAA321oBpL/P9TqQ0bo/8RREC2MEbXVLksFGIdZd1uXVF2eY VDwlZZ7av1zMwSJouaD8wU1dkPJPYDFIeWVpAV1llbEJ2s3m6QgElpFIcjLy6Y1i NriOJnKZnQzpz+rVfP3+sJoVCCmCvtvSLdWn5qcySLoDYGtW/kAbcQ1yPJLNj3w2 wpFF4stzCNoZme2wsEHY71/36eB9EyHvmmQ4ZuR5wiyzsabUpCSUMR22bQvbbIKW N8TKNb/1p03mG8ft4Ig2DWXIMNVRw8q+xbn7GnfQNHNEpuc= -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org