$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: Uet70gDazks9vzgecuevL9HnNBLeZjVQGCNFBMso7V8= Subject key identifier: 9F:23:04:9E:6F:0D:99:F7:29:6F:E3:E0:30:2A:C0:D5:CC:E5:50:B2 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 234302624A933C66CB1BC535A71DBD453EBAE3DE Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 56246 IP address blocks: 2404:fd00:22::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 09:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:43:02:62:4a:93:3c:66:cb:1b:c5:35:a7:1d:bd:45:3e:ba:e3:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=9F23049E6F0D99F7296FE3E0302AC0D5CCE550B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:3a:f2:ce:39:a1:bc:dc:0d:be:67:b7:fd: 8b:5e:72:6b:29:0c:59:f7:f0:aa:10:df:b0:c4:37: 3d:5f:71:2c:49:b7:be:f6:a0:3f:9d:6c:4a:f0:34: 52:c3:cd:ad:77:fa:7f:9b:92:5b:ce:9a:f3:73:02: e3:3d:56:df:5b:c5:0d:e8:f2:7c:c8:2e:5d:69:6d: 33:e0:bb:56:47:7f:9f:ea:a6:d1:39:ff:e2:84:3e: b1:12:e6:d0:6e:00:be:7a:07:03:46:ef:92:fc:5e: a2:fa:1e:6c:8e:bc:7e:b9:7b:89:89:d0:e6:ff:a3: 89:03:3c:07:57:a7:03:54:87:4e:53:cb:96:8b:1f: 65:d1:f0:e6:ea:59:11:c8:76:cf:dd:c8:93:a9:2a: a4:e4:1f:99:ed:2b:86:b3:c4:d9:02:ca:50:f7:5a: 26:9c:46:d7:b7:02:43:12:f5:f5:f5:e7:ec:73:f5: 0b:85:81:40:a0:51:37:59:b0:46:80:8e:54:a7:d2: 7d:96:ba:3b:a6:5a:97:44:d5:81:b0:1c:a5:cb:c2: 70:bd:cd:12:71:92:33:97:06:e8:02:5f:ca:26:ad: 7a:fa:0c:1b:87:04:a3:22:01:56:5f:d8:ed:4e:ba: 3f:5e:c8:e5:b4:83:4f:2a:82:2b:83:9c:8d:3a:a3: b3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:23:04:9E:6F:0D:99:F7:29:6F:E3:E0:30:2A:C0:D5:CC:E5:50:B2 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32323a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:22::/48 Signature Algorithm: sha256WithRSAEncryption 5a:40:7f:6e:49:41:f8:7d:ad:bf:4e:3e:2c:36:25:78:3a:09: c3:16:dd:15:49:8a:64:c9:25:48:13:7f:38:f0:83:45:8a:91: 1d:06:17:37:67:da:7a:d7:b7:e2:23:52:2c:6d:e9:74:52:8c: a0:e0:b3:fb:21:d3:fb:45:dc:c3:72:22:71:08:04:c2:49:28: 99:5d:ee:62:3a:e4:95:ea:90:90:ce:a2:8f:ed:07:b2:9e:b0: 97:bb:0c:b8:86:10:7f:04:bd:85:06:6f:95:f1:c6:47:cd:f3: 66:96:d5:7b:06:76:5f:61:4f:c8:dd:e7:c8:a7:2a:87:d3:34: 17:9b:96:94:a5:1f:26:24:1e:4f:3c:6d:74:08:83:a7:ad:d8: 17:68:47:4e:b2:b0:7b:29:3e:71:64:59:1d:1e:a1:86:5b:e9: 89:9c:a5:f2:ce:44:9a:50:cc:0e:b8:36:cd:c5:1e:b1:38:65: 69:4e:c2:cc:a3:1b:c8:6b:69:3c:0b:40:39:90:c3:56:97:a1: d2:9b:ff:eb:3b:fa:9d:a0:07:30:e2:ae:fc:2b:86:6c:f8:15: 34:a2:38:21:8a:1b:54:a0:27:42:45:d6:2a:39:7c:2c:ca:e0: 20:14:2e:c7:6e:11:cb:ce:c0:c1:25:21:28:b2:7b:f7:24:62: 6e:e4:89:a6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUI0MCYkqTPGbLG8U1px29RT66494wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDlGMjMwNDlFNkYwRDk5RjcyOTZGRTNFMDMwMkFDMEQ1Q0NFNTUwQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw6jryzjmhvNwNvme3/Ytecmsp DFn38KoQ37DENz1fcSxJt772oD+dbErwNFLDza13+n+bklvOmvNzAuM9Vt9bxQ3o 8nzILl1pbTPgu1ZHf5/qptE5/+KEPrES5tBuAL56BwNG75L8XqL6HmyOvH65e4mJ 0Ob/o4kDPAdXpwNUh05Ty5aLH2XR8ObqWRHIds/dyJOpKqTkH5ntK4azxNkCylD3 WiacRte3AkMS9fX15+xz9QuFgUCgUTdZsEaAjlSn0n2WujumWpdE1YGwHKXLwnC9 zRJxkjOXBugCX8omrXr6DBuHBKMiAVZf2O1Ouj9eyOW0g08qgiuDnI06o7PbAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnyMEnm8Nmfcpb+PgMCrA1czlULIwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACIw DQYJKoZIhvcNAQELBQADggEBAFpAf25JQfh9rb9OPiw2JXg6CcMW3RVJimTJJUgT fzjwg0WKkR0GFzdn2nrXt+IjUixt6XRSjKDgs/sh0/tF3MNyInEIBMJJKJld7mI6 5JXqkJDOoo/tB7KesJe7DLiGEH8EvYUGb5XxxkfN82aW1XsGdl9hT8jd58inKofT NBeblpSlHyYkHk88bXQIg6et2BdoR06ysHspPnFkWR0eoYZb6YmcpfLORJpQzA64 Ns3FHrE4ZWlOwsyjG8hraTwLQDmQw1aXodKb/+s7+p2gBzDirvwrhmz4FTSiOCGK G1SgJ0JF1io5fCzK4CAULsduEcvOwMElISiye/ckYm7kiaY= -----END CERTIFICATE-----Generated at Tue Apr 30 19:12:38 2024 by rpki-client on console-ams.rpki-client.org