$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: 18DnEWIEEx/MA4TdUsjZWuKZETDxTMQxaKMcNPDP2g8= Subject key identifier: E4:BC:DB:2A:88:7C:BA:49:19:1E:D9:AE:DF:FB:CF:EC:9B:37:35:6B Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 1FCD5023B6F9F58EA25DB0E370200BA856086BC5 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 56246 IP address blocks: 2404:fd00:23::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:cd:50:23:b6:f9:f5:8e:a2:5d:b0:e3:70:20:0b:a8:56:08:6b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=E4BCDB2A887CBA49191ED9AEDFFBCFEC9B37356B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:70:f7:30:54:ff:aa:1c:12:49:23:06:6a:d4: 78:bd:c0:9c:20:38:94:25:2f:61:43:a9:1e:1c:9e: fb:7b:9b:39:21:bc:18:1c:7c:db:38:8f:0c:86:9f: 12:a0:21:17:ab:bb:1c:90:11:bd:2b:54:9c:ee:05: e4:e8:f8:16:11:41:43:e6:8e:bd:c6:42:9d:e9:0b: 90:8b:26:ff:8e:78:f4:fc:81:2f:6a:4b:b5:eb:59: 44:ae:21:10:8e:3a:30:a2:6b:dc:30:37:b4:f6:92: 21:cf:a0:94:e4:7c:2e:71:85:4d:8b:c3:f6:ce:ae: d5:aa:3b:10:09:55:6b:b3:c0:e8:09:47:68:a6:f3: 4a:cf:0f:8d:67:61:21:3a:98:4b:e2:09:19:ef:e0: 39:c6:21:92:f6:78:bc:46:aa:14:04:49:d5:43:37: 50:70:7e:88:42:8f:db:15:af:e7:96:28:fa:fe:ad: 87:1d:e1:25:88:31:e2:67:7d:ee:18:14:69:04:91: d7:e8:36:0b:55:aa:e8:b7:bf:91:e9:b6:b9:6e:3c: 39:75:cd:89:b4:d5:be:f5:8d:c1:1f:05:98:ce:13: 0d:98:c9:36:aa:22:4d:fd:7f:cf:cf:7b:53:62:70: 58:d6:1c:d7:cc:c5:a9:7f:34:e0:89:ab:37:f7:ee: 54:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BC:DB:2A:88:7C:BA:49:19:1E:D9:AE:DF:FB:CF:EC:9B:37:35:6B X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32333a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:23::/48 Signature Algorithm: sha256WithRSAEncryption a9:34:45:a2:e9:6f:08:f5:2f:a7:17:5a:97:94:b6:9c:9a:85: a0:49:ef:42:8b:f8:64:30:50:59:7e:0f:40:54:b3:94:0e:51: d1:76:2b:21:e0:b8:27:0e:2f:33:88:fb:ee:f1:53:da:01:d5: e6:b3:ea:92:3c:09:0b:e8:95:f3:23:6b:20:a2:76:a3:70:04: 19:cc:3a:e2:b8:95:a9:05:d3:31:ac:ee:d6:d4:20:ad:de:98: 46:ee:23:cd:39:91:b9:0f:c1:a6:cb:e1:56:ac:ab:cc:05:ed: e5:de:98:f9:ef:fa:a6:6d:95:dd:19:b9:9e:03:23:c4:58:d8: d9:25:79:2b:09:29:f1:5e:c6:19:ba:26:d2:29:da:f1:db:88: 49:6b:07:5a:5c:af:aa:5a:ea:f9:d3:c1:2a:3e:84:96:d9:4a: 05:e8:9b:ce:1a:b5:80:bc:e7:aa:77:80:ad:cc:ce:45:ad:0c: f1:d2:6d:32:96:e9:d0:d4:3e:36:c4:c2:9e:26:f4:a6:72:65: 62:64:5c:aa:ef:db:3a:97:ea:58:31:f8:6b:d2:7e:42:9f:9f: c9:b1:dc:a6:3f:b8:c5:c0:ed:9f:a0:ad:d0:62:48:4b:4b:2f: ba:40:88:a9:d4:f7:a0:0f:ed:8b:b2:ad:d9:46:ad:b0:c8:dc: 55:8a:f2:d5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH81QI7b59Y6iXbDjcCALqFYIa8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKEU0QkNEQjJBODg3Q0JBNDkxOTFFRDlBRURGRkJDRkVDOUIzNzM1NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYcPcwVP+qHBJJIwZq1Hi9wJwg OJQlL2FDqR4cnvt7mzkhvBgcfNs4jwyGnxKgIReruxyQEb0rVJzuBeTo+BYRQUPm jr3GQp3pC5CLJv+OePT8gS9qS7XrWUSuIRCOOjCia9wwN7T2kiHPoJTkfC5xhU2L w/bOrtWqOxAJVWuzwOgJR2im80rPD41nYSE6mEviCRnv4DnGIZL2eLxGqhQESdVD N1BwfohCj9sVr+eWKPr+rYcd4SWIMeJnfe4YFGkEkdfoNgtVqui3v5HptrluPDl1 zYm01b71jcEfBZjOEw2YyTaqIk39f8/Pe1NicFjWHNfMxal/NOCJqzf37lTlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU5LzbKoh8ukkZHtmu3/vP7Js3NWswHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACMw DQYJKoZIhvcNAQELBQADggEBAKk0RaLpbwj1L6cXWpeUtpyahaBJ70KL+GQwUFl+ D0BUs5QOUdF2KyHguCcOLzOI++7xU9oB1eaz6pI8CQvolfMjayCidqNwBBnMOuK4 lakF0zGs7tbUIK3emEbuI805kbkPwabL4Vasq8wF7eXemPnv+qZtld0ZuZ4DI8RY 2NkleSsJKfFexhm6JtIp2vHbiElrB1pcr6pa6vnTwSo+hJbZSgXom84atYC856p3 gK3MzkWtDPHSbTKW6dDUPjbEwp4m9KZyZWJkXKrv2zqX6lgx+GvSfkKfn8mx3KY/ uMXA7Z+grdBiSEtLL7pAiKnU96AP7YuyrdlGrbDI3FWK8tU= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org