$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: Xt8u2daPDbVeLLEor5NaJaS0YqsQOF5kbGyfyMM+8Q8= Subject key identifier: 2D:6A:CB:90:69:6A:50:7B:E8:BB:0B:AF:88:65:80:F9:4B:26:25:BB Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5A6A73D20E172A8637D6B902D4AD5F0C86DC37FA Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Nov 2024 04:00:00 +0000 ROA not before: Fri 29 Nov 2024 03:55:00 +0000 ROA not after: Fri 28 Nov 2025 04:00:00 +0000 asID: 56246 IP address blocks: 2404:fd00:24::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:6a:73:d2:0e:17:2a:86:37:d6:b9:02:d4:ad:5f:0c:86:dc:37:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 29 03:55:00 2024 GMT Not After : Nov 28 04:00:00 2025 GMT Subject: CN=2D6ACB90696A507BE8BB0BAF886580F94B2625BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3c:59:0e:2e:68:85:c5:7e:13:fa:61:c9:bd: d5:a1:4d:5f:f8:a3:9b:29:67:be:70:50:85:83:ba: 78:2d:f0:57:33:ac:ce:a2:eb:f0:5d:c4:f4:73:ec: e4:23:99:42:be:c2:4f:13:e3:ce:dc:41:03:04:9a: c5:9d:1f:17:70:83:63:b7:80:9b:9c:af:52:86:d9: 34:cf:34:3c:cd:62:37:05:31:8e:89:58:8c:3a:a2: 25:3c:22:8b:23:1c:06:70:9a:1c:54:c8:8a:a5:60: 4b:ca:e9:93:fb:71:28:07:f1:33:56:c2:57:2b:7a: 73:62:23:1a:b1:e8:93:54:2c:95:2d:5c:0f:bc:54: 3b:22:27:71:78:f3:1f:54:aa:e6:a0:9b:ef:35:49: 78:16:b2:8c:2e:42:f2:59:fb:39:15:10:3e:16:4c: 6a:2c:5b:3f:04:5f:0b:57:a4:b2:a9:a3:ec:a0:5a: 40:2f:2e:59:03:0e:86:13:1e:c3:6c:11:60:cb:f1: 81:dd:1f:bb:8b:e5:80:1e:d2:d9:dc:6b:0d:09:a5: cd:af:b8:dd:cc:b8:95:29:a7:b9:f9:b9:ac:4b:dc: 05:e4:df:4c:5b:be:bb:3d:87:3c:7d:88:e5:cb:4c: b8:d0:b6:ff:50:f5:3a:8c:7b:c4:d9:48:43:d0:37: e3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6A:CB:90:69:6A:50:7B:E8:BB:0B:AF:88:65:80:F9:4B:26:25:BB X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:24::/48 Signature Algorithm: sha256WithRSAEncryption a0:d1:6c:70:fb:22:0c:8f:55:bf:69:24:44:e2:38:93:02:63: 0e:45:3e:9e:de:63:47:47:da:c0:f3:3c:79:9f:aa:e9:f6:a1: 68:30:40:21:21:74:42:db:5a:b7:b6:3e:94:6b:c3:a9:d7:24: 24:34:8c:78:3d:b1:7c:94:57:08:ce:c3:b5:cf:ae:65:74:04: df:e2:e7:1c:db:ac:ad:80:1d:7d:2e:0a:eb:f7:28:23:ae:9b: 11:d1:99:8d:e5:95:15:b3:32:f0:cb:da:b3:af:68:10:4b:f3: 07:70:b2:81:01:71:c5:aa:01:2d:cf:ec:c5:db:4a:ec:f9:66: 73:93:fd:83:3c:b2:3c:3b:08:88:db:5d:94:3e:c2:95:9d:dd: 17:50:14:b2:9c:14:2f:0b:be:a0:98:06:da:96:1d:e5:b1:66: be:2e:03:a4:28:c1:ee:66:99:32:92:f5:86:7b:44:ec:28:72: 6f:ff:b4:03:a5:65:42:03:02:1c:10:da:d6:2e:30:cb:b3:04: 4b:b5:db:43:45:9b:06:aa:10:18:6b:24:70:89:97:4e:bd:21: 34:3e:2b:86:eb:bf:2e:e5:ff:b7:0d:52:57:ed:38:cf:5f:47: 8c:40:b9:e5:96:ea:5a:df:03:2d:6b:5b:db:09:39:c3:f4:6c: 72:1b:de:35 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUWmpz0g4XKoY31rkC1K1fDIbcN/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDExMjkwMzU1MDBaFw0yNTExMjgwNDAwMDBaMDMxMTAvBgNV BAMTKDJENkFDQjkwNjk2QTUwN0JFOEJCMEJBRjg4NjU4MEY5NEIyNjI1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzPFkOLmiFxX4T+mHJvdWhTV/4 o5spZ75wUIWDungt8FczrM6i6/BdxPRz7OQjmUK+wk8T487cQQMEmsWdHxdwg2O3 gJucr1KG2TTPNDzNYjcFMY6JWIw6oiU8IosjHAZwmhxUyIqlYEvK6ZP7cSgH8TNW wlcrenNiIxqx6JNULJUtXA+8VDsiJ3F48x9Uquagm+81SXgWsowuQvJZ+zkVED4W TGosWz8EXwtXpLKpo+ygWkAvLlkDDoYTHsNsEWDL8YHdH7uL5YAe0tncaw0Jpc2v uN3MuJUpp7n5uaxL3AXk30xbvrs9hzx9iOXLTLjQtv9Q9TqMe8TZSEPQN+NbAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULWrLkGlqUHvouwuviGWA+UsmJbswHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACQw DQYJKoZIhvcNAQELBQADggEBAKDRbHD7IgyPVb9pJETiOJMCYw5FPp7eY0dH2sDz PHmfqun2oWgwQCEhdELbWre2PpRrw6nXJCQ0jHg9sXyUVwjOw7XPrmV0BN/i5xzb rK2AHX0uCuv3KCOumxHRmY3llRWzMvDL2rOvaBBL8wdwsoEBccWqAS3P7MXbSuz5 ZnOT/YM8sjw7CIjbXZQ+wpWd3RdQFLKcFC8LvqCYBtqWHeWxZr4uA6Qowe5mmTKS 9YZ7ROwocm//tAOlZUIDAhwQ2tYuMMuzBEu120NFmwaqEBhrJHCJl069ITQ+K4br vy7l/7cNUlftOM9fR4xAueWW6lrfAy1rW9sJOcP0bHIb3jU= -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:22 2025 by rpki-client