$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: hRK9aEXPInLxZT1gdVbouPCmQRpLWU3xXt5pcp5GW7s= Subject key identifier: EC:EC:24:8E:59:C4:AE:A7:9C:AC:A5:CA:A6:92:F7:CA:03:12:27:81 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0BD6144FAEB7F03465F9676A08BE0E3141CD6563 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:00 +0000 ROA not before: Fri 29 Dec 2023 03:55:00 +0000 ROA not after: Fri 27 Dec 2024 04:00:00 +0000 asID: 56246 IP address blocks: 2404:fd00:24::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d6:14:4f:ae:b7:f0:34:65:f9:67:6a:08:be:0e:31:41:cd:65:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:00 2023 GMT Not After : Dec 27 04:00:00 2024 GMT Subject: CN=ECEC248E59C4AEA79CACA5CAA692F7CA03122781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:93:2e:56:62:52:19:a5:70:b8:4c:04:4e:42: 04:bb:93:0e:d5:c1:2e:34:64:12:60:f5:6f:4b:9d: 99:96:77:3b:a5:b0:5f:a0:b3:df:71:f6:29:23:4a: b0:d1:1d:f2:b5:35:1c:d4:a1:0c:6d:5b:e5:1d:dc: 29:79:b1:05:a7:ae:f4:f5:4c:21:85:17:fb:0e:75: 32:48:1f:0b:86:6f:c2:02:60:9b:f5:1c:83:01:9a: 14:5b:ae:49:98:49:84:c6:8f:42:49:a1:4f:4c:2b: 89:4d:cd:83:49:03:21:fd:29:82:2f:2b:5a:b9:a4: ca:43:12:17:b7:25:32:a3:53:34:92:c0:ce:af:04: 19:27:54:00:ba:9f:eb:b6:9b:7f:63:15:ad:e5:57: a5:55:c4:e6:3f:b3:26:07:c6:dc:05:35:02:5b:3c: d8:89:7e:2e:15:b3:70:8f:02:57:73:48:73:d0:c6: 2a:68:3d:5e:79:64:7d:43:19:9d:e9:94:35:01:e8: b5:0c:77:22:ee:9b:58:20:e6:78:f7:6e:fd:58:a3: a0:3c:74:f3:b8:01:0c:0c:6d:82:76:a0:99:23:0f: f0:14:ad:8a:b4:d6:f5:30:ab:6f:8e:18:7a:07:0a: 01:13:92:f8:b5:28:47:8b:ca:7f:c8:51:17:b9:3a: 27:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:EC:24:8E:59:C4:AE:A7:9C:AC:A5:CA:A6:92:F7:CA:03:12:27:81 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32343a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:24::/48 Signature Algorithm: sha256WithRSAEncryption 23:e4:57:f6:e7:36:7d:ec:2d:62:c2:b1:3f:a2:44:9c:dd:26: 8c:c6:88:33:54:aa:47:43:bc:4f:9c:e1:ac:b7:36:c9:25:a6: f8:96:21:8c:e2:07:af:7b:62:54:fb:11:e9:e3:0e:fc:df:7b: d9:19:c4:bb:7f:e2:e2:0c:f9:7c:fb:0b:01:50:af:fe:1c:98: 7c:81:21:9f:43:84:fe:9a:68:b5:e5:91:2b:43:65:00:e0:cb: e5:41:44:9b:80:d1:d3:83:fb:35:d3:bf:d8:f0:5b:cf:e5:63: b7:d7:d5:3b:bb:74:f4:a3:6b:7c:9c:01:95:cd:78:45:d6:a2: ed:21:b0:03:09:bf:c8:e7:8e:93:0f:c8:77:a5:59:26:84:a9: 71:3c:a5:60:3b:61:c8:51:86:32:38:08:7b:50:19:14:4a:72: 90:97:02:f4:55:b5:16:62:49:0e:04:ce:1f:de:28:92:4b:40: 49:07:f3:c1:c9:1d:e4:fa:da:33:7c:fe:73:0d:01:93:66:67: dc:be:05:0c:40:7b:4c:15:89:1a:9a:4f:88:e8:1e:d0:f5:04: e3:fd:95:6f:b9:90:1f:d1:bc:e8:64:31:3c:75:ce:d1:13:80: 6c:ae:4d:e2:d5:14:a9:0f:10:25:b8:f6:11:9b:63:0d:80:5e: 60:da:aa:e7 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUC9YUT6638DRl+WdqCL4OMUHNZWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDBaFw0yNDEyMjcwNDAwMDBaMDMxMTAvBgNV BAMTKEVDRUMyNDhFNTlDNEFFQTc5Q0FDQTVDQUE2OTJGN0NBMDMxMjI3ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCky5WYlIZpXC4TAROQgS7kw7V wS40ZBJg9W9LnZmWdzulsF+gs99x9ikjSrDRHfK1NRzUoQxtW+Ud3Cl5sQWnrvT1 TCGFF/sOdTJIHwuGb8ICYJv1HIMBmhRbrkmYSYTGj0JJoU9MK4lNzYNJAyH9KYIv K1q5pMpDEhe3JTKjUzSSwM6vBBknVAC6n+u2m39jFa3lV6VVxOY/syYHxtwFNQJb PNiJfi4Vs3CPAldzSHPQxipoPV55ZH1DGZ3plDUB6LUMdyLum1gg5nj3bv1Yo6A8 dPO4AQwMbYJ2oJkjD/AUrYq01vUwq2+OGHoHCgETkvi1KEeLyn/IURe5OiexAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7OwkjlnErqecrKXKppL3ygMSJ4EwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACQw DQYJKoZIhvcNAQELBQADggEBACPkV/bnNn3sLWLCsT+iRJzdJozGiDNUqkdDvE+c 4ay3NsklpviWIYziB697YlT7EenjDvzfe9kZxLt/4uIM+Xz7CwFQr/4cmHyBIZ9D hP6aaLXlkStDZQDgy+VBRJuA0dOD+zXTv9jwW8/lY7fX1Tu7dPSja3ycAZXNeEXW ou0hsAMJv8jnjpMPyHelWSaEqXE8pWA7YchRhjI4CHtQGRRKcpCXAvRVtRZiSQ4E zh/eKJJLQEkH88HJHeT62jN8/nMNAZNmZ9y+BQxAe0wViRqaT4joHtD1BOP9lW+5 kB/RvOhkMTx1ztETgGyuTeLVFKkPECW49hGbYw2AXmDaquc= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org