$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: vOzlBEpBy04NhO6S5PsHUF+cl/MmaluB7xtu5bbVbYM= Subject key identifier: 25:C0:B2:04:A8:0B:F9:7F:EA:AC:34:F9:51:AE:1E:A9:6B:B2:E9:27 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 07E7ADA1B5DE8AFFFEB945EA0598179D5D643E56 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa Signing time: Fri 29 Dec 2023 04:00:02 +0000 ROA not before: Fri 29 Dec 2023 03:55:02 +0000 ROA not after: Fri 27 Dec 2024 04:00:02 +0000 asID: 56246 IP address blocks: 2404:fd00:25::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e7:ad:a1:b5:de:8a:ff:fe:b9:45:ea:05:98:17:9d:5d:64:3e:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Dec 29 03:55:02 2023 GMT Not After : Dec 27 04:00:02 2024 GMT Subject: CN=25C0B204A80BF97FEAAC34F951AE1EA96BB2E927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8e:f2:40:51:79:cd:8b:bd:32:c1:cd:da:18: e3:23:2e:27:5b:4b:3a:81:ff:e8:b3:7d:c0:1e:6e: e4:f6:b5:35:c0:90:00:98:b8:a8:90:16:1a:74:34: 79:27:69:cd:43:7d:b7:23:fb:73:52:12:7f:86:5f: 0b:77:1d:40:89:c2:ac:57:5e:2f:5e:ee:ca:6b:92: ea:75:45:6d:60:cc:ae:d1:c0:d8:1d:2a:7e:1b:cc: d0:7c:87:dc:63:7b:c5:00:8b:51:24:31:6a:d1:4b: e0:58:3f:df:ea:33:79:8e:c8:0b:16:92:c1:26:e1: 3f:bf:cf:28:5a:0f:43:9d:9f:8c:f6:d2:2b:25:e9: b9:84:12:1e:3d:13:59:d8:ba:bd:68:a6:8b:f7:df: da:60:f9:d1:b6:f0:f6:2b:04:f4:83:09:60:cc:7b: d3:67:56:9f:61:a4:c8:ad:f4:43:68:1e:de:86:45: ef:15:90:7f:9f:0e:06:24:84:dd:f1:40:2d:89:55: 9e:ca:02:8e:92:17:fa:38:42:4f:c8:65:8d:01:45: ca:bb:4c:35:d7:d7:76:d5:b7:a2:cc:75:9c:ab:71: ee:1a:55:aa:1c:66:2c:99:85:ab:74:f4:d7:3f:69: 83:6c:3f:58:27:56:4f:75:c1:02:30:a9:b0:8f:9c: d3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C0:B2:04:A8:0B:F9:7F:EA:AC:34:F9:51:AE:1E:A9:6B:B2:E9:27 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32353a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:25::/48 Signature Algorithm: sha256WithRSAEncryption 05:55:db:8b:ff:28:cf:5a:8d:fc:f7:e8:4e:ed:07:b8:bc:97: d0:69:64:59:0a:ba:18:69:90:f1:35:c4:d9:18:27:58:d5:bb: ea:b2:2c:ae:80:22:c4:9f:6c:24:d7:38:19:be:6f:33:82:ac: 62:ed:be:eb:2f:14:0e:00:65:04:a2:7a:35:2c:f4:74:82:55: 1b:c7:7a:61:49:2e:6f:9c:1f:32:da:e6:fb:14:60:c0:1d:a7: bb:51:2a:00:df:34:cd:f2:73:a0:e3:c8:68:61:af:30:5c:97: fd:d5:e3:b0:d4:90:5c:57:8b:ef:02:16:a4:cc:22:dd:27:83: 71:10:00:64:14:a4:de:6d:de:96:c6:5f:4d:bb:fd:41:59:2d: 00:1b:db:b6:1e:0c:7c:af:4b:29:f8:22:3d:a5:51:a5:27:ea: 4f:fe:7a:81:7a:35:09:52:23:e9:3e:62:ee:d1:37:87:a7:fc: 4a:96:19:d9:ef:56:89:b5:ca:a6:c8:2b:74:6d:75:72:af:90: ec:15:4b:c8:ce:05:54:4d:d2:31:03:4d:21:53:4c:a3:11:77: ec:51:1a:cc:0f:cc:ca:4e:96:4f:26:6b:4e:c7:79:55:1d:9b: 46:90:4b:e9:a9:f4:9e:56:df:ae:e7:d1:b0:f3:f0:7e:2f:26: bd:e4:b4:d2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUB+etobXeiv/+uUXqBZgXnV1kPlYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzEyMjkwMzU1MDJaFw0yNDEyMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDI1QzBCMjA0QTgwQkY5N0ZFQUFDMzRGOTUxQUUxRUE5NkJCMkU5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujvJAUXnNi70ywc3aGOMjLidb SzqB/+izfcAebuT2tTXAkACYuKiQFhp0NHknac1Dfbcj+3NSEn+GXwt3HUCJwqxX Xi9e7sprkup1RW1gzK7RwNgdKn4bzNB8h9xje8UAi1EkMWrRS+BYP9/qM3mOyAsW ksEm4T+/zyhaD0Odn4z20isl6bmEEh49E1nYur1opov339pg+dG28PYrBPSDCWDM e9NnVp9hpMit9ENoHt6GRe8VkH+fDgYkhN3xQC2JVZ7KAo6SF/o4Qk/IZY0BRcq7 TDXX13bVt6LMdZyrce4aVaocZiyZhat09Nc/aYNsP1gnVk91wQIwqbCPnNNFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUJcCyBKgL+X/qrDT5Ua4eqWuy6ScwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACUw DQYJKoZIhvcNAQELBQADggEBAAVV24v/KM9ajfz36E7tB7i8l9BpZFkKuhhpkPE1 xNkYJ1jVu+qyLK6AIsSfbCTXOBm+bzOCrGLtvusvFA4AZQSiejUs9HSCVRvHemFJ Lm+cHzLa5vsUYMAdp7tRKgDfNM3yc6DjyGhhrzBcl/3V47DUkFxXi+8CFqTMIt0n g3EQAGQUpN5t3pbGX027/UFZLQAb27YeDHyvSyn4Ij2lUaUn6k/+eoF6NQlSI+k+ Yu7RN4en/EqWGdnvVom1yqbIK3RtdXKvkOwVS8jOBVRN0jEDTSFTTKMRd+xRGswP zMpOlk8ma07HeVUdm0aQS+mp9J5W367n0bDz8H4vJr3ktNI= -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org