$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32373a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a32373a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: SQjbXSUhnhbc1oVv6ALqO18j5k3F9zxI0u7KfO6C9LQ= Subject key identifier: B8:7A:AA:2E:0C:04:5A:24:A0:12:82:60:4C:C2:96:4B:5B:94:08:A9 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 48C534A8C2D6F12457AA8F5CB40FDD7B1D6DDC0D Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32373a3a2f34382d3438203d3e203536323436.roa Signing time: Mon 07 Oct 2024 03:34:55 +0000 ROA not before: Mon 07 Oct 2024 03:29:55 +0000 ROA not after: Mon 06 Oct 2025 03:34:55 +0000 asID: 56246 IP address blocks: 2404:fd00:27::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c5:34:a8:c2:d6:f1:24:57:aa:8f:5c:b4:0f:dd:7b:1d:6d:dc:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 7 03:29:55 2024 GMT Not After : Oct 6 03:34:55 2025 GMT Subject: CN=B87AAA2E0C045A24A01282604CC2964B5B9408A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:74:83:82:da:b2:96:ee:a1:6e:ff:08:9f:af: 4f:47:c2:69:f9:d6:b6:8e:88:f6:f9:73:b2:20:64: 1e:b7:90:58:c1:47:2b:50:d2:4c:ca:b6:54:fc:20: 85:7a:e2:31:e7:ad:63:dd:d5:a1:d9:1a:c7:99:64: 90:55:ff:cf:6d:f6:d6:7c:ea:f3:74:c4:15:23:76: dd:a3:19:ee:b4:96:0a:07:c9:79:f3:91:3f:51:fb: 8d:45:35:68:cf:2d:4e:3c:4d:be:55:a0:00:a8:79: d2:8c:8e:be:40:43:7c:c0:00:30:0f:8e:81:aa:bd: 61:c9:1b:76:6b:80:8e:ed:72:bc:08:9c:3e:54:14: ad:75:be:b5:30:8b:52:31:61:f2:e3:16:e2:fd:61: f2:79:d1:a2:9d:a1:b0:9b:52:30:a9:23:a6:b0:5d: 0a:9b:78:2b:ad:58:df:d1:4c:a9:fa:d8:1c:e6:5f: 55:98:79:01:5c:6d:55:ca:12:3c:43:dd:a3:74:db: 80:f1:88:02:90:be:22:06:8d:a2:02:4f:d7:2b:86: 3e:8f:f7:79:37:4c:04:82:82:44:8c:f1:21:d4:85: fb:45:37:61:56:e2:b3:65:34:f5:b9:e8:d9:38:88: 9c:04:35:c9:47:0f:94:e1:73:d1:f6:0a:91:5f:b8: e7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7A:AA:2E:0C:04:5A:24:A0:12:82:60:4C:C2:96:4B:5B:94:08:A9 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a32373a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:27::/48 Signature Algorithm: sha256WithRSAEncryption 43:56:2b:21:cf:b5:67:91:fc:2e:66:07:7a:d5:d4:97:78:ef: d1:5b:b6:16:46:90:ea:55:68:2f:cd:73:c9:ab:2b:b6:8d:a9: cc:19:db:b0:7c:37:3f:b0:00:1a:c0:2d:b4:d6:7f:a7:16:aa: f4:bb:1a:e2:f8:71:9b:7c:8b:d8:01:62:ef:3f:8b:30:65:eb: c2:46:4e:4b:9f:ef:97:f6:95:23:66:a1:7a:9e:16:48:45:4f: 3c:b9:26:58:4c:d3:21:55:31:91:20:a1:b8:55:fd:1d:2e:8c: 10:66:ad:21:b2:bb:56:29:6c:e5:9c:f0:00:ab:70:cc:b3:04: fb:fe:15:58:93:a1:73:f0:f7:9a:52:7d:cc:0d:7d:ab:5c:5c: c1:9d:51:b4:8f:c5:09:a2:13:db:a5:c3:2b:94:b6:36:1f:de: e3:23:fc:43:81:47:b3:61:dd:7e:61:45:2e:98:d1:fe:d6:f4: ff:18:a5:ae:ae:37:90:2f:96:cf:71:ae:63:1c:24:60:e8:82: 04:8c:18:04:5b:c5:13:48:5b:06:81:6a:fe:f5:f4:eb:fa:78: 94:3e:22:8e:84:bd:60:dc:76:c5:48:07:3b:f1:c2:8f:ce:c1: e0:a1:68:43:ba:51:f2:58:4f:03:7e:13:ea:44:6c:bf:19:64: 93:d0:b8:fb -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSMU0qMLW8SRXqo9ctA/dex1t3A0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDEwMDcwMzI5NTVaFw0yNTEwMDYwMzM0NTVaMDMxMTAvBgNV BAMTKEI4N0FBQTJFMEMwNDVBMjRBMDEyODI2MDRDQzI5NjRCNUI5NDA4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDedIOC2rKW7qFu/wifr09Hwmn5 1raOiPb5c7IgZB63kFjBRytQ0kzKtlT8IIV64jHnrWPd1aHZGseZZJBV/89t9tZ8 6vN0xBUjdt2jGe60lgoHyXnzkT9R+41FNWjPLU48Tb5VoACoedKMjr5AQ3zAADAP joGqvWHJG3ZrgI7tcrwInD5UFK11vrUwi1IxYfLjFuL9YfJ50aKdobCbUjCpI6aw XQqbeCutWN/RTKn62BzmX1WYeQFcbVXKEjxD3aN024DxiAKQviIGjaICT9crhj6P 93k3TASCgkSM8SHUhftFN2FW4rNlNPW56Nk4iJwENclHD5Thc9H2CpFfuOejAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuHqqLgwEWiSgEoJgTMKWS1uUCKkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhMzIzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP0AACcw DQYJKoZIhvcNAQELBQADggEBAENWKyHPtWeR/C5mB3rV1Jd479FbthZGkOpVaC/N c8mrK7aNqcwZ27B8Nz+wABrALbTWf6cWqvS7GuL4cZt8i9gBYu8/izBl68JGTkuf 75f2lSNmoXqeFkhFTzy5JlhM0yFVMZEgobhV/R0ujBBmrSGyu1YpbOWc8ACrcMyz BPv+FViToXPw95pSfcwNfatcXMGdUbSPxQmiE9ulwyuUtjYf3uMj/EOBR7Nh3X5h RS6Y0f7W9P8Ypa6uN5Avls9xrmMcJGDoggSMGARbxRNIWwaBav719Ov6eJQ+Io6E vWDcdsVIBzvxwo/OweChaEO6UfJYTwN+E+pEbL8ZZJPQuPs= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org