$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: ftm54uFlfg31++Lr45MWp80JDQV4cAQYH3MXNIfQid0= Subject key identifier: 40:34:51:55:C3:27:F3:0F:C2:12:32:2B:1B:0B:A7:ED:8A:17:10:A9 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 7D74B9517F931CD16B4F682D0ADC4E047E9F8913 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 07 Jun 2024 09:00:01 +0000 ROA not before: Fri 07 Jun 2024 08:55:01 +0000 ROA not after: Fri 06 Jun 2025 09:00:01 +0000 asID: 58552 IP address blocks: 2404:fd00:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:74:b9:51:7f:93:1c:d1:6b:4f:68:2d:0a:dc:4e:04:7e:9f:89:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 7 08:55:01 2024 GMT Not After : Jun 6 09:00:01 2025 GMT Subject: CN=40345155C327F30FC212322B1B0BA7ED8A1710A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e3:55:27:0d:83:ef:cf:de:18:68:f4:b8:49: c9:7e:0a:ab:a5:41:99:08:bf:cf:6b:ce:c0:14:2a: bf:5e:bb:f3:43:64:fc:eb:ec:73:e4:ff:f5:69:31: 38:1a:b7:04:72:91:14:84:e3:08:57:3b:a6:39:aa: 7a:dc:fa:c9:9f:47:04:3a:fb:66:58:60:8f:c2:18: 1e:8e:ea:13:fd:c0:a3:83:82:c1:ca:f0:f7:d5:7a: c0:75:db:9b:12:ed:87:07:5c:8a:3f:bd:c2:29:ff: ac:3c:4a:06:50:e8:23:a9:78:7d:0b:c5:d1:d5:e2: f8:b4:63:09:44:26:01:7e:9a:42:11:4d:e0:d2:62: 1c:14:19:68:68:8b:34:a2:7a:b5:af:f5:ba:84:95: b7:46:35:39:31:ea:df:dc:2e:a9:f7:46:5e:3a:99: f9:86:2a:10:43:eb:0b:c4:de:2c:d3:dc:98:01:a2: fa:32:03:08:dc:7c:34:6a:83:43:de:62:75:a3:2e: a1:e8:0a:6f:43:9d:35:a3:a1:36:26:c0:34:d5:ef: 11:81:09:2d:c5:3d:94:1d:1a:c5:9e:c0:46:6b:88: 58:0b:98:79:b3:c7:3d:80:65:6b:ee:83:11:51:cc: 3a:e0:b4:ca:80:08:1a:46:9b:63:f8:70:53:c7:b2: 7c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:34:51:55:C3:27:F3:0F:C2:12:32:2B:1B:0B:A7:ED:8A:17:10:A9 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:b::/48 Signature Algorithm: sha256WithRSAEncryption 8b:25:c7:85:9e:d6:02:76:a4:51:cc:00:97:e0:fe:41:f9:0c: 38:4f:72:28:83:54:45:dc:b5:ca:93:87:5c:28:11:4e:f4:ad: 80:17:a8:32:ee:56:b8:03:d8:3f:92:bd:53:a2:b2:9e:a8:b4: f9:56:01:63:75:8a:ef:66:fa:bd:e1:7e:9c:92:ad:75:34:91: 9e:94:52:98:e3:b4:35:01:7a:bc:b1:88:08:a7:3f:c9:a7:a4: 76:f8:df:0c:ec:db:3d:cd:d9:4a:5b:a1:b5:a8:cd:07:4b:f0: b1:a7:a7:58:e3:36:a1:b6:6f:78:03:8c:38:eb:0c:0b:41:67: e5:e9:8f:13:2e:70:a8:95:31:b5:33:b7:ba:04:03:01:95:1a: 3e:e5:cd:25:e3:77:37:7d:1a:6d:1d:42:66:bc:f0:7d:e0:11: 12:7e:36:4c:ad:19:fa:a6:8f:ea:78:7d:5f:ed:e6:32:73:d5: de:63:d4:c6:7c:8b:7f:1a:a7:88:7a:df:58:5e:94:d2:35:7b: da:1d:68:0f:03:9f:07:34:f1:5b:29:2f:26:bb:ef:a2:ee:c2: 26:25:f2:81:22:9d:9c:54:a8:68:51:b5:95:1b:19:5d:76:e0: 89:42:e6:ea:84:65:b2:a6:e9:38:b5:97:ba:48:cb:79:03:55: dc:3d:99:f4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfXS5UX+THNFrT2gtCtxOBH6fiRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA2MDcwODU1MDFaFw0yNTA2MDYwOTAwMDFaMDMxMTAvBgNV BAMTKDQwMzQ1MTU1QzMyN0YzMEZDMjEyMzIyQjFCMEJBN0VEOEExNzEwQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz41UnDYPvz94YaPS4Scl+Cqul QZkIv89rzsAUKr9eu/NDZPzr7HPk//VpMTgatwRykRSE4whXO6Y5qnrc+smfRwQ6 +2ZYYI/CGB6O6hP9wKODgsHK8PfVesB125sS7YcHXIo/vcIp/6w8SgZQ6COpeH0L xdHV4vi0YwlEJgF+mkIRTeDSYhwUGWhoizSierWv9bqElbdGNTkx6t/cLqn3Rl46 mfmGKhBD6wvE3izT3JgBovoyAwjcfDRqg0PeYnWjLqHoCm9DnTWjoTYmwDTV7xGB CS3FPZQdGsWewEZriFgLmHmzxz2AZWvugxFRzDrgtMqACBpGm2P4cFPHsny3AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUQDRRVcMn8w/CEjIrGwun7YoXEKkwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzUzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9AAALMA0G CSqGSIb3DQEBCwUAA4IBAQCLJceFntYCdqRRzACX4P5B+Qw4T3Iog1RF3LXKk4dc KBFO9K2AF6gy7la4A9g/kr1TorKeqLT5VgFjdYrvZvq94X6ckq11NJGelFKY47Q1 AXq8sYgIpz/Jp6R2+N8M7Ns9zdlKW6G1qM0HS/Cxp6dY4zahtm94A4w46wwLQWfl 6Y8TLnColTG1M7e6BAMBlRo+5c0l43c3fRptHUJmvPB94BESfjZMrRn6po/qeH1f 7eYyc9XeY9TGfIt/GqeIet9YXpTSNXvaHWgPA58HNPFbKS8mu++i7sImJfKBIp2c VKhoUbWVGxldduCJQubqhGWypuk4tZe6SMt5A1XcPZn0 -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org