$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: fJJkmibmNCrFqMV2gSH3cQkAk5RGuSXAcG5nTWK9mo4= Subject key identifier: 27:23:F1:E0:EB:45:C2:15:E3:1C:C8:B6:23:1B:57:F9:A6:E8:5B:FD Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 7E2E3B6B3193173A932FA78E3093B0DABCCB7980 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 07 Jul 2023 08:01:38 +0000 ROA not before: Fri 07 Jul 2023 07:56:38 +0000 ROA not after: Fri 05 Jul 2024 08:01:38 +0000 asID: 58552 IP address blocks: 2404:fd00:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 11:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2e:3b:6b:31:93:17:3a:93:2f:a7:8e:30:93:b0:da:bc:cb:79:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 7 07:56:38 2023 GMT Not After : Jul 5 08:01:38 2024 GMT Subject: CN=2723F1E0EB45C215E31CC8B6231B57F9A6E85BFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e3:95:6e:07:34:25:b6:7e:fc:7e:58:48:a9: 05:d3:d9:20:35:60:7b:45:c4:ef:be:c1:48:5b:dd: aa:a9:03:45:fc:ca:86:ed:7f:d2:96:fb:35:20:4a: 08:36:26:d5:3a:b7:a0:21:5d:05:02:10:51:b2:c5: 4b:9b:50:58:b4:9c:83:f7:de:f0:d1:bc:00:e6:80: 98:14:26:b7:4f:f5:01:51:e8:14:2b:2d:e5:27:e1: 04:50:97:36:49:9d:dc:28:57:6d:5c:1f:1a:e9:2a: 03:39:66:94:63:a6:05:ae:9b:8a:4e:31:ee:9b:d4: 5e:ad:97:67:66:73:ce:c5:2a:50:26:b2:99:63:f0: d4:72:b3:7a:d8:f4:81:9a:6b:17:7f:ee:cc:3b:93: 79:ed:2a:ad:e4:3f:8e:d6:25:ca:0a:7d:07:65:98: bb:07:eb:bf:39:4e:76:f4:29:e7:20:ad:28:d5:db: 54:06:83:51:00:35:5a:77:4b:de:3b:ce:1c:66:79: db:79:24:b8:9f:90:3b:40:e9:6c:e8:6d:e5:08:45: 4b:42:46:04:a3:dd:a5:72:76:8e:49:a2:3a:10:7f: 58:61:4e:f3:f1:e0:cc:d2:d0:e2:92:8b:08:e6:1e: b2:7c:3b:f3:1c:82:de:e4:1a:f1:7e:82:6f:e2:cd: 36:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:23:F1:E0:EB:45:C2:15:E3:1C:C8:B6:23:1B:57:F9:A6:E8:5B:FD X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:b::/48 Signature Algorithm: sha256WithRSAEncryption 55:61:30:2d:8c:45:e1:6b:2e:0a:36:3c:bb:5f:26:d8:ad:10: 4d:5d:66:89:07:0b:20:40:29:c2:95:f9:e7:fd:99:1a:2a:43: 23:65:b4:bf:9b:77:43:85:4f:31:25:f8:4a:16:83:f7:c4:1a: 34:d6:8e:27:ed:68:8e:a2:9c:d2:a3:df:ac:b7:83:9b:81:9e: f1:cb:54:1d:c4:01:c7:ae:4d:4a:83:b6:6f:a4:9f:75:0b:98: d4:a3:7e:54:cb:96:86:58:bf:6b:6c:05:84:39:66:2b:f2:a4: 31:87:da:06:03:c0:81:1d:4b:a6:74:62:a4:52:7a:fc:c2:20: a4:0d:ff:ab:06:43:b1:41:bd:de:59:90:ed:01:e5:ed:a9:53: 46:a2:97:ba:59:53:57:49:2c:03:32:bf:89:ce:dc:9e:9d:96: d4:3a:3c:e3:ee:00:78:c2:0f:6f:fa:aa:2a:19:23:37:a4:b0: 01:5f:f8:27:8c:df:83:a7:8d:db:66:0d:10:46:41:84:76:c0: 49:09:eb:9c:cd:77:d6:66:1d:f3:c8:73:79:c5:42:1a:f7:e7: a5:5d:11:3e:7a:26:d4:38:41:fe:dd:48:48:59:e3:65:96:0d: 2c:3a:3e:a5:50:d4:5a:66:76:9b:1b:ac:6b:54:fa:c6:d7:8b: 2b:86:46:e5 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfi47azGTFzqTL6eOMJOw2rzLeYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yMzA3MDcwNzU2MzhaFw0yNDA3MDUwODAxMzhaMDMxMTAvBgNV BAMTKDI3MjNGMUUwRUI0NUMyMTVFMzFDQzhCNjIzMUI1N0Y5QTZFODVCRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC945VuBzQltn78flhIqQXT2SA1 YHtFxO++wUhb3aqpA0X8yobtf9KW+zUgSgg2JtU6t6AhXQUCEFGyxUubUFi0nIP3 3vDRvADmgJgUJrdP9QFR6BQrLeUn4QRQlzZJndwoV21cHxrpKgM5ZpRjpgWum4pO Me6b1F6tl2dmc87FKlAmsplj8NRys3rY9IGaaxd/7sw7k3ntKq3kP47WJcoKfQdl mLsH6785Tnb0KecgrSjV21QGg1EANVp3S947zhxmedt5JLifkDtA6WzobeUIRUtC RgSj3aVydo5JojoQf1hhTvPx4MzS0OKSiwjmHrJ8O/Mcgt7kGvF+gm/izTYnAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJyPx4OtFwhXjHMi2IxtX+aboW/0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzUzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9AAALMA0G CSqGSIb3DQEBCwUAA4IBAQBVYTAtjEXhay4KNjy7XybYrRBNXWaJBwsgQCnClfnn /ZkaKkMjZbS/m3dDhU8xJfhKFoP3xBo01o4n7WiOopzSo9+st4ObgZ7xy1QdxAHH rk1Kg7ZvpJ91C5jUo35Uy5aGWL9rbAWEOWYr8qQxh9oGA8CBHUumdGKkUnr8wiCk Df+rBkOxQb3eWZDtAeXtqVNGope6WVNXSSwDMr+JztyenZbUOjzj7gB4wg9v+qoq GSM3pLABX/gnjN+Dp43bZg0QRkGEdsBJCeuczXfWZh3zyHN5xUIa9+elXRE+eibU OEH+3UhIWeNllg0sOj6lUNRaZnabG6xrVPrG14srhkbl -----END CERTIFICATE-----Generated at Thu May 2 11:32:09 2024 by rpki-client on console-fra.rpki-client.org