$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa File: 323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa (raw, json) Hash identifier: Ru2YfnEYHrO5oY9ehbK6M2QgKPBFQ+Lrm6YUIl8ZWdk= Subject key identifier: A1:F7:74:4B:01:98:50:4B:F5:90:F2:2E:BD:35:71:E4:EF:4D:33:C1 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 0871D47A337DE47763D918A528EFB32879A70002 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa Signing time: Mon 07 Oct 2024 03:34:14 +0000 ROA not before: Mon 07 Oct 2024 03:29:14 +0000 ROA not after: Mon 06 Oct 2025 03:34:14 +0000 asID: 56246 IP address blocks: 2404:fd00:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:71:d4:7a:33:7d:e4:77:63:d9:18:a5:28:ef:b3:28:79:a7:00:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Oct 7 03:29:14 2024 GMT Not After : Oct 6 03:34:14 2025 GMT Subject: CN=A1F7744B0198504BF590F22EBD3571E4EF4D33C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ce:3d:7f:2a:0f:ec:40:d1:47:b4:ea:78:e4: 45:2a:1b:75:e4:2c:62:d9:12:ed:b9:e2:b8:08:9a: a4:e7:f4:df:b3:58:8d:ed:f9:10:80:c8:3c:60:37: 8d:4f:70:5f:e7:96:c5:b8:e0:c0:5e:21:a9:08:82: 00:68:75:95:38:5f:aa:d0:a4:1a:65:58:fe:0b:ef: 57:6c:aa:e5:39:3e:12:c4:6a:cd:55:bd:5d:90:bc: 2a:ce:83:3b:68:00:2a:33:a4:e3:cb:39:c1:78:1e: 5a:e0:4f:a4:ab:8e:79:28:69:3f:4d:68:5e:42:5d: dd:1e:b7:55:b6:0d:65:09:b6:a4:5f:65:ba:16:62: 6b:cd:f9:16:f5:81:b8:36:0f:9d:23:f5:52:49:33: 98:9c:5a:6f:e2:37:56:eb:8c:ad:46:fd:a4:8c:0a: 14:75:11:70:4d:a0:f9:46:db:fa:f3:82:49:52:8e: 95:14:07:66:65:5b:71:a7:43:98:c7:e1:8b:a4:e6: 23:e0:6f:88:b3:df:d1:fc:17:3e:31:aa:f7:0c:5c: 24:2e:1c:4b:f2:29:cf:ef:ab:5d:0b:95:ec:b7:0c: 6a:6b:58:a9:4f:1e:ee:25:df:9c:fe:bd:a2:d1:6f: 45:4a:30:bb:75:1c:e2:83:c3:d2:a8:ee:d3:bf:e8: af:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F7:74:4B:01:98:50:4B:F5:90:F2:2E:BD:35:71:E4:EF:4D:33:C1 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a653a3a2f34382d3438203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:e::/48 Signature Algorithm: sha256WithRSAEncryption 06:cb:8c:1e:d3:2a:b3:2f:a7:e2:7b:cc:f1:8f:a6:0c:7d:6d: 74:e2:fe:e1:ce:ac:4f:9a:0e:a5:8e:8f:91:83:61:8a:92:22: 74:53:ee:2f:3a:65:bb:a2:e1:27:7b:1b:ed:d6:b6:94:c6:ec: 6a:da:a4:fc:e2:a5:20:52:00:33:ff:31:08:70:de:4f:ab:a2: b3:99:0d:4c:47:0a:df:a4:34:ff:fc:2f:ed:3d:f1:d4:c5:52: 56:f2:89:46:b7:b8:18:51:d0:0e:60:88:71:52:5f:e2:8e:32: b9:23:d9:92:4e:52:4b:b1:9e:ad:19:d6:7f:ac:6d:ff:83:85: db:b3:e6:ac:9c:55:99:7d:79:34:11:8c:a5:56:22:c8:9f:ea: 4f:6a:d4:78:10:d0:04:32:6f:b4:2b:7a:1f:9e:b3:08:19:0c: f2:ca:85:c4:40:bf:52:1d:de:f2:f4:9b:40:82:a1:fc:f1:a7: eb:b1:19:18:29:4c:fd:09:9f:31:6d:0e:e8:6a:8e:43:e8:25: 69:f1:7c:ae:d3:70:62:0c:28:ec:a9:0a:26:a5:3f:19:1b:02: 90:0c:99:73:e1:f0:18:c8:9e:f7:e0:c7:77:63:89:66:fe:df: 6f:5c:bb:50:23:0d:fc:99:b9:51:02:cb:f3:ab:54:cc:8c:8f: 92:f2:f3:78 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUCHHUejN95Hdj2RilKO+zKHmnAAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDEwMDcwMzI5MTRaFw0yNTEwMDYwMzM0MTRaMDMxMTAvBgNV BAMTKEExRjc3NDRCMDE5ODUwNEJGNTkwRjIyRUJEMzU3MUU0RUY0RDMzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3zj1/Kg/sQNFHtOp45EUqG3Xk LGLZEu254rgImqTn9N+zWI3t+RCAyDxgN41PcF/nlsW44MBeIakIggBodZU4X6rQ pBplWP4L71dsquU5PhLEas1VvV2QvCrOgztoACozpOPLOcF4HlrgT6SrjnkoaT9N aF5CXd0et1W2DWUJtqRfZboWYmvN+Rb1gbg2D50j9VJJM5icWm/iN1brjK1G/aSM ChR1EXBNoPlG2/rzgklSjpUUB2ZlW3GnQ5jH4Yuk5iPgb4iz39H8Fz4xqvcMXCQu HEvyKc/vq10Lley3DGprWKlPHu4l35z+vaLRb0VKMLt1HOKDw9Ko7tO/6K8DAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUofd0SwGYUEv1kPIuvTVx5O9NM8EwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM2MzIzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9AAAOMA0G CSqGSIb3DQEBCwUAA4IBAQAGy4we0yqzL6fie8zxj6YMfW104v7hzqxPmg6ljo+R g2GKkiJ0U+4vOmW7ouEnexvt1raUxuxq2qT84qUgUgAz/zEIcN5Pq6KzmQ1MRwrf pDT//C/tPfHUxVJW8olGt7gYUdAOYIhxUl/ijjK5I9mSTlJLsZ6tGdZ/rG3/g4Xb s+asnFWZfXk0EYylViLIn+pPatR4ENAEMm+0K3ofnrMIGQzyyoXEQL9SHd7y9JtA gqH88afrsRkYKUz9CZ8xbQ7oao5D6CVp8Xyu03BiDCjsqQompT8ZGwKQDJlz4fAY yJ734Md3Y4lm/t9vXLtQIw38mblRAsvzq1TMjI+S8vN4 -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org