$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: 42YXAyPvI0BxSdVFmO4vnzx8dDWeenm6D7soGukNaWY= Subject key identifier: FB:20:C9:26:AD:96:36:34:BB:4C:15:62:F8:FA:21:BC:95:F6:A0:96 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 785AAD6A99497208D29AB5EC3B4388D5C95EEE16 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:09 +0000 ROA not before: Mon 01 Jul 2024 01:00:09 +0000 ROA not after: Mon 30 Jun 2025 01:05:09 +0000 asID: 38156 IP address blocks: 2405:a540:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5a:ad:6a:99:49:72:08:d2:9a:b5:ec:3b:43:88:d5:c9:5e:ee:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:09 2024 GMT Not After : Jun 30 01:05:09 2025 GMT Subject: CN=FB20C926AD963634BB4C1562F8FA21BC95F6A096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dc:10:91:6d:01:27:81:8b:58:7e:25:90:ab: 65:a5:c6:6a:8f:98:87:33:cf:5b:24:91:5f:4b:e4: 41:a5:a9:5c:4a:86:63:39:01:6a:a5:4c:fb:89:43: 77:d4:5c:d7:30:63:20:bb:0c:51:20:1a:a1:c8:bb: 3b:02:eb:26:ea:a9:92:66:d1:2f:bb:71:2c:58:2e: 05:c7:18:3d:32:d6:a1:aa:5f:8c:af:e7:9a:23:e1: 19:74:07:41:6f:52:d7:a6:a0:81:8b:ce:8b:b1:71: b2:fb:f5:cb:ed:ab:b9:94:50:e8:16:82:cd:0f:eb: 26:64:85:6e:82:a5:09:9d:fb:26:e7:59:31:b9:93: c4:8a:cb:f0:9a:bd:1e:28:06:be:fa:26:53:e8:28: d7:56:5b:21:f0:d5:eb:bd:16:b5:23:f1:42:d9:0c: 34:ab:0c:c2:79:8c:e1:b0:d1:bc:2a:35:50:77:fb: 4c:ce:a3:9f:0b:8f:72:eb:01:2e:07:30:42:b3:0f: 5e:5e:92:dc:2c:6f:e1:2c:9b:fd:f0:6a:ca:71:32: 1c:e7:80:9c:2f:d5:67:28:76:0d:97:16:2d:6d:fd: e7:88:98:cc:8f:99:df:c3:a1:86:d1:c8:88:0a:20: 06:a5:5e:e9:3d:27:42:66:92:35:8d:2f:0f:ec:39: f2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:20:C9:26:AD:96:36:34:BB:4C:15:62:F8:FA:21:BC:95:F6:A0:96 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1001::/48 Signature Algorithm: sha256WithRSAEncryption af:53:24:50:e8:66:e3:b0:42:91:b0:89:48:95:59:23:b8:65: a0:38:58:1b:10:e6:6f:51:8d:50:bc:9e:66:27:b0:de:50:52: fc:35:74:3c:ff:ad:0d:32:69:e5:3f:90:54:60:22:84:53:67: 92:d0:c9:1c:f1:6a:c5:c9:c7:20:af:ec:3c:4c:98:20:4a:ca: 51:41:f8:1c:58:ab:01:7a:70:bd:88:18:80:5c:4c:22:2a:6b: b8:4e:ca:58:f2:a8:d7:f1:e0:45:59:cd:aa:d8:19:a4:68:39: 07:ca:f4:6d:d3:47:f9:03:41:c0:95:64:e6:1b:9b:10:ae:9a: 8f:26:45:b0:09:a2:a6:f4:9f:a4:4d:2c:52:f7:4c:cb:b2:2e: da:0f:ed:76:a5:83:24:d5:c3:86:a0:e9:09:4f:25:f9:f6:47: a9:40:80:8c:5e:cf:c5:d4:2f:39:2c:e5:8e:96:0c:df:b2:a1: 3d:9a:26:58:3c:21:2e:e8:d5:c4:2d:a9:bd:a6:51:9c:85:a2: 15:4f:10:9e:83:82:52:19:68:99:3b:66:17:56:da:9a:5b:9b: 59:fe:b2:ea:6a:70:aa:26:a6:83:6f:c3:e1:04:91:c8:2a:48: 91:47:4a:ac:d3:2c:88:91:ad:eb:c5:34:d9:a8:cc:5b:fe:7e: 3b:71:c6:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeFqtaplJcgjSmrXsO0OI1cle7hYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDlaFw0yNTA2MzAwMTA1MDlaMDMxMTAvBgNV BAMTKEZCMjBDOTI2QUQ5NjM2MzRCQjRDMTU2MkY4RkEyMUJDOTVGNkEwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3BCRbQEngYtYfiWQq2WlxmqP mIczz1skkV9L5EGlqVxKhmM5AWqlTPuJQ3fUXNcwYyC7DFEgGqHIuzsC6ybqqZJm 0S+7cSxYLgXHGD0y1qGqX4yv55oj4Rl0B0FvUtemoIGLzouxcbL79cvtq7mUUOgW gs0P6yZkhW6CpQmd+ybnWTG5k8SKy/CavR4oBr76JlPoKNdWWyHw1eu9FrUj8ULZ DDSrDMJ5jOGw0bwqNVB3+0zOo58Lj3LrAS4HMEKzD15ektwsb+Esm/3waspxMhzn gJwv1Wcodg2XFi1t/eeImMyPmd/DoYbRyIgKIAalXuk9J0JmkjWNLw/sOfJ3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+yDJJq2WNjS7TBVi+PohvJX2oJYwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBABMA0GCSqGSIb3DQEBCwUAA4IBAQCvUyRQ6GbjsEKRsIlIlVkjuGWgOFgbEOZv UY1QvJ5mJ7DeUFL8NXQ8/60NMmnlP5BUYCKEU2eS0Mkc8WrFyccgr+w8TJggSspR QfgcWKsBenC9iBiAXEwiKmu4TspY8qjX8eBFWc2q2BmkaDkHyvRt00f5A0HAlWTm G5sQrpqPJkWwCaKm9J+kTSxS90zLsi7aD+12pYMk1cOGoOkJTyX59kepQICMXs/F 1C85LOWOlgzfsqE9miZYPCEu6NXELam9plGchaIVTxCeg4JSGWiZO2YXVtqaW5tZ /rLqanCqJqaDb8PhBJHIKkiRR0qs0yyIka3rxTTZqMxb/n47ccbg -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org