$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: dox23Fvp66w23nmPtxr1ujp+9uQeg4N0zFGPPMyv3rU= Subject key identifier: DF:3C:8C:DB:2E:B5:1C:34:47:27:AE:21:CB:E5:E2:B0:60:C6:57:3A Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 445361F36A9CA6F54C0D2F7EFBD2DA8A2CF38094 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:09 +0000 ROA not before: Mon 01 Jul 2024 01:00:09 +0000 ROA not after: Mon 30 Jun 2025 01:05:09 +0000 asID: 38156 IP address blocks: 2405:a540:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:53:61:f3:6a:9c:a6:f5:4c:0d:2f:7e:fb:d2:da:8a:2c:f3:80:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:09 2024 GMT Not After : Jun 30 01:05:09 2025 GMT Subject: CN=DF3C8CDB2EB51C344727AE21CBE5E2B060C6573A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:ba:fb:48:89:9a:92:c6:fc:e8:b9:41:8b: 60:26:b6:fd:82:28:a2:1b:16:fe:55:bc:20:39:fc: ae:ae:52:a0:17:16:f4:34:1b:66:44:e2:25:0a:4c: c5:89:36:55:d9:89:a7:3a:49:9a:8f:04:ac:a1:60: 7e:6d:8d:42:4a:76:7a:f0:9e:ca:1e:16:3f:2f:5f: 87:9a:53:b5:da:09:3b:2d:ae:e8:1c:35:02:a7:c7: f3:a0:2a:89:60:e0:62:2d:ed:7b:d3:9a:2f:d2:af: 9f:a6:4a:5f:2c:ef:9c:0e:ca:50:06:82:8c:eb:9b: 2e:ee:a7:86:0c:ce:70:b9:f6:3a:2f:28:94:f9:59: 45:18:49:a3:88:48:46:b1:c5:c5:04:77:d3:fb:6a: 5c:32:cb:3a:e8:88:4d:ee:ea:f7:fd:0f:91:34:a1: 44:2a:29:d0:c1:8f:1a:2e:47:96:eb:56:df:37:42: 0d:71:c8:65:76:ef:05:a7:42:9a:f6:58:44:33:e3: 7f:a0:35:6f:d9:01:ff:1c:11:38:ef:3b:52:b0:d1: 8d:26:dc:7e:4d:e9:91:f8:ea:f1:7c:d9:01:42:5e: 8e:38:9d:a2:6e:cf:3b:ed:68:f8:3e:2c:aa:56:91: 07:4a:52:4c:7c:76:1a:f9:7e:3f:6b:c6:7c:08:e1: 4b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3C:8C:DB:2E:B5:1C:34:47:27:AE:21:CB:E5:E2:B0:60:C6:57:3A X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1003::/48 Signature Algorithm: sha256WithRSAEncryption ce:32:7e:d4:a2:5a:6d:43:a5:11:33:e9:4a:13:ac:16:5a:c8: c8:61:23:3c:36:73:f6:43:29:84:95:d1:57:34:e5:8a:be:6f: ec:9d:09:82:18:96:25:9c:78:6c:8c:da:4b:bb:1b:b4:1e:29: 79:74:f5:45:44:79:b3:b9:7a:fb:ea:cb:24:ee:01:97:63:79: 8b:12:f1:54:41:cf:c2:c0:d1:27:f6:58:31:98:b3:5a:15:48: db:c8:ae:f5:03:56:0e:67:63:1a:b8:81:9a:5d:11:9e:85:bf: 9f:f9:69:e0:10:b4:bb:0d:a1:bd:7b:93:8f:4f:94:71:e4:cd: 8d:c5:86:9b:ab:7f:f6:ed:1b:be:3c:d1:43:4a:0e:17:65:12: f3:b4:56:79:27:60:c1:6d:01:8a:f2:63:7d:ce:71:b4:2f:ce: 56:ce:57:e5:c4:1f:cb:9a:77:d9:2c:f6:69:b6:ac:29:69:72: 35:3b:10:29:15:88:f6:c0:25:7c:5f:91:69:7c:e9:31:9c:8c: 73:20:9b:27:a7:3e:f5:5e:4e:b6:7a:fb:5e:87:71:43:da:a0: 00:b5:1b:bd:9c:4f:7b:c1:0a:32:82:30:a6:4f:2d:02:46:0f: 96:e6:46:86:2a:98:00:7a:11:79:61:c5:47:68:3a:b9:78:70: cf:a8:30:54 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURFNh82qcpvVMDS9++9LaiizzgJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDlaFw0yNTA2MzAwMTA1MDlaMDMxMTAvBgNV BAMTKERGM0M4Q0RCMkVCNTFDMzQ0NzI3QUUyMUNCRTVFMkIwNjBDNjU3M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu4br7SImaksb86LlBi2Amtv2C KKIbFv5VvCA5/K6uUqAXFvQ0G2ZE4iUKTMWJNlXZiac6SZqPBKyhYH5tjUJKdnrw nsoeFj8vX4eaU7XaCTstrugcNQKnx/OgKolg4GIt7XvTmi/Sr5+mSl8s75wOylAG gozrmy7up4YMznC59jovKJT5WUUYSaOISEaxxcUEd9P7alwyyzroiE3u6vf9D5E0 oUQqKdDBjxouR5brVt83Qg1xyGV27wWnQpr2WEQz43+gNW/ZAf8cETjvO1Kw0Y0m 3H5N6ZH46vF82QFCXo44naJuzzvtaPg+LKpWkQdKUkx8dhr5fj9rxnwI4UsHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3zyM2y61HDRHJ64hy+XisGDGVzowHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBADMA0GCSqGSIb3DQEBCwUAA4IBAQDOMn7UolptQ6URM+lKE6wWWsjIYSM8NnP2 QymEldFXNOWKvm/snQmCGJYlnHhsjNpLuxu0Hil5dPVFRHmzuXr76ssk7gGXY3mL EvFUQc/CwNEn9lgxmLNaFUjbyK71A1YOZ2MauIGaXRGehb+f+WngELS7DaG9e5OP T5Rx5M2NxYabq3/27Ru+PNFDSg4XZRLztFZ5J2DBbQGK8mN9znG0L85WzlflxB/L mnfZLPZptqwpaXI1OxApFYj2wCV8X5FpfOkxnIxzIJsnpz71Xk62evteh3FD2qAA tRu9nE97wQoygjCmTy0CRg+W5kaGKpgAehF5YcVHaDq5eHDPqDBU -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org