$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: BKIVS0B2V2e0vM9isGtN+z5URQfu0Qaut4+yLwF0Phg= Subject key identifier: 4E:A9:27:BF:8C:7D:AB:F2:73:A8:E7:F9:DF:09:D9:03:A8:6A:8A:1A Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 4768A2D1BA8AFCE61DF2C61B94BF0ACDA2539129 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 16:00:01 +0000 ROA not before: Wed 20 Dec 2023 15:55:01 +0000 ROA not after: Wed 18 Dec 2024 16:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:1004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:68:a2:d1:ba:8a:fc:e6:1d:f2:c6:1b:94:bf:0a:cd:a2:53:91:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 15:55:01 2023 GMT Not After : Dec 18 16:00:01 2024 GMT Subject: CN=4EA927BF8C7DABF273A8E7F9DF09D903A86A8A1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:83:fc:97:b3:3f:15:ee:7d:8a:00:55:75:77: 3f:54:fd:fb:ee:20:67:f7:96:52:5a:15:2f:be:9f: 95:3a:61:87:27:a3:39:4b:1d:7d:59:1e:eb:03:98: 21:31:0a:5b:57:18:70:50:f9:97:db:a7:36:71:6d: 55:5e:75:68:72:c7:73:66:d6:18:3d:9b:98:8a:9f: cf:a3:01:86:a5:24:b3:ba:5f:4d:19:1e:43:89:c5: 3c:93:ec:46:7a:f1:44:66:01:a3:42:8f:49:a2:a0: 4a:32:e6:4a:3f:74:d7:50:b8:b5:37:12:c2:a5:d9: 45:38:1b:85:58:ce:d6:fe:56:52:f5:d7:aa:63:a8: 9a:0e:73:10:22:e3:60:1f:a0:64:8f:d9:16:c8:84: 18:4d:6c:40:6d:61:66:42:06:ae:c4:32:6a:8c:9a: 18:1d:35:f7:75:69:17:d1:b9:16:09:d3:ff:19:2f: 81:e3:1a:b8:12:32:5c:4f:b1:aa:93:20:77:ff:b4: db:3d:ac:2d:67:41:56:a0:bd:75:cf:7c:2e:2c:b3: a3:a1:c2:fa:d5:ac:c5:00:9b:52:09:1d:cf:0b:a4: bd:c7:ed:60:a9:d3:e6:fc:d8:6b:1f:8e:fe:90:a7: 0d:60:2b:ea:22:b2:99:3b:5a:7b:ed:8e:4d:0c:44: 21:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A9:27:BF:8C:7D:AB:F2:73:A8:E7:F9:DF:09:D9:03:A8:6A:8A:1A X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1004::/48 Signature Algorithm: sha256WithRSAEncryption 93:0c:27:90:f4:64:71:70:fc:54:86:28:db:2a:48:ef:16:d6: 35:e8:5f:97:5e:93:f0:be:38:31:05:7e:b8:5e:d2:af:40:cf: b1:c2:68:f5:52:33:3a:e8:fb:3c:8b:56:89:10:bc:9e:51:1c: b4:1e:22:b2:f6:88:36:1c:00:84:96:95:1d:fc:d0:f3:12:dc: 69:56:82:f3:20:7d:5d:14:c0:71:b4:8d:88:2d:96:59:14:e9: 45:2c:90:53:6f:20:d4:ed:71:69:78:8b:d4:9e:25:8a:cf:0e: 0a:f8:24:17:a6:a6:96:a1:de:2a:32:d0:fa:6d:06:f5:39:38: 0e:b2:7f:ba:f2:e9:ee:d5:e4:53:74:45:9a:a6:2f:28:24:6c: e3:d4:04:1d:e0:86:78:ef:4e:c6:9b:0d:81:86:65:be:77:c0: 85:c1:95:79:54:30:ce:58:26:7e:1f:73:fd:d4:5c:b8:6b:b7: 0f:96:35:65:6d:95:78:0a:3c:03:5e:88:b5:c1:24:4e:aa:c5: c9:4b:33:c9:10:9a:bf:48:59:c3:eb:8a:14:72:44:95:f7:41: 91:c0:28:fe:18:ce:61:27:52:aa:d4:1b:f8:24:a5:3b:b6:ff: 9b:da:1c:a4:c6:c3:66:71:4e:e9:09:b2:00:ac:8b:fc:d3:ae: 12:55:b9:21 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR2ii0bqK/OYd8sYblL8KzaJTkSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNTU1MDFaFw0yNDEyMTgxNjAwMDFaMDMxMTAvBgNV BAMTKDRFQTkyN0JGOEM3REFCRjI3M0E4RTdGOURGMDlEOTAzQTg2QThBMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbg/yXsz8V7n2KAFV1dz9U/fvu IGf3llJaFS++n5U6YYcnozlLHX1ZHusDmCExCltXGHBQ+ZfbpzZxbVVedWhyx3Nm 1hg9m5iKn8+jAYalJLO6X00ZHkOJxTyT7EZ68URmAaNCj0mioEoy5ko/dNdQuLU3 EsKl2UU4G4VYztb+VlL116pjqJoOcxAi42AfoGSP2RbIhBhNbEBtYWZCBq7EMmqM mhgdNfd1aRfRuRYJ0/8ZL4HjGrgSMlxPsaqTIHf/tNs9rC1nQVagvXXPfC4ss6Oh wvrVrMUAm1IJHc8LpL3H7WCp0+b82Gsfjv6Qpw1gK+oispk7Wnvtjk0MRCHXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTqknv4x9q/JzqOf53wnZA6hqihowHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAEMA0GCSqGSIb3DQEBCwUAA4IBAQCTDCeQ9GRxcPxUhijbKkjvFtY16F+XXpPw vjgxBX64XtKvQM+xwmj1UjM66Ps8i1aJELyeURy0HiKy9og2HACElpUd/NDzEtxp VoLzIH1dFMBxtI2ILZZZFOlFLJBTbyDU7XFpeIvUniWKzw4K+CQXpqaWod4qMtD6 bQb1OTgOsn+68unu1eRTdEWapi8oJGzj1AQd4IZ4707Gmw2BhmW+d8CFwZV5VDDO WCZ+H3P91Fy4a7cPljVlbZV4CjwDXoi1wSROqsXJSzPJEJq/SFnD64oUckSV90GR wCj+GM5hJ1Kq1Bv4JKU7tv+b2hykxsNmcU7pCbIArIv8064SVbkh -----END CERTIFICATE-----Generated at Tue May 7 23:33:56 2024 by rpki-client on console-ams.rpki-client.org