$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: QqMw0UvXxyRwZ3MN+nbLgt5zHCX+tRWBYTkzZR9lqRM= Subject key identifier: 3E:7E:76:D8:7E:C6:B9:78:60:67:2F:57:A2:83:CD:E3:4C:B7:5F:AD Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 237AB4F4A58F9669A0367FF74E7C1E1F1D022335 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Nov 2024 16:00:02 +0000 ROA not before: Wed 20 Nov 2024 15:55:02 +0000 ROA not after: Wed 19 Nov 2025 16:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:1004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:7a:b4:f4:a5:8f:96:69:a0:36:7f:f7:4e:7c:1e:1f:1d:02:23:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Nov 20 15:55:02 2024 GMT Not After : Nov 19 16:00:02 2025 GMT Subject: CN=3E7E76D87EC6B97860672F57A283CDE34CB75FAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:95:d9:c4:ff:8c:6d:84:24:be:20:b6:af: c9:98:87:a4:6d:5a:e7:4b:0c:b7:a6:34:03:42:23: 62:cd:85:61:bb:86:30:67:8e:9e:39:dd:fa:1f:44: de:17:34:ad:c4:8c:82:5e:8d:66:4b:6f:e4:76:e7: 6f:2d:43:a4:82:79:41:13:f3:5f:26:b1:00:77:a7: 84:a6:24:96:96:c7:a3:97:f9:b9:6e:90:5d:d3:d3: d5:1c:48:34:52:0b:7c:58:a0:5d:82:d5:26:c3:ae: 6e:51:28:de:c9:f2:0f:b7:7d:d8:73:2f:e5:fc:01: 89:ec:fb:90:15:71:f5:db:bd:5d:6d:d2:c6:b9:e3: e7:27:03:bf:04:63:07:2a:e0:72:d9:37:4b:71:f9: db:9b:26:e4:4a:8f:42:de:60:63:b5:80:e8:ae:55: f8:bb:f6:20:ee:06:ca:c5:6a:75:4f:0d:b9:df:2a: 9e:af:41:2b:75:e9:aa:25:16:0c:e9:32:6b:fa:41: 56:92:ee:fb:ac:f3:93:a4:aa:4c:65:fd:00:0e:ea: 09:d2:a2:d5:b2:86:12:75:b7:98:7f:f3:b1:0e:11: d7:ac:36:55:42:2b:90:6b:a2:3c:0a:33:06:f7:93: c1:41:80:0b:82:00:4d:48:1f:fa:b6:a2:b4:92:e9: ac:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7E:76:D8:7E:C6:B9:78:60:67:2F:57:A2:83:CD:E3:4C:B7:5F:AD X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030343a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1004::/48 Signature Algorithm: sha256WithRSAEncryption 2b:e7:94:fa:ec:a0:53:10:83:f7:0f:51:f1:3b:a5:c4:cf:05: 03:7b:cc:6e:69:54:c2:c5:60:98:b9:b8:13:91:51:0a:40:37: a1:94:fe:eb:38:5b:5f:1e:d0:89:7b:fc:ec:d1:64:91:e9:be: 46:53:95:73:70:25:f3:ca:73:6b:72:36:17:5e:43:0f:2d:4c: 5a:b4:a1:84:c3:aa:d2:18:19:04:7d:db:e6:1a:31:49:75:7e: 28:de:02:01:3d:60:ec:a1:02:c9:3a:ef:4d:29:ed:27:db:57: f3:39:c3:11:32:86:4d:5e:01:4b:c5:6c:cb:5e:8f:ac:e4:db: 40:d7:53:e7:f0:a3:f2:8f:8d:55:d7:f9:5f:a2:27:5f:51:e7: 70:e0:5e:4e:63:e8:be:4c:d7:70:17:f0:23:90:20:ed:79:c4: 1c:d7:a9:ac:38:50:fc:ff:88:25:5d:dc:34:d3:21:35:10:f9: f5:c5:99:f2:0c:5f:00:f0:c1:2c:20:cd:8d:6c:e3:8c:0f:df: 7f:be:7d:3c:ee:b4:52:02:26:45:61:bc:06:a8:6e:22:a1:72: b7:52:84:42:4e:36:bf:46:82:b2:3f:54:17:d1:33:c7:93:a0: 66:fe:a7:4a:47:84:12:97:90:7e:d4:c1:b9:6c:2f:41:38:3a: c9:01:85:8d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUI3q09KWPlmmgNn/3TnweHx0CIzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDExMjAxNTU1MDJaFw0yNTExMTkxNjAwMDJaMDMxMTAvBgNV BAMTKDNFN0U3NkQ4N0VDNkI5Nzg2MDY3MkY1N0EyODNDREUzNENCNzVGQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+T5XZxP+MbYQkviC2r8mYh6Rt WudLDLemNANCI2LNhWG7hjBnjp453fofRN4XNK3EjIJejWZLb+R2528tQ6SCeUET 818msQB3p4SmJJaWx6OX+blukF3T09UcSDRSC3xYoF2C1SbDrm5RKN7J8g+3fdhz L+X8AYns+5AVcfXbvV1t0sa54+cnA78EYwcq4HLZN0tx+dubJuRKj0LeYGO1gOiu Vfi79iDuBsrFanVPDbnfKp6vQSt16aolFgzpMmv6QVaS7vus85Okqkxl/QAO6gnS otWyhhJ1t5h/87EOEdesNlVCK5BrojwKMwb3k8FBgAuCAE1IH/q2orSS6ayNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPn522H7GuXhgZy9XooPN40y3X60wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAEMA0GCSqGSIb3DQEBCwUAA4IBAQAr55T67KBTEIP3D1HxO6XEzwUDe8xuaVTC xWCYubgTkVEKQDehlP7rOFtfHtCJe/zs0WSR6b5GU5VzcCXzynNrcjYXXkMPLUxa tKGEw6rSGBkEfdvmGjFJdX4o3gIBPWDsoQLJOu9NKe0n21fzOcMRMoZNXgFLxWzL Xo+s5NtA11Pn8KPyj41V1/lfoidfUedw4F5OY+i+TNdwF/AjkCDtecQc16msOFD8 /4glXdw00yE1EPn1xZnyDF8A8MEsIM2NbOOMD99/vn087rRSAiZFYbwGqG4ioXK3 UoRCTja/RoKyP1QX0TPHk6Bm/qdKR4QSl5B+1MG5bC9BODrJAYWN -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org