$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: HGfC/KvoO5GSTdLtJFSnFNYfJcPE1V6+cvdGs9zE4eY= Subject key identifier: 7C:0A:A3:F8:41:C7:6E:25:22:2F:42:EF:43:3E:BD:D0:CA:27:E3:22 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7C413CA1509BA7BC280A1AC1699F9B4CA12D5660 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 31 Jul 2023 00:08:32 +0000 ROA not before: Mon 31 Jul 2023 00:03:32 +0000 ROA not after: Mon 29 Jul 2024 00:08:32 +0000 asID: 38156 IP address blocks: 2405:a540:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:41:3c:a1:50:9b:a7:bc:28:0a:1a:c1:69:9f:9b:4c:a1:2d:56:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 31 00:03:32 2023 GMT Not After : Jul 29 00:08:32 2024 GMT Subject: CN=7C0AA3F841C76E25222F42EF433EBDD0CA27E322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3c:f4:e1:ea:eb:b2:22:56:68:f7:4d:2d:72: af:71:d0:95:5f:87:a3:0a:d7:44:dd:e6:0a:f8:46: ae:cd:cb:69:92:33:e0:b3:0a:c4:5c:2b:be:41:80: 87:0e:18:77:ba:c0:8d:45:cd:12:93:b2:cd:95:ec: 87:6d:74:c6:6b:0d:6d:1c:3d:44:c2:8b:40:72:ba: f3:b4:2f:e2:3d:e3:af:ec:4b:03:a7:bc:42:0c:88: d5:57:ad:86:33:69:29:ec:44:a8:a7:24:39:84:c5: 98:08:54:62:e6:a4:d4:36:59:67:86:dd:59:a0:f1: e0:ad:f5:9a:34:5e:24:60:dd:07:70:b1:6a:b9:5d: a9:dc:67:8a:80:7d:1a:54:92:a1:cd:ab:6a:f5:3a: b9:c0:30:68:4b:0e:7d:48:b1:45:d4:4f:ad:89:70: d6:6d:11:b9:fb:22:fd:cf:1d:3e:d8:b4:ed:e2:5a: 83:61:d1:2b:e9:01:39:35:19:63:7a:5c:f6:7f:a1: 05:79:79:3c:9f:1a:b7:8e:95:20:10:a8:82:66:82: ca:27:8f:62:1f:ba:99:56:8b:b8:a0:34:6b:50:64: c2:c8:be:36:d3:2b:cc:cd:8d:cf:cf:9b:7e:ec:56: 1b:0b:9a:5c:6f:ef:12:4a:32:02:d4:ed:9b:7d:92: 7c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0A:A3:F8:41:C7:6E:25:22:2F:42:EF:43:3E:BD:D0:CA:27:E3:22 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1008::/48 Signature Algorithm: sha256WithRSAEncryption 72:90:c9:48:43:92:47:76:ff:60:72:52:d4:42:2b:e8:2e:e9: c9:5b:7e:1b:fe:7e:43:e2:4b:9d:84:13:3d:94:00:dd:85:1f: 4f:67:ce:4d:e6:66:f8:ce:80:98:c4:3d:cf:59:14:da:e4:50: ee:38:c5:d9:2a:de:f3:00:c8:36:15:31:1a:af:a1:ab:8c:8a: 08:f2:fe:76:05:f4:51:99:d3:ad:77:6e:56:58:4a:56:f2:a0: 6d:e0:e2:d0:47:41:69:7a:fd:41:d9:b8:e6:e5:13:5f:7c:e0: 46:c0:92:7b:14:8e:cf:56:2e:79:5b:9f:25:35:a3:0d:58:33: 63:78:51:84:c4:51:58:fc:94:2b:53:d9:88:9f:6a:e8:e6:f1: e1:8d:32:4b:c1:5e:ab:85:f2:a6:60:bd:5c:16:67:a7:70:9b: ce:ed:81:d3:89:74:b9:5b:b9:88:2f:bb:3d:85:42:f8:de:43: 9d:8b:89:98:2e:83:46:44:78:0b:0d:b6:5c:58:79:5f:94:f4: 88:db:c6:dd:c9:81:fe:eb:b4:79:dd:3f:13:18:17:1d:93:2e: ac:b6:f6:a7:a1:1e:e2:57:89:70:b2:02:44:ab:95:db:19:d6: 14:85:cc:1e:3f:6e:49:30:84:2d:a3:86:dc:b7:a7:16:11:23: a8:02:96:b2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfEE8oVCbp7woChrBaZ+bTKEtVmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA3MzEwMDAzMzJaFw0yNDA3MjkwMDA4MzJaMDMxMTAvBgNV BAMTKDdDMEFBM0Y4NDFDNzZFMjUyMjJGNDJFRjQzM0VCREQwQ0EyN0UzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKPPTh6uuyIlZo900tcq9x0JVf h6MK10Td5gr4Rq7Ny2mSM+CzCsRcK75BgIcOGHe6wI1FzRKTss2V7IdtdMZrDW0c PUTCi0ByuvO0L+I946/sSwOnvEIMiNVXrYYzaSnsRKinJDmExZgIVGLmpNQ2WWeG 3Vmg8eCt9Zo0XiRg3QdwsWq5XancZ4qAfRpUkqHNq2r1OrnAMGhLDn1IsUXUT62J cNZtEbn7Iv3PHT7YtO3iWoNh0SvpATk1GWN6XPZ/oQV5eTyfGreOlSAQqIJmgson j2IfuplWi7igNGtQZMLIvjbTK8zNjc/Pm37sVhsLmlxv7xJKMgLU7Zt9knwRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfAqj+EHHbiUiL0LvQz690Mon4yIwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAIMA0GCSqGSIb3DQEBCwUAA4IBAQBykMlIQ5JHdv9gclLUQivoLunJW34b/n5D 4kudhBM9lADdhR9PZ85N5mb4zoCYxD3PWRTa5FDuOMXZKt7zAMg2FTEar6GrjIoI 8v52BfRRmdOtd25WWEpW8qBt4OLQR0Fpev1B2bjm5RNffOBGwJJ7FI7PVi55W58l NaMNWDNjeFGExFFY/JQrU9mIn2ro5vHhjTJLwV6rhfKmYL1cFmencJvO7YHTiXS5 W7mIL7s9hUL43kOdi4mYLoNGRHgLDbZcWHlflPSI28bdyYH+67R53T8TGBcdky6s tvanoR7iV4lwsgJEq5XbGdYUhcweP25JMIQto4bct6cWESOoApay -----END CERTIFICATE-----Generated at Sun May 5 18:01:02 2024 by rpki-client on console-ams.rpki-client.org