$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: jd8d0ik0L85IR+RMNaNBAcu7KhKov2Mi9Lo/e0a9n2M= Subject key identifier: 31:C0:A3:B7:77:A2:36:E0:2A:B0:5A:D1:79:7C:10:40:BE:20:22:C3 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 74CC1E9CACF778A32CEFF86FCC004BDD9D9C8BC1 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 01 Jul 2024 01:05:08 +0000 ROA not before: Mon 01 Jul 2024 01:00:08 +0000 ROA not after: Mon 30 Jun 2025 01:05:08 +0000 asID: 38156 IP address blocks: 2405:a540:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:cc:1e:9c:ac:f7:78:a3:2c:ef:f8:6f:cc:00:4b:dd:9d:9c:8b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 1 01:00:08 2024 GMT Not After : Jun 30 01:05:08 2025 GMT Subject: CN=31C0A3B777A236E02AB05AD1797C1040BE2022C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ff:3a:28:5c:7e:ca:f4:2c:f8:34:f6:66:8b: 66:8b:d1:60:9c:70:83:0c:af:49:06:42:a7:88:e9: 73:5f:e1:85:6f:61:ac:d4:e1:d6:b4:d0:18:09:95: 18:f4:98:68:2e:72:51:fe:bc:f5:cc:a7:f7:74:15: 88:6f:62:ec:07:9c:ab:6c:d9:21:e9:4f:b8:f7:1e: b0:d9:75:d4:b2:9a:70:93:cb:cf:87:7f:27:3f:55: 4c:67:64:44:9c:e1:65:e2:d1:c1:9b:3c:68:5c:23: 0c:82:93:26:2f:ee:38:ff:8a:f9:3c:cd:5a:af:b6: 30:3b:0e:b4:a9:4c:e3:33:7e:27:eb:19:e8:ff:7d: ea:1f:69:39:37:0b:f7:d3:c9:9b:52:6a:7b:a2:b5: da:2d:97:84:ed:f3:cd:f2:ce:9d:c7:b0:d7:ff:76: 03:26:5c:2e:e7:bc:0d:6b:83:0e:3c:59:91:43:8c: f9:04:e5:7e:75:9b:ca:e8:5e:1e:f2:22:fd:1e:b0: f1:ab:5b:cd:a4:ed:fc:44:a0:b9:5a:53:7e:43:64: 38:71:10:69:d3:20:6d:89:ac:8d:81:29:89:bb:b8: 5a:6c:2e:ed:6a:85:81:f4:8f:0c:03:82:c9:16:a8: 35:26:cb:e1:b2:6e:ba:06:fb:55:2c:34:c2:8c:4c: 6e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C0:A3:B7:77:A2:36:E0:2A:B0:5A:D1:79:7C:10:40:BE:20:22:C3 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1008::/48 Signature Algorithm: sha256WithRSAEncryption 5f:c5:11:ef:b2:c1:00:cc:56:5d:0d:52:bb:30:e4:29:ab:17: f3:57:07:09:33:58:bd:cb:e0:f3:58:cb:32:9b:dd:15:5e:a5: 2f:e6:81:a2:a3:77:b5:21:f4:0b:79:25:1d:cf:3a:81:2b:1b: d1:0e:0e:25:63:43:84:b3:98:bc:e3:6d:f9:95:78:19:24:24: c2:e2:6b:29:38:bc:3a:88:27:39:7d:bd:4b:f9:4e:eb:22:75: 08:f7:59:49:13:12:fc:29:8a:79:11:41:02:aa:e7:f8:10:8f: 74:d1:0e:a1:14:33:2a:7a:53:8e:0a:b3:ed:12:0b:db:e7:09: 5c:54:cb:f9:47:64:46:79:e4:33:f3:56:14:09:01:44:ac:9b: 68:a1:ff:9e:09:b6:2e:fe:45:3e:ac:f5:ba:05:db:ab:6a:19: 11:f6:e5:75:ac:ea:a7:0b:60:87:a0:6f:f9:20:b9:aa:f2:13: b8:f6:2d:26:19:d7:f9:79:24:6c:c6:65:81:96:a0:5b:d3:9a: 18:f5:75:e9:17:8b:3c:3c:4e:cb:e0:6a:f3:00:c1:72:fd:c9: 29:cc:34:34:cc:d2:21:95:1f:af:2f:76:c4:c0:0d:eb:c3:13: 7b:76:3d:8d:49:9e:a8:3d:39:b8:ab:d1:ef:df:50:24:b9:6c: 19:34:1e:de -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdMwenKz3eKMs7/hvzABL3Z2ci8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MDEwMTAwMDhaFw0yNTA2MzAwMTA1MDhaMDMxMTAvBgNV BAMTKDMxQzBBM0I3NzdBMjM2RTAyQUIwNUFEMTc5N0MxMDQwQkUyMDIyQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/zooXH7K9Cz4NPZmi2aL0WCc cIMMr0kGQqeI6XNf4YVvYazU4da00BgJlRj0mGguclH+vPXMp/d0FYhvYuwHnKts 2SHpT7j3HrDZddSymnCTy8+Hfyc/VUxnZESc4WXi0cGbPGhcIwyCkyYv7jj/ivk8 zVqvtjA7DrSpTOMzfifrGej/feofaTk3C/fTyZtSanuitdotl4Tt883yzp3HsNf/ dgMmXC7nvA1rgw48WZFDjPkE5X51m8roXh7yIv0esPGrW82k7fxEoLlaU35DZDhx EGnTIG2JrI2BKYm7uFpsLu1qhYH0jwwDgskWqDUmy+GybroG+1UsNMKMTG6xAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMcCjt3eiNuAqsFrReXwQQL4gIsMwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAIMA0GCSqGSIb3DQEBCwUAA4IBAQBfxRHvssEAzFZdDVK7MOQpqxfzVwcJM1i9 y+DzWMsym90VXqUv5oGio3e1IfQLeSUdzzqBKxvRDg4lY0OEs5i84235lXgZJCTC 4mspOLw6iCc5fb1L+U7rInUI91lJExL8KYp5EUECquf4EI900Q6hFDMqelOOCrPt Egvb5wlcVMv5R2RGeeQz81YUCQFErJtoof+eCbYu/kU+rPW6BdurahkR9uV1rOqn C2CHoG/5ILmq8hO49i0mGdf5eSRsxmWBlqBb05oY9XXpF4s8PE7L4GrzAMFy/ckp zDQ0zNIhlR+vL3bEwA3rwxN7dj2NSZ6oPTm4q9Hv31AkuWwZNB7e -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org