$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: BTD2Xf6BT0ausi55SDfb+RV+pnFyb0R2cyAoJs9Sr6Q= Subject key identifier: 1C:D2:74:E3:09:85:94:D0:FA:38:E1:1A:71:F3:4B:45:97:D1:FD:2F Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 34EC0C5C2B692E85704355D566AD08213821AFB2 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Nov 2024 17:00:02 +0000 ROA not before: Wed 20 Nov 2024 16:55:02 +0000 ROA not after: Wed 19 Nov 2025 17:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ec:0c:5c:2b:69:2e:85:70:43:55:d5:66:ad:08:21:38:21:af:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Nov 20 16:55:02 2024 GMT Not After : Nov 19 17:00:02 2025 GMT Subject: CN=1CD274E3098594D0FA38E11A71F34B4597D1FD2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2a:a7:1e:97:1f:62:f6:82:95:a1:57:b3:2d: 42:a4:b7:0c:50:f5:0f:f5:03:32:f3:dc:9a:c6:ed: 69:74:39:f8:94:b9:ab:ad:e6:b2:9b:ff:1a:21:0e: c3:02:da:7e:df:91:e1:01:ed:04:8e:2e:08:ba:e0: 0d:41:59:ae:df:b6:86:d5:c5:0d:9d:a7:74:83:39: ce:3b:26:91:03:1d:f9:bb:11:09:d0:9f:18:60:af: c8:35:0d:22:83:d6:1d:de:d9:76:69:b3:05:59:7f: be:ab:6c:ef:ed:92:4e:78:b8:9a:b9:5c:cd:7d:1d: 95:c8:10:5e:c8:0b:ea:20:4c:24:ed:52:31:21:d8: 35:c4:46:25:23:b8:78:f7:5d:21:c0:2e:20:73:d8: db:38:ac:eb:71:2e:2c:6a:a7:60:58:21:0b:6e:ec: 62:ba:bf:94:85:cd:10:1a:36:06:59:e7:6b:58:63: 9a:85:4f:66:e2:89:55:76:0e:b4:9a:d0:3f:be:34: 68:dd:59:32:4d:fc:f8:70:9a:20:3d:fa:17:04:17: eb:4d:2d:0f:42:6b:18:d5:dc:f3:a0:6d:23:08:92: 2a:e4:10:e0:b0:e3:16:7d:52:82:39:f0:25:fc:07: a8:67:26:12:bd:a9:a2:a9:8b:88:10:96:b7:a8:0d: 67:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D2:74:E3:09:85:94:D0:FA:38:E1:1A:71:F3:4B:45:97:D1:FD:2F X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100a::/48 Signature Algorithm: sha256WithRSAEncryption ca:7a:e1:03:2e:08:9b:ef:72:d0:c3:6c:88:57:24:cf:40:9a: 63:4e:ba:03:10:6e:11:29:aa:eb:56:0f:9d:73:df:17:1d:00: f6:5f:63:8d:6b:d1:69:a8:23:ae:59:9e:ad:db:10:0d:6c:ff: 1d:e5:a7:8d:89:b8:6e:8d:fd:59:6b:47:a2:93:29:73:79:04: 4a:67:40:b4:26:df:f4:3a:d8:32:14:59:6e:c4:29:b4:ad:eb: 92:f0:37:89:8f:7a:d6:1c:58:48:53:d6:1c:6f:b5:31:1a:0b: 8d:aa:0e:1c:e7:6c:60:5a:a2:41:d6:8b:05:4c:cb:d0:6c:0f: a8:ce:d6:0e:3e:7c:d8:e6:c6:6c:fe:a2:fb:d5:71:ba:b0:db: 20:44:6c:27:46:32:e1:d8:47:80:c1:59:0b:2d:f3:3a:dd:df: 4e:3c:0c:a4:32:99:59:b3:c5:09:d6:1a:ea:dd:72:a2:6e:7a: 3b:8e:0e:29:69:e6:b7:73:1a:4d:ef:19:68:42:b4:fe:6d:6d: fa:f7:b3:49:dc:dc:af:92:0b:0a:2a:53:c7:1d:f7:d2:10:c3: 75:1d:c1:96:a6:1e:1c:87:e9:05:63:d9:7f:dd:08:79:6a:7b: 9e:62:98:bd:44:4a:3b:38:05:41:11:7b:60:0d:0f:59:6d:5e: 1f:33:c5:13 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNOwMXCtpLoVwQ1XVZq0IITghr7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDExMjAxNjU1MDJaFw0yNTExMTkxNzAwMDJaMDMxMTAvBgNV BAMTKDFDRDI3NEUzMDk4NTk0RDBGQTM4RTExQTcxRjM0QjQ1OTdEMUZEMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfKqcelx9i9oKVoVezLUKktwxQ 9Q/1AzLz3JrG7Wl0OfiUuaut5rKb/xohDsMC2n7fkeEB7QSOLgi64A1BWa7ftobV xQ2dp3SDOc47JpEDHfm7EQnQnxhgr8g1DSKD1h3e2XZpswVZf76rbO/tkk54uJq5 XM19HZXIEF7IC+ogTCTtUjEh2DXERiUjuHj3XSHALiBz2Ns4rOtxLixqp2BYIQtu 7GK6v5SFzRAaNgZZ52tYY5qFT2biiVV2DrSa0D++NGjdWTJN/PhwmiA9+hcEF+tN LQ9CaxjV3POgbSMIkirkEOCw4xZ9UoI58CX8B6hnJhK9qaKpi4gQlreoDWdhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHNJ04wmFlND6OOEacfNLRZfR/S8wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAKMA0GCSqGSIb3DQEBCwUAA4IBAQDKeuEDLgib73LQw2yIVyTPQJpjTroDEG4R KarrVg+dc98XHQD2X2ONa9FpqCOuWZ6t2xANbP8d5aeNibhujf1Za0eikylzeQRK Z0C0Jt/0OtgyFFluxCm0reuS8DeJj3rWHFhIU9Ycb7UxGguNqg4c52xgWqJB1osF TMvQbA+oztYOPnzY5sZs/qL71XG6sNsgRGwnRjLh2EeAwVkLLfM63d9OPAykMplZ s8UJ1hrq3XKibno7jg4paea3cxpN7xloQrT+bW3697NJ3NyvkgsKKlPHHffSEMN1 HcGWph4ch+kFY9l/3Qh5anueYpi9REo7OAVBEXtgDQ9ZbV4fM8UT -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org