$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: BFUx1TeGpnqMfbMBT8Le1uOFrDrlyFs6asvfKdcHRgo= Subject key identifier: D3:7D:A4:B5:1A:AC:2F:3C:91:2C:C0:9A:AC:AD:12:14:B5:9D:D1:B1 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 2910B051C9147C7F5FA8639E6D7BFDA0851B3142 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 16:00:02 +0000 ROA not before: Wed 20 Dec 2023 15:55:02 +0000 ROA not after: Wed 18 Dec 2024 16:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:10:b0:51:c9:14:7c:7f:5f:a8:63:9e:6d:7b:fd:a0:85:1b:31:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 15:55:02 2023 GMT Not After : Dec 18 16:00:02 2024 GMT Subject: CN=D37DA4B51AAC2F3C912CC09AACAD1214B59DD1B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:f2:3c:97:33:6b:cb:f2:58:4a:08:e6:55: be:e7:42:74:ad:69:3c:fd:6a:bc:f4:4d:c7:3f:07: c0:16:22:76:08:db:ae:77:2e:c2:5f:fc:76:9e:87: a8:52:b5:d5:11:b4:64:b7:20:1e:36:36:ce:15:c3: ec:0c:ac:e5:19:6f:45:c6:4d:07:5c:12:d8:2d:ba: 05:ec:cc:2a:dd:e8:f7:bc:8d:88:99:b7:ce:78:dc: 3b:5b:91:18:37:41:0b:c1:22:b1:97:7f:e1:f1:2e: e3:24:d5:89:02:0b:df:fb:48:a0:be:f6:27:8d:1f: 01:95:3d:87:85:b3:c8:d5:1d:f1:92:77:7c:da:ab: 7e:89:e7:8d:6d:24:df:85:dd:cd:6c:64:7b:bb:02: b5:52:ac:5c:dc:4e:c9:b0:17:05:21:de:e0:e1:74: 84:c6:6c:c7:12:0d:ab:7d:22:ce:11:00:5b:51:90: cc:6d:da:04:ba:dd:77:fb:bd:84:a8:ff:17:63:65: 3e:d0:cb:a4:4d:a2:2d:10:6d:d6:30:01:33:dc:46: 8d:c9:5a:02:19:38:ee:fe:df:5e:63:74:3a:28:fd: 0d:d7:f5:9a:4e:fd:7a:3e:f7:5e:d4:50:c4:97:29: 48:bc:33:f8:58:9d:63:6c:93:0b:30:9f:5c:96:91: 1e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7D:A4:B5:1A:AC:2F:3C:91:2C:C0:9A:AC:AD:12:14:B5:9D:D1:B1 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030613a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100a::/48 Signature Algorithm: sha256WithRSAEncryption 39:d2:a0:9c:15:62:54:72:52:c7:8b:79:0d:b9:8b:25:98:8a: 0b:b8:bd:c8:04:b1:ce:c7:70:fb:0e:76:0d:d4:93:7c:08:a8: fc:0d:50:75:9d:bc:b1:5f:c9:fe:06:13:d9:9d:c7:90:f4:ba: 1b:0e:f2:6a:b1:d4:c2:75:93:e7:50:97:09:16:d1:96:be:fe: 03:a4:60:d7:ec:13:43:bd:38:c6:22:a4:4a:f8:c7:ea:94:e1: dd:c9:ca:83:b9:90:e9:15:15:8a:78:cd:b8:cb:0a:49:76:c8: 6f:cb:1c:53:55:ee:3a:23:aa:88:43:77:05:20:22:67:b4:8e: 4e:69:5b:bf:e9:a4:59:b3:c0:f8:89:e0:19:39:de:0d:02:8d: 51:4e:d6:3f:d7:6b:2f:de:5e:6d:30:14:7d:cb:40:ba:1f:bf: 06:80:16:f2:60:82:c4:b0:72:fc:12:35:0e:d6:58:52:83:b2: b4:cf:d0:9b:49:e9:0c:85:bc:3c:40:f5:10:39:e8:c0:02:38: a5:24:f6:4b:70:c8:19:89:c4:97:28:3e:1d:77:e4:82:10:c1: 2d:0b:07:dc:da:c6:e8:af:4a:7e:a9:26:7f:b8:24:88:59:cb: d8:a8:d0:5c:25:b5:a6:21:55:bc:9d:84:bc:cd:0b:12:90:ae: 7d:23:00:1b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKRCwUckUfH9fqGOebXv9oIUbMUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNTU1MDJaFw0yNDEyMTgxNjAwMDJaMDMxMTAvBgNV BAMTKEQzN0RBNEI1MUFBQzJGM0M5MTJDQzA5QUFDQUQxMjE0QjU5REQxQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ1fI8lzNry/JYSgjmVb7nQnSt aTz9arz0Tcc/B8AWInYI2653LsJf/Haeh6hStdURtGS3IB42Ns4Vw+wMrOUZb0XG TQdcEtgtugXszCrd6Pe8jYiZt8543DtbkRg3QQvBIrGXf+HxLuMk1YkCC9/7SKC+ 9ieNHwGVPYeFs8jVHfGSd3zaq36J541tJN+F3c1sZHu7ArVSrFzcTsmwFwUh3uDh dITGbMcSDat9Is4RAFtRkMxt2gS63Xf7vYSo/xdjZT7Qy6RNoi0QbdYwATPcRo3J WgIZOO7+315jdDoo/Q3X9ZpO/Xo+917UUMSXKUi8M/hYnWNskwswn1yWkR59AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU032ktRqsLzyRLMCarK0SFLWd0bEwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAKMA0GCSqGSIb3DQEBCwUAA4IBAQA50qCcFWJUclLHi3kNuYslmIoLuL3IBLHO x3D7DnYN1JN8CKj8DVB1nbyxX8n+BhPZnceQ9LobDvJqsdTCdZPnUJcJFtGWvv4D pGDX7BNDvTjGIqRK+MfqlOHdycqDuZDpFRWKeM24ywpJdshvyxxTVe46I6qIQ3cF ICJntI5OaVu/6aRZs8D4ieAZOd4NAo1RTtY/12sv3l5tMBR9y0C6H78GgBbyYILE sHL8EjUO1lhSg7K0z9CbSekMhbw8QPUQOejAAjilJPZLcMgZicSXKD4dd+SCEMEt Cwfc2sbor0p+qSZ/uCSIWcvYqNBcJbWmIVW8nYS8zQsSkK59IwAb -----END CERTIFICATE-----Generated at Sun May 5 18:01:02 2024 by rpki-client on console-ams.rpki-client.org