$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: y8JF5waQBjaGi7j132v2K9wcfS1ggVxFjuJzjO1PKh8= Subject key identifier: FF:20:47:E1:FE:84:50:6F:63:27:E6:F0:28:3F:94:6D:DB:57:8F:BE Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 18B368CAEFEB62EDA7B50EEDA6BE075B5DB967F1 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Nov 2024 16:00:03 +0000 ROA not before: Wed 20 Nov 2024 15:55:03 +0000 ROA not after: Wed 19 Nov 2025 16:00:03 +0000 asID: 38156 IP address blocks: 2405:a540:100d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:b3:68:ca:ef:eb:62:ed:a7:b5:0e:ed:a6:be:07:5b:5d:b9:67:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Nov 20 15:55:03 2024 GMT Not After : Nov 19 16:00:03 2025 GMT Subject: CN=FF2047E1FE84506F6327E6F0283F946DDB578FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:42:3e:0c:ae:76:82:9b:ef:7a:68:80:97: de:d6:8f:86:ee:be:26:55:25:49:a0:b8:5b:64:43: 31:15:5f:87:28:be:81:d9:ea:38:00:4d:23:f3:bd: ff:fc:e6:08:06:92:64:7c:df:d8:6b:48:eb:f6:6f: f7:8c:7d:c4:72:67:07:da:40:63:9e:19:e8:93:36: da:f9:4c:8a:88:86:05:45:1c:c1:53:e1:d6:62:30: d4:16:54:47:84:c8:7f:b0:b2:61:32:be:f5:a0:7a: 4b:30:91:9d:1e:b4:1d:f4:24:1d:62:15:82:41:4f: bb:59:ed:d5:74:df:b3:36:ab:29:0a:99:b0:5c:cc: 7a:11:ee:0e:89:0b:d2:cd:ec:42:40:4d:85:6c:0e: b9:05:1f:19:84:4c:1d:c2:1b:01:e7:f4:4d:ca:8d: 7a:c7:0b:10:07:00:10:d8:7a:ae:7a:be:a7:b1:ce: 9d:e2:bf:fe:80:15:7a:d5:b3:e9:3d:b4:c9:48:f3: e9:fc:c9:c5:ff:87:4e:84:fd:aa:ff:8c:96:a5:92: 80:09:f1:85:cd:60:8e:6f:37:e2:73:ca:da:d7:09: b0:a5:e4:72:d4:69:0d:ec:a1:3c:79:49:94:b6:7b: 27:f8:78:d6:dd:99:3d:b4:69:5c:5d:5b:87:d6:39: 3a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:20:47:E1:FE:84:50:6F:63:27:E6:F0:28:3F:94:6D:DB:57:8F:BE X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030643a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100d::/48 Signature Algorithm: sha256WithRSAEncryption 6d:04:7d:8e:05:0d:ab:8a:1a:f4:fb:2c:0e:57:e3:2f:59:72: 43:ca:bc:e4:29:14:06:bb:bb:49:ed:fa:7d:be:c0:18:3f:71: 7c:55:fa:c4:74:68:44:d7:dc:07:2b:36:1e:af:ac:d3:8b:2e: 18:ba:de:70:0b:ea:d0:a8:79:d7:e3:53:eb:c3:99:11:0f:be: 6f:18:d9:3b:b6:f9:9c:73:0b:72:f6:ac:a7:4d:11:24:fc:49: 24:b6:9a:de:da:07:a2:cb:f1:f8:a7:aa:69:3e:f6:3f:84:3b: ad:55:2e:91:29:46:f7:55:da:17:6a:37:3f:e4:e0:b7:4b:8a: 46:c5:82:82:3c:8d:da:92:56:b4:c3:da:8d:32:45:2d:14:aa: 9f:bc:84:58:da:c9:ca:11:94:31:29:e0:a9:55:e2:88:84:da: fe:40:72:4d:03:20:a0:24:5a:be:0a:fe:53:ca:6d:15:2f:99: e6:e9:34:04:c3:ac:3c:72:6b:4d:95:e1:22:77:f4:27:96:0e: 21:32:5f:1c:5e:f0:18:54:9e:c0:c2:5c:0a:19:3d:a1:84:dd: 2b:54:d0:23:f6:09:b4:85:d2:29:da:71:c7:4a:3d:5f:23:82: 85:53:90:1d:71:95:5f:38:a5:e1:68:53:fb:7e:37:5f:c5:c1: 07:77:13:fb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGLNoyu/rYu2ntQ7tpr4HW125Z/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDExMjAxNTU1MDNaFw0yNTExMTkxNjAwMDNaMDMxMTAvBgNV BAMTKEZGMjA0N0UxRkU4NDUwNkY2MzI3RTZGMDI4M0Y5NDZEREI1NzhGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmBEI+DK52gpvvemiAl97Wj4bu viZVJUmguFtkQzEVX4covoHZ6jgATSPzvf/85ggGkmR839hrSOv2b/eMfcRyZwfa QGOeGeiTNtr5TIqIhgVFHMFT4dZiMNQWVEeEyH+wsmEyvvWgekswkZ0etB30JB1i FYJBT7tZ7dV037M2qykKmbBczHoR7g6JC9LN7EJATYVsDrkFHxmETB3CGwHn9E3K jXrHCxAHABDYeq56vqexzp3iv/6AFXrVs+k9tMlI8+n8ycX/h06E/ar/jJalkoAJ 8YXNYI5vN+JzytrXCbCl5HLUaQ3soTx5SZS2eyf4eNbdmT20aVxdW4fWOTofAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/yBH4f6EUG9jJ+bwKD+UbdtXj74wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBANMA0GCSqGSIb3DQEBCwUAA4IBAQBtBH2OBQ2rihr0+ywOV+MvWXJDyrzkKRQG u7tJ7fp9vsAYP3F8VfrEdGhE19wHKzYer6zTiy4Yut5wC+rQqHnX41Prw5kRD75v GNk7tvmccwty9qynTREk/Ekktpre2geiy/H4p6ppPvY/hDutVS6RKUb3VdoXajc/ 5OC3S4pGxYKCPI3akla0w9qNMkUtFKqfvIRY2snKEZQxKeCpVeKIhNr+QHJNAyCg JFq+Cv5Tym0VL5nm6TQEw6w8cmtNleEid/Qnlg4hMl8cXvAYVJ7AwlwKGT2hhN0r VNAj9gm0hdIp2nHHSj1fI4KFU5AdcZVfOKXhaFP7fjdfxcEHdxP7 -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org