$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: tYVxzh8jsEZMpHZSsff3a6rSYcQCpSYfG+11M37Ujh0= Subject key identifier: BC:30:73:92:CD:C1:91:64:4C:5F:3B:2A:B4:1E:D6:57:62:72:64:13 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 25423A71F4FAB8D2E3206CF4C2544CE0997AE1A6 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Nov 2024 16:00:02 +0000 ROA not before: Wed 20 Nov 2024 15:55:02 +0000 ROA not after: Wed 19 Nov 2025 16:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:42:3a:71:f4:fa:b8:d2:e3:20:6c:f4:c2:54:4c:e0:99:7a:e1:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Nov 20 15:55:02 2024 GMT Not After : Nov 19 16:00:02 2025 GMT Subject: CN=BC307392CDC191644C5F3B2AB41ED65762726413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ed:f6:0d:77:5c:8f:85:95:fb:70:fc:f5:12: 4e:26:13:16:01:3b:9f:3b:e3:39:d5:4d:6c:4c:d1: 76:43:c2:22:6a:71:45:d2:ac:82:5a:3d:2e:d9:4a: da:13:aa:75:32:24:9f:8f:8e:7a:43:dd:26:f0:55: ac:df:1f:86:9a:0b:6f:fd:56:07:87:c5:5c:c7:77: 81:f6:f4:79:b6:9d:cb:0c:13:0e:06:3c:ea:11:de: cf:30:e7:65:d6:dd:9c:f9:0e:bf:50:a8:10:d0:cd: 9c:b6:9b:96:30:ec:c2:3b:22:5c:b6:be:0b:89:0c: dd:8a:f4:1d:5b:36:1f:e1:94:58:24:c6:42:f4:c0: 6e:32:02:a8:23:43:d3:d8:af:93:67:76:e8:b2:66: 5f:8c:57:d3:b3:32:a0:c4:61:de:37:56:f2:9a:00: bd:e3:f5:6b:a6:ca:f0:c3:68:20:4e:6f:7a:19:1b: 0a:64:f8:67:26:f0:9c:bf:bb:b5:e2:12:95:06:d9: 53:13:84:27:6f:be:5d:db:b8:c9:03:10:ba:a6:6e: 5f:f6:fc:cf:70:55:35:2f:c4:87:e1:80:89:d0:01: 79:ca:ba:71:1c:f8:80:d0:61:94:c2:91:75:fe:3d: 2f:97:f5:8d:27:e2:2d:ef:74:3f:09:9c:92:ee:da: 5f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:30:73:92:CD:C1:91:64:4C:5F:3B:2A:B4:1E:D6:57:62:72:64:13 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100e::/48 Signature Algorithm: sha256WithRSAEncryption 2e:c4:3c:e2:c3:0a:34:86:2a:01:08:1c:22:ec:9d:04:9c:82: 4a:51:af:89:65:8d:42:82:b5:f8:e5:b2:d9:36:63:42:d6:91: 65:5e:cc:c3:ff:6e:02:6d:c0:ca:97:7e:69:a8:27:5c:b3:ca: c0:fc:29:80:6f:0b:64:d7:d0:24:1b:20:cb:5f:75:7c:97:e3: 00:41:48:e9:6a:73:c5:9b:e0:c5:be:3d:63:1b:0e:4d:b4:b7: ad:4b:fb:52:f7:2e:f5:cf:fc:27:f9:c6:0f:60:2e:65:7b:e2: 35:ba:d1:48:c2:56:fd:0f:2b:a6:7a:05:62:72:84:e2:d7:b2: 53:6d:ec:a5:a7:ed:46:20:73:2e:10:53:83:f1:a1:b5:fe:b1: 98:f0:7e:c9:ab:d2:ca:32:16:40:e8:a0:72:27:36:5f:c6:89: 27:b4:c1:b2:f6:3c:e4:0b:91:d6:a2:05:4d:fa:34:31:cb:2e: d5:6c:fb:b3:7f:b0:71:fa:80:f0:22:16:f8:f2:33:34:d3:e1: 0e:7a:e0:6f:d3:7e:5f:d9:fe:e6:29:a2:7f:d9:39:1a:43:1f: a4:19:29:a5:06:c2:98:c6:54:d4:60:54:f1:88:cd:7b:4d:a7: 02:f3:cb:55:6e:72:5a:1b:89:73:a1:2c:76:51:b0:52:69:ac: 11:6d:a2:25 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJUI6cfT6uNLjIGz0wlRM4Jl64aYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDExMjAxNTU1MDJaFw0yNTExMTkxNjAwMDJaMDMxMTAvBgNV BAMTKEJDMzA3MzkyQ0RDMTkxNjQ0QzVGM0IyQUI0MUVENjU3NjI3MjY0MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy7fYNd1yPhZX7cPz1Ek4mExYB O5874znVTWxM0XZDwiJqcUXSrIJaPS7ZStoTqnUyJJ+PjnpD3SbwVazfH4aaC2/9 VgeHxVzHd4H29Hm2ncsMEw4GPOoR3s8w52XW3Zz5Dr9QqBDQzZy2m5Yw7MI7Ily2 vguJDN2K9B1bNh/hlFgkxkL0wG4yAqgjQ9PYr5NnduiyZl+MV9OzMqDEYd43VvKa AL3j9WumyvDDaCBOb3oZGwpk+Gcm8Jy/u7XiEpUG2VMThCdvvl3buMkDELqmbl/2 /M9wVTUvxIfhgInQAXnKunEc+IDQYZTCkXX+PS+X9Y0n4i3vdD8JnJLu2l9RAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvDBzks3BkWRMXzsqtB7WV2JyZBMwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAOMA0GCSqGSIb3DQEBCwUAA4IBAQAuxDziwwo0hioBCBwi7J0EnIJKUa+JZY1C grX45bLZNmNC1pFlXszD/24CbcDKl35pqCdcs8rA/CmAbwtk19AkGyDLX3V8l+MA QUjpanPFm+DFvj1jGw5NtLetS/tS9y71z/wn+cYPYC5le+I1utFIwlb9DyumegVi coTi17JTbeylp+1GIHMuEFOD8aG1/rGY8H7Jq9LKMhZA6KByJzZfxokntMGy9jzk C5HWogVN+jQxyy7VbPuzf7Bx+oDwIhb48jM00+EOeuBv035f2f7mKaJ/2TkaQx+k GSmlBsKYxlTUYFTxiM17TacC88tVbnJaG4lzoSx2UbBSaawRbaIl -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org