$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: otGTe9ait/P+B+Ik0EP/oNTy3CMAKp9N9FqQC2iYIFk= Subject key identifier: D1:BB:01:F9:22:44:A2:24:F7:1F:D6:42:B4:63:A4:C3:2A:7A:C7:0F Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 32D4FE9187D8A8B131E15F7460ECC2DF4C765EA2 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 20 Dec 2023 16:00:02 +0000 ROA not before: Wed 20 Dec 2023 15:55:02 +0000 ROA not after: Wed 18 Dec 2024 16:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d4:fe:91:87:d8:a8:b1:31:e1:5f:74:60:ec:c2:df:4c:76:5e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Dec 20 15:55:02 2023 GMT Not After : Dec 18 16:00:02 2024 GMT Subject: CN=D1BB01F92244A224F71FD642B463A4C32A7AC70F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:60:2a:39:2c:41:8b:25:92:1c:04:68:45:99: 2d:47:c3:1e:3a:73:90:7e:35:3c:d8:03:10:dc:7e: 00:5c:01:6f:56:46:46:43:37:62:00:e7:9f:ae:63: 5f:43:66:56:de:c2:1f:40:75:81:ea:59:d4:13:d9: a7:81:df:fe:68:32:22:bc:6d:0b:ff:d0:3b:24:f8: 94:54:3a:30:71:ec:7d:b0:5e:61:c4:99:ee:8d:53: 8a:51:87:ba:5a:c1:52:5b:e5:73:71:7e:27:28:3a: 26:71:bf:c6:84:59:f7:c8:7a:a8:ca:9e:b4:cb:ac: 06:3f:ca:dc:50:09:67:be:25:3e:06:0e:ca:cc:b7: 58:f9:0d:29:1a:a6:ae:cb:97:33:32:0d:49:8a:bc: 54:3f:af:a1:27:d5:f7:d0:a0:f6:80:b0:d8:28:60: 88:ac:10:2a:b5:a7:8f:ca:ba:a7:5a:b9:db:75:ab: d4:33:66:d3:4b:5b:4e:83:22:9b:75:a9:47:97:42: 1d:cc:f2:ac:32:e0:f7:d2:8c:b7:7c:bd:7b:44:71: 26:ec:d2:65:26:b0:5d:20:0b:aa:a4:07:97:25:27: 7b:11:7d:8d:fb:e6:eb:5a:19:f0:83:49:e2:6e:5b: 74:23:dc:f2:2d:c7:e0:49:ee:3e:47:f0:43:5d:ec: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BB:01:F9:22:44:A2:24:F7:1F:D6:42:B4:63:A4:C3:2A:7A:C7:0F X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030653a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100e::/48 Signature Algorithm: sha256WithRSAEncryption 9c:86:63:7b:48:f0:c4:7d:b9:e3:c2:d5:a3:ce:c6:cb:8b:5b: 5b:18:2a:b8:01:57:e0:ce:c7:11:31:a5:de:27:14:a1:54:b4: cf:29:bc:02:45:f1:79:42:1d:ea:21:4f:8b:2d:ac:be:47:6b: bf:7b:37:57:e1:61:37:81:28:d8:53:d6:43:e4:be:65:9b:a1: 20:4b:d7:ac:75:f0:5e:98:61:bd:e2:52:82:01:bd:ba:4c:a4: 3c:e6:db:f0:a2:c2:36:a2:e2:73:e7:87:63:b7:89:26:6e:1f: bf:ce:98:ce:7b:7c:30:90:8e:52:ba:d4:de:64:b2:aa:89:a5: fb:c4:20:c2:b8:3f:56:6e:6c:c0:25:3e:60:03:ac:07:a4:24: cc:bf:44:b9:0f:d5:f2:1c:f0:b2:71:39:6d:ae:41:c6:94:a5: cb:73:f1:35:fb:03:3e:1e:63:50:70:fd:d5:dc:68:4e:e9:0c: e3:93:3a:a3:85:0a:34:cc:3e:5e:8d:0d:36:04:20:f8:8f:9a: 99:cb:ea:d0:62:0f:5e:b5:8c:3c:1d:b7:04:b4:22:22:31:7b: 6c:fc:55:b3:2a:98:22:c9:30:7b:54:d5:a7:06:0a:f5:0c:ac: 04:b3:a4:75:41:27:20:7b:24:92:29:6e:26:98:5f:c8:13:08: 64:a5:9b:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMtT+kYfYqLEx4V90YOzC30x2XqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzEyMjAxNTU1MDJaFw0yNDEyMTgxNjAwMDJaMDMxMTAvBgNV BAMTKEQxQkIwMUY5MjI0NEEyMjRGNzFGRDY0MkI0NjNBNEMzMkE3QUM3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkYCo5LEGLJZIcBGhFmS1Hwx46 c5B+NTzYAxDcfgBcAW9WRkZDN2IA55+uY19DZlbewh9AdYHqWdQT2aeB3/5oMiK8 bQv/0Dsk+JRUOjBx7H2wXmHEme6NU4pRh7pawVJb5XNxficoOiZxv8aEWffIeqjK nrTLrAY/ytxQCWe+JT4GDsrMt1j5DSkapq7LlzMyDUmKvFQ/r6En1ffQoPaAsNgo YIisECq1p4/Kuqdaudt1q9QzZtNLW06DIpt1qUeXQh3M8qwy4PfSjLd8vXtEcSbs 0mUmsF0gC6qkB5clJ3sRfY375utaGfCDSeJuW3Qj3PItx+BJ7j5H8ENd7AQTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0bsB+SJEoiT3H9ZCtGOkwyp6xw8wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAOMA0GCSqGSIb3DQEBCwUAA4IBAQCchmN7SPDEfbnjwtWjzsbLi1tbGCq4AVfg zscRMaXeJxShVLTPKbwCRfF5Qh3qIU+LLay+R2u/ezdX4WE3gSjYU9ZD5L5lm6Eg S9esdfBemGG94lKCAb26TKQ85tvwosI2ouJz54djt4kmbh+/zpjOe3wwkI5SutTe ZLKqiaX7xCDCuD9WbmzAJT5gA6wHpCTMv0S5D9XyHPCycTltrkHGlKXLc/E1+wM+ HmNQcP3V3GhO6QzjkzqjhQo0zD5ejQ02BCD4j5qZy+rQYg9etYw8HbcEtCIiMXts /FWzKpgiyTB7VNWnBgr1DKwEs6R1QScgeySSKW4mmF/IEwhkpZvv -----END CERTIFICATE-----Generated at Sun May 5 17:20:20 2024 by rpki-client on console-fra.rpki-client.org