$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: Pylk8iZVJXSjZKdQv/9DYWxDUmmM+zwCRg9l8B03Glc= Subject key identifier: 8E:54:E1:F7:51:9A:3E:3D:E4:92:18:F0:C7:BA:73:67:29:5D:86:A6 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 280992D20D1DD3121D042919192F097FD3FDA092 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa Signing time: Tue 22 Aug 2023 04:00:01 +0000 ROA not before: Tue 22 Aug 2023 03:55:01 +0000 ROA not after: Tue 20 Aug 2024 04:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:09:92:d2:0d:1d:d3:12:1d:04:29:19:19:2f:09:7f:d3:fd:a0:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Aug 22 03:55:01 2023 GMT Not After : Aug 20 04:00:01 2024 GMT Subject: CN=8E54E1F7519A3E3DE49218F0C7BA7367295D86A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6c:bd:30:f1:ec:07:a6:15:72:bb:16:db:37: fb:81:78:a7:c8:9e:d8:13:e9:21:bc:e6:1d:6a:f2: c7:fd:1d:cf:45:19:01:4b:dc:d6:5f:fb:a8:71:0d: 56:6d:a7:65:7d:5c:a5:d1:be:de:a6:d4:57:c1:f5: e7:9b:44:8f:ea:ed:d6:26:91:2d:ef:fd:5f:ef:88: 39:c5:e7:ed:8a:bc:af:c6:49:df:6f:37:52:7f:17: 22:b8:b7:06:78:a7:a2:a5:09:df:7c:5e:c8:02:5c: 60:53:32:67:27:93:4c:f6:f7:f9:38:68:c7:8f:e4: f4:9a:08:94:72:8e:db:93:fd:a0:ff:3d:cf:2a:cb: f8:e3:6c:ab:60:e2:21:91:f4:14:e8:75:e7:7c:61: 6c:0b:84:c4:ce:54:a0:4b:c1:a0:b5:e2:7a:39:c7: 3d:e9:04:56:0d:e5:98:24:bc:08:5f:5a:d9:f7:f3: 1a:43:49:7b:f8:69:b8:15:d0:8b:1c:53:0a:c6:10: 9f:9a:de:a9:88:90:c5:71:85:52:98:60:ad:8d:7a: 70:71:34:21:34:79:95:bf:bb:20:2a:e1:ae:e7:89: f1:f9:25:4b:d6:de:e9:b7:ee:47:6f:0d:fc:03:8a: 33:4e:8a:8f:14:1e:c7:e7:70:2b:f3:fa:d9:df:05: 45:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:54:E1:F7:51:9A:3E:3D:E4:92:18:F0:C7:BA:73:67:29:5D:86:A6 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1010::/48 Signature Algorithm: sha256WithRSAEncryption 5d:83:76:5d:95:ab:e9:98:b7:bb:57:5e:ac:74:2b:59:81:e0: e2:dc:45:8d:15:c0:73:d4:ad:cd:ab:9b:28:88:03:be:1f:f7: f6:a6:26:15:31:74:d0:64:18:61:aa:6a:b6:31:77:d1:fd:da: d6:37:98:fb:40:ea:74:46:09:e9:29:df:9c:63:3d:5f:3e:73: a1:d4:c8:f9:02:ca:5d:82:12:0e:00:37:f0:20:2b:1b:e7:67: f5:1c:f6:a1:e9:0d:8d:7d:58:bf:cb:ff:47:fe:4f:ef:47:9f: f7:cc:54:18:68:27:23:14:ca:bc:0a:f0:11:b0:8b:79:e5:7b: dd:06:d3:87:a0:db:91:8f:8b:f0:09:a7:b5:60:7d:23:38:5c: 26:69:8d:71:0a:85:8e:6e:df:b9:66:f8:10:ec:a9:21:df:94: 34:b7:b1:5f:83:6a:bd:71:e8:31:81:30:9f:c4:1f:30:4b:0e: dc:ab:14:ae:cf:f5:3e:86:c1:08:d3:dc:7f:2c:f6:ba:6b:a3: c0:8e:55:e2:a1:d7:dd:6d:a2:02:66:ec:b6:15:9e:bf:a4:ea: 8a:18:9e:2f:97:3f:8e:f3:91:4a:22:25:23:71:4e:04:d7:08: bc:8a:0b:bb:8c:e4:52:54:a2:48:ba:10:db:54:ea:b2:86:33: 11:99:0b:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKAmS0g0d0xIdBCkZGS8Jf9P9oJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yMzA4MjIwMzU1MDFaFw0yNDA4MjAwNDAwMDFaMDMxMTAvBgNV BAMTKDhFNTRFMUY3NTE5QTNFM0RFNDkyMThGMEM3QkE3MzY3Mjk1RDg2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIbL0w8ewHphVyuxbbN/uBeKfI ntgT6SG85h1q8sf9Hc9FGQFL3NZf+6hxDVZtp2V9XKXRvt6m1FfB9eebRI/q7dYm kS3v/V/viDnF5+2KvK/GSd9vN1J/FyK4twZ4p6KlCd98XsgCXGBTMmcnk0z29/k4 aMeP5PSaCJRyjtuT/aD/Pc8qy/jjbKtg4iGR9BToded8YWwLhMTOVKBLwaC14no5 xz3pBFYN5ZgkvAhfWtn38xpDSXv4abgV0IscUwrGEJ+a3qmIkMVxhVKYYK2NenBx NCE0eZW/uyAq4a7nifH5JUvW3um37kdvDfwDijNOio8UHsfncCvz+tnfBUWxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjlTh91GaPj3kkhjwx7pzZyldhqYwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAQMA0GCSqGSIb3DQEBCwUAA4IBAQBdg3ZdlavpmLe7V16sdCtZgeDi3EWNFcBz 1K3Nq5soiAO+H/f2piYVMXTQZBhhqmq2MXfR/drWN5j7QOp0RgnpKd+cYz1fPnOh 1Mj5AspdghIOADfwICsb52f1HPah6Q2NfVi/y/9H/k/vR5/3zFQYaCcjFMq8CvAR sIt55XvdBtOHoNuRj4vwCae1YH0jOFwmaY1xCoWObt+5ZvgQ7Kkh35Q0t7Ffg2q9 cegxgTCfxB8wSw7cqxSuz/U+hsEI09x/LPa6a6PAjlXiodfdbaICZuy2FZ6/pOqK GJ4vlz+O85FKIiUjcU4E1wi8igu7jORSVKJIuhDbVOqyhjMRmQuc -----END CERTIFICATE-----Generated at Tue May 7 23:33:56 2024 by rpki-client on console-ams.rpki-client.org