$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: 52hdkWivOU/ysCfbDrmZ4ZdVCws3AK1+NpaeOpApRrY= Subject key identifier: D7:4A:AA:C5:DE:11:4E:CE:1D:CC:B7:D9:BA:A8:72:07:BB:A1:B4:F6 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 77578B2F2E56B819643C713E90254907812BAF73 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa Signing time: Tue 23 Jul 2024 04:00:01 +0000 ROA not before: Tue 23 Jul 2024 03:55:01 +0000 ROA not after: Tue 22 Jul 2025 04:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:57:8b:2f:2e:56:b8:19:64:3c:71:3e:90:25:49:07:81:2b:af:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jul 23 03:55:01 2024 GMT Not After : Jul 22 04:00:01 2025 GMT Subject: CN=D74AAAC5DE114ECE1DCCB7D9BAA87207BBA1B4F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:c5:c2:41:a1:e1:e3:d7:f1:46:0d:23:f1: 7d:13:85:aa:26:3a:d9:3f:0a:80:c2:14:1a:ac:73: eb:c5:41:97:c3:e0:c7:74:3b:8a:34:76:7e:54:97: 30:56:1a:a6:ec:c5:b7:06:46:09:d3:ca:5c:68:dd: 3e:84:5c:7d:73:f3:00:d9:3a:1e:61:2a:79:50:43: 7b:31:36:f1:3c:80:9d:c4:37:7f:ac:37:13:88:b0: 40:ac:15:ce:b1:83:f0:b4:37:96:e3:6a:be:83:53: e1:38:cd:76:69:af:c1:0e:b6:48:ca:d4:ac:ee:eb: 7d:d4:3a:44:e9:94:dc:e0:de:1c:3b:2c:7a:dd:d8: e6:fd:22:f9:c4:21:de:a6:96:e6:88:07:da:2a:3f: f2:b0:43:d5:a7:44:70:e2:91:03:81:da:02:c2:3c: cd:0c:44:5e:c9:53:42:0f:b6:40:1e:9d:0a:d9:03: 90:91:34:a6:2d:0d:82:af:9d:44:17:1b:3c:05:00: 7c:3e:a8:ed:bb:64:0c:97:48:07:45:c0:f5:eb:a8: 56:a5:43:0d:af:6a:bc:fd:82:bc:d2:f6:13:d2:50: e6:d8:f7:dc:5e:42:33:75:d6:0a:16:30:36:f2:f5: a6:73:9e:e7:de:f8:ab:26:40:24:d5:d0:02:85:8b: a6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4A:AA:C5:DE:11:4E:CE:1D:CC:B7:D9:BA:A8:72:07:BB:A1:B4:F6 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031303a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1010::/48 Signature Algorithm: sha256WithRSAEncryption 29:93:68:2f:41:09:c3:68:4e:b5:91:5e:3e:80:5a:b3:62:f8: 9f:6f:ac:8c:81:b2:e2:e7:62:04:da:e2:96:5d:9a:a0:c0:84: c4:11:38:2d:a5:cf:97:89:84:0d:bc:0e:4e:ea:e6:cc:dd:58: 01:b3:5c:0e:77:ab:71:be:92:03:1a:5a:56:5e:cc:0f:60:f1: 8b:00:43:0c:6d:9c:98:0d:d7:f5:dd:9e:a5:68:9e:b3:9c:66: ee:1d:82:97:9c:93:5c:1d:ce:67:37:98:99:34:0e:03:b8:4e: d0:77:70:69:c1:23:9a:d2:df:e3:4e:56:13:31:5c:fb:94:d5: 1f:dc:96:dc:ef:40:b6:df:62:15:83:c6:b1:2c:fb:f2:04:b4: c0:19:20:1d:0c:fd:54:7d:e6:78:1e:3c:45:fb:bc:cc:70:0d: 8c:dc:56:ea:60:cd:43:13:15:33:ab:56:9d:60:9a:20:44:00: ca:5e:7f:8b:5c:25:4b:1c:e9:c4:80:fb:9a:79:40:da:8f:e4: 0a:37:92:4f:e6:28:0b:bf:34:3b:bd:50:39:a9:21:cb:4c:bc: 84:d6:86:45:50:26:ea:d1:14:bb:1f:b3:17:cc:61:ce:21:0f: 10:54:fd:26:a4:34:e4:1a:85:9c:59:a4:22:cc:d1:4a:c1:df: 5b:58:8a:9e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUd1eLLy5WuBlkPHE+kCVJB4Err3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDA3MjMwMzU1MDFaFw0yNTA3MjIwNDAwMDFaMDMxMTAvBgNV BAMTKEQ3NEFBQUM1REUxMTRFQ0UxRENDQjdEOUJBQTg3MjA3QkJBMUI0RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVbMXCQaHh49fxRg0j8X0Thaom Otk/CoDCFBqsc+vFQZfD4Md0O4o0dn5UlzBWGqbsxbcGRgnTylxo3T6EXH1z8wDZ Oh5hKnlQQ3sxNvE8gJ3EN3+sNxOIsECsFc6xg/C0N5bjar6DU+E4zXZpr8EOtkjK 1Kzu633UOkTplNzg3hw7LHrd2Ob9IvnEId6mluaIB9oqP/KwQ9WnRHDikQOB2gLC PM0MRF7JU0IPtkAenQrZA5CRNKYtDYKvnUQXGzwFAHw+qO27ZAyXSAdFwPXrqFal Qw2varz9grzS9hPSUObY99xeQjN11goWMDby9aZznufe+KsmQCTV0AKFi6ZbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU10qqxd4RTs4dzLfZuqhyB7uhtPYwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAQMA0GCSqGSIb3DQEBCwUAA4IBAQApk2gvQQnDaE61kV4+gFqzYvifb6yMgbLi 52IE2uKWXZqgwITEETgtpc+XiYQNvA5O6ubM3VgBs1wOd6txvpIDGlpWXswPYPGL AEMMbZyYDdf13Z6laJ6znGbuHYKXnJNcHc5nN5iZNA4DuE7Qd3BpwSOa0t/jTlYT MVz7lNUf3Jbc70C232IVg8axLPvyBLTAGSAdDP1UfeZ4HjxF+7zMcA2M3FbqYM1D ExUzq1adYJogRADKXn+LXCVLHOnEgPuaeUDaj+QKN5JP5igLvzQ7vVA5qSHLTLyE 1oZFUCbq0RS7H7MXzGHOIQ8QVP0mpDTkGoWcWaQizNFKwd9bWIqe -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org