$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031313a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313031313a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: /5g5t+vmZHK24suvjckZfiXodPp/5juoohCT7WAzBmY= Subject key identifier: F6:C5:28:45:12:E2:36:54:88:31:AD:9D:B2:BB:22:21:CA:7D:29:05 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 684A52EF18DD8038A2DDDB02277E5088B1AD07C0 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031313a3a2f34382d3438203d3e203338313536.roa Signing time: Sun 31 Mar 2024 00:00:01 +0000 ROA not before: Sat 30 Mar 2024 23:55:01 +0000 ROA not after: Sun 30 Mar 2025 00:00:01 +0000 asID: 38156 IP address blocks: 2405:a540:1011::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:4a:52:ef:18:dd:80:38:a2:dd:db:02:27:7e:50:88:b1:ad:07:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Mar 30 23:55:01 2024 GMT Not After : Mar 30 00:00:01 2025 GMT Subject: CN=F6C5284512E236548831AD9DB2BB2221CA7D2905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:30:c1:1d:b3:42:e9:aa:c2:3e:70:39:78:f7: 63:34:11:bd:43:3c:3d:2f:8a:7a:af:d7:ad:fb:09: 19:60:1d:9e:18:61:4d:0d:ff:b8:7c:57:df:23:47: 1a:a1:2d:80:21:37:be:21:74:1b:39:c6:3c:a3:76: 85:90:4b:b8:6d:23:5a:bb:ba:bc:4e:85:57:43:41: 8f:51:94:ee:51:e7:66:80:2f:18:fa:da:d1:21:f1: 9a:36:0b:09:b5:a2:58:c2:be:00:ca:af:88:d9:eb: df:48:72:c7:52:a1:10:8c:8c:51:68:33:3c:a3:ff: 9c:21:1a:0e:5d:fa:4d:44:89:fb:3d:db:18:5f:e1: 4b:cc:b2:5f:13:6e:10:01:37:1c:f6:a6:05:3b:04: 59:87:0c:b2:ee:c9:c3:80:40:92:ec:70:7f:b0:4d: f6:69:55:3a:c4:12:a8:3e:80:e1:26:49:f8:68:1c: 3a:47:9b:1d:3a:8d:d6:1b:47:38:5b:d4:7e:cf:23: e1:f6:b5:08:32:78:37:b1:f0:0e:7d:a5:e2:84:1b: 97:e2:13:18:62:83:e4:b4:54:7f:d5:50:18:03:be: ac:d9:d2:d6:72:6d:ab:4d:be:2c:aa:26:70:d7:0b: 27:0c:fb:12:82:bc:f8:a6:b8:7c:47:04:c6:33:e5: 90:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C5:28:45:12:E2:36:54:88:31:AD:9D:B2:BB:22:21:CA:7D:29:05 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313031313a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1011::/48 Signature Algorithm: sha256WithRSAEncryption cf:6b:47:5f:2d:e8:84:b1:f1:91:72:c7:92:e9:8f:e2:4e:2c: a8:7c:bd:fa:0a:bc:f5:13:a7:ba:de:cc:5a:ef:07:66:19:4a: dd:b8:a2:13:ad:f5:c8:e0:31:47:99:fe:20:a6:a3:b3:d3:79: 0d:74:24:1d:6a:e2:b0:b7:69:81:ef:69:65:aa:8e:84:65:19: 63:9d:8c:95:06:cb:2f:08:c6:19:7c:6a:0d:97:fa:c4:7e:df: 31:4b:c9:33:26:92:cc:5c:4c:6b:75:ff:5b:06:55:a2:f0:aa: 42:3f:b5:4d:bb:17:70:18:e8:54:3c:c9:3b:36:65:b0:a6:5b: 0a:67:10:e5:da:6b:e0:6b:bc:ff:45:fa:21:44:a7:0a:08:fe: db:58:01:47:4f:8f:f8:23:bf:3b:0d:c1:c8:16:69:69:43:04: 47:7a:08:6e:d4:b0:03:91:0f:28:cb:5b:ab:b9:a7:55:c4:99: fe:07:8d:e0:16:fd:44:16:f1:c9:08:39:7d:d2:ec:76:24:83: 19:88:11:f4:b7:c7:72:46:db:5e:22:7d:d9:f2:9a:7b:63:39: 0d:f6:8e:4e:ba:76:5c:11:a4:8d:d3:db:94:d6:ab:73:2e:c3: 64:9a:70:3d:92:3f:00:7d:bf:bb:fb:7e:13:39:73:07:ef:da: 9d:0f:23:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaEpS7xjdgDii3dsCJ35QiLGtB8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNDAzMzAyMzU1MDFaFw0yNTAzMzAwMDAwMDFaMDMxMTAvBgNV BAMTKEY2QzUyODQ1MTJFMjM2NTQ4ODMxQUQ5REIyQkIyMjIxQ0E3RDI5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDMMEds0LpqsI+cDl492M0Eb1D PD0vinqv1637CRlgHZ4YYU0N/7h8V98jRxqhLYAhN74hdBs5xjyjdoWQS7htI1q7 urxOhVdDQY9RlO5R52aALxj62tEh8Zo2Cwm1oljCvgDKr4jZ699IcsdSoRCMjFFo Mzyj/5whGg5d+k1Eifs92xhf4UvMsl8TbhABNxz2pgU7BFmHDLLuycOAQJLscH+w TfZpVTrEEqg+gOEmSfhoHDpHmx06jdYbRzhb1H7PI+H2tQgyeDex8A59peKEG5fi Exhig+S0VH/VUBgDvqzZ0tZybatNviyqJnDXCycM+xKCvPimuHxHBMYz5ZBFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9sUoRRLiNlSIMa2dsrsiIcp9KQUwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMxMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBARMA0GCSqGSIb3DQEBCwUAA4IBAQDPa0dfLeiEsfGRcseS6Y/iTiyofL36Crz1 E6e63sxa7wdmGUrduKITrfXI4DFHmf4gpqOz03kNdCQdauKwt2mB72llqo6EZRlj nYyVBssvCMYZfGoNl/rEft8xS8kzJpLMXExrdf9bBlWi8KpCP7VNuxdwGOhUPMk7 NmWwplsKZxDl2mvga7z/RfohRKcKCP7bWAFHT4/4I787DcHIFmlpQwRHeghu1LAD kQ8oy1uruadVxJn+B43gFv1EFvHJCDl90ux2JIMZiBH0t8dyRtteIn3Z8pp7YzkN 9o5OunZcEaSN09uU1qtzLsNkmnA9kj8Afb+7+34TOXMH79qdDyMX -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org